Analysis Report https://www.305covidtest.com/

Overview

General Information

Sample URL: https://www.305covidtest.com/
Analysis ID: 332393

Most interesting Screenshot:

Detection

Score: 1
Range: 0 - 100
Whitelisted: false
Confidence: 80%

Signatures

Allocates a big amount of memory (probably used for heap spraying)
Found iframes

Classification

Phishing:

barindex
Found iframes
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://www.youtube.com/embed/J_JJD_e5-5g?autoplay=0&mute=0&controls=1&loop=0&origin=https%3A%2F%2Fwww.305covidtest.com&playsinline=1&enablejsapi=1&widgetid=1
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320009145&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22siteRevision%22%3A%22610%22%2C%22consentPolicy%22%3A%7B%22essential%22%3Atrue%2C%22functional%22%3Atrue%2C%22analytics%22%3Atrue%2C%22advertising%22%3Atrue%2C%22dataToThirdParty%22%3Atrue%7D%2C%22consentPolicyHeader%22%3A%7B%7D%2C%22bsi%22%3A%225a2cde2a-5fd4-4dc6-b63c-07a8a10c35cd%7C1%22%7D&compId=comp-jisjsnys&currency=USD&deviceType=desktop&height=90&instance=QJqb5DP18yBb4kAO2ZuV8rcMndtjp6WwcLmfg_VrEBE.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&locale=en&pageId=masterPage&regionalLanguage=en&siteRevision=610&tz=America%2FNew_York&viewMode=site&viewerCompId=comp-jisjsnys&width=100
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://www.youtube.com/embed/J_JJD_e5-5g?autoplay=0&mute=0&controls=1&loop=0&origin=https%3A%2F%2Fwww.305covidtest.com&playsinline=1&enablejsapi=1&widgetid=1
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320009145&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22siteRevision%22%3A%22610%22%2C%22consentPolicy%22%3A%7B%22essential%22%3Atrue%2C%22functional%22%3Atrue%2C%22analytics%22%3Atrue%2C%22advertising%22%3Atrue%2C%22dataToThirdParty%22%3Atrue%7D%2C%22consentPolicyHeader%22%3A%7B%7D%2C%22bsi%22%3A%225a2cde2a-5fd4-4dc6-b63c-07a8a10c35cd%7C1%22%7D&compId=comp-jisjsnys&currency=USD&deviceType=desktop&height=90&instance=i-23W4cA_fhVxlFvkdXxtPVC0IZ-ENFpONnzrUo1s98.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&locale=en&pageId=masterPage&regionalLanguage=en&siteRevision=610&tz=America%2FNew_York&viewMode=site&viewerCompId=comp-jisjsnys&width=100
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://www.youtube.com/embed/J_JJD_e5-5g?autoplay=0&mute=0&controls=1&loop=0&origin=https%3A%2F%2Fwww.305covidtest.com&playsinline=1&enablejsapi=1&widgetid=1
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320009145&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22siteRevision%22%3A%22610%22%2C%22consentPolicy%22%3A%7B%22essential%22%3Atrue%2C%22functional%22%3Atrue%2C%22analytics%22%3Atrue%2C%22advertising%22%3Atrue%2C%22dataToThirdParty%22%3Atrue%7D%2C%22consentPolicyHeader%22%3A%7B%7D%2C%22bsi%22%3A%225a2cde2a-5fd4-4dc6-b63c-07a8a10c35cd%7C1%22%7D&compId=comp-jisjsnys&currency=USD&deviceType=desktop&height=90&instance=QJqb5DP18yBb4kAO2ZuV8rcMndtjp6WwcLmfg_VrEBE.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&locale=en&pageId=masterPage&regionalLanguage=en&siteRevision=610&tz=America%2FNew_York&viewMode=site&viewerCompId=comp-jisjsnys&width=100
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://www.youtube.com/embed/J_JJD_e5-5g?autoplay=0&mute=0&controls=1&loop=0&origin=https%3A%2F%2Fwww.305covidtest.com&playsinline=1&enablejsapi=1&widgetid=1
Source: https://www.305covidtest.com/ HTTP Parser: Iframe src: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320009145&commonConfig=%7B%22brand%22%3A%22wix%22%2C%22siteRevision%22%3A%22610%22%2C%22consentPolicy%22%3A%7B%22essential%22%3Atrue%2C%22functional%22%3Atrue%2C%22analytics%22%3Atrue%2C%22advertising%22%3Atrue%2C%22dataToThirdParty%22%3Atrue%7D%2C%22consentPolicyHeader%22%3A%7B%7D%2C%22bsi%22%3A%225a2cde2a-5fd4-4dc6-b63c-07a8a10c35cd%7C1%22%7D&compId=comp-jisjsnys&currency=USD&deviceType=desktop&height=90&instance=i-23W4cA_fhVxlFvkdXxtPVC0IZ-ENFpONnzrUo1s98.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&locale=en&pageId=masterPage&regionalLanguage=en&siteRevision=610&tz=America%2FNew_York&viewMode=site&viewerCompId=comp-jisjsnys&width=100
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="author".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="author".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="author".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="author".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="copyright".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="copyright".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="copyright".. found
Source: https://www.305covidtest.com/ HTTP Parser: No <meta name="copyright".. found

