Click to jump to signature section
Source: Yara match | File source: 3.10.pages.csv, type: HTML |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | Matcher: Found strong image similarity, brand: MICROSOFT |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | Matcher: Template: microsoft matched |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: Number of links: 0 |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: <input type="password" .../> found but no <form action="... |
Source: https://czsbl.u6t2.com/CZsbl/ | HTTP Parser: Base64 decoded: <!DOCTYPE html><html lang="en"><head> <script src="https://code.jquery.com/jquery-3.6.0.min.js"></script> <script src="https://challenges.cloudflare.com/turnstile/v0/api.js?render=explicit"></script> <meta http-equiv="X-UA-Compatible" c... |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: Title: zKNFmqCUEA does not match URL |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: Invalid link: Terms of use |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: Invalid link: Privacy & cookies |
Source: Chrome DOM: 0.5 | ML Model on OCR Text: Matched 84.5% probability on "Sourdough Transfer.pdf Info 1/1 A Secured has been shared with you. Eu received 3 for r review This message was sent to wu to protect sensitive information. Ref: RFP Update- " |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: <input type="password" .../> found |
Source: https://czsbl.u6t2.com/CZsbl/ | HTTP Parser: No favicon |
Source: https://czsbl.u6t2.com/CZsbl/ | HTTP Parser: No favicon |
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2jplv/0x4AAAAAAAXpm61N4rmLO1YU/auto/normal | HTTP Parser: No favicon |
Source: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/2jplv/0x4AAAAAAAXpm61N4rmLO1YU/auto/normal | HTTP Parser: No favicon |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: No favicon |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: No <meta name="author".. found |
Source: https://czsbl.u6t2.com/78881468714208173jgCVlmuMXURDZQSODUWSKXWGEOBASWRJAZIYADVKTKWISH?fcqsOKgpcaVhnatDlRIRChEVZhVdHTkGRWLQLRVLVSKBRCKHUARJXWMMMFTFZAUDCBAEV | HTTP Parser: No <meta name="copyright".. found |
Source: unknown | HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49775 version: TLS 1.0 |
Source: unknown | HTTPS traffic detected: 23.61.210.98:443 -> 192.168.2.5:49718 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 23.61.210.98:443 -> 192.168.2.5:49725 version: TLS 1.2 |
