Windows Analysis Report
(No subject) (100).eml

Overview

General Information

Sample name:	(No subject) (100).eml
Analysis ID:	1545604
MD5:	bd983a9f1ce58eefcfb0ded1fc8b6451
SHA1:	414875fe5f55c60d15120ac44ee848a7691f35c6
SHA256:	9d0d9b5955ebe3372c7668e0165cdaa354cd7ccce4ca3c373a469ca6302b34e3
Infos:

Detection

Score:	6
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Detected clear text password fields (password is not hidden)

Detected suspicious crossdomain redirect

Found URL in obfuscated visual basic script code

HTML body contains low number of good links

HTML body contains password input but no form action

HTML page contains string obfuscation

HTML title does not match URL

IP address seen in connection with other malware

JA3 SSL client fingerprint seen in connection with other malware

Queries the volume information (name, serial number etc) of a device

Sigma detected: Office Autorun Keys Modification

Stores files to the Windows start menu directory

Stores large binary data to the registry

Classification

Signatures

Detected clear text password fields (password is not hidden)

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: <input type="text"... for password input
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: <input type="text"... for password input

HTML body contains low number of good links

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: Number of links: 0
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: <input type="password" .../> found but no <form action="...

HTML page contains string obfuscation

Source: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209	HTTP Parser: Found new string: script . (function() {. $('html').attr('lang', storageGetItem('landing_location_code'));. var src = getUrlVar('iframe_src');. if (src) {. src = decodeURIComponent(src);. } else {. src = '/eform/document/js/view_service_viewer.js';. }. var version = parent.eformProperties && parent.eformProperties.EFORMSIGN_VERSION \|\|. typeof eformProperties !== 'undefined' && eformProperties.EFORMSIGN_VERSION \|\|. '';. src += (src.indexOf('?') > -1 && '&' \|\| '?') + 'v=' + version;. document.write('<scr' + 'ipt type="text/javascript" src="' + src + '"></scr' + 'ipt>');. })();. if (getUrlVar('zoom')){. document.body.style.zoom = getUrlVar('zoom');. }. ..
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: Found new string: script . if (eformProperties.isCrossCert()) {. document.write('<scr'+'ipt type="text/javascript" src="/cert/CrossCert/CC_WSTD_home/unisignweb/js/unisignwebclient.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. document.write('<scr'+'ipt type="text/javascript" src="/cert/CrossCert/ccc-sample-wstd/UniSignWeb_Multi_Init_Nim.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. }else if (eformProperties.isKicaCert()){. document.write('<scr'+'ipt type="text/javascript" src="/cert/secukit-one/plugin/jquery/jquery.scrollbar.min.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. document.write('<scr'+'ipt type="text/javascript" src="/cert/secukit-one/config/config.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. document.write('<scr'+'ipt type="text/javascript" src="/cert/secukit-one/main/main.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. }else if (eformProperties.isMagicCert()){. document.write('<scr'+'ipt type="text/javascript" src="/cert/MagicLine4Web/ML4Web/js/ext/jquery.b...
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: Found new string: script . if (eformProperties.isXfreeSign()) {. document.write('<scr' + 'ipt type="text/javascript" src="/AnySign/anySign4PCInterface.js?version=' + EFORMSIGN_VERSION + '"></sc' + 'ript>');. document.write('<scr' + 'ipt type="text/javascript" src="/js/certModules/anySign' + EFORMSIGN_VERSION + '.js"></sc' + 'ript>');. }else if (eformProperties.isCrossCert()) {. document.write('<scr'+'ipt type="text/javascript" src="/cert/CrossCert/CC_WSTD_home/unisignweb/js/unisignwebclient.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. document.write('<scr'+'ipt type="text/javascript" src="/cert/CrossCert/ccc-sample-wstd/UniSignWeb_Multi_Init_Nim.js?version=' + EFORMSIGN_VERSION + '"></sc'+'ript>');. document.write('<scr'+'ipt type="text/javascript" src="/js/certModules/crossCert'+EFORMSIGN_VERSION+'.js"></sc'+'ript>');. }else if (eformProperties.isKicaCert()){. document.write('<scr'+'ipt type="text/javascript" src="/cert/secukit-one/plugin/jquery/jquery.scrollbar.min.js?version=' + EFORMSIGN_VERSION + '...
Source: https://www.eformsign.com/js/toto_reg10.2024.1010.209.js	HTTP Parser: Found new string: script /* exported totoOZViewer /../.isMobile : ..... ... .... ...*/.'use strict';..var isMobile = {. Android: function() {. return /Android/i.test(navigator.userAgent);. },. BlackBerry: function() {. return /BlackBerry/i.test(navigator.userAgent);. },. iOS: function() {. return (/iPhone\|iPad\|iPod/i.test(navigator.userAgent) \|\| (/Intel Mac/i.test(navigator.userAgent) && navigator.maxTouchPoints > 1));. },. Windows: function() {. return /IEMobile/i.test(navigator.userAgent);. },. toto: function() {. return /OZTotoframework/i.test(navigator.userAgent);. },. Safari: function() {. return !(/Chrome/i.test(navigator.userAgent)) && (/Safari/i.test(navigator.userAgent));. },. Samsung: function() {. return (/SamsungBrowser/i.test(navigator.userAgent));. },. any: function() {. return (isMobile.Android() \|\| isMobile.BlackBerry() \|\| isMobile.iOS() \|\| isMobile.Windows() \|\| isMobile.Samsung());. }.};..var totoOZViewer = null;...
Source: https://www.eformsign.com/js/googleRecaptcha10.2024.1010.209.js	HTTP Parser: Found new string: script if (EFORMSIGN_PROPERTIES.isCaptcha()){. document.write('<scr'+'ipt type="text/javascript" src="https://www.google.com/recaptcha/api.js?onload=onloadCaptcha"></sc'+'ript>');.}..

HTML title does not match URL

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: Title: does not match URL
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: Title: does not match URL

Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: Iframe src: /eform/document/view_iframe_pc.html?v=10.2024.1010.209
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: Iframe src: /eform/document/view_iframe_pc.html?v=10.2024.1010.209
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: Iframe src: /eform/document/view_iframe_pc.html?v=10.2024.1010.209

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: <input type="password" .../> found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: <input type="password" .../> found

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No favicon
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No favicon
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No favicon

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No <meta name="author".. found
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No <meta name="author".. found
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No <meta name="author".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="author".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="author".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="author".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="author".. found

Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.18:49696 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.32.76:443 -> 192.168.2.18:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.32.76:443 -> 192.168.2.18:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.18:49844 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.135:443 -> 192.168.2.18:49928 version: TLS 1.2

Detected suspicious crossdomain redirect

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: gcc02.safelinks.protection.outlook.com to https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us

Found URL in obfuscated visual basic script code

Source: chromecache_533.11.dr	Binary string: http://+vo_+:+edl+@+this.vm;}}else{if(oz.comparenocase(this.as,n2.z2e)0){lyly+://ozpfile://+file://+this.kng;}}}}returnly;};q6.hobfunction(kpe){this.abkpe.ab;this.hokpe.ho;this.uxkpe.ux;this.qzekpe.qze;this.rnkpe.rn;};q6.oxefunction(){if(this.ho/){return/+this.ab;}else{if(this.ho.length>0this.ho.charat(0)/){returnthis.ho+/+this.ab;}else{return/+this.ho+/+this.ab;}}};q6.bkofunction(){returnn2.zge(this.ho,this.ab);};q6.iobfunction(){return(this.asn2.ii3);};q6.mxifunction(){varrnthis.ux+this.oxe();rnoz.wu(rn,/,\\);rnoz.wu(rn,\\\\,\\);returnrn;};})();};q6[ozurlinfo]n2;} - obfuscation quality: 5
Source: chromecache_533.11.dr	Binary string: http://)-1x6.qzf.tolowercase().indexof(https://)-1){returntrue;}else{varzc0window.location.href.tolowercase(); - obfuscation quality: 4