Software Vulnerabilities:

barindex
Allocates a big amount of memory (probably used for heap spraying)
Source: iexplore.exe Memory has grown: Private usage: 0MB later: 452MB
Source: J_JJD_e5-5g[2].htm.2.dr String found in binary or memory: <link rel="canonical" href="https://www.youtube.com/watch?v=J_JJD_e5-5g"> equals www.youtube.com (Youtube)
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: url: 'https://www.youtube.com/iframe_api', equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: (g.Sm(b,"www.youtube.com"),c=b.toString()):c=tw(c);b=new vw(c);b.set("cmo=pf","1");d&&b.set("cmo=td","a1.googlevideo.com");return b}; equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: (r=r.vss_host||"s.youtube.com",this.aa("www_for_videostats")&&"s.youtube.com"===r&&(r=uD(this.S)||"www.youtube.com")):r="video.google.com";this.Kp=r;this.rh(a,!0);this.P=new SC;g.D(this,this.P);r=b?b.innertubeApiKey:aD("",a.innertube_api_key);p=b?b.innertubeApiVersion:aD("",a.innertube_api_version);n=b?b.innertubeContextClientVersion:aD("",a.innertube_context_client_version);this.ha={innertubeApiKey:to("INNERTUBE_API_KEY")||r,innertubeApiVersion:to("INNERTUBE_API_VERSION")||p,XD:g.L("INNERTUBE_CONTEXT_CLIENT_CONFIG_INFO"), equals www.youtube.com (Youtube)
Source: www-widgetapi[1].js.2.dr String found in binary or memory: ;var ph=new Set,qh=0,rh=0,sh=["PhantomJS","Googlebot","TO STOP THIS SECURITY SCAN go/scan"];function Y(a,b,c){this.o=this.h=this.i=null;this.m=Ba(this);this.j=0;this.u=!1;this.s=[];this.l=null;this.F=c;this.H={};c=document;if(a="string"===typeof a?c.getElementById(a):a)if(c="iframe"==a.tagName.toLowerCase(),b.host||(b.host=c?Ub(a.src):"https://www.youtube.com"),this.i=new Xe(b),c||(b=th(this,a),this.o=a,(c=a.parentNode)&&c.replaceChild(b,a),a=b),this.h=a,this.h.id||(this.h.id="widget"+Ba(this.h)),Re[this.h.id]=this,window.postMessage){this.l=new P;uh(this);b=R(this.i,"events");for(var d in b)b.hasOwnProperty(d)&& equals www.youtube.com (Youtube)
Source: msapplication.xml0.1.dr String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x6c122fa0,0x01d6d5c2</date><accdate>0x6c122fa0,0x01d6d5c2</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.facebook.com (Facebook)
Source: msapplication.xml0.1.dr String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x6c122fa0,0x01d6d5c2</date><accdate>0x6c12cbca,0x01d6d5c2</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Facebook.url"/></tile></msapplication></browserconfig> equals www.facebook.com (Facebook)
Source: msapplication.xml5.1.dr String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x6c17adcb,0x01d6d5c2</date><accdate>0x6c17adcb,0x01d6d5c2</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.twitter.com (Twitter)
Source: msapplication.xml5.1.dr String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x6c17adcb,0x01d6d5c2</date><accdate>0x6c17adcb,0x01d6d5c2</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Twitter.url"/></tile></msapplication></browserconfig> equals www.twitter.com (Twitter)
Source: msapplication.xml7.1.dr String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x6c18e641,0x01d6d5c2</date><accdate>0x6c18e641,0x01d6d5c2</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.youtube.com (Youtube)
Source: msapplication.xml7.1.dr String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x6c18e641,0x01d6d5c2</date><accdate>0x6c19828c,0x01d6d5c2</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Youtube.url"/></tile></msapplication></browserconfig> equals www.youtube.com (Youtube)
Source: J_JJD_e5-5g[2].htm.2.dr String found in binary or memory: <noscript><div class="player-unavailable"><h1 class="message">An error occurred.</h1><div class="submessage"><a href="https://www.youtube.com/watch?v=J_JJD_e5-5g" target="_blank">Try watching this video on www.youtube.com</a>, or enable JavaScript if it is disabled in your browser.</div></div></noscript></body></html> equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: Ola(this.videoData),this.V("highrepfallback");else if(a.u){var d=this.Ba?this.Ba.K.F:null;if(Kxa(a)&&d&&d.isLocked())var e="FORMAT_UNAVAILABLE";else if(!this.Ta.I&&"auth"===a.errorCode&&"429"===a.details.rc){e="TOO_MANY_REQUESTS";var f="6"}this.V("playererror",a.errorCode,e,g.vB(a.details),f)}else d=/^pp/.test(this.videoData.clientPlaybackNonce),EZ(this,a.errorCode,a.details),d&&"manifest.net.connect"===a.errorCode&&(d="https://www.youtube.com/generate_204?cpn="+this.videoData.clientPlaybackNonce+ equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: UF.prototype.replace=function(a,b){for(var c=g.q(a),d=c.next();!d.done;d=c.next())delete this.u[d.value.encryptedTokenJarContents];TF(this,b)};WF.prototype.B=function(a){var b,c,d=null===(b=a.responseContext)||void 0===b?void 0:b.locationPlayabilityToken;void 0!==d&&(this.locationPlayabilityToken=d,this.u=void 0,"TVHTML5"===(null===(c=a.responseContext)||void 0===c?void 0:c.clientName)?(this.localStorage=VF(this))&&this.localStorage.set("yt-location-playability-token",d,15552E3):g.wq("YT_CL",JSON.stringify({m5:d}),15552E3,void 0,!0))};var ZF={bluetooth:"CONN_DISCO",cellular:"CONN_CELLULAR_UNKNOWN",ethernet:"CONN_WIFI",none:"CONN_NONE",wifi:"CONN_WIFI",wimax:"CONN_CELLULAR_4G",other:"CONN_UNKNOWN",unknown:"CONN_UNKNOWN","slow-2g":"CONN_CELLULAR_2G","2g":"CONN_CELLULAR_2G","3g":"CONN_CELLULAR_3G","4g":"CONN_CELLULAR_4G"};var ria=/[&\?]action_proxy=1/,qia=/[&\?]token=([\w-]*)/,sia=/[&\?]video_id=([\w-]*)/,tia=/[&\?]index=([\d-]*)/,uia=/[&\?]m_pos_ms=([\d-]*)/,via=/[&\?]vvt=([\w-]*)/,wia=/[&\?]mt=([\d-]*)/,nia="ca_type dt el flash u_tz u_his u_h u_w u_ah u_aw u_cd u_nplug u_nmime frm u_java bc bih biw brdim vis wgl".split(" "),lG="www.youtube-nocookie.com youtube-nocookie.com www.youtube-nocookie.com:443 youtube.googleapis.com www.youtubeedu.com www.youtubeeducation.com video.google.com redirector.gvt1.com".split(" "), equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: Yga=function(a,b){if(!a.u["0"]){var c=new dx("0","fakesb",void 0,new Zw(0,0,0,void 0,void 0,"auto"),null,null,1);a.u["0"]=b?new Qx(new vw("http://www.youtube.com/videoplayback"),c,"fake"):new Tx(new vw("http://www.youtube.com/videoplayback"),c,new Cu(0,0),new Cu(0,0),0,NaN)}}; equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: a.BASE_YT_URL)||"")||nw(this.Dc)||this.protocol+"://www.youtube.com/";h=b?b.eventLabel:a.el;f="detailpage";"adunit"===h?f=this.B?"embedded":"detailpage":"embedded"===h||this.C?f=ZC(f,h,uha):h&&(f="embedded");this.fa=f;zp();h=null;f=b?b.playerStyle:a.ps;var l=g.jb(eD,f);!f||l&&!this.C||(h=f);this.playerStyle=h;this.K=(this.I=g.jb(eD,this.playerStyle))&&"area120-boutique"!