Analysis Report https://www.foothillsvaccineclinic.com/covid-registration-form

There are no high impact signatures.

Compliance:

Uses new MSVCR Dlls

Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe

File opened: C:\Program Files (x86)\Java\jre1.8.0_211\bin\msvcr100.dll

Jump to behavior

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49714 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49752 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49767 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49766 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49789 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49821 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49828 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49827 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49838 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49842 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49843 version: TLS 1.2

Networking:

Found strings which match to known social media urls

Source: chrome[1].htm.18.dr	String found in binary or memory: <link rel="preconnect" href="https://www.youtube.com" > equals www.youtube.com (Youtube)
Source: chrome[1].htm.18.dr	String found in binary or memory: <a href="https://www.facebook.com/googlechrome/" title="Facebook" target="_blank" rel="noopener nofollow" class=" chr-footer-social__link" ga-on="click" ga-event-category="chrome-footer-social" ga-event-action="clicked" ga-event-label="follow-us:facebook" data-g-event="chrome-footer-social" data-g-action="clicked" data-g-label="follow-us:facebook" > equals www.facebook.com (Facebook)
Source: chrome[1].htm.18.dr	String found in binary or memory: <a href="https://www.youtube.com/user/googlechrome" title="Youtube" target="_blank" rel="noopener nofollow" class=" chr-footer-social__link" ga-on="click" ga-event-category="chrome-footer-social" ga-event-action="clicked" ga-event-label="follow-us:youtube" data-g-event="chrome-footer-social" data-g-action="clicked" data-g-label="follow-us:youtube" > equals www.youtube.com (Youtube)
Source: chrome[1].htm.18.dr	String found in binary or memory: "https://www.facebook.com/googlechrome", equals www.facebook.com (Facebook)
Source: chrome[1].htm.18.dr	String found in binary or memory: "https://www.youtube.com/googlechrome", equals www.youtube.com (Youtube)
Source: gtm[1].js.2.dr	String found in binary or memory: "vtp_html":"\n\u003Cscript type=\"text\/gtmscript\"\u003E!function(b,e,f,g,a,c,d){b.fbq||(a=b.fbq=function(){a.callMethod?a.callMethod.apply(a,arguments):a.queue.push(arguments)},b._fbq||(b._fbq=a),a.push=a,a.loaded=!0,a.version=\"2.0\",a.queue=[],c=e.createElement(f),c.async=!0,c.src=g,d=e.getElementsByTagName(f)[0],d.parentNode.insertBefore(c,d))}(window,document,\"script\",\"\/\/connect.facebook.net\/en_US\/fbevents.js\");fbq(\"init\",\"1566517726971189\");fbq(\"track\",\"PageView\");\u003C\/script\u003E\n\u003Cnoscript\u003E\u003Cimg height=\"1\" width=\"1\" style=\"display:none\" src=\"https:\/\/www.facebook.com\/tr?id=1566517726971189\u0026amp;ev=PageView\u0026amp;noscript=1\"\u003E\u003C\/noscript\u003E\n", equals www.facebook.com (Facebook)
Source: identity[1].js.2.dr	String found in binary or memory: (function(a,b,c,d){var e={exports:{}};e.exports;(function(){var f=a.fbq;f.execStart=a.performance&&a.performance.now&&a.performance.now();if(!function(){var b=a.postMessage||function(){};if(!f){b({action:"FB_LOG",logType:"Facebook Pixel Error",logMessage:"Pixel code is not installed correctly on this page"},"*");"error"in console&&console.error("Facebook Pixel Error: Pixel code is not installed correctly on this page");return!1}return!0}())return;f.__fbeventsModules||(f.__fbeventsModules={},f.__fbeventsResolvedModules={},f.getFbeventsModules=function(a){f.__fbeventsResolvedModules[a]||(f.__fbeventsResolvedModules[a]=f.__fbeventsModules[a]());return f.__fbeventsResolvedModules[a]},f.fbIsModuleLoaded=function(a){return!!f.__fbeventsModules[a]},f.ensureModuleRegistered=function(b,a){f.fbIsModuleLoaded(b)||(f.__fbeventsModules[b]=a)});f.ensureModuleRegistered("signalsFBEventsGetIwlUrl",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=f.getFbeventsModules("signalsFBEventsGetTier");e.exports=function(b,c){c=a(c);c=c==null?"www.facebook.com":"www."+c+".facebook.com";return"https://"+c+"/signals/iwl.js?pixel_id="+b}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("signalsFBEventsGetTier",function(){return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("SignalsFBEvents.plugins.iwlbootstrapper",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var c=f.getFbeventsModules("SignalsFBEventsIWLBootStrapEvent"),d=f.getFbeventsModules("SignalsFBEventsLogging"),g=f.getFbeventsModules("SignalsFBEventsNetworkConfig"),h=f.getFbeventsModules("SignalsFBEventsPlugin"),i=f.getFbeventsModules("signalsFBEventsGetIwlUrl"),j=f.getFbeventsModules("signalsFBEventsGetTier"),k=d.logUserError,l=/^https:\/\/.