| opodo.onelink.me/RnQA?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true&af_dp=op-app%3A%2F%2Flaunch%2F%3futm_content%3dUL_hero%26utm_source%3dsf%26utm_medium%3dcrm%26utm_campaign%3dnl%26utm_term%3dXX-XX-CRM-E-NL-PDA-FL-X-NP_PrimeDay8_NonPrime_SneakPeekAPP_290124_Render_435150%26mktportal%3dNL&af_web_dp=https://veste4me.com.br/ndh/5005/new/new/nick.schaffran@aon.com | 95.101.10.24 | | 0 B |
URL opodo.onelink.me/RnQA?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true&af_dp=op-app%3A%2F%2Flaunch%2F%3futm_content%3dUL_hero%26utm_source%3dsf%26utm_medium%3dcrm%26utm_campaign%3dnl%26utm_term%3dXX-XX-CRM-E-NL-PDA-FL-X-NP_PrimeDay8_NonPrime_SneakPeekAPP_290124_Render_435150%26mktportal%3dNL&af_web_dp=https://veste4me.com.br/ndh/5005/new/new/nick.schaffran@aon.com IP95.101.10.24:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /RnQA?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true&af_dp=op-app%3A%2F%2Flaunch%2F%3futm_content%3dUL_hero%26utm_source%3dsf%26utm_medium%3dcrm%26utm_campaign%3dnl%26utm_term%3dXX-XX-CRM-E-NL-PDA-FL-X-NP_PrimeDay8_NonPrime_SneakPeekAPP_290124_Render_435150%26mktportal%3dNL&af_web_dp=https://veste4me.com.br/ndh/5005/new/new/nick.schaffran@aon.com HTTP/1.1
Host: opodo.onelink.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: application/octet-stream
content-length: 0
location: https://veste4me.com.br/ndh/5005/new/new/nick.schaffran@aon.com?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List
cache-control: no-cache, no-store
date: Wed, 08 May 2024 18:26:59 GMT
server: AkamaiGHost
X-Firefox-Spdy: h2
|
|
| veste4me.com.br/ndh/5005/new/new/nick.schaffran@aon.com?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true | 69.49.245.172 | | 0 B |
URL veste4me.com.br/ndh/5005/new/new/nick.schaffran@aon.com?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true IP69.49.245.172:0 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ndh/5005/new/new/nick.schaffran@aon.com?pid=CRM&af_adset=email&af_ad=crm_nl_PDA_SneakPeek_NP_X_290124__&is_retargeting=true HTTP/1.1
Host: veste4me.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 21:21:12 GMT
Server: Apache
refresh: 0;url=https://INN.uganion.com/sJoBQ/#Nnick.schaffran@aon.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?render=explicit | 104.17.2.184 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP104.17.2.184:443
Requested byhttps://inn.uganion.com/sJoBQ/#Nnick.schaffran@aon.com CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inn.uganion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 08 May 2024 18:27:00 GMT
content-length: 0
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
location: /turnstile/v0/b/ce7818f50e39/api.js
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b805a2cf956c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.194.137:443
Requested byhttps://inn.uganion.com/sJoBQ/#Nnick.schaffran@aon.com CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inn.uganion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 18:27:00 GMT
age: 1049002
x-served-by: cache-lga21931-LGA, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 3, 795572
x-timer: S1715192821.888910,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal | 104.17.2.184 | 200 OK | 26 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal IP104.17.2.184:443