==this.playerStyle&&"play"!==this.playerStyle&&"jamboard"!==this.playerStyle;this.Vs=!this.K;this.ca=R(!1,a.disableplaybackui);this.Wc= equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: b),this.P=!1,this.videoData.aa("html5_playready_enable_non_persist_license")&&(this.D.pst="0"));b=vC(this.B)?Nwa(c.initData).replace("skd://","https://"):this.B.C;this.videoData.aa("enable_shadow_yttv_channels")&&(b=new g.Qm(b),document.location.origin&&document.location.origin.includes("green")?g.Sm(b,"web-green-qa.youtube.com"):g.Sm(b,"www.youtube.com"),b=b.toString());this.baseUrl=b;this.fairplayKeyId=Qd(this.baseUrl,"ek")||"";if(b=Qd(this.baseUrl,"cpi")||"")this.cryptoPeriodIndex=Number(b);this.fa= equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: g.DD=function(a){a=uD(a.S);return"www.youtube-nocookie.com"===a?"www.youtube.com":a}; equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: g.IU.prototype.B=function(a){var b=this;Kta(this);var c=a.Ux,d=this.api.T();"GENERIC_WITHOUT_LINK"!==c||d.I?"TOO_MANY_REQUESTS"===c?(d=this.api.getVideoData(),this.Gc(LU(this,"TOO_MANY_REQUESTS_WITH_LINK",d.Uk(),void 0,void 0,void 0,!1))):"HTML5_NO_AVAILABLE_FORMATS_FALLBACK"!==c||d.I?this.Gc(g.JU(a.errorMessage)):this.Gc(LU(this,"HTML5_NO_AVAILABLE_FORMATS_FALLBACK_WITH_LINK","//www.youtube.com/supported_browsers")):(a=d.hostLanguage,c="//support.google.com/youtube/?p=player_error1",a&&(c=g.Md(c, equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: g.UD=function(a){var b=g.ED(a);!a.aa("yt_embeds_disable_new_error_lozenge_url")&&wha.includes(b)&&(b="www.youtube.com");return a.protocol+"://"+b}; equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: g.k.clone=function(){var a=new Wm;a.C=this.C;this.u&&(a.u=this.u.clone(),a.B=this.B);return a};var cn="://secure-...imrworldwide.com/ ://cdn.imrworldwide.com/ ://aksecure.imrworldwide.com/ ://[^.]*.moatads.com ://youtube[0-9]+.moatpixel.com ://pm.adsafeprotected.com/youtube ://pm.test-adsafeprotected.com/youtube ://e[0-9]+.yt.srs.doubleverify.com www.google.com/pagead/xsul www.youtube.com/pagead/slav".split(" "),wda=/\bocr\b/;var xda=/(?:\[|%5B)([a-zA-Z0-9_]+)(?:\]|%5D)/g;fn.prototype.set=function(a,b){b=void 0===b?!0:b;0<=a&&52>a&&0===a%1&&this.B[a]!=b&&(this.B[a]=b,this.u=-1)}; equals www.youtube.com (Youtube)
Source: base[1].js.2.dr String found in binary or memory: g.k.getVideoUrl=function(a,b,c,d,e){b={list:b};c&&(e?b.time_continue=c:b.t=c);c=g.ED(this);d&&"www.youtube.com"===c?d="https://youtu.be/"+a:g.yD(this)?(d="https://"+c+"/fire",b.v=a):(d=this.protocol+"://"+c+"/watch",b.v=a,or&&(a=Tp())&&(b.ebc=a));return g.Md(d,b)}; equals www.youtube.com (Youtube)
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://www.youtube.com/embed/J_JJD_e5-5g?autoplay=0&mute=0&controls=1&loop=0&origin=https%3A%2F%2Fwww.305covidtest.com&playsinline=1&enablejsapi=1&widgetid=1 equals www.youtube.com (Youtube)
Source: iframe_api[1].js.2.dr String found in binary or memory: var scriptUrl = 'https:\/\/www.youtube.com\/s\/player\/2e6e57d8\/www-widgetapi.vflset\/www-widgetapi.js';if(!window["YT"])var YT={loading:0,loaded:0};if(!window["YTConfig"])var YTConfig={"host":"https://www.youtube.com"}; equals www.youtube.com (Youtube)
Source: unknown DNS traffic detected: queries for: www.305covidtest.com
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: http://bo.wix.com/bi-catalog-webapp/#/sources/19/events/3
Source: santa-components.prod[1].js.2.dr, wixcode-namespaces.min[1].js.2.dr String found in binary or memory: http://feross.org
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg&quot;
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: http://jedwatson.github.io/classnames
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: http://my-url/video.mp4
Source: bolt-custom-elements.min[1].js.2.dr String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: bolt-custom-elements.min[1].js.2.dr String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: bolt-custom-elements.min[1].js.2.dr String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: bolt-custom-elements.min[1].js.2.dr String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: minified[1].js.2.dr String found in binary or memory: http://rock.mit-license.org
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg&quot;
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg&quot;
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg
Source: bolt-main-prod-old[1].js.2.dr String found in binary or memory: http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg&quot;
Source: IVS0AW9K.htm.2.dr, fontFace[1].css.2.dr String found in binary or memory: http://webfonts.fonts.com
Source: msapplication.xml.1.dr String found in binary or memory: http://www.amazon.com/
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: msapplication.xml1.1.dr String found in binary or memory: http://www.google.com/
Source: b7693a83-b861-4aa6-85e0-9ecf676bc4d6[1].eot.2.dr String found in binary or memory: http://www.linotype.com
Source: b7693a83-b861-4aa6-85e0-9ecf676bc4d6[1].eot.2.dr String found in binary or memory: http://www.linotype.com/fontdesigners
Source: b7693a83-b861-4aa6-85e0-9ecf676bc4d6[1].eot.2.dr String found in binary or memory: http://www.linotype.com/license
Source: b7693a83-b861-4aa6-85e0-9ecf676bc4d6[1].eot.2.dr String found in binary or memory: http://www.linotype.com/licenseHelveticaNeueLT
Source: b7693a83-b861-4aa6-85e0-9ecf676bc4d6[1].eot.2.dr String found in binary or memory: http://www.linotype.comhttp://www.linotype.com/fontdesignersNOTIFICATION
Source: msapplication.xml2.1.dr String found in binary or memory: http://www.live.com/
Source: msapplication.xml3.1.dr String found in binary or memory: http://www.nytimes.com/