IP address seen in connection with other malware

Source: Joe Sandbox View	IP Address: 108.138.7.80 108.138.7.80
Source: Joe Sandbox View	IP Address: 239.255.255.250 239.255.255.250
Source: Joe Sandbox View	IP Address: 104.47.64.28 104.47.64.28

JA3 SSL client fingerprint seen in connection with other malware

Source: Joe Sandbox View	JA3 fingerprint: 28a2c9bd18a11de089ef85a160da29e4
Source: Joe Sandbox View	JA3 fingerprint: 6271f898ce5be7dd52b0fc260d0662b3

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 20.12.23.50
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.141.63
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.141.63
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.141.63
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 52.182.141.63
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76
Source: unknown	TCP traffic detected without corresponding DNS query: 40.126.32.76

Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=DUu6FW3axBKhnFp&MD=u+RcXerc HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /?url=https%3A%2F%2Fwww.eformsign.com%2Feform%2Faccount%2Fauthenticate.html%3Fcompany_id%3D984e7db43ce0444fae0efb74514c3b34%26document_id%3D52d19f21f1ab4bd09d0e64ee33e521e1%26outsider_token_id%3D85b472e4660e4d579448da213b11e39a%26country_code%3Dus&data=05%7C02%7Cvluchessi%40santaclaraca.gov%7Cc606a46ae6ac4a919a7608dcf8f582cd%7C28ea354810694e81aa0b6e4b3271a5cb%7C0%7C0%7C638658980584046353%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=XaRiGNINzFJkHTbIdP%2BUnftzMQVz4msY4WLlVPJSI%2Bw%3D&reserved=0 HTTP/1.1Host: gcc02.safelinks.protection.outlook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/intl-tel-input-master/build/css/intlTelInput.min.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/ladda-themeless.min.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/contents10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/layout10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/account10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/popup10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/eform_theme10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/outSide10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /version/version10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/role10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /version/version10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/toto_reg10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/outSide10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery/jquery.min.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/jquery-ui.min.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/intl-tel-input-master/build/js/intlTelInput.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/intl-tel-input-master/build/js/utils10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/role10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/common10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/toto_reg10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/hacktimer/HackTimer.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/intl-tel-input-master/build/js/intlTelInput.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/main.css?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.davidjpowers.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/pc.css?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery/jquery.min.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/commonAjax10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/path_conf10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/jquery-ui.min.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/key_conf10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/intl-tel-input-master/build/js/utils10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/hacktimer/HackTimer.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/storage10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/localize/jquery.localize.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/plugins/wpforms-lite/assets/css/integrations/divi/choices.min.css?ver=10.2.0 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1727910061 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/common10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/Join-Our-Team-Collage-Feb-2024-1280x920.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/djpa_logo_fine.png HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/spin.dummy10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/ladda.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/key_conf10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/path_conf10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/ladda.jquery.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/commonAjax10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/core/admin/fonts/modules/base/modules.woff HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://davidjpowers.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://davidjpowers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.6.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/djpa_logo_fine.png HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.1.1 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/polyfill/polyfill10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/storage10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/mobx/mobx.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/Join-Our-Team-Collage-Feb-2024-1280x920.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/localize/jquery.localize.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/eformDialogue10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/js/open-sms-auth-popup10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/spin.dummy10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.1.1 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/ladda.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/js/authenticate10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/googleRecaptcha10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/09/career_slider_bgtest.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://davidjpowers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/ladda/ladda.jquery.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/header-bg.png HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://davidjpowers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/09/career_slider_bgtest.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/header-bg.png HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.6.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/mobx/mobx.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/js/open-sms-auth-popup10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/googleRecaptcha10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.6.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2021/08/Aep-Video-2021-Compressed.m4v?_=1 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.24.2 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/css/dist/block-library/style.min.css?ver=6.6.2 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.6.2 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /eform/account/js/authenticate10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/NotoSans-Regular.woff2 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.eformsign.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.eformsign.com/css/contents10.2024.1010.209.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/polyfill/polyfill10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.6.2 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /js/eformDialogue10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=onloadCaptcha HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2019/09/gateway_crossings_gallery-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2019/01/Pear_ave_g1-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2021/08/Sunnyvale-DTSP-1-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2020/10/East-Whisman-Precise-Plan-Raimi-and-Associates-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://davidjpowers.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/landing_BG-e1642201771565.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://davidjpowers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/jquery/jquery.scrollbar.min.js?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=onloadCaptcha HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2019/01/Pear_ave_g1-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2021/08/Sunnyvale-DTSP-1-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/landing_BG.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://davidjpowers.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2021/08/Aep-Video-2021-Compressed.m4v?_=1 HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413Range: bytes=48584-14611744If-Range: Mon, 12 Jun 2023 17:20:38 GMT
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2020/10/East-Whisman-Precise-Plan-Raimi-and-Associates-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2019/09/gateway_crossings_gallery-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/config/config.js?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/landing_BG-e1642201771565.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/landing_BG.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=DUu6FW3axBKhnFp&MD=u+RcXerc HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/jquery/jquery.scrollbar.min.js?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/main.js?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/config/config.js?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/02/djp_favi1.png HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/02/djp_favi1.png HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2018/12/vallco_1G1-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2017/03/international_swim_center_gallery-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2016/01/oakland_res_development_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/07/carolanAve_gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2017/03/international_swim_center_gallery-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2016/01/oakland_res_development_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2018/12/vallco_1G1-510x382.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/07/carolanAve_gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/main.js?version=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/locales/eform-en10.2024.1010.209.json HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LeioAAVAAAAAJT8du4WteotCmuJOF9CZxaieIE8&co=aHR0cHM6Ly93d3cuZWZvcm1zaWduLmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=normal&cb=cvs4lj3gu612 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /demotest/sectigo_ci.png HTTP/1.1Host: tech.signgate.