Source: unknown | HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49775 version: TLS 1.0 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic | HTTP traffic detected: GET /personal/tia_womenofgoodworks_org/_layouts/15/guestaccess.aspx?share=EVICmRtg-CVNtsngkb8KQlgBH2LYVfumjH5s-SFbeQjN_Q HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /personal/tia_womenofgoodworks_org/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments%2FSourdough%20Transfer%2Epdf&parent=%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments&ga=1 HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uIzU3OGMwMjcwMTMzMTg2NjI5MjVkMmExZTYyMjcxZGI0NTcyNzMxYTEzYTNmMzQyN2FiZGMxZTIzOWE1YjIzYWMsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jNTc4YzAyNzAxMzMxODY2MjkyNWQyYTFlNjIyNzFkYjQ1NzI3MzFhMTNhM2YzNDI3YWJkYzFlMjM5YTViMjNhYywxMzM1ODQ0MjI0MTAwMDAwMDAsMCwxMzM1ODUyODM0MTQ5OTM2ODQsMC4wLjAuMCwyNTgsMWJmOTlhYmUtMDkxOS00ZDFhLWE4ZDMtOGYxMTYzYmY4ZmVjLCwsNjMyYTIyYTEtZTA5Ni01MDAwLTUwMWEtNTkzZjc1NDZiM2M3LDYzMmEyMmExLWUwOTYtNTAwMC01MDFhLTU5M2Y3NTQ2YjNjNyxvSllOM2l0WC8wZUhOaXRDblg4dHh3LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTM3ODMsRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFFmRXdTZjMwWTVVNXRqQzk5NmJCQ3o0NGU4OThlSCtYdjVHZVFQTkVONmdJcjJvM0NRS2hFaUNpYmhyc1Z2blhKdERCcGdvd3I3cTdDajRHT2piY0xFNkdzUTFSanZNazdabFI2TWdjV1o3M1oxcUV4K2ljS2gyWWIyWTZaajBJa1gvcW5UampPaUF4cDIreWZ4aitsVG40Ty9RZ1prSlNPT1dPWXEvNC94dUFSekZnY0xaOGNpMUFwQ2ZKQWQwV0hicWpKcTlmbkVCTEI2VDVIdzV5NEJQcmpHdEUzRzNTREpuMnNjelVLRVFwaWhvVGEvNllxczhYbVphNUluOVordzRJelNyVVpKcUF5cVBEL1JwQ1JFMWhHM1VPUzBjRUc5ZmUyM3NJNGdQY1Jiby9FSlovV25DUkhPS3M3RnprSjlCRGhmOWorUlpkWWdPWkFKSHlWZz09PC9TUD4= |
Source: global traffic | HTTP traffic detected: GET /_layouts/15/spwebworkerproxy.ashx HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uIzU3OGMwMjcwMTMzMTg2NjI5MjVkMmExZTYyMjcxZGI0NTcyNzMxYTEzYTNmMzQyN2FiZGMxZTIzOWE1YjIzYWMsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jNTc4YzAyNzAxMzMxODY2MjkyNWQyYTFlNjIyNzFkYjQ1NzI3MzFhMTNhM2YzNDI3YWJkYzFlMjM5YTViMjNhYywxMzM1ODQ0MjI0MTAwMDAwMDAsMCwxMzM1ODUyODM0MTQ5OTM2ODQsMC4wLjAuMCwyNTgsMWJmOTlhYmUtMDkxOS00ZDFhLWE4ZDMtOGYxMTYzYmY4ZmVjLCwsNjMyYTIyYTEtZTA5Ni01MDAwLTUwMWEtNTkzZjc1NDZiM2M3LDYzMmEyMmExLWUwOTYtNTAwMC01MDFhLTU5M2Y3NTQ2YjNjNyxvSllOM2l0WC8wZUhOaXRDblg4dHh3LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTM3ODMsRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFFmRXdTZjMwWTVVNXRqQzk5NmJCQ3o0NGU4OThlSCtYdjVHZVFQTkVONmdJcjJvM0NRS2hFaUNpYmhyc1Z2blhKdERCcGdvd3I3cTdDajRHT2piY0xFNkdzUTFSanZNazdabFI2TWdjV1o3M1oxcUV4K2ljS2gyWWIyWTZaajBJa1gvcW5UampPaUF4cDIreWZ4aitsVG40Ty9RZ1prSlNPT1dPWXEvNC94dUFSekZnY0xaOGNpMUFwQ2ZKQWQwV0hicWpKcTlmbkVCTEI2VDVIdzV5NEJQcmpHdEUzRzNTREpuMnNjelVLRVFwaWhvVGEvNllxczhYbVphNUluOVordzRJelNyVVpKcUF5cVBEL1JwQ1JFMWhHM1VPUzBjRUc5ZmUyM3NJNGdQY1Jiby9FSlovV25DUkhPS3M3RnprSjlCRGhmOWorUlpkWWdPWkFKSHlWZz09PC9TUD4= |