Source: msapplication.xml4.1.dr String found in binary or memory: http://www.reddit.com/
Source: msapplication.xml5.1.dr String found in binary or memory: http://www.twitter.com/
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: http://www.whatwg.org/specs/web-apps/current-work/multipage/comms.html#crossDocumentMessages
Source: msapplication.xml6.1.dr String found in binary or memory: http://www.wikipedia.com/
Source: msapplication.xml7.1.dr String found in binary or memory: http://www.youtube.com/
Source: base[1].js.2.dr String found in binary or memory: http://www.youtube.com/videoplayback
Source: base[1].js.2.dr String found in binary or memory: http://youtube.com/drm/2012/10/10
Source: base[1].js.2.dr String found in binary or memory: http://youtube.com/streaming/metadata/segment/102015
Source: base[1].js.2.dr String found in binary or memory: http://youtube.com/streaming/otf/durations/112015
Source: base[1].js.2.dr String found in binary or memory: http://youtube.com/yt/2012/10/10
Source: base[1].js.2.dr String found in binary or memory: https://admin.youtube.com
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://api.dmcdn.net/all.js
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://browser.sentry-cdn.com/4.6.2/bundle.min.js
Source: sentry-lazy-load[1].js.2.dr String found in binary or memory: https://browser.sentry-cdn.com/5.7.1/bundle.min.js
Source: wixui.Captcha.chunk[1].js.2.dr String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=3056
Source: wixui.Captcha.chunk[1].js.2.dr String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=4118
Source: xfeqr[1].js.2.dr, h5mgj[1].js.2.dr String found in binary or memory: https://d8ec26b2-28d6-41f2-b06e-8c76091f9420.static.pub.wix-code.com/static/v2/69b79778-3e4a-49a0-b4
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/CSSRule
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://developer.mozilla.org/en/DOM/window.postMessage
Source: wixui.Captcha.chunk[1].js.2.dr String found in binary or memory: https://developers.google.com/maps/faq#languagesupport
Source: wixui.Captcha.chunk[1].js.2.dr String found in binary or memory: https://developers.google.com/recaptcha/docs/language
Source: www-widgetapi[1].js.2.dr String found in binary or memory: https://developers.google.com/youtube/iframe_api_reference#Events
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://discuss.dev.twitch.tv/t/twitch-embedded-player-updates-in-2020/23956
Source: base[1].js.2.dr String found in binary or memory: https://docs.google.com/get_video_info
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://drafts.fxtf.org/geometry/#dictdef-domrectinit
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://drafts.fxtf.org/geometry/#domrectreadonly
Source: 3ZCGBTT5.htm.2.dr String found in binary or memory: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320009145&amp;c
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320009145&commo
Source: testing-instructions[1].htm.2.dr String found in binary or memory: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320868719&amp;c
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://engage.wixapps.net/chat-widget-server/renderChatWidget/index?cacheKiller=1608320868719&commo
Source: wixui.Captcha.chunk[1].js.2.dr String found in binary or memory: https://facebook.github.io/react/docs/top-level-api.html#react.createclass
Source: react.production.min[2].js.2.dr String found in binary or memory: https://fb.me/react-polyfills
Source: viewerScript.bundle[1].js.2.dr String found in binary or memory: https://feross.org
Source: santa-components.prod[1].js.2.dr String found in binary or memory: https://feross.org/opensource
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/amaticsc/v15/TUZ3zwprpvBS1izr_vOMscGKfLUE.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/amaticsc/v15/TUZyzwprpvBS1izr_vOECOSZ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/anton/v12/1Ptgg87LROyAm3Kz-Ck.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHpv4kjgoGqM7E_DMs_.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHqv4kjgoGqM7E3t-4s51oq.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHrv4kjgoGqM7E_Cfs7wHk.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHsv4kjgoGqM7E_CfOA5WouvTw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/basic/v10/xfu_0WLxV2_XKTNw6Fc.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDQ311QOP6BJUr4zfKH.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDS311QOP6BJUr4yMKDtbw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDT311QOP6BJUrwdteUkp8F.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDV311QOP6BJUr4yMo4kK8BMpM.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/chelseamarket/v8/BCawqZsHqfr89WNP_IApC8tzKChiJgk.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cinzel/v10/8vIU7ww63mVu7gtR-kwKxNvkNOjw-jHgfY3lCw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cinzel/v10/8vIU7ww63mVu7gtR-kwKxNvkNOjw-tbnfY3lCw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cookie/v12/syky-y18lb0tSbf9kgqU.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/corben/v14/LYjAdGzzklQtCMpFHCZQqnos.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/corben/v14/LYjDdGzzklQtCMpNpwND.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v9/co3WmX5slCNuHLi8bLeY9MK7whWMhyjYrEPzvD-KzhU.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v9/co3YmX5slCNuHLi8bLeY9MK7whWMhyjQEl5fvg-O.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v9/co3ZmX5slCNuHLi8bLeY9MK7whWMhyjYrEtImSw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v9/co3bmX5slCNuHLi8bLeY9MK7whWMhyjYqXtM.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/damion/v10/hv-XlzJ3KEUe_YZkamww.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/dancingscript/v15/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7B1i03Sup6.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/dancingscript/v15/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7BMSo3Sup6.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v14/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkBI95.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v14/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNkBI95.