Play interactive tour

Edit tour

Analysis Report https://www.foothillsvaccineclinic.com/covid-registration-form

Overview

General Information

Sample URL:	https://www.foothillsvaccineclinic.com/covid-registration-form
Analysis ID:	379346
Infos:
Most interesting Screenshot:

Detection

Score:	0
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

No high impact signatures.

Classification

Startup

System is w10x64

iexplore.exe (PID: 5620 cmdline: 'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding MD5: 6465CB92B25A7BC1DF8E01D8AC5E7596)

iexplore.exe (PID: 5556 cmdline: 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:17410 /prefetch:2 MD5: 071277CC2E3DF41EEEA8013E2AB58D5A)

iexplore.exe (PID: 6664 cmdline: 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:82966 /prefetch:2 MD5: 071277CC2E3DF41EEEA8013E2AB58D5A)

cleanup

Malware Configuration

No configs have been found

Yara Overview

No yara matches

Sigma Overview

No Sigma rule has matched

Signature Overview

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe

File opened: C:\Program Files (x86)\Java\jre1.8.0_211\bin\msvcr100.dll

Jump to behavior

Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49714 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49752 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49767 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49766 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49789 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49821 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49828 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49827 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49838 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49842 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49843 version: TLS 1.2

Source: chrome[1].htm.18.dr	String found in binary or memory: <link rel="preconnect" href="https://www.youtube.com" > equals www.youtube.com (Youtube)
Source: chrome[1].htm.18.dr	String found in binary or memory: <a href="https://www.facebook.com/googlechrome/" title="Facebook" target="_blank" rel="noopener nofollow" class=" chr-footer-social__link" ga-on="click" ga-event-category="chrome-footer-social" ga-event-action="clicked" ga-event-label="follow-us:facebook" data-g-event="chrome-footer-social" data-g-action="clicked" data-g-label="follow-us:facebook" > equals www.facebook.com (Facebook)
Source: chrome[1].htm.18.dr	String found in binary or memory: <a href="https://www.youtube.com/user/googlechrome" title="Youtube" target="_blank" rel="noopener nofollow" class=" chr-footer-social__link" ga-on="click" ga-event-category="chrome-footer-social" ga-event-action="clicked" ga-event-label="follow-us:youtube" data-g-event="chrome-footer-social" data-g-action="clicked" data-g-label="follow-us:youtube" > equals www.youtube.com (Youtube)
Source: chrome[1].htm.18.dr	String found in binary or memory: "https://www.facebook.com/googlechrome", equals www.facebook.com (Facebook)
Source: chrome[1].htm.18.dr	String found in binary or memory: "https://www.youtube.com/googlechrome", equals www.youtube.com (Youtube)
Source: gtm[1].js.2.dr	String found in binary or memory: "vtp_html":"\n\u003Cscript type=\"text\/gtmscript\"\u003E!function(b,e,f,g,a,c,d){b.fbq\|\|(a=b.fbq=function(){a.callMethod?a.callMethod.apply(a,arguments):a.queue.push(arguments)},b._fbq\|\|(b._fbq=a),a.push=a,a.loaded=!0,a.version=\"2.0\",a.queue=[],c=e.createElement(f),c.async=!0,c.src=g,d=e.getElementsByTagName(f)[0],d.parentNode.insertBefore(c,d))}(window,document,\"script\",\"\/\/connect.facebook.net\/en_US\/fbevents.js\");fbq(\"init\",\"1566517726971189\");fbq(\"track\",\"PageView\");\u003C\/script\u003E\n\u003Cnoscript\u003E\u003Cimg height=\"1\" width=\"1\" style=\"display:none\" src=\"https:\/\/www.facebook.com\/tr?id=1566517726971189\u0026amp;ev=PageView\u0026amp;noscript=1\"\u003E\u003C\/noscript\u003E\n", equals www.facebook.com (Facebook)
Source: identity[1].js.2.dr	String found in binary or memory: (function(a,b,c,d){var e={exports:{}};e.exports;(function(){var f=a.fbq;f.execStart=a.performance&&a.performance.now&&a.performance.now();if(!function(){var b=a.postMessage\|\|function(){};if(!f){b({action:"FB_LOG",logType:"Facebook Pixel Error",logMessage:"Pixel code is not installed correctly on this page"},"");"error"in console&&console.error("Facebook Pixel Error: Pixel code is not installed correctly on this page");return!1}return!0}())return;f.__fbeventsModules\|\|(f.__fbeventsModules={},f.__fbeventsResolvedModules={},f.getFbeventsModules=function(a){f.__fbeventsResolvedModules[a]\|\|(f.__fbeventsResolvedModules[a]=f.__fbeventsModules[a]());return f.__fbeventsResolvedModules[a]},f.fbIsModuleLoaded=function(a){return!!f.__fbeventsModules[a]},f.ensureModuleRegistered=function(b,a){f.fbIsModuleLoaded(b)\|\|(f.__fbeventsModules[b]=a)});f.ensureModuleRegistered("signalsFBEventsGetIwlUrl",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=f.getFbeventsModules("signalsFBEventsGetTier");e.exports=function(b,c){c=a(c);c=c==null?"www.facebook.com":"www."+c+".facebook.com";return"https://"+c+"/signals/iwl.js?pixel_id="+b}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("signalsFBEventsGetTier",function(){return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)});f.ensureModuleRegistered("SignalsFBEvents.plugins.iwlbootstrapper",function(){return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var c=f.getFbeventsModules("SignalsFBEventsIWLBootStrapEvent"),d=f.getFbeventsModules("SignalsFBEventsLogging"),g=f.getFbeventsModules("SignalsFBEventsNetworkConfig"),h=f.getFbeventsModules("SignalsFBEventsPlugin"),i=f.getFbeventsModules("signalsFBEventsGetIwlUrl"),j=f.getFbeventsModules("signalsFBEventsGetTier"),k=d.logUserError,l=/^https:\/\/.\.facebook\.com$/i,m="FACEBOOK_IWL_CONFIG_STORAGE_KEY",n=a.sessionStorage?a.sessionStorage:{getItem:function(a){return null},removeItem:function(a){},setItem:function(a,b){}};e.exports=new h(function(d,e){function h(c,d){var e=b.createElement("script");e.async=!0;e.onload=function(){if(!a.FacebookIWL\|\|!a.FacebookIWL.init)return;var b=j(g.ENDPOINT);b!=null&&a.FacebookIWL.set&&a.FacebookIWL.set("tier",b);d()};a.FacebookIWLSessionEnd=function(){n.removeItem(m),a.close()};e.src=i(c,g.ENDPOINT);b.body&&b.body.appendChild(e)}var o=!1,p=function(a){return!!(e&&e.pixelsByID&&Object.prototype.hasOwnProperty.call(e.pixelsByID,a))};function q(){if(o)return;var b=n.getItem(m);if(!b)return;b=JSON.parse(b);var c=b.pixelID,d=b.graphToken,e=b.sessionStartTime;o=!0;h(c,function(){var b=p(c)?c:null;a.FacebookIWL.init(b,d,e)})}function r(b){if(o)return;h(b,func
Source: msapplication.xml0.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x5927674f,0x01d726aa</date><accdate>0x5927674f,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.facebook.com (Facebook)
Source: msapplication.xml0.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x5927674f,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Facebook.url"/></tile></msapplication></browserconfig> equals www.facebook.com (Facebook)
Source: msapplication.xml5.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x5930f0ab,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.twitter.com (Twitter)
Source: msapplication.xml5.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x59335302,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Twitter.url"/></tile></msapplication></browserconfig> equals www.twitter.com (Twitter)
Source: msapplication.xml7.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x5935b559,0x01d726aa</date><accdate>0x5935b559,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig> equals www.youtube.com (Youtube)
Source: msapplication.xml7.1.dr	String found in binary or memory: <browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x5935b559,0x01d726aa</date><accdate>0x5935b559,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Youtube.url"/></tile></msapplication></browserconfig> equals www.youtube.com (Youtube)
Source: gtm[1].js.18.dr	String found in binary or memory: F=W("YT"),E=function(){e(C)};J(t.vtp_gtmOnSuccess);if(F)F.ready&&F.ready(E);else{var H=W("onYouTubeIframeAPIReady");nn("onYouTubeIframeAPIReady",function(){H&&H();E()});J(function(){for(var M=W("document"),N=M.getElementsByTagName("script"),Q=N.length,ka=0;ka<Q;ka++){var S=N[ka].getAttribute("src");if(b(S,"iframe_api")\|\|b(S,"player_api"))return}for(var K=M.getElementsByTagName("iframe"),T=K.length,U=0;U<T;U++)if(!u&&c(K[U],C.af)){O("https://www.youtube.com/iframe_api");u=!0;break}})}}else J(t.vtp_gtmOnSuccess)} equals www.youtube.com (Youtube)
Source: main.v2.min[1].js.18.dr	String found in binary or memory: function Nf(a){return new Promise(function(b){var c=document.createElement("script");c.src="https://www.youtube.com/iframe_api";var d=document.getElementsByTagName("script")[0];d.parentNode.insertBefore(c,d);window.onYouTubeIframeAPIReady=function(){a.c=Of(a,a.l,a.g,b)}})}f.Ib=function(a){if(!this.h)return!1;if(27===a.keyCode\|\|"Escape"===a.key\|\|"Esc"===a.key)return this.close(),!0};var Pf={Accordion:hc,AccordionGroup:ic,AnchorArrow:jc,AnimatedSvg:lc,AnimatedTabs:oc,AnimationTrigger:rc,Carousel:tc,Collapsible:xc,ContentSwitcherTab:yc,ContentToggle:Zc,CookieBanner:dd,EnvironmentDetect:jd,ExpandableField:kd,Footer:nd,Form:Ad,HaTSManager:Nd,Header:Yd,HeroSwitcher:ie,Jumplinks:ke,LazyLoader:me,Modal:Y,PanelSwitcher:ue,Popup:we,RedirectByEnv:xe,ReplaySubanimations:ye,Scrollable:ze,SearchBar:De,Slider:Oe,Survey:gf,Tabs:jf,ThemeImages:lf,ThemeToggle:sf,TrackedSection:vf,TranslateShowcase:zf, equals www.youtube.com (Youtube)
Source: gtm[1].js.2.dr	String found in binary or memory: function pp(a,b){}function qp(a,b,c){};var rp=!!n.MutationObserver,sp=void 0,tp=function(a){if(!sp){var b=function(){var c=K.body;if(c)if(rp)(new MutationObserver(function(){for(var e=0;e<sp.length;e++)M(sp[e])})).observe(c,{childList:!0,subtree:!0});else{var d=!1;fg(c,"DOMNodeInserted",function(){d\|\|(d=!0,M(function(){d=!1;for(var e=0;e<sp.length;e++)M(sp[e])}))})}};sp=[];K.body?b():M(b)}sp.push(a)};var vp=["www.youtube.com","www.youtube-nocookie.com"],wp,xp=!1,yp=0; equals www.youtube.com (Youtube)
Source: gtm[1].js.18.dr	String found in binary or memory: var q=["www.youtube.com","www.youtube-nocookie.com"],p={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},r,u=!1;(function(t){Z.__ytl=t;Z.__ytl.h="ytl";Z.__ytl.i=!0;Z.__ytl.priorityOverride=0})(function(t){t.vtp_triggerStartOption?n(t):ei(function(){n(t)})})}(); equals www.youtube.com (Youtube)

