Source: https://login.microsoftonline.com/1b4a5f72-0ec0-4b75-ac79-5c88057e14f0/oauth2/v2.0/authorize?client_id=08e18876-6177-487e-b8b5-cf950c1e598c&scope=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F_forms%2Fspfxsinglesignon.aspx&client-request-id=2bb80481-4693-42e7-a493-72a2997eab15&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=3.7.1&client_info=1&code_challenge=R1-cndK7Ef3tMozq7CqwDhqUJTQAWgU6poSz4hZQMtE&code_challenge_method=S256&prompt=none&nonce=d4c77666-d6a4-4dd3-9566-dc96871f6335&state=eyJpZCI6ImM0ZDc0ZDBiLTI5NjAtNGMyMi1hY2I4LWE5ZjZlZmQzMTQ1YiIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoic2lsZW50In19 |
HTTP Parser: Number of links: 0 |
Source: https://login.microsoftonline.com/1b4a5f72-0ec0-4b75-ac79-5c88057e14f0/oauth2/v2.0/authorize?client_id=08e18876-6177-487e-b8b5-cf950c1e598c&scope=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F_forms%2Fspfxsinglesignon.aspx&client-request-id=2bb80481-4693-42e7-a493-72a2997eab15&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=3.7.1&client_info=1&code_challenge=R1-cndK7Ef3tMozq7CqwDhqUJTQAWgU6poSz4hZQMtE&code_challenge_method=S256&prompt=none&nonce=d4c77666-d6a4-4dd3-9566-dc96871f6335&state=eyJpZCI6ImM0ZDc0ZDBiLTI5NjAtNGMyMi1hY2I4LWE5ZjZlZmQzMTQ1YiIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoic2lsZW50In19 |
HTTP Parser: Title: Redirecting does not match URL |
Source: https://login.microsoftonline.com/1b4a5f72-0ec0-4b75-ac79-5c88057e14f0/oauth2/v2.0/authorize?client_id=08e18876-6177-487e-b8b5-cf950c1e598c&scope=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F_forms%2Fspfxsinglesignon.aspx&client-request-id=2bb80481-4693-42e7-a493-72a2997eab15&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=3.7.1&client_info=1&code_challenge=R1-cndK7Ef3tMozq7CqwDhqUJTQAWgU6poSz4hZQMtE&code_challenge_method=S256&prompt=none&nonce=d4c77666-d6a4-4dd3-9566-dc96871f6335&state=eyJpZCI6ImM0ZDc0ZDBiLTI5NjAtNGMyMi1hY2I4LWE5ZjZlZmQzMTQ1YiIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoic2lsZW50In19 |
HTTP Parser: No favicon |
Source: about:blank |
HTTP Parser: No favicon |
Source: https://login.microsoftonline.com/1b4a5f72-0ec0-4b75-ac79-5c88057e14f0/oauth2/v2.0/authorize?client_id=08e18876-6177-487e-b8b5-cf950c1e598c&scope=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F_forms%2Fspfxsinglesignon.aspx&client-request-id=2bb80481-4693-42e7-a493-72a2997eab15&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=3.7.1&client_info=1&code_challenge=R1-cndK7Ef3tMozq7CqwDhqUJTQAWgU6poSz4hZQMtE&code_challenge_method=S256&prompt=none&nonce=d4c77666-d6a4-4dd3-9566-dc96871f6335&state=eyJpZCI6ImM0ZDc0ZDBiLTI5NjAtNGMyMi1hY2I4LWE5ZjZlZmQzMTQ1YiIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoic2lsZW50In19 |
HTTP Parser: No <meta name="author".. found |