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /demotest/sectigo_ci.png HTTP/1.1Host: tech.signgate.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/locales/eform-en10.2024.1010.209.json HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/locales/error-en10.2024.1010.209.json HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/javascript, /; q=0.01X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeioAAVAAAAAJT8du4WteotCmuJOF9CZxaieIE8&co=aHR0cHM6Ly93d3cuZWZvcm1zaWduLmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=normal&cb=cvs4lj3gu612Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/b50FiC3GJqhOPkFyj4HYcajJNbVzXJ6nVw0XfMkHZ-k.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeioAAVAAAAAJT8du4WteotCmuJOF9CZxaieIE8&co=aHR0cHM6Ly93d3cuZWZvcm1zaWduLmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=normal&cb=cvs4lj3gu612Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/locales/error-en10.2024.1010.209.json HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/layout/header_logo10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/favicon.ico HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/b50FiC3GJqhOPkFyj4HYcajJNbVzXJ6nVw0XfMkHZ-k.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&k=6LeioAAVAAAAAJT8du4WteotCmuJOF9CZxaieIE8 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/layout/header_logo10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=us HTTP/1.1Host: www.eformsign.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "7350bef6e20fc5d547cdf040cab8fcd9"If-Modified-Since: Wed, 30 Oct 2024 10:13:08 GMT
Source: global traffic	HTTP traffic detected: GET /images/favicon.ico HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/outSide10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "1dc465c5bcde58a5bac8d038dea44078"If-Modified-Since: Wed, 30 Oct 2024 10:13:51 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /version/version10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d7c86e7caf5197b437e2ad8d5dab42aa"If-Modified-Since: Wed, 30 Oct 2024 10:14:44 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/role10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "f2826ad8218b3d7dcb8952e6a2a63963"If-Modified-Since: Wed, 30 Oct 2024 10:13:51 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/NotoSans-Regular.woff2 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.eformsign.comIf-None-Match: "4e2910267e88d635a5b26172ee62786a"If-Modified-Since: Wed, 30 Oct 2024 10:13:24 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.eformsign.com/css/contents10.2024.1010.209.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/webnpki.js?_=1730307442699 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, /; q=0.01X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LeioAAVAAAAAJT8du4WteotCmuJOF9CZxaieIE8&co=aHR0cHM6Ly93d3cuZWZvcm1zaWduLmNvbTo0NDM.&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=normal&cb=g1wih916y1v6 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/external_info?external_type=outsider&token_id=85b472e4660e4d579448da213b11e39a&viewFlag=false&lang=en&_=1730307442697 HTTP/1.1Host: global-service.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /Content-Type: application/json; charset=UTF-8sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.eformsign.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/brand?image_type=logo&lang=en&_=1730307442698 HTTP/1.1Host: global-service.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /Content-Type: application/json; charset=UTF-8sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.eformsign.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&k=6LeioAAVAAAAAJT8du4WteotCmuJOF9CZxaieIE8 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/logo/eformsign.svg HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/brand?image_type=logo&lang=en&_=1730307442698 HTTP/1.1Host: global-service.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/external_info?external_type=outsider&token_id=85b472e4660e4d579448da213b11e39a&viewFlag=false&lang=en&_=1730307442697 HTTP/1.1Host: global-service.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/auth_outsider_token/85b472e4660e4d579448da213b11e39a?lang=en HTTP/1.1Host: global-service.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=us HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/webnpki.js?_=1730307442699 HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/pc.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/forge.ca1d044fb16a7fe6567d.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/account/authenticate.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/logo/eformsign.svg HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=onloadCaptchaCallback HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/tippy.js/themes/light-border.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/jquery-ui.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/layout_responsive10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/common10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=onloadCaptchaCallback HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIprbJAQipncoBCOvUygEI/IPLAQiSocsBCIWgzQEI6cXNAQi5ys0BCInTzQEYwcvMARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/viewService10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/redirect10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery/jquery.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /version/version10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d7c86e7caf5197b437e2ad8d5dab42aa"If-Modified-Since: Wed, 30 Oct 2024 10:14:44 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/role10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "f2826ad8218b3d7dcb8952e6a2a63963"If-Modified-Since: Wed, 30 Oct 2024 10:13:51 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/outSide10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "1dc465c5bcde58a5bac8d038dea44078"If-Modified-Since: Wed, 30 Oct 2024 10:13:51 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/07/swhisman_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/04/pierce-reed-gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/02/north_bayshore1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/moment/moment-with-locales.min.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/01/801_ecr.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /client/config?cc=CH&setlang=en-CH HTTP/1.1X-Search-CortanaAvailableCapabilities: NoneX-Search-SafeSearch: ModerateAccept-Encoding: gzip, deflateX-Device-MachineId: {92C86F7C-DB2B-4F6A-95AD-98B4A2AE008A}X-UserAgeClass: UnknownX-BM-Market: CHX-BM-DateFormat: dd/MM/yyyyX-Device-OSSKU: 48X-BM-DTZ: -240X-DeviceID: 01000A410900B03DX-BM-WindowsFlights: FX:119E26AD,FX:11C0E96C,FX:11C6E5C2,FX:11C7EB6A,FX:11C9408A,FX:11C940DB,FX:11CB9A9F,FX:11CB9AC1,FX:11CC111C,FX:11D5BFCD,FX:11DF5B12,FX:11DF5B75,FX:1240931B,FX:124117A5,FX:124B38D0,FX:127FC878,FX:1283FFE8,FX:12840617,FX:128979F9,FX:128EBD7E,FX:129135BB,FX:129E053F,FX:12A74DB5,FX:12AB734D,FX:12B8450E,FX:12BD6E73,FX:12C3331B,FX:12C7D66E,FX:12CDE644,FX:12D1574C,FX:12D281C4,FX:12E8312D,FX:12E85C75X-Search-TimeZone: Bias=300; DaylightBias=-60; TimeZoneKeyName=Eastern Standard TimeX-BM-Theme: 000000;0078d7X-Search-RPSToken: t%3DEwDoAkR8BAAUcvamItSE/vUHpyZRp3BeyOJPQDsAAapwNZHkFgGZm4G6ewHIFQggJzhtA7hFd2DpOGmEqIarJ/jYro6f/L2jvZn7Kj4uTcvx7pIsNWQupQx8iFSMU7hCog0KGLYtdpSs%2BG6esU4riLAHUpLHivusFTpHiyH0U%2BhQhp4wrG7I/eCohU6TP553fQ3wpkrQ5cPRFuJUoYKc8971tIMs7gqkfvtvevTTcnEKJ82982yetdTDEuItEmERq%2BGo7UM5HD6IEFQo51aQCn5JKpHu7qUHR/7ZXtUAW8%2BvIlwY1xToVVGNzPdFdw27DpGAUWg02wjJ0i8ZTBGwRj6pCXnZnDU7ck7PjVV5s/jhiKtIhN7J8caZ%2BbUkbIEQZgAAEFeDNG9nUrsTqKwpslowTC2wAV9j2FnXRWaGfMjMEAAmqGuazRZM5RdppOWIkUi8rOf6PPdgZknekRdeZaIroxlHy8ojh7M1v66ArsmcnxQfhrt80FmGZVwaYnO/jPlXD4%2Ba6XV7yA74hB2xnimf8w8kiv31WuWZrGaB/ifuJYaZbQBOoZ/IKr0GsuRkndZlNgFH/cLqW6aT%2BZ%2BBKllX1nBBevUtSlxEZ0r76RHfVgQStdGAucU1OnsH6r90fYC6pXl1cacYE3h75l6ySwEAynuUG5LHBXh1s1Z%2BdHnnlw23ETbXCz9357aGrwg7S9uVuwj5eISBLyZ6Vr2v1QBXtjTE0RakDjbxtDeRST5wtZlsAILXR9qLl4NF1DNqzpiVhDCLcQUjNdmox8sfteeelZ9PU/u/lje6uQndx5isHbuHqTQgCgHTNCnUh/jV6ud6uTLbXmQn6z%2B3clHW5nlUiZYBUNlxV6jvem30FxKGuvjFvPHLFN%2B4vpMrjpfv37pehqEc/p7EwoxmQtblQMjv69/sG9AfpqBH4So6W%2BJZHFvZjB0WzL539Ja0C5OCuPQlgYLcKOaXw0UVjx3B7pClURr%2B5toB%26p%3DX-Agent-DeviceId: 01000A410900B03DX-BM-CBT: 1730307450User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Cortana 1.14.7.19041; 10.0.0.0.19045.2006) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045X-Device-isOptin: falseAccept-language: en-GB, en, en-USX-Device-Touch: falseX-Device-ClientSession: 43CE258248DC45BBB736A2C5B6695E63X-Search-AppId: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUIHost: www.bing.comConnection: Keep-AliveCookie: SRCHUID=V=2&GUID=B4BB39E5F80E411D94C438C0FA7ACF94&dmnchg=1; SRCHD=AF=NOFORM; SRCHUSR=DOB=20240207; SRCHHPGUSR=SRCHLANG=de&LUT=1707317051026&IPMH=6b344233&IPMID=1707317270835&HV=1707317277; ANON=A=680C1B1A649CBD64DD40EBFCFFFFFFFF; MUID=BC76BB0020D345C1A049A4820CB4C03C; MUIDB=BC76BB0020D345C1A049A4820CB4C03C
Source: global traffic	HTTP traffic detected: GET /plugins/polyfill/polyfill.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/back10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/eformsign_api10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/04/pierce-reed-gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /js/redirect10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform_plugins/signature_popup10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/02/north_bayshore1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/07/swhisman_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2015/01/801_ecr.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/initial.js/initial10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery/jquery.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/qrcodejs/qrcode.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/back10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/eformsign_api10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/moment/moment-with-locales.min.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform_plugins/signature_popup10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform_plugins/signature_popup10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/popper.js/popper.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/tippy.js/umd/index.all.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/polyfill/polyfill.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/zxing.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/initial.js/initial10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/OZRecognition10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/qrcodejs/qrcode.