Source: unknown

DNS traffic detected: queries for: www.foothillsvaccineclinic.com

Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://dev.wix.com/
Source: santa-components.prod[1].js.2.dr	String found in binary or memory: http://feross.org
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg"
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://investors.wix.com/
Source: modernizr[1].js.18.dr	String found in binary or memory: http://modernizr.com/download/#-fontface-backgroundsize-borderimage-borderradius-boxshadow-flexbox-f
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: bolt-custom-elements.min[1].js.2.dr	String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: minified[1].js.2.dr	String found in binary or memory: http://rock.mit-license.org
Source: chrome[1].htm.18.dr	String found in binary or memory: http://schema.org
Source: animation.gsap.min[1].js.18.dr	String found in binary or memory: http://scrollmagic.io
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg"
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg"
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg
Source: bolt-main-prod-old[1].js.2.dr	String found in binary or memory: http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg"
Source: internet-explorer[1].htm.2.dr, helvetica[1].css.2.dr	String found in binary or memory: http://webfonts.fonts.com
Source: msapplication.xml.1.dr	String found in binary or memory: http://www.amazon.com/
Source: autotrack[1].js.18.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: msapplication.xml1.1.dr	String found in binary or memory: http://www.google.com/
Source: msapplication.xml2.1.dr	String found in binary or memory: http://www.live.com/
Source: msapplication.xml3.1.dr	String found in binary or memory: http://www.nytimes.com/
Source: msapplication.xml4.1.dr	String found in binary or memory: http://www.reddit.com/
Source: msapplication.xml5.1.dr	String found in binary or memory: http://www.twitter.com/
Source: msapplication.xml6.1.dr	String found in binary or memory: http://www.wikipedia.com/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://www.wix.com/blog
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: http://www.wix.com/jobs/main
Source: msapplication.xml7.1.dr	String found in binary or memory: http://www.youtube.com/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://2542116.fls.doubleclick.net
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=1088143482153;
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=4025465958136;
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=832802698175;g
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=8924832293155;
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://8ea65f19-a2b0-4d7b-8ce4-dc2a574b5d7b.filesusr.com/ugd/c9af94_a6d9f3b81ab3410cb9899734fb328f4
Source: chrome[1].htm.18.dr	String found in binary or memory: https://about.google/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://about.google/products/
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://ade.googlesyndication.com/ddm/activity
Source: chrome[1].htm.18.dr	String found in binary or memory: https://adservice.google.com
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://adservice.google.com/ddm/regclk
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: analytics[1].js.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: f[1].txt.2.dr	String found in binary or memory: https://bid.g.doubleclick.net/xbbe/pixel?d=KAE
Source: chrome[1].htm.18.dr	String found in binary or memory: https://blog.google/products/chrome/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://blog.google/products/chrome/celebrate-black-creative-visions-chrome/
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://bo.wix.com/suricate/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://browser.sentry-cdn.com/4.6.2/bundle.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://browser.sentry-cdn.com/5.21.4/bundle.min.js
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=3056
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=4118
Source: gtm[1].js.18.dr, js[2].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: gtm[1].js.2.dr	String found in binary or memory: https://cdn.taboola.com/libtrc/unip/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chrome.google.com/webstore/category/app/8-education?hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chrome.google.com/webstore/category/collection/artist_themes
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/browser/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/browser/download/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/devices/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromeenterprise.google/os/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://chromium.googlesource.com/chromium/src/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://cloud.google.com/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://de.wix.com/outdated-browser/internet-explorer
Source: chrome[1].htm.18.dr	String found in binary or memory: https://developer.chrome.com/webstore/?hl=en
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://developers.google.com/maps/faq#languagesupport
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/language
Source: installer.min[1].js.18.dr	String found in binary or memory: https://dl.google.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://edu.google.com/products/devices/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://edu.google.com/products/more-products/
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://en.wix.com/outdated-browser/internet-explorer
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://es.wix.com/outdated-browser/internet-explorer
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://facebook.github.io/react/docs/top-level-api.html#react.createclass
Source: react.production.min[1].js.2.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: santa-components.prod[1].js.2.dr	String found in binary or memory: https://feross.org/opensource
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chrome[1].htm.18.dr	String found in binary or memory: https://fonts.gstatic.com
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/amaticsc/v16/TUZ3zwprpvBS1izr_vOMscGKfLUE.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/amaticsc/v16/TUZyzwprpvBS1izr_vOECOSZ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/anton/v15/1Ptgg87LROyAm3Kz-Ck.woff)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHpv4kjgoGqM7E_A8s5ynghnQci.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHpv4kjgoGqM7E_Ass5ynghnQci.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHpv4kjgoGqM7E_DMs5ynghnQ.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHqv4kjgoGqM7E3t-4s51ostz0rdg.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHqv4kjgoGqM7E3t-4s6Fostz0rdom9.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHqv4kjgoGqM7E3t-4s6Vostz0rdom9.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHrv4kjgoGqM7E_Cfs0wH8DnzcjTrA.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHrv4kjgoGqM7E_Cfs1wH8DnzcjTrA.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHrv4kjgoGqM7E_Cfs7wH8Dnzcj.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHsv4kjgoGqM7E_CfOA5WogvToJdLm8BvE.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHsv4kjgoGqM7E_CfOA5WohvToJdLm8BvE.woff2)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v4/7cHsv4kjgoGqM7E_CfOA5WouvToJdLm8.woff2)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHpv4kjgoGqM7E_DMs_.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHqv4kjgoGqM7E3t-4s51oq.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHrv4kjgoGqM7E_Cfs7wHk.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/barlow/v5/7cHsv4kjgoGqM7E_CfOA5WouvTw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/basic/v10/xfu_0WLxV2_XKTNw6Fc.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDQ311QOP6BJUr4zfKH.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDS311QOP6BJUr4yMKDtbw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDT311QOP6BJUrwdteUkp8F.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/caudex/v10/esDV311QOP6BJUr4yMo4kK8BMpM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/chelseamarket/v8/BCawqZsHqfr89WNP_IApC8tzKChiJgk.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cinzel/v11/8vIU7ww63mVu7gtR-kwKxNvkNOjw-jHgfY3lCw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cinzel/v11/8vIU7ww63mVu7gtR-kwKxNvkNOjw-tbnfY3lCw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cookie/v12/syky-y18lb0tSbf9kgqU.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/corben/v14/LYjAdGzzklQtCMpFHCZQqnos.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/corben/v14/LYjDdGzzklQtCMpNpwND.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3WmX5slCNuHLi8bLeY9MK7whWMhyjYrEPzvD-KzhU.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3YmX5slCNuHLi8bLeY9MK7whWMhyjQEl5fvg-O.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3ZmX5slCNuHLi8bLeY9MK7whWMhyjYrEtImSw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/cormorantgaramond/v10/co3bmX5slCNuHLi8bLeY9MK7whWMhyjYqXtM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/damion/v10/hv-XlzJ3KEUe_YZkamww.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dancingscript/v16/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7B1i03Sup6.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/dancingscript/v16/If2cXTr6YS-zF4S-kcSWSVi_sxjsohD9F50Ruu7BMSo3Sup6.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-6_RkBI95.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGDmQSNjdsmc35JDF1K5E55YMjF_7DPuGi-DPNkBI95.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7dbR799U64.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/ebgaramond/v15/SlGFmQSNjdsmc35JDF1K5GRwUjcdlttVFm-rI7e8QL99U64.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/enriqueta/v10/gokpH6L7AUFrRvV44HVr92-3n9xD.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/enriqueta/v10/goksH6L7AUFrRvV44HVjTEqk.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/forum/v11/6aey4Ky-Vb8Ew8IROpQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/frederickathegreat/v10/9Bt33CxNwt7aOctW2xjbCstzwVKsIBVV--SjxbE.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v27/4UaGrENHsxJlGDuGo1OIlI3K.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v27/4UabrENHsxJlGDuGo1OIlLU94bt3.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/jockeyone/v10/HTxpL2g2KjCFj4x8WI6AnIHxGg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-qwjwOK3Ps5GSJlNNkMalnrxShJj4wo7AR-pHveD0NKIie.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-qwjwOK3Ps5GSJlNNkMalnrxShJj4wo7AR-pHvnzoNKIie.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-swjwOK3Ps5GSJlNNkMalNpiZe_ldbOR4W71msR349LA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/josefinslab/v13/lW-swjwOK3Ps5GSJlNNkMalNpiZe_ldbOR4W776rR349LA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/jura/v16/z7NOdRfiaC4Vd8hhoPzfb5vBTP1d7ZumR_4.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/jura/v16/z7NOdRfiaC4Vd8hhoPzfb5vBTP266pumR_4.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/kellyslab/v11/-W_7XJX0Rz3cxUnJC5t6fkQLeA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u8w4BMUTPHjxsAXC-s.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u9w4BMUTPHh6UVSwiPHw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6u_w4BMUTPHjxsI5wq_Gwfr.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v17/S6uyw4BMUTPHjx4wWA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQCg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcY.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/librebaskerville/v9/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxU.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/lobster/v23/neILzCirqoswsqX9zoKmNQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/marckscript/v11/nwpTtK2oNgBA3Or78gapdwuyyCg5.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/monoton/v10/5h1aiZUrOngCibe4TkHLRA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUPjIg1_i6t8kCHKm459WxZcgvz_PZ2.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUQjIg1_i6t8kCHKm459WxRyS7g.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTURjIg1_i6t8kCHKm45_dJE3gnD-A.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v15/JTUSjIg1_i6t8kCHKm459WlhzQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/mrdehaviland/v9/OpNVnooIhJj96FdB73296ksbOg3F60U.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/niconne/v10/w8gaH2QvRug1_rTfnQyn3w.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJ2dNDF2Yv9qppOePKYRP12Zjte.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJodNDF2Yv9qppOePKYRP12Ywtan0g.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvW.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/noticiatext/v10/VuJrdNDF2Yv9qppOePKYRP12YwPhulvShDM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensanscondensed/v15/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMQQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensanscondensed/v15/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMQQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/oswald/v36/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiYw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/oswald/v36/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiYw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XQDmdMWRiN1_T9Z7Tc0FWJhr6j9w.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XSDmdMWRiN1_T9Z7xizfmLtro.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XTDmdMWRiN1_T9Z7Tc2O6slQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/overlock/v10/Z9XVDmdMWRiN1_T9Z7TZ6Oo.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/patrickhand/v14/LDI1apSQOAYtSuYWp8ZhfYe8XsLN.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/play/v12/6ae84K2oVqwItm4TCpAy3A.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/play/v12/6aez4K2oVqwIvtU2GQ.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_k-UXtHA
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFRD-vYSZviVYUb_rj3ij__anPXDTnCjmHKM4nYO7KN_qiTXtHA
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtU.
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/playfairdisplay/v22/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtU.
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLCz7Z1xlEw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiDyp8kv8JHgFVrJJLmy15VF9eI.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiEyp8kv8JHgFVrJJfedA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v15/pxiGyp8kv8JHgFVrJJLucHtG.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/questrial/v13/QdVUSTchPBm7nuUeVf70viFj.woff)
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/questrial/v9/QdVUSTchPBm7nuUeVf70viFluW44JQ.woff2)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4WjMDrMfJg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Pt_g8zYS_SKggPNyCgSQamb1W0lwk4S4Y_LDrMfJg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrc.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/raleway/v19/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrc.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOjCnqEu92Fr1Mu51TzBic6CsI.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOkCnqEu92Fr1Mu51xIIzQ.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9vAA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc-.woff)
Source: css[1].css.18.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5g.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/rozhaone/v8/AlZy_zVFtYP12Zncg2kRcn3_.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/sacramento/v8/buEzpo6gcdjy0EiZMBUG4C0f-w.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/sail/v11/DPEjYwiBxwYJJBPJBw.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/sarina/v11/-F6wfjF3ITQwasLRKUrT.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/signika/v12/vEFO2_JTCgwQ5ejvMV0O96D01E8J0tJXHKbBjMg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/signika/v12/vEFO2_JTCgwQ5ejvMV0O96D01E8J0tKwG6bBjMg.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/spinnaker/v12/w8gYH2oyX-I0_rvR6HmX23YM.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/suezone/v5/taiJGmd_EZ6rqscQgOFMmo0.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY9z_wNahGAdqQ43Rh_ebrnlwyYfEPxPoGU3ms5pIfe.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY9z_wNahGAdqQ43Rh_ebrnlwyYfEPxPoGUOWw5pIfe.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K0nXBi8JoA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/worksans/v9/QGY_z_wNahGAdqQ43RhVcIgYT2Xz5u32K67QBi8JoA.woff)
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://fr.wix.com/outdated-browser/internet-explorer
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://frog.wix.com/bt?src=29&evid=3
Source: bundle.min[1].js.2.dr	String found in binary or memory: https://github.com/getsentry/sentry-javascript
Source: gtm[1].js.2.dr	String found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: imageClientApi[1].js.2.dr	String found in binary or memory: https://github.com/madrobby/zepto/blob/master/MIT-LICENSE