Source: global traffic | HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic | HTTP traffic detected: GET /_layouts/15/spwebworkerproxy.ashx HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uIzU3OGMwMjcwMTMzMTg2NjI5MjVkMmExZTYyMjcxZGI0NTcyNzMxYTEzYTNmMzQyN2FiZGMxZTIzOWE1YjIzYWMsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jNTc4YzAyNzAxMzMxODY2MjkyNWQyYTFlNjIyNzFkYjQ1NzI3MzFhMTNhM2YzNDI3YWJkYzFlMjM5YTViMjNhYywxMzM1ODQ0MjI0MTAwMDAwMDAsMCwxMzM1ODUyODM0MTQ5OTM2ODQsMC4wLjAuMCwyNTgsMWJmOTlhYmUtMDkxOS00ZDFhLWE4ZDMtOGYxMTYzYmY4ZmVjLCwsNjMyYTIyYTEtZTA5Ni01MDAwLTUwMWEtNTkzZjc1NDZiM2M3LDYzMmEyMmExLWUwOTYtNTAwMC01MDFhLTU5M2Y3NTQ2YjNjNyxvSllOM2l0WC8wZUhOaXRDblg4dHh3LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTM3ODMsRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFFmRXdTZjMwWTVVNXRqQzk5NmJCQ3o0NGU4OThlSCtYdjVHZVFQTkVONmdJcjJvM0NRS2hFaUNpYmhyc1Z2blhKdERCcGdvd3I3cTdDajRHT2piY0xFNkdzUTFSanZNazdabFI2TWdjV1o3M1oxcUV4K2ljS2gyWWIyWTZaajBJa1gvcW5UampPaUF4cDIreWZ4aitsVG40Ty9RZ1prSlNPT1dPWXEvNC94dUFSekZnY0xaOGNpMUFwQ2ZKQWQwV0hicWpKcTlmbkVCTEI2VDVIdzV5NEJQcmpHdEUzRzNTREpuMnNjelVLRVFwaWhvVGEvNllxczhYbVphNUluOVordzRJelNyVVpKcUF5cVBEL1JwQ1JFMWhHM1VPUzBjRUc5ZmUyM3NJNGdQY1Jiby9FSlovV25DUkhPS3M3RnprSjlCRGhmOWorUlpkWWdPWkFKSHlWZz09PC9TUD4= |
Source: global traffic | HTTP traffic detected: GET /personal/tia_womenofgoodworks_org/_api/v2.1/graphql HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic | HTTP traffic detected: GET /_layouts/15/images/odbfavicon.ico?rev=47 HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://womenofgoodworks-my.sharepoint.com/personal/tia_womenofgoodworks_org/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments%2FSourdough%20Transfer%2Epdf&parent=%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments&ga=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uIzU3OGMwMjcwMTMzMTg2NjI5MjVkMmExZTYyMjcxZGI0NTcyNzMxYTEzYTNmMzQyN2FiZGMxZTIzOWE1YjIzYWMsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jNTc4YzAyNzAxMzMxODY2MjkyNWQyYTFlNjIyNzFkYjQ1NzI3MzFhMTNhM2YzNDI3YWJkYzFlMjM5YTViMjNhYywxMzM1ODQ0MjI0MTAwMDAwMDAsMCwxMzM1ODUyODM0MTQ5OTM2ODQsMC4wLjAuMCwyNTgsMWJmOTlhYmUtMDkxOS00ZDFhLWE4ZDMtOGYxMTYzYmY4ZmVjLCwsNjMyYTIyYTEtZTA5Ni01MDAwLTUwMWEtNTkzZjc1NDZiM2M3LDYzMmEyMmExLWUwOTYtNTAwMC01MDFhLTU5M2Y3NTQ2YjNjNyxvSllOM2l0WC8wZUhOaXRDblg4dHh3LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTM3ODMsRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFFmRXdTZjMwWTVVNXRqQzk5NmJCQ3o0NGU4OThlSCtYdjVHZVFQTkVONmdJcjJvM0NRS2hFaUNpYmhyc1Z2blhKdERCcGdvd3I3cTdDajRHT2piY0xFNkdzUTFSanZNazdabFI2TWdjV1o3M1oxcUV4K2ljS2gyWWIyWTZaajBJa1gvcW5UampPaUF4cDIreWZ4aitsVG40Ty9RZ1prSlNPT1dPWXEvNC94dUFSekZnY0xaOGNpMUFwQ2ZKQWQwV0hicWpKcTlmbkVCTEI2VDVIdzV5NEJQcmpHdEUzRzNTREpuMnNjelVLRVFwaWhvVGEvNllxczhYbVphNUluOVordzRJelNyVVpKcUF5cVBEL1JwQ1JFMWhHM1VPUzBjRUc5ZmUyM3NJNGdQY1Jiby9FSlovV25DUkhPS3M3RnprSjlCRGhmOWorUlpkWWdPWkFKSHlWZz09PC9TUD4= |