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/opencv10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/jquery-ui.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/malihu-custom-scrollbar-plugin/jquery.mCustomScrollbar.concat.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform_plugins/signature_popup10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/popper.js/popper.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/i18n/jquery-ui-i18n.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/js/auth_result_util10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/apply-parallel-workflow10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/apply-inperson-workflow10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/tippy.js/umd/index.all.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/OZRecognition10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/zxing.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/apply-parallel-workflow10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/apply-inperson-workflow10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/external_view_service10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/locale_info10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/certModules/itSignature10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/account/js/auth_result_util10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/view_service_common10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/i18n/jquery-ui-i18n.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/view_service_popup10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/jquery-ui/jquery-ui.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/OZSignLib10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/locale_info10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/viewmodel/request-next-step10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/certModules/itSignature10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/view_service_common10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/external_view_service10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/12/steven_creek_trail_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/12/morgan_hill_general_plan_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/12/diridon_station_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/1720-ecr-gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/one-s-market-gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/opencv10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/viewmodel/request-next-step10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/OZSignLib10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/view_service_popup10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/certModules/kicaCert10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/1720-ecr-gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/11/one-s-market-gallery.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/12/morgan_hill_general_plan_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/12/diridon_station_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2014/12/steven_creek_trail_gallery_1.jpg HTTP/1.1Host: davidjpowers.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_DBH485HZ4L=GS1.1.1730307412.1.0.1730307412.0.0.0; _ga=GA1.1.1137447063.1730307413
Source: global traffic	HTTP traffic detected: GET /eform/document/common/view_service_footer10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/common/view_service_common_popup10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/certModules/kicaCert10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/common/view_service_popup10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/common/view_service_footer10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/common/view_service_common_popup10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/common/view_service_popup10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/auth_outsider_token/85b472e4660e4d579448da213b11e39a/check_access?brand_type=logo&viewFlag=false&term_type=non_member&viewFlag=false&lang=en&_=1730307455326 HTTP/1.1Host: global-service.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /Content-Type: application/json; charset=UTF-8sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.eformsign.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/auth_outsider_token/85b472e4660e4d579448da213b11e39a/check_access?brand_type=logo&viewFlag=false&term_type=non_member&viewFlag=false&lang=en&_=1730307455326 HTTP/1.1Host: global-service.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform_plugins/signature_popup_seal_scan10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/view_iframe_pc.html?v=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/webnpki.js?_=1730307455327 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, /; q=0.01X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/company_privacy_polish/get_privacy_polish_setting?lang=en&_=1730307455328 HTTP/1.1Host: global-service.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /Content-Type: application/json; charset=UTF-8sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.eformsign.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.eformsign.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/company_privacy_polish/get_privacy_polish_setting?lang=en&_=1730307455328 HTTP/1.1Host: global-service.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform_plugins/signature_popup_seal_scan10.2024.1010.209.html HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/NotoSans-Medium.woff2 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.eformsign.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.eformsign.com/css/contents10.2024.1010.209.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/html5/css/web/jquery-ui.min10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/ui.dynatree10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/webformdesigner/css/fonts10.2024.1010.209.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/webnpki.js?_=1730307455327 HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/pc.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=70329-70329If-Range: "121b2acefde37cf159f943befd3ec7d6"
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/html5/js/web/jquery.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/main/pc.css HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=70329-104554If-Range: "121b2acefde37cf159f943befd3ec7d6"
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/html5/js/web/jquery-ui.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/jquery.dynatree10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/OZJSViewer10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/ozinoffice10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /version/version10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "d7c86e7caf5197b437e2ad8d5dab42aa"If-Modified-Since: Wed, 30 Oct 2024 10:14:44 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/html5/js/web/jquery.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/role10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "f2826ad8218b3d7dcb8952e6a2a63963"If-Modified-Since: Wed, 30 Oct 2024 10:13:51 GMTsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/common/img_stamp2.png HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/ozinoffice10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/mobile/img_scan_en.png HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/img/stamp_x.png HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/html5/js/web/jquery-ui.min10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/img/stamp_o.png HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/common/img_stamp2.png HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/forge.ca1d044fb16a7fe6567d.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/external_view_service.html?company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&outsider_token_id=85b472e4660e4d579448da213b11e39a&isMobileAuth=false&country_code=usAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/jquery.dynatree10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/img/stamp_x.png HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/img/stamp_o.png HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/mobile/img_scan_en.png HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cert/secukit-one/plugin/html5/forge.ca1d044fb16a7fe6567d.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/common/ic_check_wh.png HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.eformsign.com/css/contents10.2024.1010.209.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/common/ic_check_wh.png HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/ozhtml5/OZJSViewer10.2024.1010.209.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/pdf-3.1.81.js/build/pdf.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/pdf-3.1.81.js/build/pdf.worker.js HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/outsider_open?outsider_token_id=85b472e4660e4d579448da213b11e39a&company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&lang=en HTTP/1.1Host: global-service.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/pdf-3.1.81.js/build/pdf.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/pdf-3.1.81.js/build/pdf.worker.js HTTP/1.1Host: www.eformsign.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eform/document/js/view_service_viewer.js?v=10.2024.1010.209 HTTP/1.1Host: www.eformsign.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.eformsign.com/eform/document/view_iframe_pc.html?v=10.2024.1010.209Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.davidjpowers.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: chromecache_443.11.dr	String found in binary or memory: <h2 class="et_pb_slide_title"><a href="https://www.linkedin.com/company/david-j-powers-&-associates-inc-">AEP 2019 Lifetime Achievement Award</a></h2><div class="et_pb_slide_content"><p>We are so proud and pleased to announce that DJP&A equals www.linkedin.com (Linkedin)
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: return b}lD.F="internal.enableAutoEventOnTimer";var Yb=ka(["data-gtm-yt-inspected-"]),nD=["www.youtube.com","www.youtube-nocookie.com"],oD,pD=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: gcc02.safelinks.protection.outlook.com
Source: global traffic	DNS traffic detected: DNS query: www.eformsign.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: www.davidjpowers.com
Source: global traffic	DNS traffic detected: DNS query: davidjpowers.com
Source: global traffic	DNS traffic detected: DNS query: tech.signgate.com
Source: global traffic	DNS traffic detected: DNS query: global-service.eformsign.com