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v14/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR799U64.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v14/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QL99U64.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/enriqueta/v10/gokpH6L7AUFrRvV44HVr92-3n9xD.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/enriqueta/v10/goksH6L7AUFrRvV44HVjTEqk.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/forum/v11/6aey4Ky-Vb8Ew8IROpQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/frederickathegreat/v10/9Bt33CxNwt7aOctW2xjbCstzwVKsIBVV--SjxbE.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/jockeyone/v10/HTxpL2g2KjCFj4x8WI6AnIHxGg.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v12/lW-qwjwOK3Ps5GSJlNNkMalnrxShJj4wo7AR-pHveD0NKIie.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v12/lW-qwjwOK3Ps5GSJlNNkMalnrxShJj4wo7AR-pHvnzoNKIie.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v12/lW-swjwOK3Ps5GSJlNNkMalNpiZe_ldbOR4W71msR349LA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v12/lW-swjwOK3Ps5GSJlNNkMalNpiZe_ldbOR4W776rR349LA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/jura/v15/z7NOdRfiaC4Vd8hhoPzfb5vBTP1d7ZumR_4.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/jura/v15/z7NOdRfiaC4Vd8hhoPzfb5vBTP266pumR_4.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/kellyslab/v11/-W_7XJX0Rz3cxUnJC5t6fkQLeA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u8w4BMUTPHjxsAXC-s.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u9w4BMUTPHh6UVSwiPHw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u_w4BMUTPHjxsI5wq_Gwfr.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6uyw4BMUTPHjx4wWA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQCg.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcY.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxU.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/lobster/v23/neILzCirqoswsqX9zoKmNQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/marckscript/v11/nwpTtK2oNgBA3Or78gapdwuyyCg5.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/monoton/v10/5h1aiZUrOngCibe4TkHLRA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUPjIg1_i6t8kCHKm459WxZcgvz_PZ2.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUQjIg1_i6t8kCHKm459WxRyS7g.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_dJE3gnD-A.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUSjIg1_i6t8kCHKm459WlhzQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/mrdehaviland/v9/OpNVnooIhJj96FdB73296ksbOg3F60U.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/niconne/v10/w8gaH2QvRug1_rTfnQyn3w.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJ2dNDF2Yv9qppOePKYRP12Zjte.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJodNDF2Yv9qppOePKYRP12Ywtan0g.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvW.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJrdNDF2Yv9qppOePKYRP12YwPhulvShDM.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/opensanscondensed/v15/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMQQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/opensanscondensed/v15/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMQQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/oswald/v35/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiYw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/oswald/v35/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiYw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XQDmdMWRiN1_T9Z7Tc0FWJhr6j9w.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XSDmdMWRiN1_T9Z7xizfmLtro.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XTDmdMWRiN1_T9Z7Tc2O6slQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XVDmdMWRiN1_T9Z7TZ6Oo.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/patrickhand/v14/LDI1apSQOAYtSuYWp8ZhfYe8XsLN.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/play/v12/6ae84K2oVqwItm4TCpAy3A.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/play/v12/6aez4K2oVqwIvtU2GQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v21/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UXtHA
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v21/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v21/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtU.
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v21/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtU.
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7Z1xlEw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiDyp8kv8JHgFVrJJLmy15VF9eI.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiEyp8kv8JHgFVrJJfedA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiGyp8kv8JHgFVrJJLucHtG.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/questrial/v12/QdVUSTchPBm7nuUeVf70viFj.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/raleway/v18/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4WjMDrMfJg.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/raleway/v18/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4Y_LDrMfJg.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/raleway/v18/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrc.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/raleway/v18/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOjCnqEu92Fr1Mu51TzBic6CsI.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOkCnqEu92Fr1Mu51xIIzQ.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc-.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxM.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/rozhaone/v8/AlZy_zVFtYP12Zncg2kRcn3_.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sacramento/v8/buEzpo6gcdjy0EiZMBUG4C0f-w.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sail/v11/DPEjYwiBxwYJJBPJBw.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/sarina/v9/-F6wfjF3ITQwasLRKUrT.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/signika/v11/vEFO2_JTCgwQ5ejvMV0O96D01E8J0tJXHKbBjMg.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/signika/v11/vEFO2_JTCgwQ5ejvMV0O96D01E8J0tKwG6bBjMg.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/spinnaker/v12/w8gYH2oyX-I0_rvR6HmX23YM.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/suezone/v5/taiJGmd_EZ6rqscQgOFMmo0.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/worksans/v8/QGY9z_wNahGAdqQ43Rh_ebrnlwyYfEPxPoGU3ms5pIfe.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/worksans/v8/QGY9z_wNahGAdqQ43Rh_ebrnlwyYfEPxPoGUOWw5pIfe.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/worksans/v8/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8JoA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://fonts.gstatic.com/s/worksans/v8/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K67QBi8JoA.woff)