Requested byhttps://inn.uganion.com/sJoBQ/#Nnick.schaffran@aon.com CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash6404638b2d537e661e38889623b0df24 940f895136952092e399dac1c26cd56ab9695ff8 09a0a14a80969e6023d5a3581aa34dba0d6ab61178b95de4c7e33b50b63643b4
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inn.uganion.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 18:27:01 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-opener-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
origin-agent-cluster: ?1
vary: accept-encoding
server: cloudflare
cf-ray: 880b805b4967b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/880b805b4967b4fd/1715192821425/5865910765849a753303cfab1d48f7ba4f33f1e10038809212004ec64272f202/78UjPKlsqnsGcpw | 104.17.2.184 | 401 Unauthorized | 1 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/880b805b4967b4fd/1715192821425/5865910765849a753303cfab1d48f7ba4f33f1e10038809212004ec64272f202/78UjPKlsqnsGcpw IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/880b805b4967b4fd/1715192821425/5865910765849a753303cfab1d48f7ba4f33f1e10038809212004ec64272f202/78UjPKlsqnsGcpw HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Wed, 08 May 2024 18:27:02 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gWGWRB2WEmnUzA8-rHUj3uk8z8eEAOICSEgBOxkJy8gIAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAwJNLx-F--HQ4G6w81Lqhm55Wqle9iE4E64E37YL7QkK_ylJ-Dsmf1v3knq_MpBi8JncpUaWMssdL2Aha6xVtTuit-n3zEDZCW0VR_73N-Mc6DxdptQ_jsmIxis7apwux2f5L0gN0Z4K9C36tRcIL-chm-gijHvxrbhcCYusNwrgAlFaiqNWBqxKTiuPduHX4CNzNb7BAiNPz7ppY7Xn1WjmxSB-BaqSVLCYtDy-Mw41UBzE3QEcVUcRH9er-MksFvohzvhlnTTonFaMyAUYx3d_uCdDannmVQhRsm-aJs_P_GGe1TX3e9g5Sy-NmhGrro0kncbPlfTwFxa8SwJ5-8QIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIFhlkQdlhJp1MwPPqx1I97pPM_HhADiAkhIATsZCcvICABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 880b8063d8eeb4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1615193548:1715189626:whcL-uPgRhUb-Mnab61Y6ehcqJaVclL_qP0bCtHJb0Y/880b805b4967b4fd/a6e1bf9424327c6 | 104.17.2.184 | 200 OK | 99 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1615193548:1715189626:whcL-uPgRhUb-Mnab61Y6ehcqJaVclL_qP0bCtHJb0Y/880b805b4967b4fd/a6e1bf9424327c6 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash7ec245b4f2b8ba015eb468bf373cb3fb 43ffe90397c2cc715628476560b07cc6942c77af f5834c5c2c46d834265e04ed95415d74cd9cfc4e68dc2d06d489f713e9eaea3d
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1615193548:1715189626:whcL-uPgRhUb-Mnab61Y6ehcqJaVclL_qP0bCtHJb0Y/880b805b4967b4fd/a6e1bf9424327c6 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: a6e1bf9424327c6
Content-Length: 2524
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 18:27:01 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 9uYwzYsEQeK56sSNm9ynI3JXc3yULtreiTdN/A5tAINeY9S+H5ud69orCna1OCcIjO3aQfOXyTUFHvqm0yS5TtA0Adqsx/NENWIdHC5AJWT5L2dbkw8uT3mT0HQ7ncaoTIulo0PdnsWO0pc61mUVRmW2hCaMXZHt1UOacBb2/mfk6wvehixhUPwOoj7PkvfHMwZvnmfINUznajV7HvUdx/XFeefJX5V7nVdNhBfBLIps/9/aH1ncYJO9KFfoX787eoRWdvaXVc1XYSqL8+5+bgN9ItNn4kl/dcI2l/U02lDrutnT7ojyKqO8PVZYBsGrhgmqrNGc2tea283VHTVQQ+oJEXAbu9+oRjOdq/rImsu7RDhS+cOyt2qfiwrXGd0Ec8HAMV5wQIxKZUTjREzwRomXHqUcwvn58ZgctL/mu9M=$NCuQs5Y1cS04Qopu3kYGDg==
vary: accept-encoding
server: cloudflare