*\.facebook\.com$/i,m="FACEBOOK_IWL_CONFIG_STORAGE_KEY",n=a.sessionStorage?a.sessionStorage:{getItem:function(a){return null},removeItem:function(a){},setItem:function(a,b){}};e.exports=new h(function(d,e){function h(c,d){var e=b.createElement("script");e.async=!0;e.onload=function(){if(!a.FacebookIWL||!a.FacebookIWL.init)return;var b=j(g.ENDPOINT);b!=null&&a.FacebookIWL.set&&a.FacebookIWL.set("tier",b);d()};a.FacebookIWLSessionEnd=function(){n.removeItem(m),a.close()};e.src=i(c,g.ENDPOINT);b.body&&b.body.appendChild(e)}var o=!1,p=function(a){return!!(e&&e.pixelsByID&&Object.prototype.hasOwnProperty.call(e.pixelsByID,a))};function q(){if(o)return;var b=n.getItem(m);if(!b)return;b=JSON.parse(b);var c=b.pixelID,d=b.graphToken,e=b.sessionStartTime;o=!0;h(c,function(){var b=p(c)?c:null;a.FacebookIWL.init(b,d,e)})}function r(b){if(o)return;h(b,func
Source: msapplication.xml0.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x5927674f,0x01d726aa</date><accdate>0x5927674f,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.facebook.com (Facebook)
Source: msapplication.xml0.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x5927674f,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Facebook.url"/></tile></msapplication></browserconfig> equals www.facebook.com (Facebook)
Source: msapplication.xml5.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x5930f0ab,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.twitter.com (Twitter)
Source: msapplication.xml5.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x59335302,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Twitter.url"/></tile></msapplication></browserconfig> equals www.twitter.com (Twitter)
Source: msapplication.xml7.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x5935b559,0x01d726aa</date><accdate>0x5935b559,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.youtube.com (Youtube)
Source: msapplication.xml7.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x5935b559,0x01d726aa</date><accdate>0x5935b559,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Youtube.url"/></tile></msapplication></browserconfig> equals www.youtube.com (Youtube)
Source: gtm[1].js.18.dr	String found in binary or memory: F=W("YT"),E=function(){e(C)};J(t.vtp_gtmOnSuccess);if(F)F.ready&&F.ready(E);else{var H=W("onYouTubeIframeAPIReady");nn("onYouTubeIframeAPIReady",function(){H&&H();E()});J(function(){for(var M=W("document"),N=M.getElementsByTagName("script"),Q=N.length,ka=0;ka<Q;ka++){var S=N[ka].getAttribute("src");if(b(S,"iframe_api")||b(S,"player_api"))return}for(var K=M.getElementsByTagName("iframe"),T=K.length,U=0;U<T;U++)if(!u&&c(K[U],C.af)){O("https://www.youtube.com/iframe_api");u=!0;break}})}}else J(t.vtp_gtmOnSuccess)} equals www.youtube.com (Youtube)
Source: main.v2.min[1].js.18.dr	String found in binary or memory: function Nf(a){return new Promise(function(b){var c=document.createElement("script");c.src="https://www.youtube.com/iframe_api";var d=document.getElementsByTagName("script")[0];d.parentNode.insertBefore(c,d);window.onYouTubeIframeAPIReady=function(){a.c=Of(a,a.l,a.g,b)}})}f.Ib=function(a){if(!this.h)return!1;if(27===a.keyCode||"Escape"===a.key||"Esc"===a.key)return this.close(),!0};var Pf={Accordion:hc,AccordionGroup:ic,AnchorArrow:jc,AnimatedSvg:lc,AnimatedTabs:oc,AnimationTrigger:rc,Carousel:tc,Collapsible:xc,ContentSwitcherTab:yc,ContentToggle:Zc,CookieBanner:dd,EnvironmentDetect:jd,ExpandableField:kd,Footer:nd,Form:Ad,HaTSManager:Nd,Header:Yd,HeroSwitcher:ie,Jumplinks:ke,LazyLoader:me,Modal:Y,PanelSwitcher:ue,Popup:we,RedirectByEnv:xe,ReplaySubanimations:ye,Scrollable:ze,SearchBar:De,Slider:Oe,Survey:gf,Tabs:jf,ThemeImages:lf,ThemeToggle:sf,TrackedSection:vf,TranslateShowcase:zf, equals www.youtube.com (Youtube)
Source: gtm[1].js.2.dr	String found in binary or memory: function pp(a,b){}function qp(a,b,c){};var rp=!!n.MutationObserver,sp=void 0,tp=function(a){if(!sp){var b=function(){var c=K.body;if(c)if(rp)(new MutationObserver(function(){for(var e=0;e<sp.length;e++)M(sp[e])})).observe(c,{childList:!0,subtree:!0});else{var d=!1;fg(c,"DOMNodeInserted",function(){d||(d=!0,M(function(){d=!1;for(var e=0;e<sp.length;e++)M(sp[e])}))})}};sp=[];K.body?b():M(b)}sp.push(a)};var vp=["www.youtube.com","www.youtube-nocookie.com"],wp,xp=!1,yp=0; equals www.youtube.com (Youtube)
Source: gtm[1].js.18.dr	String found in binary or memory: var q=["www.youtube.com","www.youtube-nocookie.com"],p={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},r,u=!1;(function(t){Z.__ytl=t;Z.__ytl.h="ytl";Z.__ytl.i=!0;Z.__ytl.priorityOverride=0})(function(t){t.vtp_triggerStartOption?n(t):ei(function(){n(t)})})}(); equals www.youtube.com (Youtube)