Source: imageClientApi[1].js.2.dr	String found in binary or memory: https://github.com/madrobby/zepto/blob/master/src/detect.js#files
Source: minified[1].js.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: f[1].txt.18.dr, f[5].txt.18.dr, f[2].txt.18.dr, f[4].txt.18.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1001175813/?random
Source: f[1].txt0.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1006927621/?random
Source: gsap.min[1].js.2.dr	String found in binary or memory: https://greensock.com
Source: gsap.min[1].js.2.dr	String found in binary or memory: https://greensock.com/standard-license
Source: chrome[1].htm.18.dr	String found in binary or memory: https://gsuite.google.com/
Source: installer.min[1].js.18.dr	String found in binary or memory: https://itunes.apple.com/us/app/chrome/id535886823
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://ja.wix.com/outdated-browser/internet-explorer
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://ko.wix.com/outdated-browser/internet-explorer
Source: lodash.min[1].js.2.dr	String found in binary or memory: https://npms.io/search?q=ponyfill.
Source: gtm[1].js.18.dr, gtm[1].js.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: gtm[1].js.18.dr, gtm[1].js.2.dr, js[1].js.18.dr	String found in binary or memory: https://pagead2.googlesyndication.com/
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.android.chrome
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.chrome.beta
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.chrome.canary
Source: installer.min[1].js.18.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.chrome.dev
Source: chrome[1].htm.18.dr	String found in binary or memory: https://policies.google.com/technologies/cookies?hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://policies.google.com/terms
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://polyfill.io/v3/polyfill.min.js?features=fetch
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://pt.wix.com/outdated-browser/internet-explorer
Source: insight.min[1].js.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect?
Source: insight.min[1].js.2.dr	String found in binary or memory: https://px.ads.linkedin.com/insight_tag_errors.gif?
Source: react.production.min[1].js.2.dr, react-dom.production.min[1].js.2.dr	String found in binary or memory: https://reactjs.org/docs/error-decoder.html?invariant=
Source: wixui.Captcha.chunk[1].js.2.dr	String found in binary or memory: https://recaptcha.net/recaptcha/api.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://ru.wix.com/outdated-browser/internet-explorer
Source: gtm[1].js.2.dr	String found in binary or memory: https://s.pinimg.com/ct/core.js
Source: core[1].js.2.dr	String found in binary or memory: https://s.pinimg.com/ct/lib/main.dec9de31.js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://s.ytimg.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://schema.org/WebPage
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.addres
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://siteassets.parastorage.com/pages/singlePage/viewerViewModeJson
Source: gtm[1].js.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://static.doubleclick.net
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/client/pfavico.ico
Source: imagestore.dat.2.dr	String found in binary or memory: https://static.parastorage.com/client/pfavico.ico~
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_DefaultAreaSkin.8ed14e7d.chun
Source: covid-registration-form[1].htm.2.dr, Container_DefaultAreaSkin.ed6e3dcf.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_DefaultAreaSkin.ed6e3dcf.chun
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.c5dfc626.chunk.
Source: Container_RectangleArea.d3c310c8.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.d3c310c8.chunk.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.6190b6a4.chunk.min.css
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js
Source: DocumentMedia.73dfebf3.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, DropDownMenu_OverlineMenuButtonSkin.b044c7e9.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DropDownMenu_OverlineMenuButtonSkin.b04
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/DropDownMenu_OverlineMenuButtonSkin.b9e
Source: covid-registration-form[1].htm.2.dr, FiveGridLine_SolidLine.539a3d84.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.539a3d84.chunk.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.9e475e20.chunk.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js
Source: MeshGroup.132daa54.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js.map
Source: bootstrap-components-classic.4e8d8bbf.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-classic.4e8d8bbf.c
Source: covid-registration-form[1].htm.2.dr, bootstrap-components-common.b37b13ef.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-common.b37b13ef.ch
Source: covid-registration-form[1].htm.2.dr, bootstrap-components-responsive.8ac86d6d.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-responsive.8ac86d6
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/componentSdks.f73a9d18.bundle.min.js
Source: covid-registration-form[1].htm.2.dr, thunderboltElements.ab20d4a4.bundle.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/editor-elements/dist/thunderboltElements.ab20d4a4.bundle.min
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/profile-card-tpa-ooi/1.206.0/ProfileCardController.bundle.mi
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/profile-card-tpa-ooi/1.206.0/viewerScript.bundle.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa-members-viewer-app/1.744.0/app.bundle.min.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v11/wixMade
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v7/helvetic
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/santa/1.1518.0
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/tag-manager-client/1.282.0/siteTags.bundle.min.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.7107.0
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-custom-elements.min.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/main-r.min.js
Source: internet-explorer[1].htm.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-perf-measure/1.401.0/wix-perf-measure.bundle.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/IE-deprecation.inline.50637f1e.chunk.mi
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js
Source: activePopup.1e06371f.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, animations-vendors.3ce71584.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/animations-vendors.3ce71584.chunk.min.j
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bi-common.inline.8c2ead74.chunk.min.js.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bi.inline.3becbef1.chunk.min.js
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bi.inline.3becbef1.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, bootstrap-features.53cf58f0.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/bootstrap-features.53cf58f0.chunk.min.j
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/createPlatformWorker.inline.e3b97341.ch
Source: custom-elements-polyfill.408af93e.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/custom-elements-polyfill.408af93e.chunk
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js
Source: dynamicPages.ea31d9ca.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/externals-registry.inline.e8e6f495.chun
Source: covid-registration-form[1].htm.2.dr, headerPlaceholderHeight.27bbf85b.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/headerPlaceholderHeight.27bbf85b.chunk.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/initCustomElements.inline.580e1a98.chun
Source: intersection-observer-polyfill.5f183a8d.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/intersection-observer-polyfill.5f183a8d
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/main.c9d8a82e.chunk.min.js
Source: main.c9d8a82e.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/main.c9d8a82e.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.751f312e.chunk.min.js
Source: ooi.751f312e.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.751f312e.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr, ooiTpaSharedConfig.886a4044.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/ooiTpaSharedConfig.886a4044.chunk.min.j
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js
Source: page-features.087592ee.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/pageTransitions.be89e7bb.chunk.min.js
Source: pageTransitions.be89e7bb.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/pageTransitions.be89e7bb.chunk.min.js.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js
Source: platform.5b826978.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platformPubsub.5f1d9daf.chunk.min.js
Source: platformPubsub.5f1d9daf.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/platformPubsub.5f1d9daf.chunk.min.js.ma
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/protectedPages.c3173846.chunk.min.js
Source: protectedPages.c3173846.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/protectedPages.c3173846.chunk.min.js.ma
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/screenIn.190ec987.chunk.min.js
Source: screenIn.190ec987.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/screenIn.190ec987.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/sendFedopsLoadStarted.inline.e51d54e2.c
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/siteMembers.cad616aa.chunk.min.js
Source: siteMembers.cad616aa.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/siteMembers.cad616aa.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/sosp.704d10a0.chunk.min.js
Source: sosp.704d10a0.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/sosp.704d10a0.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpa.f6e17687.chunk.min.js
Source: tpa.f6e17687.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpa.f6e17687.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js
Source: tpaCommons.5946c45b.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/tslib.inline.6f03d6e7.chunk.min.js.map
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js
Source: vendor-react-dom.7455c905.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react.inline.98bfcadc.chunk.min.
Source: covid-registration-form[1].htm.2.dr, vendors~vendor-react-dom.076a3201.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendors~vendor-react-dom.076a3201.chunk
Source: vendors~wix-resize-observer-polyfill.a82cd12d.chunk.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/vendors~wix-resize-observer-polyfill.a8
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/webpack-runtime.b2594e07.bundle.min.js.
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegister.inline.62dd41f7.c
Source: windowMessageRegistrar.df5ac917.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegistrar.df5ac917.chunk.m
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-thunderbolt/dist/wix-code-sdk-providers.3a33b93f.chunk.m
Source: viewerComponentService.bundle[1].js.2.dr, dataRefs.bundle.min[1].js.2.dr	String found in binary or memory: https://static.parastorage.com/services/wix-ui-santa/1.1559.0/
Source: internet-explorer[1].htm.2.dr, covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/core-js-bundle
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/focus-within-polyfill
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/lodash
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/requirejs-bolt
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.parastorage.com/unpkg/whatwg-fetch
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.wixstatic.com/media/311dce_77ca1007cf83485da0b7e16ffb9735ac~mv2.png
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://static.wixstatic.com/media/311dce_77ca1007cf83485da0b7e16ffb9735ac~mv2.png/v1/fill/w_1200
Source: analytics[1].js.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/accounts/answer/3118621?hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome/?hl=en&rd=3#topic=7438008
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome/answer/95414
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome/answer/95414?co=GENIE.Platform%3DDesktop&hl=hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome?p=chromecom_home&h1=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chrome?p=mac_compatibility
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chromebook/answer/177889
Source: chrome[1].htm.18.dr	String found in binary or memory: https://support.google.com/chromebook/answer/177889?hl=en
Source: analytics[1].js.2.dr, f[1].txt.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: installer.min[1].js.18.dr	String found in binary or memory: https://testflight.apple.com/join/LPQmtkUs
Source: chrome[1].htm.18.dr	String found in binary or memory: https://tools.google.com
Source: fetch.umd[1].js.2.dr	String found in binary or memory: https://tools.ietf.org/html/rfc7230#section-3.2
Source: chrome[1].htm.18.dr	String found in binary or memory: https://twitter.com/googlechrome
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://users.wix.com/wix-users
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.chromeexperiments.com/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.chromium.org/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.chromium.org/chromium-os
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/
Source: covid-registration-form[1].htm.2.dr, ~DF8500B3B48B442132.TMP.1.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/covid-registration-form
Source: {81439702-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/covid-registration-formRoot
Source: {81439702-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.foothillsvaccineclinic.com/covid-registration-formaccineclinic.com/covid-registration-fo
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google-analytics.com
Source: chrome[1].htm.18.dr, js[1].js.18.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: f[2].txt.2.dr	String found in binary or memory: https://www.google.ch/pagead/1p-user-list/642100862/?random
Source: f[3].txt.2.dr	String found in binary or memory: https://www.google.ch/pagead/1p-user-list/819384062/?random
Source: chrome[1].htm.18.dr, gtm[1].js.18.dr, gtm[1].js.2.dr, js[1].js.18.dr, js[1].js.2.dr	String found in binary or memory: https://www.google.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/cleanup-tool
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/static/images/chrome-logo.svg
Source: imagestore.dat.18.dr	String found in binary or memory: https://www.google.com/chrome/static/images/favicons/favicon-16x16.png
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chrome/static/images/homepage/homepage.png
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chromebook/
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/chromecast/
Source: internet-explorer[1].htm.2.dr, {9CBCF508-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/
Source: {9CBCF508-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/Root
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/n
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://www.google.com/intl/en/chrome/zGoogle
Source: f[2].txt.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/642100862/?random
Source: f[3].txt.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/819384062/?random
Source: gtm[1].js.2.dr	String found in binary or memory: https://www.google.com/pagead/conversion_async.js
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.google.com/support/chrome/bin/answer.py?answer=96817&hl=en
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com
Source: gtm[1].js.18.dr, js[2].js.18.dr, gtm[1].js.2.dr, f[1].txt.2.dr	String found in binary or memory: https://www.googletagmanager.com/debug/bootstrap
Source: analytics[1].js.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-26908291-4
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-PZ6TRJB
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.gstatic.com/external_hosted/autotrack/autotrack.js
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://www.mozilla.org/en-US/firefox/new/
Source: covid-registration-form[1].htm.2.dr	String found in binary or memory: https://www.optimantra.com/optimus/patient/patientaccess/servicesall?pid=UENVaHY2UFg4RXdMVmlTUzIzQXh
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.wikidata.org/wiki/Q777
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://www.wix.com/favicon.ico
Source: internet-explorer[1].htm.2.dr	String found in binary or memory: https://www.wix.com/outdated-browser/internet-explorer
Source: ~DFF1E8BD5DBDDFE99F.TMP.1.dr	String found in binary or memory: https://www.wix.com/outdated-browser/internet-explorer?forceBolt=&ssrIndicator=false
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.youtube.com
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.youtube.com/googlechrome
Source: main.v2.min[1].js.18.dr, gtm[1].js.18.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chrome[1].htm.18.dr	String found in binary or memory: https://www.youtube.com/user/googlechrome