Source: https://login.microsoftonline.com/1b4a5f72-0ec0-4b75-ac79-5c88057e14f0/oauth2/v2.0/authorize?client_id=08e18876-6177-487e-b8b5-cf950c1e598c&scope=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fmarconmetalfab-my.sharepoint.com%2F_forms%2Fspfxsinglesignon.aspx&client-request-id=2bb80481-4693-42e7-a493-72a2997eab15&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=3.7.1&client_info=1&code_challenge=R1-cndK7Ef3tMozq7CqwDhqUJTQAWgU6poSz4hZQMtE&code_challenge_method=S256&prompt=none&nonce=d4c77666-d6a4-4dd3-9566-dc96871f6335&state=eyJpZCI6ImM0ZDc0ZDBiLTI5NjAtNGMyMi1hY2I4LWE5ZjZlZmQzMTQ1YiIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoic2lsZW50In19 |
HTTP Parser: No <meta name="copyright".. found |
Source: unknown |
HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49846 version: TLS 1.0 |
Source: C:\Windows\SysWOW64\unarchiver.exe |
File opened: C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9672_none_d08f9da24428a513\MSVCR80.dll |
Jump to behavior |
Source: unknown |
HTTPS traffic detected: 184.31.62.93:443 -> 192.168.2.5:49740 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 184.31.62.93:443 -> 192.168.2.5:49746 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49846 version: TLS 1.0 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.31.62.93 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.25.164.138 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic |
HTTP traffic detected: GET /:f:/g/personal/geoff_marconmetal_com/Egx-2orK-3dKvN4XpDa8l7IBwPjZvHM_vr-d9tM4HS51lg?e=pPnQKf HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /personal/geoff_marconmetal_com/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Fgeoff%5Fmarconmetal%5Fcom%2FDocuments%2FHighway%20Specialties%20Inc&ga=1 HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /_layouts/15/spwebworkerproxy.ashx HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /_layouts/15/spwebworkerproxy.ashx HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uI2JkN2JiYTVlYjRiOWZmMDQzYWY3ZjFhMTFlY2RlYzdlN2Q5YzI3NjkzNTlhNmY4ODQ1ZjM5NjRhYzIxOWY4N2EsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jYmQ3YmJhNWViNGI5ZmYwNDNhZjdmMWExMWVjZGVjN2U3ZDljMjc2OTM1OWE2Zjg4NDVmMzk2NGFjMjE5Zjg3YSwxMzM1Nzc2ODI2ODAwMDAwMDAsMCwxMzM1Nzg1NDM2ODIxNzAxNDYsMC4wLjAuMCwyNTgsMWI0YTVmNzItMGVjMC00Yjc1LWFjNzktNWM4ODA1N2UxNGYwLCwsYTNhNzFmYTEtYzA1NC01MDAwLTU1NzQtMDBjMGM4OWQxNjkyLGEzYTcxZmExLWMwNTQtNTAwMC01NTc0LTAwYzBjODlkMTY5MixOVHdpUkpGQlcwaThBSGYxZTNJTW93LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTE5ODksRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFVlNjFXaGFpUlpNVG5WSWcvOXhxQzc2Z0l5eEd6YzNoVndBTHFWT2t5NDNmalcxb2JmRE1DSkNXUEpNWXFmQzZScEx1U3NaWjUxR3lwMk1YcytvdWFoRWZlNm5tLzN4N0NxSGZDQ041ek5ka21mWVZYWjRvbUVmQVI2cDFWbjZ5ZnR3OGlyaTNtMmtXdWl6amo0Wnd6c2tGMmxJdlNacVFxazF1ajFkVWI3bytFeVhWQk9MaWVUTjgySnU5Rkt5NzU5YTZqL3Q4dngwS2I0OTB2UVB1d2pHNDl3ZHlmTmRwTmFNbmswdkVkTUhFb0lkQXNNSkI3dUcvVTdGaXg2OEt6RGNZdEV2enNCZkplT2NFVEhEY1JjZ01sQVpIRUg3Q1NCMGN5dGxoZzNZejlsc3E4cUNyWGxiSk4xY0t1WURSQXppNU5vTGh0bzQzV2d6WjRSTUt4QT09PC9TUD4= |
Source: global traffic |
HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic |
HTTP traffic detected: GET /personal/geoff_marconmetal_com/_api/v2.1/graphql HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /_layouts/15/images/odbfavicon.ico?rev=47 HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://marconmetalfab-my.sharepoint.com/personal/geoff_marconmetal_com/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Fgeoff%5Fmarconmetal%5Fcom%2FDocuments%2FHighway%20Specialties%20Inc&ga=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /_layouts/15/images/odbfavicon.ico?rev=47 HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /personal/geoff_marconmetal_com/_api/web/GetListUsingPath(DecodedUrl=@a1)/RenderListDataAsStream?@a1=%27%2Fpersonal%2Fgeoff%5Fmarconmetal%5Fcom%2FDocuments%27&TryNewExperienceSingle=TRUE HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /personal/geoff_marconmetal_com/_api/web/GetListUsingPath(DecodedUrl=@a1)/RenderListDataAsStream?@a1=%27%2Fpersonal%2Fgeoff%5Fmarconmetal%5Fcom%2FDocuments%27&RootFolder=%2Fpersonal%2Fgeoff%5Fmarconmetal%5Fcom%2FDocuments%2FHighway%20Specialties%20Inc&TryNewExperienceSingle=TRUE HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic |
HTTP traffic detected: GET /_layouts/15/odspserviceworkerproxy.aspx?swManifestName=spserviceworker&debug=false&bypass=false&navigationPreloadHeaderValue=%7B%22supportsFeatures%22%3A%5B1855%5D%7D&applications=%5B%7B%22id%22%3A%22STS%22%2C%22swPrefetchManifestName%22%3A%22stsserviceworkerprefetch%22%7D%2C%7B%22id%22%3A%22SPHome%22%7D%2C%7B%22id%22%3A%22SitePages%22%7D%2C%7B%22id%22%3A%22Embed%22%7D%2C%7B%22id%22%3A%22CreateGroup%22%7D%2C%7B%22id%22%3A%22SingleWebPart%22%7D%2C%7B%22id%22%3A%22VivaHome%22%7D%2C%7B%22id%22%3A%22BrokerLogon%22%7D%2C%7B%22id%22%3A%22Clipchamp%22%7D%2C%7B%22id%22%3A%22MeeBridge%22%7D%5D&list=v2&defaultBrotli=true&authenticateFast=true&wwData=true&prefetchFilebrowserPageInTeams=true&FUIV9Flights=[-83099649,3]&spStartApplicationWebBundle=true&enableIntegrities=true HTTP/1.1Host: marconmetalfab-my.sharepoint.comConnection: keep-aliveCache-Control: max-age=0Accept: */*Service-Worker: scriptSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://marconmetalfab-my.sharepoint.com/personal/geoff_marconmetal_com/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Fgeoff%5Fmarconmetal%5Fcom%2FDocuments%2FHighway%20Specialties%20Inc&ga=1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uI2JkN2JiYTVlYjRiOWZmMDQzYWY3ZjFhMTFlY2RlYzdlN2Q5YzI3NjkzNTlhNmY4ODQ1ZjM5NjRhYzIxOWY4N2EsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jYmQ3YmJhNWViNGI5ZmYwNDNhZjdmMWExMWVjZGVjN2U3ZDljMjc2OTM1OWE2Zjg4NDVmMzk2NGFjMjE5Zjg3YSwxMzM1Nzc2ODI2ODAwMDAwMDAsMCwxMzM1Nzg1NDM2ODIxNzAxNDYsMC4wLjAuMCwyNTgsMWI0YTVmNzItMGVjMC00Yjc1LWFjNzktNWM4ODA1N2UxNGYwLCwsYTNhNzFmYTEtYzA1NC01MDAwLTU1NzQtMDBjMGM4OWQxNjkyLGEzYTcxZmExLWMwNTQtNTAwMC01NTc0LTAwYzBjODlkMTY5MixOVHdpUkpGQlcwaThBSGYxZTNJTW93LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTE5ODksRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFVlNjFXaGFpUlpNVG5WSWcvOXhxQzc2Z0l5eEd6YzNoVndBTHFWT2t5NDNmalcxb2JmRE1DSkNXUEpNWXFmQzZScEx1U3NaWjUxR3lwMk1YcytvdWFoRWZlNm5tLzN4N0NxSGZDQ041ek5ka21mWVZYWjRvbUVmQVI2cDFWbjZ5ZnR3OGlyaTNtMmtXdWl6amo0Wnd6c2tGMmxJdlNacVFxazF1ajFkVWI3bytFeVhWQk9MaWVUTjgySnU5Rkt5NzU5YTZqL3Q4dngwS2I0OTB2UVB1d2pHNDl3ZHlmTmRwTmFNbmswdkVkTUhFb0lkQXNNSkI3dUcvVTdGaXg2OEt6RGNZdEV2enNCZkplT2NFVEhEY1JjZ01sQVpIRUg3Q1NCM |