Performs DNS lookups

Source: unknown

DNS traffic detected: queries for: www.foothillsvaccineclinic.com

Urls found in memory or binary data

Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://dev.wix.com/
Source: santa-components.prod[1].js.2.dr	String found in binary or memory: http://feross.org
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg"
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://investors.wix.com/
Source: modernizr[1].js.18.dr	String found in binary or memory: http://modernizr.com/download/#-fontface-backgroundsize-borderimage-borderradius-boxshadow-flexbox-f
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: minified[1].js.2.dr	String found in binary or memory: http://rock.mit-license.org
Source: chrome[1].htm.18.dr	String found in binary or memory: http://schema.org
Source: animation.gsap.min[1].js.18.dr	String found in binary or memory: http://scrollmagic.io
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg"
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg"
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg"
Source: internet-explorer[1].htm.2.dr, helvetica[1].css.2.dr	String found in binary or memory: http://webfonts.fonts.com
Source: msapplication.xml.1.dr	String found in binary or memory: http://www.amazon.com/
Source: autotrack[1].js.18.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: msapplication.xml1.1.dr	String found in binary or memory: http://www.google.com/
Source: msapplication.xml2.1.dr	String found in binary or memory: http://www.live.com/
Source: msapplication.xml3.1.dr	String found in binary or memory: http://www.nytimes.com/
Source: msapplication.xml4.1.dr	String found in binary or memory: http://www.reddit.com/
Source: msapplication.xml5.1.dr	String found in binary or memory: http://www.twitter.com/
Source: msapplication.xml6.1.dr	String found in binary or memory: http://www.wikipedia.com/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://www.wix.com/blog
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://www.wix.com/jobs/main
Source: msapplication.xml7.1.dr	String found in binary or memory: http://www.youtube.com/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://2542116.fls.doubleclick.net
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=1088143482153;
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=4025465958136;
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=832802698175;g
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=8924832293155;
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://8ea65f19-a2b0-4d7b-8ce4-dc2a574b5d7b.filesusr.com/ugd/c9af94_a6d9f3b81ab3410cb9899734fb328f4
Source: chrome[1].htm.18.dr	String found in binary or memory: https://about.google/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://about.google/products/
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://ade.googlesyndication.com/ddm/activity
Source: chrome[1].htm.18.dr	String found in binary or memory: https://adservice.google.com
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://adservice.google.com/ddm/regclk
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: analytics[1].js.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: f[1].txt.2.dr	String found in binary or memory: https://bid.g.doubleclick.net/xbbe/pixel?d=KAE
Source: chrome[1].htm.18.dr	String found in binary or memory: https://blog.google/products/chrome/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://blog.google/products/chrome/celebrate-black-creative-visions-chrome/
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://bo.wix.com/suricate/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://browser.sentry-cdn.com/4.6.2/bundle.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://browser.sentry-cdn.com/5.21.4/bundle.min.js
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=3056
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=4118
Source: gtm[1].js.18.dr, js[2].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: gtm[1].js.2.dr	String found in binary or memory: https://cdn.taboola.com/libtrc/unip/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chrome.google.com/webstore/category/app/8-education?hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chrome.google.com/webstore/category/collection/artist_themes
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/browser/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/browser/download/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/devices/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/os/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromium.googlesource.com/chromium/src/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://cloud.google.com/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://de.wix.com/outdated-browser/internet-explorer
Source: chrome[1].htm.18.dr	String found in binary or memory: https://developer.chrome.com/webstore/?hl=en
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://developers.google.com/maps/faq#languagesupport
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/language
Source: installer.min[1].js.18.dr	String found in binary or memory: https://dl.google.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://edu.google.com/products/devices/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://edu.google.com/products/more-products/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://en.wix.com/outdated-browser/internet-explorer
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://es.wix.com/outdated-browser/internet-explorer
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://facebook.github.io/react/docs/top-level-api.html#react.createclass
Source: react.production.min[1].js.2.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: santa-components.prod[1].js.2.dr	String found in binary or memory: https://feross.org/opensource