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443

Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49714 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49713 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.130.109:443 -> 192.168.2.3:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.202.131.150:443 -> 192.168.2.3:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.246.6.109:443 -> 192.168.2.3:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.230.61.179:443 -> 192.168.2.3:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.17.70.188:443 -> 192.168.2.3:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.194.217:443 -> 192.168.2.3:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.102.176.152:443 -> 192.168.2.3:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49748 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49752 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.19:443 -> 192.168.2.3:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 89.187.165.193:443 -> 192.168.2.3:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.3:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49767 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.1.44:443 -> 192.168.2.3:49766 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.174.11.69:443 -> 192.168.2.3:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.83.110.109:443 -> 192.168.2.3:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.35:443 -> 192.168.2.3:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49789 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 141.226.228.48:443 -> 192.168.2.3:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 185.60.216.6:443 -> 192.168.2.3:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.154:443 -> 192.168.2.3:49821 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49828 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.215.230:443 -> 192.168.2.3:49827 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49838 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.66:443 -> 192.168.2.3:49839 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49842 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.168.67:443 -> 192.168.2.3:49843 version: TLS 1.2

Source: classification engine

Classification label: clean0.win@5/227@34/20

Source: C:\Program Files\internet explorer\iexplore.exe

File created: C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High

Jump to behavior

Source: C:\Program Files\internet explorer\iexplore.exe

File created: C:\Users\user\AppData\Local\Temp\~DF53B51CBC940AA236.TMP

Jump to behavior

Source: C:\Program Files\internet explorer\iexplore.exe

File read: C:\Users\desktop.ini

Jump to behavior

Source: unknown	Process created: C:\Program Files\internet explorer\iexplore.exe 'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:17410 /prefetch:2
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:82966 /prefetch:2
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:17410 /prefetch:2	Jump to behavior
Source: C:\Program Files\internet explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe 'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:82966 /prefetch:2	Jump to behavior

Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree
Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree
Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree
Source: C:\Program Files\internet explorer\iexplore.exe	Automated click: agree