Source: unknown

HTTP traffic detected: POST /RST2.srf HTTP/1.0Connection: Keep-AliveContent-Type: application/soap+xmlAccept: */*User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68})Content-Length: 3592Host: login.live.com

Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: http://#country_code#-service.eformsign.com
Source: chromecache_443.11.dr	String found in binary or memory: http://daneden.me/animate
Source: chromecache_422.11.dr	String found in binary or memory: http://download.smartcert.kr
Source: chromecache_259.11.dr, chromecache_481.11.dr, chromecache_393.11.dr, chromecache_372.11.dr	String found in binary or memory: http://hakim.se
Source: chromecache_361.11.dr	String found in binary or memory: http://id.wikisource.org/wiki/Pedoman_Umum_Ejaan_Bahasa_Indonesia_yang_Disempurnakan
Source: chromecache_340.11.dr, chromecache_500.11.dr, chromecache_279.11.dr	String found in binary or memory: http://j.hn/)
Source: chromecache_308.11.dr, chromecache_507.11.dr, chromecache_319.11.dr, chromecache_524.11.dr, chromecache_313.11.dr, chromecache_257.11.dr, chromecache_479.11.dr, chromecache_468.11.dr, chromecache_429.11.dr, chromecache_342.11.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_398.11.dr, chromecache_445.11.dr	String found in binary or memory: http://jscompress.com/
Source: chromecache_259.11.dr, chromecache_481.11.dr, chromecache_393.11.dr, chromecache_372.11.dr	String found in binary or memory: http://lab.hakim.se/ladda
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: http://local.eformsign.com/Service
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: http://local.eformsign.com/Smart-eform-daemon
Source: chromecache_361.11.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/add-inverted-param/
Source: chromecache_361.11.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/define-locale/
Source: chromecache_361.11.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/dst-shifted/
Source: chromecache_361.11.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/js-date/
Source: chromecache_361.11.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/min-max/
Source: chromecache_361.11.dr	String found in binary or memory: http://momentjs.com/guides/#/warnings/zone/
Source: chromecache_361.11.dr	String found in binary or memory: http://new.gramota.ru/spravka/buro/search-answer?s=242637
Source: chromecache_361.11.dr	String found in binary or memory: http://new.gramota.ru/spravka/rules/139-prop
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: http://olkflt.edog.officeapps.live.com/olkflt/outlookflighting.svc/api/glides
Source: chromecache_443.11.dr, chromecache_545.11.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_404.11.dr	String found in binary or memory: http://opensource.org/licenses/MIT).
Source: chromecache_361.11.dr	String found in binary or memory: http://praleska.pro/
Source: chromecache_517.11.dr, chromecache_315.11.dr, chromecache_433.11.dr	String found in binary or memory: http://rock.mit-license.org
Source: chromecache_458.11.dr, chromecache_453.11.dr	String found in binary or memory: http://rootca.or.kr/kor/hsm/hsm03.jsp
Source: chromecache_361.11.dr	String found in binary or memory: http://stackoverflow.com/questions/181348/instantiating-a-javascript-object-by-calling-prototype-con
Source: chromecache_361.11.dr	String found in binary or memory: http://stackoverflow.com/questions/3561493/is-there-a-regexp-escape-function-in-javascript
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: http://weather.service.msn.com/data.aspx
Source: chromecache_385.11.dr, chromecache_414.11.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_443.11.dr	String found in binary or memory: http://www.elegantthemes.com
Source: chromecache_443.11.dr	String found in binary or memory: http://www.elegantthemes.com/gallery/divi/
Source: chromecache_443.11.dr	String found in binary or memory: http://www.gnu.org/licenses/gpl-2.0.html
Source: chromecache_340.11.dr, chromecache_500.11.dr, chromecache_279.11.dr	String found in binary or memory: http://www.mediaelementjs.com/
Source: chromecache_422.11.dr	String found in binary or memory: http://www.ubikey.co.kr/infovine/download.html
Source: chromecache_361.11.dr	String found in binary or memory: http://www.unicode.org/cldr/charts/28/summary/ru.html#1753
Source: chromecache_426.11.dr	String found in binary or memory: http://www.videolan.org/x264.html
Source: chromecache_291.11.dr, chromecache_336.11.dr, chromecache_355.11.dr, chromecache_451.11.dr	String found in binary or memory: https://#country_code#-converter.eformsign.com
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://#country_code#-daemon.eformsign.com
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://#country_code#-daemon.eformsign.com/
Source: chromecache_291.11.dr, chromecache_336.11.dr, chromecache_355.11.dr, chromecache_451.11.dr	String found in binary or memory: https://#country_code#-service.eformsign.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://addinsinstallation.store.office.com/appinstall/preinstalled
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://addinslicensing.store.office.com/orgid/apps/remove
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: ~WRS{CD018A04-F0DF-441A-A7ED-EA4CDF51E372}.tmp.0.dr	String found in binary or memory: https://aka.ms/LearnAboutSenderIdentification
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.aadrm.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.aadrm.com/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.cortana.ai
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.diagnostics.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.diagnosticssdf.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.diagnosticssdf.office.com/v2/feedback
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.diagnosticssdf.office.com/v2/file
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://api.ipapi.com/check?access_key=2d1d9aea86dfba0b6f1edd99f57a4c49
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://api.ipgeolocation.io/ipgeo?apiKey=48b3be5801784ba9bcf224a1c3435ded
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.microsoftstream.com/api/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.office.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.onedrive.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.powerbi.com/v1.0/myorg/datasets
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.powerbi.com/v1.0/myorg/groups
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.powerbi.com/v1.0/myorg/imports
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://api.scheduler.
Source: chromecache_443.11.dr	String found in binary or memory: https://api.w.org/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://apis.live.net/v5.0/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://arc.msn.com/v4/api/selection
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://augloop.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://augloop.office.com/v2
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://autodiscover-s.outlook.com/autodiscover/autodiscover.xml
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://cdn.entity.
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://client-office365-tas.msedge.net/ab
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://clients.config.office.net/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://clients.config.office.net/user/v1.0/android/policies
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://clients.config.office.net/user/v1.0/ios
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://clients.config.office.net/user/v1.0/mac
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://clients.config.office.net/user/v1.0/tenantassociationkey
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://config.edge.skype.com/config/v1/Office
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://config.edge.skype.com/config/v2/Office
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://cortana.ai
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://cortana.ai/api
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://cr.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://d.docs.live.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dataservice.o365filtering.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dataservice.o365filtering.com/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dataservice.o365filtering.com/PolicySync/PolicySync.svc/SyncFile
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dataservice.protection.outlook.com/PolicySync/PolicySync.svc/SyncFile
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/?page_id=42/#history
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/?page_id=42/#mission
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/?page_id=42/#team
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/about/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/career-opportunities/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/comments/feed/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/commercial/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/contact/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/feed/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/home/feed/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/infrastructure/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/other-projects/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/parks-recreation/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/planning/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/1720-el-camino-real/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/2019/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/2729/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/3053/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/3314/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/801-el-camino-real-west-mixed-use/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/carolan-avenue-rollins-road-residential-project/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/communications-hill/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/coyote-creek-trail/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/diridon-station-master-plan/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/envision-san-jose-2040-general-plan/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/foothill-livework-project/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/guadalupe-river-trails/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/international-swim-center-expansion/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/main-street-cupertino/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/morgan-hill-downtown-specific-plan/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/north-bayshore-precise-plan/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/one-south-market/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/pear-avenue-mixed-use-development/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/post-san-pedro-tower/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/santa-clara-2010-2035-general-plan-update/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/south-whisman-precise-plan/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/stevens-creek-trail/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/sunnyvale-downtown-specific-plan/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/project/the-pierce/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/projects/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/public-facilities/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/residential/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/services-2/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/transportation/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1727910061
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.m
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/plugins/wpforms-lite/assets/css/integrations/divi/choices.min.cs
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.2
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jq
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sa
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.24.2
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/10/coyote_creek.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/10/guadalupe_river_trail_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/10/main_st_cupertino.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/10/santa_clara_gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/10/sj_city_gallery1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/1720-ecr-gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/aep_award_pooja_john-300x239.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/aep_award_pooja_john.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/comm-hill-gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/djpa_logo_fine.png
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/foothill_livework_aq_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/header-bg.png)
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/landing_BG-e1642201771565.jpg)
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/landing_BG.jpg);background-color:#ffffff
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/landing_BG.jpg);background-color:RGBA(0