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chrome[1].htm.18.dr	String found in binary or memory: https://fonts.gstatic.com
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/amaticsc/v16/TUZ3zwprpvBS1izr_vOMscGKfLUE.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/amaticsc/v16/TUZyzwprpvBS1izr_vOECOSZ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/anton/v15/1Ptgg87LROyAm3Kz-Ck.woff)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHpv4kjgoGqM7E_A8s5ynghnQci.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHpv4kjgoGqM7E_Ass5ynghnQci.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHpv4kjgoGqM7E_DMs5ynghnQ.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHqv4kjgoGqM7E3t-4s51ostz0rdg.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHqv4kjgoGqM7E3t-4s6Fostz0rdom9.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHqv4kjgoGqM7E3t-4s6Vostz0rdom9.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHrv4kjgoGqM7E_Cfs0wH8DnzcjTrA.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHrv4kjgoGqM7E_Cfs1wH8DnzcjTrA.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHrv4kjgoGqM7E_Cfs7wH8Dnzcj.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHsv4kjgoGqM7E_CfOA5WogvToJdLm8BvE.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHsv4kjgoGqM7E_CfOA5WohvToJdLm8BvE.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHsv4kjgoGqM7E_CfOA5WouvToJdLm8.woff2)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHpv4kjgoGqM7E_DMs_.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHqv4kjgoGqM7E3t-4s51oq.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHrv4kjgoGqM7E_Cfs7wHk.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHsv4kjgoGqM7E_CfOA5WouvTw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/basic/v10/xfu_0WLxV2_XKTNw6Fc.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDQ311QOP6BJUr4zfKH.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDS311QOP6BJUr4yMKDtbw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDT311QOP6BJUrwdteUkp8F.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDV311QOP6BJUr4yMo4kK8BMpM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/chelseamarket/v8/BCawqZsHqfr89WNP_IApC8tzKChiJgk.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cinzel/v11/8vIU7ww63mVu7gtR-kwKxNvkNOjw-jHgfY3lCw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cinzel/v11/8vIU7ww63mVu7gtR-kwKxNvkNOjw-tbnfY3lCw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cookie/v12/syky-y18lb0tSbf9kgqU.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/corben/v14/LYjAdGzzklQtCMpFHCZQqnos.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/corben/v14/LYjDdGzzklQtCMpNpwND.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3WmX5slCNuHLi8bLeY9MK7whWMhyjYrEPzvD-KzhU.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3YmX5slCNuHLi8bLeY9MK7whWMhyjQEl5fvg-O.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3ZmX5slCNuHLi8bLeY9MK7whWMhyjYrEtImSw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3bmX5slCNuHLi8bLeY9MK7whWMhyjYqXtM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/damion/v10/hv-XlzJ3KEUe_YZkamww.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dancingscript/v16/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7B1i03Sup6.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dancingscript/v16/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7BMSo3Sup6.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkBI95.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNkBI95.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR799U64.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QL99U64.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/enriqueta/v10/gokpH6L7AUFrRvV44HVr92-3n9xD.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/enriqueta/v10/goksH6L7AUFrRvV44HVjTEqk.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/forum/v11/6aey4Ky-Vb8Ew8IROpQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/frederickathegreat/v10/9Bt33CxNwt7aOctW2xjbCstzwVKsIBVV--SjxbE.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v27/4UaGrENHsxJlGDuGo1OIlI3K.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v27/4UabrENHsxJlGDuGo1OIlLU94bt3.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/jockeyone/v10/HTxpL2g2KjCFj4x8WI6AnIHxGg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-qwjwOK3Ps5GSJlNNkMalnrxShJj4wo7AR-pHveD0NKIie.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-qwjwOK3Ps5GSJlNNkMalnrxShJj4wo7AR-pHvnzoNKIie.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-swjwOK3Ps5GSJlNNkMalNpiZe_ldbOR4W71msR349LA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-swjwOK3Ps5GSJlNNkMalNpiZe_ldbOR4W776rR349LA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/jura/v16/z7NOdRfiaC4Vd8hhoPzfb5vBTP1d7ZumR_4.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/jura/v16/z7NOdRfiaC4Vd8hhoPzfb5vBTP266pumR_4.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/kellyslab/v11/-W_7XJX0Rz3cxUnJC5t6fkQLeA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u8w4BMUTPHjxsAXC-s.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u9w4BMUTPHh6UVSwiPHw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u_w4BMUTPHjxsI5wq_Gwfr.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6uyw4BMUTPHjx4wWA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQCg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcY.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxU.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lobster/v23/neILzCirqoswsqX9zoKmNQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/marckscript/v11/nwpTtK2oNgBA3Or78gapdwuyyCg5.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/monoton/v10/5h1aiZUrOngCibe4TkHLRA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUPjIg1_i6t8kCHKm459WxZcgvz_PZ2.