Source: global traffic | HTTP traffic detected: GET /personal/tia_womenofgoodworks_org/_api/web/GetListUsingPath(DecodedUrl=@a1)/RenderListDataAsStream?@a1=%27%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments%27&TryNewExperienceSingle=TRUE HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic | HTTP traffic detected: GET /_layouts/15/images/odbfavicon.ico?rev=47 HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48U1A+VjEzLDBoLmZ8bWVtYmVyc2hpcHx1cm4lM2FzcG8lM2Fhbm9uIzU3OGMwMjcwMTMzMTg2NjI5MjVkMmExZTYyMjcxZGI0NTcyNzMxYTEzYTNmMzQyN2FiZGMxZTIzOWE1YjIzYWMsMCMuZnxtZW1iZXJzaGlwfHVybiUzYXNwbyUzYWFub24jNTc4YzAyNzAxMzMxODY2MjkyNWQyYTFlNjIyNzFkYjQ1NzI3MzFhMTNhM2YzNDI3YWJkYzFlMjM5YTViMjNhYywxMzM1ODQ0MjI0MTAwMDAwMDAsMCwxMzM1ODUyODM0MTQ5OTM2ODQsMC4wLjAuMCwyNTgsMWJmOTlhYmUtMDkxOS00ZDFhLWE4ZDMtOGYxMTYzYmY4ZmVjLCwsNjMyYTIyYTEtZTA5Ni01MDAwLTUwMWEtNTkzZjc1NDZiM2M3LDYzMmEyMmExLWUwOTYtNTAwMC01MDFhLTU5M2Y3NTQ2YjNjNyxvSllOM2l0WC8wZUhOaXRDblg4dHh3LDAsMCwwLCwsLDI2NTA0Njc3NDM5OTk5OTk5OTksMCwsLCwsLCwwLCwxOTM3ODMsRGFEQWZqUVFtcHlPWHgyUnJLX1c1bHZvTFo0LFFmRXdTZjMwWTVVNXRqQzk5NmJCQ3o0NGU4OThlSCtYdjVHZVFQTkVONmdJcjJvM0NRS2hFaUNpYmhyc1Z2blhKdERCcGdvd3I3cTdDajRHT2piY0xFNkdzUTFSanZNazdabFI2TWdjV1o3M1oxcUV4K2ljS2gyWWIyWTZaajBJa1gvcW5UampPaUF4cDIreWZ4aitsVG40Ty9RZ1prSlNPT1dPWXEvNC94dUFSekZnY0xaOGNpMUFwQ2ZKQWQwV0hicWpKcTlmbkVCTEI2VDVIdzV5NEJQcmpHdEUzRzNTREpuMnNjelVLRVFwaWhvVGEvNllxczhYbVphNUluOVordzRJelNyVVpKcUF5cVBEL1JwQ1JFMWhHM1VPUzBjRUc5ZmUyM3NJNGdQY1Jiby9FSlovV25DUkhPS3M3RnprSjlCRGhmOWorUlpkWWdPWkFKSHlWZz09PC9TUD4= |
Source: global traffic | HTTP traffic detected: GET /personal/tia_womenofgoodworks_org/_api/web/GetListUsingPath(DecodedUrl=@a1)/RenderListDataAsStream?@a1=%27%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments%27&TryNewExperienceSingle=TRUE HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |
Source: global traffic | HTTP traffic detected: GET /_layouts/15/odspserviceworkerproxy.aspx?swManifestName=spserviceworker&debug=false&bypass=false&applications=%5B%7B%22id%22%3A%22STS%22%2C%22swPrefetchManifestName%22%3A%22stsserviceworkerprefetch%22%7D%2C%7B%22id%22%3A%22SPHome%22%7D%2C%7B%22id%22%3A%22SitePages%22%7D%2C%7B%22id%22%3A%22Embed%22%7D%2C%7B%22id%22%3A%22CreateGroup%22%7D%2C%7B%22id%22%3A%22SingleWebPart%22%7D%2C%7B%22id%22%3A%22VivaHome%22%7D%2C%7B%22id%22%3A%22BrokerLogon%22%7D%2C%7B%22id%22%3A%22Clipchamp%22%7D%2C%7B%22id%22%3A%22MeeBridge%22%7D%5D&defaultBrotli=true&authenticateFast=true&wwData=true&prefetchFilebrowserPageInTeams=true&FUIV9Flights=[-83099649,3]&spStartApplicationWebBundle=true&enableIntegrities=true HTTP/1.1Host: womenofgoodworks-my.sharepoint.comConnection: keep-aliveCache-Control: max-age=0Accept: */*Service-Worker: scriptSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://womenofgoodworks-my.sharepoint.com/personal/tia_womenofgoodworks_org/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments%2FSourdough%20Transfer%2Epdf&parent=%2Fpersonal%2Ftia%5Fwomenofgoodworks%5Forg%2FDocuments&ga=1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FedAuth=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 |