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://frog.wix.com/bt?src=29&evid=3
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://gist.github.com/aFarkas/a7e0d85450f323d5e164
Source: polyfill.min[1].js.2.dr String found in binary or memory: https://github.com/Financial-Times/polyfill-service/issues/317
Source: wixcode-worker[1].js.2.dr String found in binary or memory: https://github.com/faisalman/ua-parser-js
Source: bundle.min[2].js.2.dr String found in binary or memory: https://github.com/getsentry/sentry-javascript
Source: imageClientApi[1].js.2.dr String found in binary or memory: https://github.com/madrobby/zepto/blob/master/MIT-LICENSE
Source: imageClientApi[1].js.2.dr String found in binary or memory: https://github.com/madrobby/zepto/blob/master/src/detect.js#files
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://github.com/marcj/css-element-queries/blob/1.0.2/src/ElementQueries.js#L340-L393
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://github.com/marcj/css-element-queries/blob/1.0.2/src/ElementQueries.js#L384-L390
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://github.com/reactjs/react-tabs/issues/193
Source: minified[1].js.2.dr String found in binary or memory: https://github.com/zloirock/core-js
Source: gsap.min[1].js.2.dr String found in binary or memory: https://greensock.com
Source: gsap.min[1].js.2.dr String found in binary or memory: https://greensock.com/standard-license
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://jsfiddle.net/bodia/243k6m0u/)
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://my-url/video.m3u8
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://my-url/video.mp4
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://my-url/video.webm
Source: lodash.min[1].js.2.dr String found in binary or memory: https://npms.io/search?q=ponyfill.
Source: base[1].js.2.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/osd.js
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://player.twitch.tv/js/embed/v1.js
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://player.vimeo.com/api/player.js
Source: react-dom.production.min[1].js0.2.dr, react.production.min[1].js.2.dr, react.production.min[2].js.2.dr, react-dom.production.min[1].js.2.dr String found in binary or memory: https://reactjs.org/docs/error-decoder.html?invariant=
Source: wixui.Captcha.chunk[1].js.2.dr String found in binary or memory: https://recaptcha.net/recaptcha/api.js
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://siteassets.parastorage.com/pages/singlePage/viewerViewModeJson
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://stackoverflow.com/a/18002694
Source: admin-pages-viewer-app.bundle[1].js.2.dr String found in binary or memory: https://static.parastorage.com/services/admin-pages-platform-app/1.350.0/
Source: enriched[1].json.2.dr String found in binary or memory: https://static.parastorage.com/services/engage-web/1.2922.0/assets/visitor-avatars-faces/Avatar2Pink
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/services/santa/1.11783.0
Source: 2[1].htm.2.dr String found in binary or memory: https://static.parastorage.com/services/skins/2.1229.80/images/wysiwyg/core/themes/base/cursor_zoom_
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/services/tag-manager-client/1.240.0/siteTags.bundle.min.js
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.6850.0
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.6850.0/bolt-main/app/bolt-custom-elements.min.js
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.6850.0/bolt-main/app/main-r.min.js
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/services/wix-perf-measure/1.258.0/wix-perf-measure.bundle.min.js
Source: viewerComponentService.bundle[1].js.2.dr, dataRefs.bundle.min[1].js.2.dr String found in binary or memory: https://static.parastorage.com/services/wix-ui-santa/1.1467.0/
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/unpkg/core-js-bundle
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/unpkg/requirejs-bolt
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.parastorage.com/unpkg/whatwg-fetch
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/11062b_8deb790af4fc4a8684a730e0d287669d~mv2.jpg/v1/fill/w_480
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/11062b_8f4c5838a8454b13afa035cdae64621f~mv2_d_5360_3574_s_4_2.jpg
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/1ef5834e68214aa6a18823ce92a9e76c.jpg/v1/fill/w_245
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/48ccc5_559838b644e94acf903cd64ed867b15b%7Emv2.png/v1/fill/w_32%2C
Source: imagestore.dat.2.dr String found in binary or memory: https://static.wixstatic.com/media/48ccc5_559838b644e94acf903cd64ed867b15b~mv2.png/v1/fill/w_32%2Ch_
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/48ccc5_8e21a7c68c974c6e919f0ecdc2533092~mv2.jpg/v1/crop/x_703
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/5ff158be45cb4298b1d6827c8a075c99.jpg/v1/fill/w_245
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/84770f_8506293a29b44887a8a0cb383c0c2078.jpg/v1/fill/w_245
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://static.wixstatic.com/media/cfc5f6_7020fbc4328945a9a8cc038617e65534~mv2.jpg/v1/fill/w_171
Source: enriched[1].json.2.dr String found in binary or memory: https://static.wixstatic.com/media/cfc5f6_f76ceb0c1837454aafd95222db446948~mv2.jpg
Source: base[1].js.2.dr String found in binary or memory: https://support.google.com/youtube/?p=missing_quality