cf-ray: 880b805dce7fb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1615193548:1715189626:whcL-uPgRhUb-Mnab61Y6ehcqJaVclL_qP0bCtHJb0Y/880b805b4967b4fd/a6e1bf9424327c6 | 104.17.2.184 | 200 OK | 29 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1615193548:1715189626:whcL-uPgRhUb-Mnab61Y6ehcqJaVclL_qP0bCtHJb0Y/880b805b4967b4fd/a6e1bf9424327c6 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (22284), with no line terminators Hash40f1bffeda6ef834f20b8f5a98773a6b 3bfc0728a7d59de50657292c2818be0edf67e7e5 db5d6d268f6e274ffe660489a3c84c8b3712770ae3f7d62152f3b20b246ea786
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1615193548:1715189626:whcL-uPgRhUb-Mnab61Y6ehcqJaVclL_qP0bCtHJb0Y/880b805b4967b4fd/a6e1bf9424327c6 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: a6e1bf9424327c6
Content-Length: 27633
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 18:27:03 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: E/YZNAnL9SQf9lLHQKszGza5j53FQZ1dpbZ0y7bmTAnbuFzTcv71DgE69agjHXvd$t9xQMEHHBwi0JhDQCFOVCQ==
vary: accept-encoding
server: cloudflare
cf-ray: 880b8068896fb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.194.25 | 200 OK | 6.1 kB |
URL User Request GET HTTP/2IP172.67.194.25:443
CertificateIssuerLet's Encrypt Subjectuganion.com FingerprintD7:B0:0D:6A:AE:E8:3E:A3:56:BA:89:32:AC:51:70:4C:4B:B2:01:85 ValiditySun, 05 May 2024 15:07:03 GMT - Sat, 03 Aug 2024 15:07:02 GMT
File typeHTML document, ASCII text, with very long lines (6106), with no line terminators Hash7f202e9250ea61cbb9a0fa1820c16bdd 187c2b6adcc0e5e2d71a4697d307044484c261ce 3c8137e898c5db44c2ccb1e75e512d32e77850a4c68d62007565ce4c6c757a2c
GET /sJoBQ/ HTTP/1.1
Host: inn.uganion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 18:27:00 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tKRxtIk6O%2F%2FftDE6Ndcz6UdRvJaj2A5orU4bPrnL4JEiqshtdN99o5GhFO3buHVgsujsuudCIBhUia%2F81W%2FYmRJuP64eT9CNl4O5jNtbJscWTEgUtuKZ4QGDtNNdjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
set-cookie: XSRF-TOKEN=eyJpdiI6InoyeXpZTEJSWEtNRGdBY1FuQVN6TFE9PSIsInZhbHVlIjoiMkJlWXowcVErUDB6OFVsOGJIbnBrUk1lTkQ4dkZ2OXgzQjUzVHpyWEQ4OXZHbHl0WkhOSE1QcVp0YmpPRGx5RGVBYS9hMmhqcnNHTFNXNXUwYi8vY0lFRGRRVFYxcUdWWlFIZXJMR3BaNWkwbGpGZXVsM212Nm5TczQxZ0NMQkkiLCJtYWMiOiI0ZjdiZDk3YTE2MjlhYTdlYjk3NGVjZTI1OTY4ZTdjM2EzYTA4OWZmNjFlMTkwMTQ3Njc5NDU3M2ViYTAxMDZkIiwidGFnIjoiIn0%3D; expires=Wed, 08-May-2024 20:27:00 GMT; Max-Age=7200; path=/; secure; samesite=none
laravel_session=eyJpdiI6IjNqMDJtNU1tTTdOc0ZmSDRhK3NRWmc9PSIsInZhbHVlIjoiQThUM0d4UzgxUTU2VEMyYVNObEpVMVVSNjU5OUM3bkFLOTdIbE1KS0wrSHFJSFNML3JFemR1V0NKdC9UTU9wZVBFeUQzT1grZHpxaEFjeVFQbzNuTkhoalRmSjc5NW00Q1dkcng0UUdicmgvbGZ3WkhzL3Noa3pCMUV6VlVtUEQiLCJtYWMiOiI5NDM1M2RlZDJmOTRhZmQxYWU3NzRmZDU1MzA3YzRlNDNhZjE1NjJmNzgxYTU3YTMyZDhiZWM1OWM5NzYyOGQzIiwidGFnIjoiIn0%3D; expires=Wed, 08-May-2024 20:27:00 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none
server: cloudflare
cf-ray: 880b8054cd8e56be-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| inn.uganion.com/favicon.ico | 172.67.194.25 | 404 Not Found | 0 B |
URL GET HTTP/3inn.uganion.com/favicon.ico IP172.67.194.25:443
Requested byhttps://inn.uganion.com/sJoBQ/#Nnick.schaffran@aon.com CertificateIssuerLet's Encrypt Subjectuganion.com FingerprintD7:B0:0D:6A:AE:E8:3E:A3:56:BA:89:32:AC:51:70:4C:4B:B2:01:85 ValiditySun, 05 May 2024 15:07:03 GMT - Sat, 03 Aug 2024 15:07:02 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: inn.uganion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inn.uganion.com/sJoBQ/