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/one-s-market-gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/11/post_san_pedro_sq_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/12/diridon_station_gallery_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/12/morgan_hill_general_plan_gallery_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2014/12/steven_creek_trail_gallery_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/01/801_ecr.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/02/djp_favi1.png
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/02/north_bayshore1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/04/pierce-reed-gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/07/carolanAve_gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/07/swhisman_gallery_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2015/09/career_slider_bgtest.jpg);background-color:RGBA(
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2016/01/oakland_res_development_1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2017/03/international_swim_center_gallery-510x382.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2017/03/international_swim_center_gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2018/12/vallco_1G1-510x382.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2018/12/vallco_1G1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2019/01/Pear_ave_g1-510x382.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2019/01/Pear_ave_g1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2019/01/john_h_award-300x273.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2019/01/john_h_award.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2019/09/gateway_crossings_gallery-510x382.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2019/09/gateway_crossings_gallery.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2020/10/East-Whisman-Precise-Plan-Raimi-and-Associates-5
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2020/10/East-Whisman-Precise-Plan-Raimi-and-Associates.j
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2021/08/Aep-Video-2021-Compressed.m4v
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2021/08/Aep-Video-2021-Compressed.m4v?_=1
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2021/08/Sunnyvale-DTSP-1-510x382.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2021/08/Sunnyvale-DTSP-1.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/02/Join-Our-Team-Collage-Feb-2024-1280x920.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/02/Join-Our-Team-Collage-Feb-2024-480x345.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/02/Join-Our-Team-Collage-Feb-2024-980x704.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/02/Join-Our-Team-Collage-Feb-2024-scaled.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/05/AEP-2024-Award-Chandelier-1280x1427.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/05/AEP-2024-Award-Chandelier-480x535.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/05/AEP-2024-Award-Chandelier-980x1093.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/05/AEP-2024-Award-Chandelier-scaled.jpg
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/10/SJ-Downtown-Strategy-2040-Award-1-480x954.png
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/10/SJ-Downtown-Strategy-2040-Award-1.png
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/10/SJ-Downtown-Strategy-2040-Award-480x954.png
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-content/uploads/2024/10/SJ-Downtown-Strategy-2040-Award.png
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/css/dist/block-library/style.min.css?ver=6.6.2
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.6.2
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.6.2
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.6.2
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-json/
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fdavidjpowers.com%2F
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fdavidjpowers.com%2F&format=
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/wp-json/wp/v2/pages/39
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/xmlrpc.php
Source: chromecache_443.11.dr	String found in binary or memory: https://davidjpowers.com/xmlrpc.php?rsd
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dev.cortana.ai
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dev.virtualearth.net/REST/V1/GeospatialEndpoint/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://dev0-api.acompli.net/autodetect
Source: chromecache_443.11.dr	String found in binary or memory: https://developers.google.com/analytics/devguides/collection/analyticsjs/
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://directory.services.
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ecs.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ecs.office.com/config/v2/Office
Source: chromecache_277.11.dr	String found in binary or memory: https://eformsign.channel.io/lounge
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/Refresh/v1
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/Resolve/v1
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/Search/v1
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/StockHistory/v1
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/ipcheck/v1
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/v2.1601652342626
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/Metadata/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/Metadata/metadata.json
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/view/desktop/main.cshtml
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/view/web/main.cshtml
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://entitlement.diagnostics.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://entitlement.diagnosticssdf.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://excel.uservoice.com/forums/304936-excel-for-mobile-devices-tablets-phones-android
Source: chromecache_311.11.dr, chromecache_504.11.dr, chromecache_339.11.dr	String found in binary or memory: https://feross.org
Source: (No subject) (100).eml	String found in binary or memory: https://gcc02.safelinks.protection.outlook.com/?url=3Dhttps%3A%2=
Source: (No subject) (100).eml	String found in binary or memory: https://gcc02.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fwww=
Source: ~WRS{CD018A04-F0DF-441A-A7ED-EA4CDF51E372}.tmp.0.dr	String found in binary or memory: https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.eformsign.com%2Feform%2Faccoun
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/B0k0
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/BYK
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/DevelopmentIL
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ElFadiliY
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/JanisE
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/MadMG
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/Oire
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/TalAter
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/Viktorminator
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/abdelsaid
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/adambrunner
Source: chromecache_311.11.dr, chromecache_504.11.dr, chromecache_339.11.dr	String found in binary or memory: https://github.com/agoldis/webpack-require-from#troubleshooting
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/aliem
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/amaranthrose
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/andela-batolagbe
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/andrewhood125
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/armendarabyan
Source: chromecache_311.11.dr, chromecache_504.11.dr, chromecache_339.11.dr	String found in binary or memory: https://github.com/ashtuchkin/iconv-lite/wiki/Use-Buffers-when-decoding
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/avaly
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/bangnk
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/baryon
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ben-lin
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/bleadof
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/bmarkovic
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/caio-ribeiro-pereira
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/chriscartlidge
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/chrisgedrim
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/chyngyz
Source: chromecache_395.11.dr	String found in binary or memory: https://github.com/coderifous/jquery-localize
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/colindean
Source: chromecache_304.11.dr, chromecache_330.11.dr	String found in binary or memory: https://github.com/cure53/DOMPurify
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/demidov91
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/dordille/moment-isoduration/blob/master/moment.isoduration.js
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ebraminio
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/eillarra
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/erhangundogan
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/evoL
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/fadsel
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/flakerimi
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/floydpink
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/forabi
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/frontyard
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/gaspard
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/gholadr
Source: chromecache_398.11.dr, chromecache_445.11.dr	String found in binary or memory: https://github.com/gromo/jquery.scrollbar/
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/gurdiga
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/hagmandan
Source: chromecache_304.11.dr, chromecache_330.11.dr	String found in binary or memory: https://github.com/hakimel/Ladda
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/harpreetkhalsagtbit
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/hehachris
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/hinrik
Source: chromecache_455.11.dr, chromecache_523.11.dr, chromecache_514.11.dr	String found in binary or memory: https://github.com/hodgef)
Source: chromecache_455.11.dr, chromecache_523.11.dr, chromecache_514.11.dr	String found in binary or memory: https://github.com/hodgef/simple-keyboard
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/irakli-janiashvili
Source: chromecache_488.11.dr, chromecache_347.11.dr	String found in binary or memory: https://github.com/jackocnr/intl-tel-input.git
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jalex79
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jarcoal
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jawish
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jbleduigou
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jfroffice
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/johnideal
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jonashdown
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jonbca
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/jorisroling
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/joshbrooks
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/juanghurtado
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/julionc
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/k2s
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kalehv
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/karamell
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kaushikgandhi
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kcthota
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kikoanis
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kraz
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kruyvanna
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kwisatz
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/kyungw00k
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/lantip
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/lluchs
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/lukemcgregor
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/madhenry
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/marobo
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mayanksinghal
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mechuwind
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mehiel
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/middagj
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mik01aj
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/milan-j
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/miodragnikac
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mirontoli
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mmozuras
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/moment/moment/issues/1423
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/moment/moment/issues/2166
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/moment/moment/issues/2978
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/moment/moment/pull/1871
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mrbase
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/muminoff
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/mweimerskirch
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/naderio