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUQjIg1_i6t8kCHKm459WxRyS7g.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_dJE3gnD-A.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUSjIg1_i6t8kCHKm459WlhzQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/mrdehaviland/v9/OpNVnooIhJj96FdB73296ksbOg3F60U.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/niconne/v10/w8gaH2QvRug1_rTfnQyn3w.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJ2dNDF2Yv9qppOePKYRP12Zjte.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJodNDF2Yv9qppOePKYRP12Ywtan0g.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvW.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJrdNDF2Yv9qppOePKYRP12YwPhulvShDM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensanscondensed/v15/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMQQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensanscondensed/v15/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMQQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/oswald/v36/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiYw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/oswald/v36/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiYw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XQDmdMWRiN1_T9Z7Tc0FWJhr6j9w.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XSDmdMWRiN1_T9Z7xizfmLtro.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XTDmdMWRiN1_T9Z7Tc2O6slQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XVDmdMWRiN1_T9Z7TZ6Oo.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/patrickhand/v14/LDI1apSQOAYtSuYWp8ZhfYe8XsLN.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/play/v12/6ae84K2oVqwItm4TCpAy3A.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/play/v12/6aez4K2oVqwIvtU2GQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UXtHA
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtU.
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtU.
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7Z1xlEw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiDyp8kv8JHgFVrJJLmy15VF9eI.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiEyp8kv8JHgFVrJJfedA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiGyp8kv8JHgFVrJJLucHtG.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/questrial/v13/QdVUSTchPBm7nuUeVf70viFj.woff)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/questrial/v9/QdVUSTchPBm7nuUeVf70viFluW44JQ.woff2)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4WjMDrMfJg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4Y_LDrMfJg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrc.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOjCnqEu92Fr1Mu51TzBic6CsI.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOkCnqEu92Fr1Mu51xIIzQ.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9vAA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc-.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5g.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/rozhaone/v8/AlZy_zVFtYP12Zncg2kRcn3_.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/sacramento/v8/buEzpo6gcdjy0EiZMBUG4C0f-w.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/sail/v11/DPEjYwiBxwYJJBPJBw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/sarina/v11/-F6wfjF3ITQwasLRKUrT.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/signika/v12/vEFO2_JTCgwQ5ejvMV0O96D01E8J0tJXHKbBjMg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/signika/v12/vEFO2_JTCgwQ5ejvMV0O96D01E8J0tKwG6bBjMg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/spinnaker/v12/w8gYH2oyX-I0_rvR6HmX23YM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/suezone/v5/taiJGmd_EZ6rqscQgOFMmo0.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY9z_wNahGAdqQ43Rh_ebrnlwyYfEPxPoGU3ms5pIfe.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY9z_wNahGAdqQ43Rh_ebrnlwyYfEPxPoGUOWw5pIfe.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8JoA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K67QBi8JoA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fr.wix.com/outdated-browser/internet-explorer
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://frog.wix.com/bt?src=29&evid=3
Source: bundle.min[1].js.2.dr	String found in binary or memory: https://github.com/getsentry/sentry-javascript
Source: gtm[1].js.2.dr	String found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: imageClientApi[1].js.2.dr	String found in binary or memory: https://github.com/madrobby/zepto/blob/master/MIT-LICENSE
Source: imageClientApi[1].js.2.dr	String found in binary or memory: https://github.com/madrobby/zepto/blob/master/src/detect.js#files
Source: minified[1].js.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: f[1].txt.18.dr, f[5].txt.18.dr, f[2].txt.18.dr, f[4].txt.18.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1001175813/?random
Source: f[1].txt0.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1006927621/?random
Source: gsap.min[1].js.2.dr	String found in binary or memory: https://greensock.com
Source: gsap.min[1].js.2.dr	String found in binary or memory: https://greensock.com/standard-license
Source: chrome[1].htm.18.dr	String found in binary or memory: https://gsuite.google.com/
Source: installer.min[1].js.18.dr	String found in binary or memory: https://itunes.apple.com/us/app/chrome/id535886823
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://ja.wix.com/outdated-browser/internet-explorer
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://ko.wix.com/outdated-browser/internet-explorer
Source: lodash.min[1].js.2.dr	String found in binary or memory: https://npms.io/search?q=ponyfill.
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: gtm[1].js.18.dr, gtm[1].js.2.dr, js[1].js.18.dr	String found in binary or memory: https://pagead2.googlesyndication.com/