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe

File opened: C:\Program Files (x86)\Java\jre1.8.0_211\bin\msvcr100.dll

Jump to behavior

Mitre Att&ck Matrix

Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Exfiltration	Command and Control	Network Effects	Remote Service Effects	Impact
Valid Accounts	Windows Management Instrumentation	Path Interception	Process Injection1	Masquerading1	OS Credential Dumping	File and Directory Discovery1	Remote Services	Data from Local System	Exfiltration Over Other Network Medium	Encrypted Channel2	Eavesdrop on Insecure Network Communication	Remotely Track Device Without Authorization	Modify System Partition
Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Process Injection1	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	Exfiltration Over Bluetooth	Non-Application Layer Protocol1	Exploit SS7 to Redirect Phone Calls/SMS	Remotely Wipe Data Without Authorization	Device Lockout
Domain Accounts	At (Linux)	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	Automated Exfiltration	Application Layer Protocol2	Exploit SS7 to Track Device Location	Obtain Device Cloud Backups	Delete Device Data

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
https://www.foothillsvaccineclinic.com/covid-registration-form	0%	Avira URL Cloud	safe

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

Source	Detection	Scanner	Link
browser.sentry-cdn.com	0%	Virustotal	Browse
tls13.taboola.map.fastly.net	0%	Virustotal	Browse
td-balancer-euw2-6-109.wixdns.net	0%	Virustotal	Browse

URLs

Source	Detection	Scanner	Label
http://polymer.github.io/AUTHORS.txt	0%	Avira URL Cloud	safe
https://www.foothillsvaccineclinic.com/covid-registration-formaccineclinic.com/covid-registration-fo	0%	Avira URL Cloud	safe
https://www.foothillsvaccineclinic.com	0%	Avira URL Cloud	safe
https://chromeenterprise.google/	0%	Avira URL Cloud	safe
https://about.google/	0%	URL Reputation	safe
https://about.google/	0%	URL Reputation	safe
https://about.google/	0%	URL Reputation	safe
https://www.optimantra.com/optimus/patient/patientaccess/servicesall?pid=UENVaHY2UFg4RXdMVmlTUzIzQXh	0%	Avira URL Cloud	safe
http://polymer.github.io/PATENTS.txt	0%	Avira URL Cloud	safe
https://browser.sentry-cdn.com/5.21.4/bundle.min.js	0%	Avira URL Cloud	safe
https://browser.sentry-cdn.com/4.6.2/bundle.min.js	0%	URL Reputation	safe
https://browser.sentry-cdn.com/4.6.2/bundle.min.js	0%	URL Reputation	safe
https://browser.sentry-cdn.com/4.6.2/bundle.min.js	0%	URL Reputation	safe
https://www.foothillsvaccineclinic.com/	0%	Avira URL Cloud	safe
http://polymer.github.io/CONTRIBUTORS.txt	0%	Avira URL Cloud	safe
http://www.wikipedia.com/	0%	URL Reputation	safe
http://www.wikipedia.com/	0%	URL Reputation	safe
http://www.wikipedia.com/	0%	URL Reputation	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Antivirus Detection	Reputation
star-mini.c10r.facebook.com	185.60.216.35	true	false		high
dart.l.doubleclick.net	216.58.215.230	true	false		high
pagead46.l.doubleclick.net	172.217.168.34	true	false		high
browser.sentry-cdn.com	151.101.194.217	true	false	0%, Virustotal, Browse	unknown
tls13.taboola.map.fastly.net	151.101.1.44	true	false	0%, Virustotal, Browse	unknown
stats.l.doubleclick.net	108.177.15.155	true	false		high
td-balancer-euw2-6-109.wixdns.net	35.246.6.109	true	false	0%, Virustotal, Browse	unknown
gcp.media-router.wixstatic.com	34.102.176.152	true	false		high
pop-eda6.mix.linkedin.com	108.174.11.69	true	false		high
179.www.sv5.wix.com	185.230.61.179	true	false		high
obs.cheqzone.com	54.83.110.109	true	false		unknown
fast.fonts.com	104.17.70.188	true	false		high
scontent.xx.fbcdn.net	185.60.216.19	true	false		high
googleads.g.doubleclick.net	172.217.168.66	true	false		high
www.google.co.uk	216.58.215.227	true	false		unknown
polyfill.io	151.101.130.109	true	false		high
td-username-euw2-6-109.wix.com	35.246.6.109	true	false		high
atlas.c10r.facebook.com	185.60.216.6	true	false		high
bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com	34.202.131.150	true	false		high
cheqzone2.b-cdn.net	89.187.165.193	true	false		high
www.google.ch	172.217.168.67	true	false		high
am-vip001.taboola.com	141.226.228.48	true	false		high
4382365.fls.doubleclick.net	unknown	unknown	false		high
en.wix.com	unknown	unknown	false		high
stats.g.doubleclick.net	unknown	unknown	false		high
2542116.fls.doubleclick.net	unknown	unknown	false		high
ob.cheqzone.com	unknown	unknown	false		unknown
www.foothillsvaccineclinic.com	unknown	unknown	false		unknown
trc-events.taboola.com	unknown	unknown	false		high
static.parastorage.com	unknown	unknown	false		high
www.facebook.com	unknown	unknown	false		high
siteassets.parastorage.com	unknown	unknown	false		high
static.wixstatic.com	unknown	unknown	false		high
cx.atdmt.com	unknown	unknown	false		high
www.linkedin.com	unknown	unknown	false		high
adservice.google.ch	unknown	unknown	false		high
trc.taboola.com	unknown	unknown	false		high
connect.facebook.net	unknown	unknown	false		high
px.ads.linkedin.com	unknown	unknown	false		high
frog.wix.com	unknown	unknown	false		high
snap.licdn.com	unknown	unknown	false		high
s.pinimg.com	unknown	unknown	false		high
cdn.taboola.com	unknown	unknown	false		high
www.wix.com	unknown	unknown	false		high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.foothillsvaccineclinic.com/covid-registration-form	false		unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v7/helvetic	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js.map	platform.5b826978.chunk.min[1].js.2.dr	false		high
https://github.com/zloirock/core-js	minified[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/ooiTpaSharedConfig.886a4044.chunk.min.j	covid-registration-form[1].htm.2.dr, ooiTpaSharedConfig.886a4044.chunk.min[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/main.c9d8a82e.chunk.min.js.map	main.c9d8a82e.chunk.min[1].js.2.dr	false		high
https://blog.google/products/chrome/	chrome[1].htm.18.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js.map	page-features.087592ee.chunk.min[1].js.2.dr	false		high
https://px.ads.linkedin.com/collect?	insight.min[1].js.2.dr	false		high
http://polymer.github.io/AUTHORS.txt	bolt-custom-elements.min[1].js.2.dr	false	Avira URL Cloud: safe	unknown
https://www.youtube.com	chrome[1].htm.18.dr	false		high
https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=1088143482153;	~DFF1E8BD5DBDDFE99F.TMP.1.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js.	vendor-react-dom.7455c905.chunk.min[1].js.2.dr	false		high
http://www.wix.com/blog	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/bi-common.inline.8c2ead74.chunk.min.js.	covid-registration-form[1].htm.2.dr	false		high
http://scrollmagic.io	animation.gsap.min[1].js.18.dr	false		high
https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.539a3d84.chunk.m	covid-registration-form[1].htm.2.dr, FiveGridLine_SolidLine.539a3d84.chunk.min[1].js.2.dr	false		high
http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg"	bolt-main-prod-old[1].js.2.dr	false		high
https://www.foothillsvaccineclinic.com/covid-registration-formaccineclinic.com/covid-registration-fo	{81439702-929D-11EB-90E4-ECF4BB862DED}.dat.1.dr	false	Avira URL Cloud: safe	unknown
https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-classic.4e8d8bbf.c	bootstrap-components-classic.4e8d8bbf.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
https://stats.g.doubleclick.net/j/collect	analytics[1].js.2.dr	false		high
https://www.foothillsvaccineclinic.com	covid-registration-form[1].htm.2.dr	false	Avira URL Cloud: safe	unknown
http://www.reddit.com/	msapplication.xml4.1.dr	false		high
https://bugs.chromium.org/p/v8/issues/detail?id=4118	wixui.Captcha.chunk[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js.map	tpaCommons.5946c45b.chunk.min[1].js.2.dr	false		high
https://chromium.googlesource.com/chromium/src/	chrome[1].htm.18.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegister.inline.62dd41f7.c	covid-registration-form[1].htm.2.dr	false		high
https://chromeenterprise.google/	chrome[1].htm.18.dr	false	Avira URL Cloud: safe	unknown
https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1006927621/?random	f[1].txt0.2.dr	false		high
https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=4025465958136;	~DFF1E8BD5DBDDFE99F.TMP.1.dr	false		high
https://static.parastorage.com/services/wix-ui-santa/1.1559.0/	viewerComponentService.bundle[1].js.2.dr, dataRefs.bundle.min[1].js.2.dr	false		high
https://about.google/	chrome[1].htm.18.dr	false	URL Reputation: safe URL Reputation: safe URL Reputation: safe	unknown
https://www.optimantra.com/optimus/patient/patientaccess/servicesall?pid=UENVaHY2UFg4RXdMVmlTUzIzQXh	covid-registration-form[1].htm.2.dr	false	Avira URL Cloud: safe	unknown
http://polymer.github.io/PATENTS.txt	bolt-custom-elements.min[1].js.2.dr	false	Avira URL Cloud: safe	unknown
http://investors.wix.com/	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/unpkg/requirejs-bolt	internet-explorer[1].htm.2.dr	false		high
http://dev.wix.com/	internet-explorer[1].htm.2.dr	false		high
https://browser.sentry-cdn.com/5.21.4/bundle.min.js	covid-registration-form[1].htm.2.dr	false	Avira URL Cloud: safe	unknown
http://www.wix.com/jobs/main	internet-explorer[1].htm.2.dr	false		high
https://greensock.com/standard-license	gsap.min[1].js.2.dr	false		high
http://rock.mit-license.org	minified[1].js.2.dr	false		high
https://github.com/madrobby/zepto/blob/master/src/detect.js#files	imageClientApi[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/protectedPages.c3173846.chunk.min.js.ma	protectedPages.c3173846.chunk.min[1].js.2.dr	false		high
https://static.wixstatic.com/media/311dce_77ca1007cf83485da0b7e16ffb9735ac~mv2.png	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.751f312e.chunk.min.js.map	ooi.751f312e.chunk.min[1].js.2.dr	false		high
https://npms.io/search?q=ponyfill.	lodash.min[1].js.2.dr	false		high
https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js.map	DocumentMedia.73dfebf3.chunk.min[1].js.2.dr	false		high
https://browser.sentry-cdn.com/4.6.2/bundle.min.js	internet-explorer[1].htm.2.dr	false	URL Reputation: safe URL Reputation: safe URL Reputation: safe	unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
http://static.wixstatic.com/media/bc001baa4397444f809fa5f147c28a9e.jpg	bolt-main-prod-old[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/main-r.min.js	internet-explorer[1].htm.2.dr	false		high
https://tools.ietf.org/html/rfc7230#section-3.2	fetch.umd[1].js.2.dr	false		high
http://www.amazon.com/	msapplication.xml.1.dr	false		high
https://www.foothillsvaccineclinic.com/	covid-registration-form[1].htm.2.dr	false	Avira URL Cloud: safe	unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/pageTransitions.be89e7bb.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/unpkg/whatwg-fetch	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js.map	MeshGroup.132daa54.chunk.min[1].js.2.dr	false		high
http://www.twitter.com/	msapplication.xml5.1.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/externals-registry.inline.e8e6f495.chun	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/bi.inline.3becbef1.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
http://schema.org	chrome[1].htm.18.dr	false		high
https://s.pinimg.com/ct/core.js	gtm[1].js.2.dr	false		high
http://img.youtube.com/vi/CakiQCH5ZY0/mqdefault.jpg	bolt-main-prod-old[1].js.2.dr	false		high
https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.d3c310c8.chunk.	Container_RectangleArea.d3c310c8.chunk.min[1].js.2.dr, covid-registration-form[1].htm.2.dr	false		high
https://github.com/madrobby/zepto/blob/master/MIT-LICENSE	imageClientApi[1].js.2.dr	false		high
https://www.google.ch/pagead/1p-user-list/642100862/?random	f[2].txt.2.dr	false		high
http://static.wixstatic.com/media/139571a1212e4d3d8074041626ba3ed6.jpg"	bolt-main-prod-old[1].js.2.dr	false		high
https://github.com/getsentry/sentry-javascript	bundle.min[1].js.2.dr	false		high
https://2542116.fls.doubleclick.net	chrome[1].htm.18.dr	false		high
http://polymer.github.io/CONTRIBUTORS.txt	bolt-custom-elements.min[1].js.2.dr	false	Avira URL Cloud: safe	unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react.inline.98bfcadc.chunk.min.	covid-registration-form[1].htm.2.dr	false		high
https://static.doubleclick.net	chrome[1].htm.18.dr	false		high
https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
https://www.foothillsvaccineclinic.com/covid-registration-form	covid-registration-form[1].htm.2.dr, ~DF8500B3B48B442132.TMP.1.dr	false		unknown
https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-common.b37b13ef.ch	covid-registration-form[1].htm.2.dr, bootstrap-components-common.b37b13ef.chunk.min[1].js.2.dr	false		high
https://siteassets.parastorage.com/pages/singlePage/viewerViewModeJson	internet-explorer[1].htm.2.dr	false		high
https://schema.org/WebPage	chrome[1].htm.18.dr	false		high
http://www.nytimes.com/	msapplication.xml3.1.dr	false		high
http://webfonts.fonts.com	internet-explorer[1].htm.2.dr, helvetica[1].css.2.dr	false		high
https://static.parastorage.com/services/santa/1.1518.0	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
https://reactjs.org/docs/error-decoder.html?invariant=	react.production.min[1].js.2.dr, react-dom.production.min[1].js.2.dr	false		high
https://googleads.g.doubleclick.net	chrome[1].htm.18.dr	false		high
https://static.parastorage.com/services/santa-members-viewer-app/1.744.0/app.bundle.min.js	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/client/pfavico.ico~	imagestore.dat.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js.map	dynamicPages.ea31d9ca.chunk.min[1].js.2.dr	false		high
https://developer.chrome.com/webstore/?hl=en	chrome[1].htm.18.dr	false		high
https://static.parastorage.com/services/editor-elements/dist/DropDownMenu_OverlineMenuButtonSkin.b9e	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js	covid-registration-form[1].htm.2.dr	false		high
http://static.wixstatic.com/media/d967ba93f0314c78924edc8a8c8cfa15.jpg	bolt-main-prod-old[1].js.2.dr	false		high
https://bugs.chromium.org/p/v8/issues/detail?id=3056	wixui.Captcha.chunk[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/platformPubsub.5f1d9daf.chunk.min.js.ma	platformPubsub.5f1d9daf.chunk.min[1].js.2.dr	false		high
https://static.parastorage.com/services/wix-thunderbolt/dist/tpa.f6e17687.chunk.min.js.map	tpa.f6e17687.chunk.min[1].js.2.dr	false		high
http://www.wikipedia.com/	msapplication.xml6.1.dr	false	URL Reputation: safe URL Reputation: safe URL Reputation: safe	unknown
https://static.parastorage.com/services/wix-thunderbolt/dist/wix-code-sdk-providers.3a33b93f.chunk.m	covid-registration-form[1].htm.2.dr	false		high
https://static.parastorage.com/services/tag-manager-client/1.282.0/siteTags.bundle.min.js	internet-explorer[1].htm.2.dr	false		high
https://static.parastorage.com/services/wix-perf-measure/1.401.0/wix-perf-measure.bundle.min.js	internet-explorer[1].htm.2.dr, covid-registration-form[1].htm.2.dr	false		high

Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public

IP	Domain	Country	ASN	ASN Name	Malicious
108.177.15.154	unknown	United States	15169	GOOGLEUS	false
108.177.15.155	stats.l.doubleclick.net	United States	15169	GOOGLEUS	false
54.83.110.109	obs.cheqzone.com	United States	14618	AMAZON-AESUS	false
216.58.215.230	dart.l.doubleclick.net	United States	15169	GOOGLEUS	false
172.217.168.67	www.google.ch	United States	15169	GOOGLEUS	false
35.246.6.109	td-balancer-euw2-6-109.wixdns.net	United States	15169	GOOGLEUS	false
151.101.194.217	browser.sentry-cdn.com	United States	54113	FASTLYUS	false
172.217.168.66	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
141.226.228.48	am-vip001.taboola.com	Israel	200478	TABOOLA-ASIL	false
104.17.70.188	fast.fonts.com	United States	13335	CLOUDFLARENETUS	false
108.174.11.69	pop-eda6.mix.linkedin.com	United States	14413	LINKEDINUS	false
185.60.216.6	atlas.c10r.facebook.com	Ireland	32934	FACEBOOKUS	false
185.230.61.179	179.www.sv5.wix.com	Israel	58182	WIX_COMIL	false
151.101.130.109	polyfill.io	United States	54113	FASTLYUS	false
185.60.216.35	star-mini.c10r.facebook.com	Ireland	32934	FACEBOOKUS	false
151.101.1.44	tls13.taboola.map.fastly.net	United States	54113	FASTLYUS	false
185.60.216.19	scontent.xx.fbcdn.net	Ireland	32934	FACEBOOKUS	false
89.187.165.193	cheqzone2.b-cdn.net	Czech Republic	60068	CDN77GB	false
34.102.176.152	gcp.media-router.wixstatic.com	United States	15169	GOOGLEUS	false
34.202.131.150	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false

General Information

Joe Sandbox Version:	31.0.0 Emerald
Analysis ID:	379346
Start date:	31.03.2021
Start time:	20:50:29
Joe Sandbox Product:	CloudBasic
Overall analysis duration:	0h 4m 59s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://www.foothillsvaccineclinic.com/covid-registration-form
Analysis system description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Number of analysed new started processes analysed:	28
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean0.win@5/227@34/20
Cookbook Comments:	Adjust boot time Enable AMSI
Warnings:	Show All Exclude process from analysis (whitelisted): taskhostw.exe, MpCmdRun.exe, BackgroundTransferHost.exe, ielowutil.exe, backgroundTaskHost.exe, SgrmBroker.exe, conhost.exe, svchost.exe, UsoClient.exe Excluded IPs from analysis (whitelisted): 23.54.113.53, 13.64.90.137, 52.147.198.201, 40.88.32.150, 104.43.193.48, 88.221.62.148, 151.101.2.49, 151.101.66.49, 151.101.130.49, 151.101.194.49, 13.88.21.125, 172.217.168.8, 172.217.168.14, 204.79.197.200, 13.107.21.200, 172.217.168.2, 23.211.4.189, 23.57.82.43, 172.217.168.68, 172.217.168.34, 13.107.42.14, 20.82.210.154, 152.199.19.161, 23.57.80.111, 92.122.213.247, 92.122.213.194, 216.58.215.227, 172.217.168.74, 2.20.142.210, 2.20.142.209, 216.58.212.174, 216.58.212.131, 216.58.215.238, 20.54.26.129, 2.17.179.193, 20.50.102.62 Excluded domains from analysis (whitelisted): gstaticadssl.l.google.com, arc.msn.com.nsatc.net, fs-wildcard.microsoft.com.edgekey.net, cdn.onenote.net.edgekey.net, e11290.dspg.akamaiedge.net, skypedataprdcoleus15.cloudapp.net, 2-01-37d2-0006.cdx.cedexis.net, l-0005.l-msedge.net, audownload.windowsupdate.nsatc.net, www.google.com, watson.telemetry.microsoft.com, www.gstatic.com, au-bg-shim.trafficmanager.net, www.google-analytics.com, fonts.googleapis.com, n2.shared.global.fastly.net, fs.microsoft.com, dual-a-0001.a-msedge.net, ris-prod.trafficmanager.net, skypedataprdcolcus15.cloudapp.net, ris.api.iris.microsoft.com, store-images.s-microsoft.com, blobcollector.events.data.trafficmanager.net, e1553.dspg.akamaiedge.net, cs9.wpc.v0cdn.net, tools.google.com, au.download.windowsupdate.com.edgesuite.net, www.googleadservices.com, e6449.dsca.akamaiedge.net, store-images.s-microsoft.com-c.edgekey.net, adservice.google.com, fs-wildcard.microsoft.com.edgekey.net.globalredir.akadns.net, a1449.dscg2.akamai.net, arc.msn.com, e9706.dscg.akamaiedge.net, iecvlist.microsoft.com, e12564.dspb.akamaiedge.net, go.microsoft.com, www.googletagmanager.com, bat.bing.com, arc.trafficmanager.net, img-prod-cms-rt-microsoft-com.akamaized.net, prod.fs.microsoft.com.akadns.net, cdn.onenote.net, www-linkedin-com.l-0005.l-msedge.net, skypedataprdcolwus17.cloudapp.net, www-google-analytics.l.google.com, ie9comview.vo.msecnd.net, fonts.gstatic.com, www-googletagmanager.l.google.com, e1723.g.akamaiedge.net, ctldl.windowsupdate.com, a767.dscg3.akamai.net, skypedataprdcoleus16.cloudapp.net, bat-bing-com.a-0001.a-msedge.net, s.pinimg.com.edgekey.net, wildcard.licdn.com.edgekey.net, go.microsoft.com.edgekey.net, tools.l.google.com, skypedataprdcolwus15.cloudapp.net Report size exceeded maximum capacity and may have missing behavior information. Report size getting too big, too many NtCreateFile calls found. Report size getting too big, too many NtDeviceIoControlFile calls found.

