Source: global traffic | HTTP traffic detected: GET /ZayUC/?email=john.smith%40microsoft.com HTTP/1.1Host: proposaldocumentsviasecuredport.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1Host: proposaldocumentsviasecuredport.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 5fPcEN940Iij5LexFBM8i1K_NUI=cFLzUvmOaMFVSJXyIoQ9gitKf48; Hrtt5L2PUT1G82Ub72LRnRj2zEY=1742934563; HOvzofOCL_89s0mwUIUtH06-Y44=1743020963; nl7hDPvwUmmdFxUfvww3WgqLk9M=LhWaadEVmztEguxdRXgPVGKflPs; fSR249O6MYLvXM5jpcNL1q5tr4o=3hzZJGaeMvYM7jRNJS9rkFgWO3M |
Source: global traffic | HTTP traffic detected: GET /ZayUC/?email=john.smith%40microsoft.com HTTP/1.1Host: proposaldocumentsviasecuredport.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://proposaldocumentsviasecuredport.com/ZayUC/?email=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 5fPcEN940Iij5LexFBM8i1K_NUI=cFLzUvmOaMFVSJXyIoQ9gitKf48; Hrtt5L2PUT1G82Ub72LRnRj2zEY=1742934563; HOvzofOCL_89s0mwUIUtH06-Y44=1743020963; nl7hDPvwUmmdFxUfvww3WgqLk9M=LhWaadEVmztEguxdRXgPVGKflPs; fSR249O6MYLvXM5jpcNL1q5tr4o=3hzZJGaeMvYM7jRNJS9rkFgWO3M; riUofr0n8AfLgf7hKnugHijGX0Q=1742934564; PmYLFtceC7bvtWQUj0IlMMJPtHI=1743020964; X7zD0pYRSM6DdHXP6iTHdTjmVGs=eta3_lUYomtUZ4JfPJkf_MS-Ukg |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/708f7a809116/main.js? HTTP/1.1Host: proposaldocumentsviasecuredport.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 5fPcEN940Iij5LexFBM8i1K_NUI=cFLzUvmOaMFVSJXyIoQ9gitKf48; Hrtt5L2PUT1G82Ub72LRnRj2zEY=1742934563; HOvzofOCL_89s0mwUIUtH06-Y44=1743020963; nl7hDPvwUmmdFxUfvww3WgqLk9M=LhWaadEVmztEguxdRXgPVGKflPs; fSR249O6MYLvXM5jpcNL1q5tr4o=3hzZJGaeMvYM7jRNJS9rkFgWO3M; riUofr0n8AfLgf7hKnugHijGX0Q=1742934564; PmYLFtceC7bvtWQUj0IlMMJPtHI=1743020964; X7zD0pYRSM6DdHXP6iTHdTjmVGs=eta3_lUYomtUZ4JfPJkf_MS-Ukg |
Source: global traffic | HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: proposaldocumentsviasecuredport.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://proposaldocumentsviasecuredport.com/ZayUC/?email=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 5fPcEN940Iij5LexFBM8i1K_NUI=cFLzUvmOaMFVSJXyIoQ9gitKf48; Hrtt5L2PUT1G82Ub72LRnRj2zEY=1742934563; HOvzofOCL_89s0mwUIUtH06-Y44=1743020963; nl7hDPvwUmmdFxUfvww3WgqLk9M=LhWaadEVmztEguxdRXgPVGKflPs; fSR249O6MYLvXM5jpcNL1q5tr4o=3hzZJGaeMvYM7jRNJS9rkFgWO3M; riUofr0n8AfLgf7hKnugHijGX0Q=1742934564; PmYLFtceC7bvtWQUj0IlMMJPtHI=1743020964; X7zD0pYRSM6DdHXP6iTHdTjmVGs=eta3_lUYomtUZ4JfPJkf_MS-Ukg |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/0.9880444760699761:1742930777:v0BwmuIV3nHTcJ9doLgIeqC4946_BfI3JSB4KgVDHmw/9261290858884283 HTTP/1.1Host: proposaldocumentsviasecuredport.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 5fPcEN940Iij5LexFBM8i1K_NUI=cFLzUvmOaMFVSJXyIoQ9gitKf48; Hrtt5L2PUT1G82Ub72LRnRj2zEY=1742934563; HOvzofOCL_89s0mwUIUtH06-Y44=1743020963; nl7hDPvwUmmdFxUfvww3WgqLk9M=LhWaadEVmztEguxdRXgPVGKflPs; fSR249O6MYLvXM5jpcNL1q5tr4o=3hzZJGaeMvYM7jRNJS9rkFgWO3M; riUofr0n8AfLgf7hKnugHijGX0Q=1742934564; PmYLFtceC7bvtWQUj0IlMMJPtHI=1743020964; X7zD0pYRSM6DdHXP6iTHdTjmVGs=eta3_lUYomtUZ4JfPJkf_MS-Ukg |
Source: global traffic | HTTP traffic detected: GET /?mjalaytm&email=john.smith@microsoft.com HTTP/1.1Host: sso.ninerscorretora.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://proposaldocumentsviasecuredport.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /?mjalaytm=1b4966f30328850aae45ecf1539a76e583ed8b55ea1934bb456645581c482b9366f885c577c097b0d0d4170cabc37856259921b0ebc08f20988de5b0de7eb0e8&email=john.smith%40microsoft.com HTTP/1.1Host: sso.ninerscorretora.com.brConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://proposaldocumentsviasecuredport.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY |
Source: global traffic | HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://sso.ninerscorretora.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /turnstile/v0/b/708f7a809116/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://sso.ninerscorretora.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/enwsv/0x4AAAAAABBaK7aSfnN9RzmT/auto/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://sso.ninerscorretora.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9261293dee55c468&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/enwsv/0x4AAAAAABBaK7aSfnN9RzmT/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/enwsv/0x4AAAAAABBaK7aSfnN9RzmT/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sso.ninerscorretora.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sso.ninerscorretora.com.br/?mjalaytm=1b4966f30328850aae45ecf1539a76e583ed8b55ea1934bb456645581c482b9366f885c577c097b0d0d4170cabc37856259921b0ebc08f20988de5b0de7eb0e8&email=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/388899321:1742930844:sP1vMOt9cepvez2L-LaawesgzBBgiC7IfsMEBenDenU/9261293dee55c468/5xuf3vS44zr.1MtVIn264UzO918ABLgF77tkOMIwSa0-1742934573-1.1.1.1-w0fL8wWVhFYbbNLb8vZRz7iPGM172z09xbC1Lro8sJ7vcbuRFZImQ92sY9REweOI HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/9261293dee55c468/1742934575128/d51fc97ff5482a0e04d34c34824eb01eb3128cda53b4a0f70f6023263fe47e26/uPY28BXx41_v6Yh HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/enwsv/0x4AAAAAABBaK7aSfnN9RzmT/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/d/9261293dee55c468/1742934575130/g4iWD1-kj0BtEfd HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/enwsv/0x4AAAAAABBaK7aSfnN9RzmT/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/d/9261293dee55c468/1742934575130/g4iWD1-kj0BtEfd HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/388899321:1742930844:sP1vMOt9cepvez2L-LaawesgzBBgiC7IfsMEBenDenU/9261293dee55c468/5xuf3vS44zr.1MtVIn264UzO918ABLgF77tkOMIwSa0-1742934573-1.1.1.1-w0fL8wWVhFYbbNLb8vZRz7iPGM172z09xbC1Lro8sJ7vcbuRFZImQ92sY9REweOI HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/388899321:1742930844:sP1vMOt9cepvez2L-LaawesgzBBgiC7IfsMEBenDenU/9261293dee55c468/5xuf3vS44zr.1MtVIn264UzO918ABLgF77tkOMIwSa0-1742934573-1.1.1.1-w0fL8wWVhFYbbNLb8vZRz7iPGM172z09xbC1Lro8sJ7vcbuRFZImQ92sY9REweOI HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL3J1dGFhbm4uY29tLyIsImRvbWFpbiI6InJ1dGFhbm4uY29tIiwia2V5IjoiallDUmtvczlrNVowIiwicXJjIjoiam9obi5zbWl0aEBtaWNyb3NvZnQuY29tIiwiaWF0IjoxNzQyOTM0NTg1LCJleHAiOjE3NDI5MzQ3MDV9.7W_s5qzWUU25mO-CbJ3UwXVUaS65kZepZMklv62CLjs HTTP/1.1Host: rutaann.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://sso.ninerscorretora.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /?qrc=john.smith%40microsoft.com HTTP/1.1Host: rutaann.comConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://sso.ninerscorretora.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY |
Source: global traffic | HTTP traffic detected: GET /aadcdn.msftauth.net/~/shared/1.0/content/js/BssoInterrupt_Core_9810YxmrLqOR1rQ4anyNMg2.js HTTP/1.1Host: rutaann.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://rutaann.com/?qrc=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY; esctx-x1Q4YHmX7Q=AQABCQEAAABVrSpeuWamRam2jAF1XRQEWZj2fQ7dGK-_JxX9OHqQ2yCGiNwlWOCzJKmxCEEte8mYCgSV5ztuS4rrS9yIybFvLW3OilTD3ukCq_Zy7tmDRFx0WFi5NEghPKriToZsCQDoMeR9ncyPFOGcrJSTKxWCvaLtJqw5HnEBdZkE9U_rhSAA; fpc=Ah-8cUX3klZPh9iRdc8cPP4; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEFFUhOjHU_curTWGESL1hbgmAr-Cseos40vOpPWOwXYTc9UUbYwGF50h8-IldcOMc-E4ioDSHbdRao7xiUZLpiT7ecfB6bAs7xbu40qc3QG-G6zN1Oh__OGbZDYOXAwxgqU5I80Xc68VxC4k7N_9jN1Ksw9bIE-21A_9Q9qBxoYcgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd |
Source: global traffic | HTTP traffic detected: GET /?qrc=john.smith%40microsoft.com&sso_reload=true HTTP/1.1Host: rutaann.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://rutaann.com/?qrc=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY; esctx-x1Q4YHmX7Q=AQABCQEAAABVrSpeuWamRam2jAF1XRQEWZj2fQ7dGK-_JxX9OHqQ2yCGiNwlWOCzJKmxCEEte8mYCgSV5ztuS4rrS9yIybFvLW3OilTD3ukCq_Zy7tmDRFx0WFi5NEghPKriToZsCQDoMeR9ncyPFOGcrJSTKxWCvaLtJqw5HnEBdZkE9U_rhSAA; fpc=Ah-8cUX3klZPh9iRdc8cPP4; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEFFUhOjHU_curTWGESL1hbgmAr-Cseos40vOpPWOwXYTc9UUbYwGF50h8-IldcOMc-E4ioDSHbdRao7xiUZLpiT7ecfB6bAs7xbu40qc3QG-G6zN1Oh__OGbZDYOXAwxgqU5I80Xc68VxC4k7N_9jN1Ksw9bIE-21A_9Q9qBxoYcgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; AADSSO=NA|NoExtension; SSOCOOKIEPULLED=1 |
Source: global traffic | HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: rutaann.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://rutaann.com/?qrc=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY; esctx-x1Q4YHmX7Q=AQABCQEAAABVrSpeuWamRam2jAF1XRQEWZj2fQ7dGK-_JxX9OHqQ2yCGiNwlWOCzJKmxCEEte8mYCgSV5ztuS4rrS9yIybFvLW3OilTD3ukCq_Zy7tmDRFx0WFi5NEghPKriToZsCQDoMeR9ncyPFOGcrJSTKxWCvaLtJqw5HnEBdZkE9U_rhSAA; fpc=Ah-8cUX3klZPh9iRdc8cPP4; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEFFUhOjHU_curTWGESL1hbgmAr-Cseos40vOpPWOwXYTc9UUbYwGF50h8-IldcOMc-E4ioDSHbdRao7xiUZLpiT7ecfB6bAs7xbu40qc3QG-G6zN1Oh__OGbZDYOXAwxgqU5I80Xc68VxC4k7N_9jN1Ksw9bIE-21A_9Q9qBxoYcgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; AADSSO=NA|NoExtension; SSOCOOKIEPULLED=1 |
Source: global traffic | HTTP traffic detected: GET /?5cugphbw6=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 HTTP/1.1Host: rutaann.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://rutaann.com/?qrc=john.smith%40microsoft.comAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=jYCRkos9k5Z0; qPdM.sig=JtBFZ6EwDNCnYBno_SYUCHnifvY; esctx-x1Q4YHmX7Q=AQABCQEAAABVrSpeuWamRam2jAF1XRQEWZj2fQ7dGK-_JxX9OHqQ2yCGiNwlWOCzJKmxCEEte8mYCgSV5ztuS4rrS9yIybFvLW3OilTD3ukCq_Zy7tmDRFx0WFi5NEghPKriToZsCQDoMeR9ncyPFOGcrJSTKxWCvaLtJqw5HnEBdZkE9U_rhSAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEFFUhOjHU_curTWGESL1hbgmAr-Cseos40vOpPWOwXYTc9UUbYwGF50h8-IldcOMc-E4ioDSHbdRao7xiUZLpiT7ecfB6bAs7xbu40qc3QG-G6zN1Oh__OGbZDYOXAwxgqU5I80Xc68VxC4k7N_9jN1Ksw9bIE-21A_9Q9qBxoYcgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; AADSSO=NA|NoExtension; SSOCOOKIEPULLED=1; buid=1.AQoAqzBRR7ViQUKp00fjfJvCFakreHKQRANPjYJWI3DqNWYBAAAKAA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEiJYeYalAAVl3PxPvLe92WUyJQG-00-bDdyt4U5gvvctc__S4jhyXqSVwbtaNdT-hCRkYvtvLiPTlhOrlf1F8Ji03vGRNKUTAFYHnXbgo9UAgAA; ESTSWCTXFLOWTOKEN=AQABIQEAAABVrSpeuWamRam2jAF1XRQEcUeYHkXBwbpOjpfmrw1uEj9uFj_RNrxrvyBdMR-ZRy-zj0-R1puIn96jDjWIZkvzpE5Aeup7hbhxbvYm-Zx4L2h9fKoyTwKmGDdQrkOZOe16nW5CTa_kCy |