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.android.chrome
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.chrome.beta
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.chrome.canary
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.chrome.dev
Source: chrome[1].htm.18.dr	String found in binary or memory: https://policies.google.com/technologies/cookies?hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://policies.google.com/terms
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://polyfill.io/v3/polyfill.min.js?features=fetch
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://pt.wix.com/outdated-browser/internet-explorer
Source: insight.min[1].js.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect?
Source: insight.min[1].js.2.dr	String found in binary or memory: https://px.ads.linkedin.com/insight_tag_errors.gif?
Source: react.production.min[1].js.2.dr, react-dom.production.min[1].js.2.dr	String found in binary or memory: https://reactjs.org/docs/error-decoder.html?invariant=
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://recaptcha.net/recaptcha/api.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://ru.wix.com/outdated-browser/internet-explorer
Source: gtm[1].js.2.dr	String found in binary or memory: https://s.pinimg.com/ct/core.js
Source: core[1].js.2.dr	String found in binary or memory: https://s.pinimg.com/ct/lib/main.dec9de31.js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://s.ytimg.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://schema.org/WebPage
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.addres
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://siteassets.parastorage.com/pages/singlePage/viewerViewModeJson
Source: gtm[1].js.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://static.doubleclick.net
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/client/pfavico.ico
Source: imagestore.dat.2.dr	String found in binary or memory: https://static.parastorage.com/client/pfavico.ico~
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_DefaultAreaSkin.8ed14e7d.chun
Source: covid-registration-form[1].htm.2.dr, Container_DefaultAreaSkin.ed6e3dcf.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_DefaultAreaSkin.ed6e3dcf.chun
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.c5dfc626.chunk.
Source: Container_RectangleArea.d3c310c8.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.d3c310c8.chunk.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.6190b6a4.chunk.min.css
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js
Source: DocumentMedia.73dfebf3.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, DropDownMenu_OverlineMenuButtonSkin.b044c7e9.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DropDownMenu_OverlineMenuButtonSkin.b04
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DropDownMenu_OverlineMenuButtonSkin.b9e
Source: covid-registration-form[1].htm.2.dr, FiveGridLine_SolidLine.539a3d84.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.539a3d84.chunk.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.9e475e20.chunk.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js
Source: MeshGroup.132daa54.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js.map
Source: bootstrap-components-classic.4e8d8bbf.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-classic.4e8d8bbf.c
Source: covid-registration-form[1].htm.2.dr, bootstrap-components-common.b37b13ef.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-common.b37b13ef.ch
Source: covid-registration-form[1].htm.2.dr, bootstrap-components-responsive.8ac86d6d.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-responsive.8ac86d6
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/componentSdks.f73a9d18.bundle.min.js
Source: covid-registration-form[1].htm.2.dr, thunderboltElements.ab20d4a4.bundle.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/thunderboltElements.ab20d4a4.bundle.min
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/profile-card-tpa-ooi/1.206.0/ProfileCardController.bundle.mi
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/profile-card-tpa-ooi/1.206.0/viewerScript.bundle.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa-members-viewer-app/1.744.0/app.bundle.min.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v11/wixMade
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v7/helvetic
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa/1.1518.0
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/tag-manager-client/1.282.0/siteTags.bundle.min.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.7107.0
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-custom-elements.min.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/main-r.min.js
Source: internet-explorer[1].htm.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-perf-measure/1.401.0/wix-perf-measure.bundle.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/IE-deprecation.inline.50637f1e.chunk.mi
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js
Source: activePopup.1e06371f.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, animations-vendors.3ce71584.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/animations-vendors.3ce71584.chunk.min.j
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bi-common.inline.8c2ead74.chunk.min.js.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bi.inline.3becbef1.chunk.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bi.inline.3becbef1.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, bootstrap-features.53cf58f0.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bootstrap-features.53cf58f0.chunk.min.j
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/createPlatformWorker.inline.e3b97341.ch
Source: custom-elements-polyfill.408af93e.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/custom-elements-polyfill.408af93e.chunk