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/nicolaidavies
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/nostalgiaz
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/noureddineme
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/nurlan
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/oerd
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/petrbela
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ragnar123
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ragulka
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/rexxars
Source: chromecache_281.11.dr, chromecache_486.11.dr	String found in binary or memory: https://github.com/rnmp/salvattore
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/robgallen
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/robin0van0der0v
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ryangreaves
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ryanhart2
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/sampathsris
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/sedovsek
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/sigurdga
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/sirn
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/skakri
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/skfd
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/socketpair
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/suupic
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/suvash
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/thanyawzinmin
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/tk120404
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/tomer
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/topchiyev
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/tyok
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/ulmus
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/vajradog
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/vnathalye
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/weldan
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/wernerm
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/xsoh
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/zemlanin
Source: chromecache_361.11.dr	String found in binary or memory: https://github.com/zenozeng
Source: chromecache_458.11.dr, chromecache_517.11.dr, chromecache_315.11.dr, chromecache_453.11.dr, chromecache_433.11.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_517.11.dr, chromecache_315.11.dr, chromecache_433.11.dr	String found in binary or memory: https://github.com/zloirock/core-js#missing-polyfills
Source: chromecache_458.11.dr, chromecache_453.11.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.25.5/LICENSE
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://globaldisco.crm.dynamics.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://graph.ppe.windows.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://graph.ppe.windows.net/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://graph.windows.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://graph.windows.net/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/api/telemetry
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/browse?cp=remix3d
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/browse?secureurl=1
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=icons
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=stockimages
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=stockvideos
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsofticon?
Source: chromecache_291.11.dr, chromecache_336.11.dr, chromecache_355.11.dr, chromecache_451.11.dr	String found in binary or memory: https://hwp-converter.eformsign.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://incidents.diagnostics.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://incidents.diagnosticssdf.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/images/hosted?host=office&adlt=strict&hostType=Immersive
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Bing
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=ClipArt
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Facebook
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Flickr
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=OneDrive
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://insertmedia.bing.office.net/odc/insertmedia
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://invites.office.com/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://lifecycle.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://login.microsoftonline.com/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://login.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/oauth2/authorize
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://login.windows.net/common/oauth2/authorize
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://loki.delve.office.com/api/v1/configuration/officewin32/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://make.powerautomate.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://management.azure.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://management.azure.com/
Source: chromecache_361.11.dr	String found in binary or memory: https://nodejs.org/dist/latest/docs/api/util.html#util_custom_inspect_function_on_objects
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ocos-office365-s2s.msedge.net/ab
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://odc.officeapps.live.com/odc/stat/images/OneDriveUpsell.png
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://odc.officeapps.live.com/odc/xml?resource=OneDriveSignUpUpsell
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://odc.officeapps.live.com/odc/xml?resource=OneDriveSyncClientUpsell
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ods-diagnostics-ppe.trafficmanager.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ofcrecsvcapi-int.azurewebsites.net/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://officeci.azurewebsites.net/api/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://officemobile.uservoice.com/forums/929800-office-app-ios-and-ipad-asks
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://officesetup.getmicrosoftkey.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ogma.osi.office.net/TradukoApi/api/v1.0/
Source: chromecache_443.11.dr	String found in binary or memory: https://ogp.me/ns#
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officeentities
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officeentitiesupdated
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officesharedentities
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officesharedentitiesupdated
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://onedrive.live.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://otelrules.azureedge.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://otelrules.svc.static.microsoft
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://outlook.office365.com/api/v1.0/me/Activities
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://outlook.office365.com/autodiscover/autodiscover.json
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://outlook.office365.com/connectors
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://ovisualuiapp.azurewebsites.net/pbiagave/
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://partnerservices.getmicrosoftkey.com/PartnerProvisioning.svc/v1/subscriptions
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://pf.directory.live.com/profile/mine/System.ShortCircuitProfile.json
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://pf.directory.live.com/profile/mine/WLX.Profiles.IC.json
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://portal.office.com/account/?ref=ClientMeControl
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://posarprodcssservice.accesscontrol.windows.net/v2/OAuth2-13
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://powerlift-frontdesk.acompli.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://powerlift.acompli.net
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://prod-global-autodetect.acompli.net/autodetect
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://prod.mds.office.com/mds/api/v1.0/clientmodeldirectory
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://r4.res.office365.com/footprintconfig/v1.7/scripts/fpconfig.json
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://res.cdn.office.net/mro1cdnstorage/fonts/prod/4.40
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://res.cdn.office.net/polymer/models
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://res.getmicrosoftkey.com/api/redemptionevents
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://rpsticket.partnerservices.getmicrosoftkey.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://safelinks.protection.outlook.com/api/GetPolicy
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://settings.outlook.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://shell.suite.office.com:1443
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://skyapi.live.net/Activity/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://sr.outlook.office.net/ws/speech/recognize/assistant/work
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://staging.cortana.ai
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://storage.live.com/clientlogs/uploadlocation
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://substrate.office.com/search/api/v1/SearchHistory
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://substrate.office.com/search/api/v2/init
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://syncservice.protection.outlook.com/PolicySync/PolicySync.svc/SyncFile
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://tasks.office.com
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://test-#country_code#-converter.eformsign.com
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://test-#country_code#-daemon.eformsign.com
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://test-#country_code#-service.eformsign.com
Source: chromecache_336.11.dr, chromecache_451.11.dr	String found in binary or memory: https://test-hwp-converter.eformsign.com
Source: ~WRS{CD018A04-F0DF-441A-A7ED-EA4CDF51E372}.tmp.0.dr	String found in binary or memory: https://test.eformsign.com/images/logo/logo_txt.png
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://uci.officeapps.live.com/OfficeInsights/web/views/insights.desktop.html
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://uci.officeapps.live.com/OfficeInsights/web/views/insights.immersive.html
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://web.microsoftstream.com/video/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://webdir.online.lync.com/autodiscover/autodiscoverservice.svc/root/
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://webshell.suite.office.com
Source: C770D21B-2549-4843-984D-8F4C8838BDEF.0.dr	String found in binary or memory: https://word-edit.officeapps.live.com/we/rrdiscovery.ashx
Source: chromecache_304.11.dr, chromecache_330.11.dr	String found in binary or memory: https://www.eformsign.com/
Source: (No subject) (100).eml	String found in binary or memory: https://www.eformsign.com/eform/account/terms.html?ta=
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/en/blog/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/en/blog/category/announcements/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/en/support/
Source: (No subject) (100).eml	String found in binary or memory: https://www.eformsign.com/images/logo/logo_eforms=
Source: ~WRS{CD018A04-F0DF-441A-A7ED-EA4CDF51E372}.tmp.0.dr, chromecache_501.11.dr	String found in binary or memory: https://www.eformsign.com/images/logo/logo_eformsign.png
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/jp/blog/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/jp/blog/category/announcements/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/jp/support/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/kr/blog/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/kr/blog/category/announcements/
Source: chromecache_291.11.dr, chromecache_355.11.dr	String found in binary or memory: https://www.eformsign.com/kr/support/
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://www.google.com
Source: chromecache_391.11.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js?onload=onloadCaptchaCallback
Source: chromecache_474.11.dr, chromecache_370.11.dr, chromecache_280.11.dr, chromecache_326.11.dr, chromecache_489.11.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_370.11.dr, chromecache_489.11.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__.
Source: chromecache_474.11.dr, chromecache_280.11.dr, chromecache_326.11.dr, chromecache_530.11.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__en.js
Source: chromecache_443.11.dr	String found in binary or memory: https://www.linkedin.com/company/david-j-powers-&-associates-inc-
Source: chromecache_511.11.dr, chromecache_379.11.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_443.11.dr	String found in binary or memory: https://www.monsterinsights.com/
Source: chromecache_458.11.dr, chromecache_453.11.dr	String found in binary or memory: https://www.signgate.com/kicasignplus/appFunc02.sg
Source: chromecache_458.11.dr, chromecache_453.11.dr	String found in binary or memory: https://www.signgate.com/kicasignplus/appFunc03.sg