Simulations

Behavior and APIs

No simulations

Joe Sandbox View / Context

IPs

No context

Domains

No context

ASN

No context

JA3 Fingerprints

No context

Dropped Files

No context

Created / dropped Files

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\O4AKH200\www.wix[1].xml Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	39521
Entropy (8bit):	5.403197498265254
Encrypted:	false
SSDEEP:	768:QHHHHmHm59m5Sm5ym5Em5ym5ym5ym5ym5ym5fbm5fQm5fQm5f5m5f5m5fHm5fHmO:QHHHHmHm59m5Sm5ym5Em5ym5ym5ym5yW
MD5:	B2685A29BD0B9B5A8A5304A1F63E160E
SHA1:	0C0FAAB41744EA41D4C283D82CEA7E5B1F62A804
SHA-256:	6E08AA84F8405B0589D44A3FF26E062D32D6D88FF4DAEEF8AA601CF5C61AD1A0
SHA-512:	19466CE4C33673284ED7AA1B70E22446997A2BDAC8189583C3117DB1C7BB2EEFECBADB605EEA276479A95C0544E17CD6772B668EA18B908077372E5963DFCB03
Malicious:	false
Reputation:	low
Preview:	<root></root><root><item name="fedops.logger.sessionId" value="d901f1c9-2473-40fc-889d-d024d8574641" ltime="1203775216" htime="30877354" /></root><root><item name="fedops.logger.sessionId" value="d901f1c9-2473-40fc-889d-d024d8574641" ltime="1203775216" htime="30877354" /></root><root><item name="fedops.logger.sessionId" value="d901f1c9-2473-40fc-889d-d024d8574641" ltime="1203775216" htime="30877354" /></root><root><item name="fedops.logger.sessionId" value="d901f1c9-2473-40fc-889d-d024d8574641" ltime="1203775216" htime="30877354" /></root><root><item name="fedops.logger.sessionId" value="d901f1c9-2473-40fc-889d-d024d8574641" ltime="1203775216" htime="30877354" /><item name="wixSessionTS" value="1617249082613" ltime="1209275216" htime="30877354" /></root><root><item name="fedops.logger.sessionId" value="d901f1c9-2473-40fc-889d-d024d8574641" ltime="1203775216" htime="30877354" /><item name="wixSessionTS" value="1617249082613" ltime="1209275216" htime="30877354" /><item name="_uetsid" val

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\TETS29UR\www.google[1].xml Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with no line terminators
Category:	dropped
Size (bytes):	26
Entropy (8bit):	2.469670487371862
Encrypted:	false
SSDEEP:	3:D90aK1r0aKb:JFK1rFKb
MD5:	132294CA22370B52822C17DCB5BE3AF6
SHA1:	DD26B82638AD38AD471F7621A9EB79FED448A71C
SHA-256:	451ABBE0AEFC000F49967DABF8D42344D146429F03C8C8D4AE5E33FF9963CF77
SHA-512:	6D5808CAD199A785C82763C68F0AE1F4938C304B46B70529EA26B3D300EF9430AD496C688D95D01588576B3A577001D62245D98137FD5CD825AD62E17D36F15C
Malicious:	false
Reputation:	low
Preview:	<root></root><root></root>