Cookie: XSRF-TOKEN=eyJpdiI6InoyeXpZTEJSWEtNRGdBY1FuQVN6TFE9PSIsInZhbHVlIjoiMkJlWXowcVErUDB6OFVsOGJIbnBrUk1lTkQ4dkZ2OXgzQjUzVHpyWEQ4OXZHbHl0WkhOSE1QcVp0YmpPRGx5RGVBYS9hMmhqcnNHTFNXNXUwYi8vY0lFRGRRVFYxcUdWWlFIZXJMR3BaNWkwbGpGZXVsM212Nm5TczQxZ0NMQkkiLCJtYWMiOiI0ZjdiZDk3YTE2MjlhYTdlYjk3NGVjZTI1OTY4ZTdjM2EzYTA4OWZmNjFlMTkwMTQ3Njc5NDU3M2ViYTAxMDZkIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjNqMDJtNU1tTTdOc0ZmSDRhK3NRWmc9PSIsInZhbHVlIjoiQThUM0d4UzgxUTU2VEMyYVNObEpVMVVSNjU5OUM3bkFLOTdIbE1KS0wrSHFJSFNML3JFemR1V0NKdC9UTU9wZVBFeUQzT1grZHpxaEFjeVFQbzNuTkhoalRmSjc5NW00Q1dkcng0UUdicmgvbGZ3WkhzL3Noa3pCMUV6VlVtUEQiLCJtYWMiOiI5NDM1M2RlZDJmOTRhZmQxYWU3NzRmZDU1MzA3YzRlNDNhZjE1NjJmNzgxYTU3YTMyZDhiZWM1OWM5NzYyOGQzIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 08 May 2024 18:27:01 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=14400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ru3OtvTPWnTMqw7UuR72NQBoZNVMynuYrgkFGsKCfM0ZPIYmP2TYWh0YZXz%2B0B67YhMz5gLFCnL%2BV3bXkK%2F4SlnxWYCLkjXx8BqonMOAGA78drmzMtXX4wtpOXCAiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 27
server: cloudflare
cf-ray: 880b805b9c6a0b45-OSL
content-encoding: br
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880b805b4967b4fd | 104.17.2.184 | 200 OK | 429 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880b805b4967b4fd IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size429 kB (429180 bytes) Hash2dd3bc8e5db16ce5da44e2c5af15111a 30aefd0ec5516ee3af965b3e610edb6288e1f84a f0a9806ffa4f84ebdd13c9a8aae68f25b93ae7afd4c3fc267da727651f27322b
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=880b805b4967b4fd HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 18:27:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 880b805bdaa4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 18:27:01 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 880b805bca9bb4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js | 104.17.2.184 | 200 OK | 43 kB |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js IP104.17.2.184:443
Requested byhttps://inn.uganion.com/sJoBQ/#Nnick.schaffran@aon.com CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42565) Hasha5b92920e25651d2058f4982a108347b caeeadd68d38fdb681c52006c68880abc2e8a1a6 49a5abedf03eb8ad9a66eca7c5ccb8e59a440e06958e1e7b71d078f494178dc5
GET /turnstile/v0/b/ce7818f50e39/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://inn.uganion.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 18:27:00 GMT
content-type: application/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=604800, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b805a4d2e56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/880b805b4967b4fd/1715192821428/yv59zw52EuYxprx | 104.17.2.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/880b805b4967b4fd/1715192821428/yv59zw52EuYxprx IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 13 x 48, 8-bit/color RGB, non-interlaced Hash8e49336f0cbd139cac31fcc744a099d9 e32afec359299fc4587c0e789c6f353bc51bb98a f79a0f6db77a0d88c2c176d1bbc977b75b3b7a4a939bd8672caf32b4d225d715
GET /cdn-cgi/challenge-platform/h/b/i/880b805b4967b4fd/1715192821428/yv59zw52EuYxprx HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/jkrqe/0x4AAAAAAAZYRLPnLyUamenM/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 18:27:02 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 880b8066de76b4fd-OSL
alt-svc: h3=":443"; ma=86400
|
|