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js
Source: dynamicPages.ea31d9ca.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/externals-registry.inline.e8e6f495.chun
Source: covid-registration-form[1].htm.2.dr, headerPlaceholderHeight.27bbf85b.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/headerPlaceholderHeight.27bbf85b.chunk.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/initCustomElements.inline.580e1a98.chun
Source: intersection-observer-polyfill.5f183a8d.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/intersection-observer-polyfill.5f183a8d
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/main.c9d8a82e.chunk.min.js
Source: main.c9d8a82e.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/main.c9d8a82e.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.751f312e.chunk.min.js
Source: ooi.751f312e.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.751f312e.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, ooiTpaSharedConfig.886a4044.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/ooiTpaSharedConfig.886a4044.chunk.min.j
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js
Source: page-features.087592ee.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/pageTransitions.be89e7bb.chunk.min.js
Source: pageTransitions.be89e7bb.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/pageTransitions.be89e7bb.chunk.min.js.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js
Source: platform.5b826978.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platformPubsub.5f1d9daf.chunk.min.js
Source: platformPubsub.5f1d9daf.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platformPubsub.5f1d9daf.chunk.min.js.ma
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/protectedPages.c3173846.chunk.min.js
Source: protectedPages.c3173846.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/protectedPages.c3173846.chunk.min.js.ma
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/screenIn.190ec987.chunk.min.js
Source: screenIn.190ec987.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/screenIn.190ec987.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/sendFedopsLoadStarted.inline.e51d54e2.c
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/siteMembers.cad616aa.chunk.min.js
Source: siteMembers.cad616aa.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/siteMembers.cad616aa.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/sosp.704d10a0.chunk.min.js
Source: sosp.704d10a0.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/sosp.704d10a0.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpa.f6e17687.chunk.min.js
Source: tpa.f6e17687.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpa.f6e17687.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js
Source: tpaCommons.5946c45b.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tslib.inline.6f03d6e7.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js
Source: vendor-react-dom.7455c905.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react.inline.98bfcadc.chunk.min.
Source: covid-registration-form[1].htm.2.dr, vendors~vendor-react-dom.076a3201.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendors~vendor-react-dom.076a3201.chunk
Source: vendors~wix-resize-observer-polyfill.a82cd12d.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendors~wix-resize-observer-polyfill.a8
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/webpack-runtime.b2594e07.bundle.min.js.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegister.inline.62dd41f7.c
Source: windowMessageRegistrar.df5ac917.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegistrar.df5ac917.chunk.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/wix-code-sdk-providers.3a33b93f.chunk.m
Source: viewerComponentService.bundle[1].js.2.dr, dataRefs.bundle.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-ui-santa/1.1559.0/
Source: internet-explorer[1].htm.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/core-js-bundle
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/focus-within-polyfill
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/lodash
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/requirejs-bolt
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/whatwg-fetch
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.wixstatic.com/media/311dce_77ca1007cf83485da0b7e16ffb9735ac~mv2.png
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.wixstatic.com/media/311dce_77ca1007cf83485da0b7e16ffb9735ac~mv2.png/v1/fill/w_1200
Source: analytics[1].js.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/accounts/answer/3118621?hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome/?hl=en&rd=3#topic=7438008
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome/answer/95414
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome/answer/95414?co=GENIE.Platform%3DDesktop&hl=hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome?p=chromecom_home&h1=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome?p=mac_compatibility
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chromebook/answer/177889
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chromebook/answer/177889?hl=en
Source: analytics[1].js.2.dr, f[1].txt.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: installer.min[1].js.18.dr	String found in binary or memory: https://testflight.apple.com/join/LPQmtkUs
Source: chrome[1].htm.18.dr	String found in binary or memory: https://tools.google.com
Source: fetch.umd[1].js.2.dr	String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2
Source: chrome[1].htm.18.dr	String found in binary or memory: https://twitter.com/googlechrome
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://users.wix.com/wix-users