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49694
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49694 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50044
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 50044 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443

Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.18:49696 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.32.76:443 -> 192.168.2.18:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.126.32.76:443 -> 192.168.2.18:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.12.23.50:443 -> 192.168.2.18:49844 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.135:443 -> 192.168.2.18:49928 version: TLS 1.2

Source: classification engine

Classification label: clean6.winEML@27/482@40/15

Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE

File created: C:\Users\user\Documents\Outlook Files\~Outlook Data File - NoEmail.pst.tmp

Source: unknown	Process created: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" /eml "C:\Users\user\Desktop\(No subject) (100).eml"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process created: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "61A1DF22-EA44-4E45-97D0-B7BE2C932DAF" "4DF5A758-E4E9-4F64-B01C-880F820B08A3" "6188" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx"
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.eformsign.com%2Feform%2Faccount%2Fauthenticate.html%3Fcompany_id%3D984e7db43ce0444fae0efb74514c3b34%26document_id%3D52d19f21f1ab4bd09d0e64ee33e521e1%26outsider_token_id%3D85b472e4660e4d579448da213b11e39a%26country_code%3Dus&data=05%7C02%7Cvluchessi%40santaclaraca.gov%7Cc606a46ae6ac4a919a7608dcf8f582cd%7C28ea354810694e81aa0b6e4b3271a5cb%7C0%7C0%7C638658980584046353%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=XaRiGNINzFJkHTbIdP%2BUnftzMQVz4msY4WLlVPJSI%2Bw%3D&reserved=0
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2120 --field-trial-handle=1936,i,5570230629044626292,1419736903540657605,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://www.davidjpowers.com/
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1048 --field-trial-handle=1928,i,11943238162574359621,3846376159695259215,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process created: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe "C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe" "61A1DF22-EA44-4E45-97D0-B7BE2C932DAF" "4DF5A758-E4E9-4F64-B01C-880F820B08A3" "6188" "C:\Program Files (x86)\Microsoft Office\Root\Office16\OUTLOOK.EXE" "WordCombinedFloatieLreOnline.onnx"	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.eformsign.com%2Feform%2Faccount%2Fauthenticate.html%3Fcompany_id%3D984e7db43ce0444fae0efb74514c3b34%26document_id%3D52d19f21f1ab4bd09d0e64ee33e521e1%26outsider_token_id%3D85b472e4660e4d579448da213b11e39a%26country_code%3Dus&data=05%7C02%7Cvluchessi%40santaclaraca.gov%7Cc606a46ae6ac4a919a7608dcf8f582cd%7C28ea354810694e81aa0b6e4b3271a5cb%7C0%7C0%7C638658980584046353%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=XaRiGNINzFJkHTbIdP%2BUnftzMQVz4msY4WLlVPJSI%2Bw%3D&reserved=0	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http://www.davidjpowers.com/	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2120 --field-trial-handle=1936,i,5570230629044626292,1419736903540657605,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1048 --field-trial-handle=1928,i,11943238162574359621,3846376159695259215,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior

Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: c2r64.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Section loaded: gpapi.dll	Jump to behavior

Source: Google Drive.lnk.10.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.10.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.10.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.10.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.10.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.10.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\ai.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.185.100	unknown	United States	15169	GOOGLEUS	false
121.254.188.164	tech.signgate.com	Korea Republic of	3786	LGDACOMLGDACOMCorporationKR	false
34.203.19.49	awseb--awseb-kvcz2zhe91pt-1426604094.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
3.164.163.72	unknown	United States	16509	AMAZON-02US	false
64.62.251.180	davidjpowers.com	United States	8309	SIPARTECHFR	false
108.138.7.114	d37sayaim42kba.cloudfront.net	United States	16509	AMAZON-02US	false
108.138.7.80	unknown	United States	16509	AMAZON-02US	false
52.20.47.208	unknown	United States	14618	AMAZON-AESUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.196	unknown	United States	15169	GOOGLEUS	false
104.47.64.28	gcc02.safelinks.eop-tm2.outlook.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
142.250.186.100	unknown	United States	15169	GOOGLEUS	false
172.217.18.100	www.google.com	United States	15169	GOOGLEUS	false

Name	IP	Active
bg.microsoft.map.fastly.net	199.232.210.172	true
awseb--awseb-kvcz2zhe91pt-1426604094.us-east-1.elb.amazonaws.com	34.203.19.49	true
tech.signgate.com	121.254.188.164	true
gcc02.safelinks.eop-tm2.outlook.com	104.47.64.28	true
d37sayaim42kba.cloudfront.net	108.138.7.114	true
davidjpowers.com	64.62.251.180	true
www.google.com	172.217.18.100	true
www.davidjpowers.com	64.62.251.180	true
www.eformsign.com	unknown	unknown
global-service.eformsign.com	unknown	unknown
gcc02.safelinks.protection.outlook.com	unknown	unknown

Name	Malicious	Reputation
https://davidjpowers.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17	false	unknown
https://www.eformsign.com/cert/secukit-one/main/pc.css?version=10.2024.1010.209	false	unknown
https://www.eformsign.com/eform/document/common/view_service_footer10.2024.1010.209.html	false	unknown
https://davidjpowers.com/wp-content/uploads/2015/09/career_slider_bgtest.jpg	false	unknown
https://global-service.eformsign.com/v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/auth_outsider_token/85b472e4660e4d579448da213b11e39a/check_access?brand_type=logo&viewFlag=false&term_type=non_member&viewFlag=false&lang=en&_=1730307455326	false	unknown
https://davidjpowers.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.6.2	false	unknown
https://www.eformsign.com/js/role10.2024.1010.209.js	false	unknown
https://www.eformsign.com/plugins/pdf-3.1.81.js/build/pdf.js	false	unknown
https://www.eformsign.com/plugins/ozhtml5/html5/js/web/jquery.min10.2024.1010.209.js	false	unknown
https://www.eformsign.com/js/eformsign_api10.2024.1010.209.js	false	unknown
https://global-service.eformsign.com/v1.0/companies/984e7db43ce0444fae0efb74514c3b34/documents/52d19f21f1ab4bd09d0e64ee33e521e1/outsider_open?outsider_token_id=85b472e4660e4d579448da213b11e39a&company_id=984e7db43ce0444fae0efb74514c3b34&document_id=52d19f21f1ab4bd09d0e64ee33e521e1&lang=en	false	unknown
https://www.eformsign.com/cert/secukit-one/plugin/html5/forge.ca1d044fb16a7fe6567d.js	false	unknown
https://www.eformsign.com/plugins/ozhtml5/opencv10.2024.1010.209.js	false	unknown
https://www.eformsign.com/eform_plugins/signature_popup10.2024.1010.209.html	false	unknown
https://www.eformsign.com/plugins/initial.js/initial10.2024.1010.209.js	false	unknown
https://www.google.com/recaptcha/api.js?onload=onloadCaptcha	false	unknown
https://davidjpowers.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=9.1.1	false	unknown
https://www.eformsign.com/eform/layout/header_logo10.2024.1010.209.html	false	unknown
https://davidjpowers.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.24.2	false	unknown
https://davidjpowers.com/wp-content/uploads/2020/10/East-Whisman-Precise-Plan-Raimi-and-Associates-510x382.jpg	false	unknown
https://www.eformsign.com/cert/secukit-one/config/config.js?version=10.2024.1010.209	false	unknown
https://davidjpowers.com/wp-content/uploads/2015/07/carolanAve_gallery.jpg	false	unknown
https://www.eformsign.com/images/common/ic_check_wh.png	false	unknown

ID:	1545604
Product:	CloudBasic
Start time:	17:55:37
Start date:	30.10.2024
Sample:	(No subject) (100).eml
Cookbook:	defaultwindowsinteractivecookbook.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS
MD5:	bd983a9f1ce58eefcfb0ded1fc8b6451
SHA1:	414875fe5f55c60d15120ac44ee848a7691f35c6
SHA256:	9d0d9b5955ebe3372c7668e0165cdaa354cd7ccce4ca3c373a469ca6302b34e3
Filetype:	E-Mail message (Var. 5) (54515/1) 100.00%

Windows Analysis Report (No subject) (100).eml

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Language, Device and Operating System Detection

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
(No subject) (100).eml