Source: base[1].js.2.dr String found in binary or memory: https://support.google.com/youtube/?p=noaudio
Source: base[1].js.2.dr String found in binary or memory: https://support.google.com/youtube/?p=report_playback
Source: base[1].js.2.dr String found in binary or memory: https://support.google.com/youtube/answer/6276924
Source: remote[1].js.2.dr String found in binary or memory: https://support.google.com/youtube/answer/7640706
Source: fetch.umd[1].js.2.dr String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://users.wix.com/wix-users
Source: base[1].js.2.dr String found in binary or memory: https://viacon.corp.google.com
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://w3c.github.io/pointerevents/#widl-PointerEvent-isPrimary
Source: index[1].htm.2.dr, index[1].htm0.2.dr String found in binary or memory: https://wix-engage-visitors-prod-9.firebaseio.com/
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://www.305covidtest.com
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://www.305covidtest.com/
Source: 2[1].htm.2.dr String found in binary or memory: https://www.305covidtest.com/2
Source: ~DFC8E9EC2B4AB47E72.TMP.1.dr String found in binary or memory: https://www.305covidtest.com/2ting-instructions
Source: ~DFC8E9EC2B4AB47E72.TMP.1.dr String found in binary or memory: https://www.305covidtest.com/2ting-instructionsiteRevision%22%3A%22610%22%2C%22consentPolicy%22%3A%7
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://www.305covidtest.com/Root
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://www.305covidtest.com/book-online
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://www.305covidtest.com/p305COVIDTest
Source: IVS0AW9K.htm.2.dr String found in binary or memory: https://www.305covidtest.com/registration-form
Source: testing-instructions[1].htm.2.dr String found in binary or memory: https://www.305covidtest.com/testing-instructions
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://www.305covidtest.com/testing-instructionsNTesting
Source: base[1].js.2.dr String found in binary or memory: https://www.googleapis.com/certificateprovisioning/v1/devicecertificates/create?key=AIzaSyB-5OLKTx2i
Source: remote[1].js.2.dr String found in binary or memory: https://www.gstatic.com/cv/js/sender/v1/cast_sender.js
Source: messages_en[1].json0.2.dr String found in binary or memory: https://www.wix.com/contact/
Source: admin-pages-viewer-app.bundle[1].js.2.dr String found in binary or memory: https://www.wix.com/dashboard/
Source: iframe_api[1].js.2.dr, www-widgetapi[1].js.2.dr String found in binary or memory: https://www.youtube.com
Source: {94B8BF3D-41B5-11EB-90E4-ECF4BB862DED}.dat.1.dr String found in binary or memory: https://www.youtube.com/embed/J_JJD_e5-5g?autoplay=0&mute=0&controls=1&loop=0&origin=https%3A%2F%2Fw
Source: base[1].js.2.dr String found in binary or memory: https://www.youtube.com/generate_204?cpn=
Source: wixui.VideoPlayer.chunk[1].js.2.dr String found in binary or memory: https://www.youtube.com/iframe_api
Source: J_JJD_e5-5g[2].htm.2.dr String found in binary or memory: https://www.youtube.com/watch?v=J_JJD_e5-5g
Source: base[1].js.2.dr String found in binary or memory: https://youtu.be/
Source: base[1].js.2.dr String found in binary or memory: https://youtube.com/api/drm/fps?ek=uninitialized
Source: base[1].js.2.dr String found in binary or memory: https://youtubei.googleapis.com/youtubei/
Source: base[1].js.2.dr String found in binary or memory: https://yurt.corp.google.com
Source: unknown Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49717 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49703
Source: classification engine Classification label: clean1.win@3/243@16/12
Source: C:\Program Files\internet explorer\iexplore.exe File created: C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High Jump to behavior
Source: C:\Program Files\internet explorer\iexplore.exe File created: C:\Users\user\AppData\Local\Temp\~DF1289E878F7FDCEEC.TMP Jump to behavior
Source: C:\Program Files\internet explorer\iexplore.exe File read: C:\Users\desktop.ini Jump to behavior
Source: unknown Process created: C:\Program Files\internet explorer\iexplore.exe 'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
Source: unknown Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5228 CREDAT:17410 /prefetch:2
Source: C:\Program Files\internet explorer\iexplore.exe Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5228 CREDAT:17410 /prefetch:2 Jump to behavior
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe File opened: C:\Windows\SysWOW64\Macromed\Flash\ss.cfg Jump to behavior
Source: Window Recorder Window detected: More than 3 window changes detected
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe File opened: C:\Program Files (x86)\Java\jre1.8.0_211\bin\msvcr100.dll Jump to behavior
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 dnsIp2 2 Behavior Graph ID: 332393 URL: https://www.305covidtest.com/ Startdate: 18/12/2020 Architecture: WINDOWS Score: 1 11 static.wixstatic.com 2->11 13 gcp.media-router.wixstatic.com 2->13 6 iexplore.exe 18 86 2->6         started        process3 process4 8 iexplore.exe 15 284 6->8         started        dnsIp5 15 180.verticals.sv5.wix.com 185.230.61.180, 443, 49731, 49732 WIX_COMIL Israel 8->15 17 i.ytimg.com 172.217.168.22, 443, 49751, 49752 GOOGLEUS United States 8->17 19 27 other IPs or domains 8->19
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
34.96.106.200
 unknown United States
15169 GOOGLEUS false
216.58.215.225
 unknown United States
15169 GOOGLEUS false
185.230.61.180
 unknown Israel
58182 WIX_COMIL false
151.101.2.217
 unknown United States
54113 FASTLYUS false
52.2.188.208
 unknown United States
14618 AMAZON-AESUS false
35.246.6.109
 unknown United States
15169 GOOGLEUS false
35.201.97.85
 unknown United States
15169 GOOGLEUS false
65.9.68.81
 unknown United States
16509 AMAZON-02US false
172.217.168.66
 unknown United States
15169 GOOGLEUS false
172.217.168.22
 unknown United States
15169 GOOGLEUS false
34.102.176.152
 unknown United States
15169 GOOGLEUS false
54.87.207.230
 unknown United States
14618 AMAZON-AESUS false