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.chromeexperiments.com/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.chromium.org/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.chromium.org/chromium-os
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/
Source: covid-registration-form[1].htm.2.dr, ~DF8500B3B48B442132.TMP.1.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/covid-registration-form
Source: {81439702-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/covid-registration-formRoot
Source: {81439702-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/covid-registration-formaccineclinic.com/covid-registration-fo
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google-analytics.com
Source: chrome[1].htm.18.dr, js[1].js.18.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: f[2].txt.2.dr	String found in binary or memory: https://www.google.ch/pagead/1p-user-list/642100862/?random
Source: f[3].txt.2.dr	String found in binary or memory: https://www.google.ch/pagead/1p-user-list/819384062/?random
Source: chrome[1].htm.18.dr, gtm[1].js.18.dr, gtm[1].js.2.dr, js[1].js.18.dr, js[1].js.2.dr	String found in binary or memory: https://www.google.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/cleanup-tool
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/static/images/chrome-logo.svg
Source: imagestore.dat.18.dr	String found in binary or memory: https://www.google.com/chrome/static/images/favicons/favicon-16x16.png
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/static/images/homepage/homepage.png
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chromebook/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chromecast/
Source: internet-explorer[1].htm.2.dr, {9CBCF508-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/
Source: {9CBCF508-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/Root
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/n
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/zGoogle
Source: f[2].txt.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/642100862/?random
Source: f[3].txt.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/819384062/?random
Source: gtm[1].js.2.dr	String found in binary or memory: https://www.google.com/pagead/conversion_async.js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/support/chrome/bin/answer.py?answer=96817&hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com
Source: gtm[1].js.18.dr, js[2].js.18.dr, gtm[1].js.2.dr, f[1].txt.2.dr	String found in binary or memory: https://www.googletagmanager.com/debug/bootstrap
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-26908291-4
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-PZ6TRJB
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.gstatic.com/external_hosted/autotrack/autotrack.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://www.mozilla.org/en-US/firefox/new/
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://www.optimantra.com/optimus/patient/patientaccess/servicesall?pid=UENVaHY2UFg4RXdMVmlTUzIzQXh
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.wikidata.org/wiki/Q777
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://www.wix.com/favicon.ico
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://www.wix.com/outdated-browser/internet-explorer
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://www.wix.com/outdated-browser/internet-explorer?forceBolt=&ssrIndicator=false
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.youtube.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.youtube.com/googlechrome
Source: main.v2.min[1].js.18.dr, gtm[1].js.18.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.youtube.com/user/googlechrome

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49714 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49752 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49767 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49766 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49789 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49821 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49828 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49827 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49838 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49842 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49843 version: TLS 1.2

System Summary:

Classification label

Source: classification engine

Classification label: clean0.win@5/227@34/20

Creates files inside the user directory

Source: C:\Program Files\internet explorer\iexplore.exe

File created: C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High

Jump to behavior

Creates temporary files

Source: C:\Program Files\internet explorer\iexplore.exe

File created: C:\Users\user\AppData\Local\Temp\~DF53B51CBC940AA236.TMP

Jump to behavior

Reads ini files

Source: C:\Program Files\internet explorer\iexplore.exe

File read: C:\Users\desktop.ini

Jump to behavior

Spawns processes

Source: unknown	Process created: C:\Program Files\internet explorer\iexplore.exe 'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:17410 /prefetch:2
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:82966 /prefetch:2
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:17410 /prefetch:2			Jump to behavior
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:82966 /prefetch:2			Jump to behavior

Found GUI installer (many successful clicks)

Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree
Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree
Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree
Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected

Uses new MSVCR Dlls

Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe

File opened: C:\Program Files (x86)\Java\jre1.8.0_211\bin\msvcr100.dll

Jump to behavior