Contacted Domains

Name IP Active
pagead46.l.doubleclick.net 172.217.168.66 true
td-static-34-96-106-200.parastorage.com 34.96.106.200 true
browser.sentry-cdn.com 151.101.2.217 true
td-balancer-euw2-6-109.wixdns.net 35.246.6.109 true
sentry-nlb-e70282e8a06dcc98.elb.us-east-1.amazonaws.com 52.2.188.208 true
i.ytimg.com 172.217.168.22 true
gcp.media-router.wixstatic.com 34.102.176.152 true
photos-ugc.l.googleusercontent.com 216.58.215.225 true
wix-engage-visitors-prod-20.firebaseio.com 35.201.97.85 true
d2rcdclowni6h8.cloudfront.net 65.9.68.81 true
bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com 54.87.207.230 true
180.verticals.sv5.wix.com 185.230.61.180 true
yt3.ggpht.com unknown unknown
www.305covidtest.com unknown unknown
siteassets.parastorage.com unknown unknown
static.wixstatic.com unknown unknown
d8ec26b2-28d6-41f2-b06e-8c76091f9420.static.pub.wix-code.com unknown unknown
engage.wixapps.net unknown unknown
static.doubleclick.net unknown unknown
googleads.g.doubleclick.net unknown unknown
frog.wix.com unknown unknown
sentry.wixpress.com unknown unknown
www.youtube.com unknown unknown
static.parastorage.com unknown unknown

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://www.305covidtest.com/testing-instructions false
    		unknown
    https://www.305covidtest.com/ false
      		unknown