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{81439700-929D-11EB-90E4-ECF4BB862DED}.dat Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	Microsoft Word Document
Category:	dropped
Size (bytes):	60616
Entropy (8bit):	2.135887280604929
Encrypted:	false
SSDEEP:	192:rTZsZ22H6WHQtHmfHAxMHwHoHkfHCYsrHxHIgWHAHTHosHwWHHHiBHBOW:rVMN5U8JQIqERegzxHnSh
MD5:	16BEEAAF53E7B8E147469ADAED767BF4
SHA1:	999E2DD3650A5F908CF0BFAF3F85B82DDEDBC251
SHA-256:	A446B596A3260955DCF9435908339AB365080EFE234DD8E84692089301DE4099
SHA-512:	5B77F966FFC3CF848017B5AA60FA5AE47FE2AD1D5A5C570F7102BCDFC423FE21D191825D525B9BEEA6209E15E64D93AA4B8201C5D8A21F9E787931191B359024
Malicious:	false
Reputation:	low
Preview:	................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................R.o.o.t. .E.n.t.r.y.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{81439702-929D-11EB-90E4-ECF4BB862DED}.dat Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	Microsoft Word Document
Category:	dropped
Size (bytes):	31062
Entropy (8bit):	1.749622202977041
Encrypted:	false
SSDEEP:	48:IwGGcpr3GwpaiG4pQWGrapbSYGQpBV4GHHpcVuTGUp8VZGzYpmVNTGopumHN5quq:raZhQS6YBSgjZ2EWZMRPpUX10YUMr
MD5:	9976B0B864E4B278FC1AEFCCA8C16467
SHA1:	3D6827A8F2322C956A73EB5E0C1F92FAECCE223B
SHA-256:	837420F5B64C6690044D1F2EF3A6783E2C5D939430F50E6D3AD8FD6286B7E644
SHA-512:	26DDEC82A447A851E16CF31C381EF58D04EBDAD9690402998DC4DAFFA5776D94856B742C27AEE0F3054702BA1382644332D3F0F0E24FB45FA9783D718388B49D
Malicious:	false
Reputation:	low
Preview:	................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................R.o.o.t. .E.n.t.r.y.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{87CD21D5-929D-11EB-90E4-ECF4BB862DED}.dat Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	Microsoft Word Document
Category:	dropped
Size (bytes):	19032
Entropy (8bit):	1.5847576905485456
Encrypted:	false
SSDEEP:	48:IwnGcpr0Gwpa+G4pQeGrapbSvGQpKNG7HpRSTGIpX2LGApm:rNZMQ+6QBS5AsTGFGg
MD5:	C1EE974BBCE7E3E6B4F0A35975B115BE
SHA1:	93AF01822175C19D8A654AD181C19DCFF8244D8F
SHA-256:	659A146E2C683059C3053F2FAA8517A8E064827C36482556377981F9C6AB85D6
SHA-512:	435C6BBF3914A946D3F51D7910C52FCB6D17D27B836F6E600CCCBCB42BA38A0FB702EA2DA0F45308EA8A8DDD3B091CF89CC2024A943354F9033C0449243FF614
Malicious:	false
Reputation:	low
Preview:	................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................R.o.o.t. .E.n.t.r.y.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9CBCF508-929D-11EB-90E4-ECF4BB862DED}.dat Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	Microsoft Word Document
Category:	dropped
Size (bytes):	80250
Entropy (8bit):	2.9296103959798696
Encrypted:	false
SSDEEP:	192:rUZvQQ6ak9jW2HWBM0AfPTfK66sGcGtG6fMlTfKX6sGcGax7F1E26fMgkm6sGcG0:rEo7zZt2atjn+ry2+Bb+6+Ah+O+Gb+s
MD5:	B597DD820F3F0ABA8B218BBDE2BE3BBA
SHA1:	4BA8423E92860AB2AE4C5759A497B56FF997CDDF
SHA-256:	7ED8582FA18C0A09BB92E876652A996D6CC3BB0F095A4A9A3BD0DBF6712D5F62
SHA-512:	0E84B9D7BA893B66336454455644FEDAABB0381C6BD3E75E2FBCFDBA838CF12A036B80497E99A74DF1B63235536ABAD3E37D044E21ACE99A0BAC6CEF4A52FE60
Malicious:	false
Reputation:	low
Preview:	................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................R.o.o.t. .E.n.t.r.y.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9CBCF509-929D-11EB-90E4-ECF4BB862DED}.dat Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	Microsoft Word Document
Category:	dropped
Size (bytes):	16984
Entropy (8bit):	1.5660787980136541
Encrypted:	false
SSDEEP:	48:IwVGcpr0GwpahG4pQVGrapbS59GQpKvBG7HpR2TGIpG:rLZMQz6FBS5HAvwTCA
MD5:	BB4591000DA84060C6B29C38D32BD554
SHA1:	1AF74E02FFAF38729A99D0E3F291F11B516077C5
SHA-256:	151A1C0CEC76E4C65E0CB836DA2F94F8AAB6578071030D9335BB1E3F5A907DF8
SHA-512:	3D63B11C4C41D6AC3C9FD7B85055E1FF5EFF4259683592741390DBB7F9A00E08AA381806CA0D916340EB39AA8BA4D7A73D2C5DED53E94143986675F534DD7751
Malicious:	false
Reputation:	low
Preview:	................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................R.o.o.t. .E.n.t.r.y.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	656
Entropy (8bit):	5.098031466882481
Encrypted:	false
SSDEEP:	12:TMHdNMNxOEAX4nWimI002EtM3MHdNMNxOEAGDnWimI00ObVbkEtMb:2d6NxOJX4SZHKd6NxOJGDSZ76b
MD5:	B4C5A351A717F00B20D14C451FA9D761
SHA1:	46DC6602AA182B9443A54F14B2C68A1E31AEA645
SHA-256:	A2AA50AFF676FCF872A2E566F8B13C64405F49052313835E83EBD0EC1B8A3DA8
SHA-512:	B4C156CBAB4749EDEF1895A3112CE974ED644C87E9A54C75912B684EF5AE3F61875562011B0A6C7BEF9F94F9EBF12EE66AEA9BA69B3AC1462A8887A629245CDC
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x5930f0ab,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.twitter.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x59335302,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Twitter.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	653
Entropy (8bit):	5.13640209870431
Encrypted:	false
SSDEEP:	12:TMHdNMNxe2kbnWimI002EtM3MHdNMNxe2kbnWimI00Obkak6EtMb:2d6NxrmSZHKd6NxrmSZ7Aa7b
MD5:	1F98DAAD2349E79A9F8294D8DA689769
SHA1:	B243720DCDE1FF2B2DDA4570D068DB4DE00D4939
SHA-256:	8255AD5F056B8529E194091058CC59CAF6095D30E742A4FE7085C610DA0FE3AE
SHA-512:	05011103962F9D6FA237623BABF79C12E773B348409375F81A9F5FCF978162365A1A203F464E3E8629D2C2862AD10AA185BD9CED8CC6A9410C3975617438FD19
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.amazon.com/"/><date>0x5916b6d7,0x01d726aa</date><accdate>0x5916b6d7,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.amazon.com/"/><date>0x5916b6d7,0x01d726aa</date><accdate>0x5916b6d7,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Amazon.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	662
Entropy (8bit):	5.128556244941621
Encrypted:	false
SSDEEP:	12:TMHdNMNxvLjrDnWimI002EtM3MHdNMNxvLjrDnWimI00ObmZEtMb:2d6NxvnrDSZHKd6NxvnrDSZ7mb
MD5:	CCEEB3F3C2BC0DF2090628EA29C243CD
SHA1:	A4A3E5ADB93D03A94B14395F82E82192D3D93FCA
SHA-256:	490198D125F16E224BA5769AB28748C7B7FF69FB30C58CF44634872102C31A9B
SHA-512:	BF1E699317989C872A008D9160000472994F8EC54F9EE7888DB7D42944DB086C1E4EE5A67704CA716A87561F6E750A13D7F8FFA47FE0ED64D4B4F9D0E8A9540B
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.wikipedia.com/"/><date>0x59335302,0x01d726aa</date><accdate>0x59335302,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.wikipedia.com/"/><date>0x59335302,0x01d726aa</date><accdate>0x59335302,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Wikipedia.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	647
Entropy (8bit):	5.110292108008223
Encrypted:	false
SSDEEP:	12:TMHdNMNxicUDnWimI002EtM3MHdNMNxicUDnWimI00Obd5EtMb:2d6NxlUDSZHKd6NxlUDSZ7Jjb
MD5:	C41FA819DE6B7A392528F5F008673537
SHA1:	A78BA9C6A5387D8CB74FF1ADD01E4211AC4DBB4D
SHA-256:	E13B622B76E2E625D6875A89D81E485E36107077CAD8D2017FD59BF4B56A539A
SHA-512:	E9D271E0989D43E2D5D9744D8F58CB71C234BCD0CE7DFE4EC217FB67BD087F496D19C51CFF3C4A85C5A3DFD16C8E0D738244E86187E4F5E83D588FDBBA8FDD5F
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.live.com/"/><date>0x5929ca11,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.live.com/"/><date>0x5929ca11,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Live.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	656
Entropy (8bit):	5.155127946165807
Encrypted:	false
SSDEEP:	12:TMHdNMNxhGwNVwV4nWimI002EtM3MHdNMNxhGwNVwV4nWimI00Ob8K075EtMb:2d6NxQeVwV4SZHKd6NxQeVwV4SZ7YKa/
MD5:	6715EBF8DF6FAF9D7754F22257EDC4A6
SHA1:	69816385C779F0DB6FBE24FA96E190F37F6453C2
SHA-256:	A32E0E3DE87ADBF36B6391290C6D7C799A5E176AB3570C059A433207AC599857
SHA-512:	4546377CE44874D3D163058224E6E5E23233A530B4C2CD4B29AB527EB0733D5A7A29454DCD1C64C765C6EDE4C26B47C8F79E492C0E94C8D227E0E41AACA8CB50
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x5935b559,0x01d726aa</date><accdate>0x5935b559,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.youtube.com/"/><date>0x5935b559,0x01d726aa</date><accdate>0x5935b559,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Youtube.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	653
Entropy (8bit):	5.093079171865968
Encrypted:	false
SSDEEP:	12:TMHdNMNx0nAX4nWimI002EtM3MHdNMNx0nAX4nWimI00ObxEtMb:2d6Nx0AX4SZHKd6Nx0AX4SZ7nb
MD5:	B791BB5984FA0481ED4FC57B84C68072
SHA1:	1B250337FCFBEABB9E77345F4FB5AF9AA329E090
SHA-256:	3C3B897E97D9A48F050DEE9EC7DAD5AB50B68E84E1C8E3EADDA5A55F7D6D3FBA
SHA-512:	BDD4AD0BB7D8DF3D5EFD5B74BF2FEDCD64F25971F74E5903040BB08F9183AA04AE46630C4EE0BD0E9B6AD053643DC08E95AE27B737D41CE9F586E1002CC7164C
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.reddit.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x5930f0ab,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.reddit.com/"/><date>0x5930f0ab,0x01d726aa</date><accdate>0x5930f0ab,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Reddit.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	656
Entropy (8bit):	5.163299577893242
Encrypted:	false
SSDEEP:	12:TMHdNMNxxjnWimI002EtM3MHdNMNxx84nWimI00Ob6Kq5EtMb:2d6NxtSZHKd6Nx+4SZ7ob
MD5:	04D7977DC666B962C88FF723B76F7EA8
SHA1:	C5353264E6136F3663DD80A03794111A3D5D2138
SHA-256:	FB37DE8C2087DC9B0E66C6E46BE8EF0FCD7299C9BE2BCB1213D6CF6CC9CA6E79
SHA-512:	8BC6A396ECE58496EE463B4F16649C494AC9CCAD55B4889548D99FD85EFF7F3DD231D2F9192BEC1D215CFFBB823C48612CDB1DC5A421C01397D61509F55252BF
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.nytimes.com/"/><date>0x592e8e4b,0x01d726aa</date><accdate>0x592e8e4b,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.nytimes.com/"/><date>0x592e8e4b,0x01d726aa</date><accdate>0x5930f0ab,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\NYTimes.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	659
Entropy (8bit):	5.150366838141872
Encrypted:	false
SSDEEP:	12:TMHdNMNxcbplnWimI002EtM3MHdNMNxcbKDnWimI00ObVEtMb:2d6Nx2SZHKd6Nx3DSZ7Db
MD5:	83AD2B9F0C2D1A99D2414AED1EFE46C3
SHA1:	0AD131669D90391CA8C4E883BF2162E844246207
SHA-256:	7DD7A8FDC0ED9C07FC3DC15239DAFB5C4B8E29BFFB32290448A0BA1BCAEB87E9
SHA-512:	BA493FE4CBDC25AD88D5A60FAA6EFD988880B572E6C1E31D7581AF08B7AF95908B0EC0561E8912E96E015DB979A82ED8160EF0CB118215C7F79BA71BAD4BF350
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x5927674f,0x01d726aa</date><accdate>0x5927674f,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.facebook.com/"/><date>0x5927674f,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Facebook.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
Category:	dropped
Size (bytes):	653
Entropy (8bit):	5.095963314918083
Encrypted:	false
SSDEEP:	12:TMHdNMNxfncUDnWimI002EtM3MHdNMNxfncUDnWimI00Obe5EtMb:2d6NxUUDSZHKd6NxUUDSZ7ijb
MD5:	736BBB2C65A85EAFC70FB3E08DFF4F75
SHA1:	AC30E4B57AD952A113B88E1783A86D8434A215EF
SHA-256:	43BA4E6822F2F07932EE101C5F3403BBA3B4BE08385B1288BC01CB5A075BB5AE
SHA-512:	02932313BB303744170F9C37582D7B230CD3673526F0AE950F2892438C92C96A5A69F76D5FC272BE6A91A7DF2E672D7BBD84B2D17E49589B33048F1B7F65A0F1
Malicious:	false
Reputation:	low
Preview:	<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.google.com/"/><date>0x5929ca11,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/></tile></msapplication></browserconfig>..<?xml version="1.0" encoding="utf-8"?>..<browserconfig><msapplication><config><site src="http://www.google.com/"/><date>0x5929ca11,0x01d726aa</date><accdate>0x5929ca11,0x01d726aa</accdate></config><tile><wide310x150logo/><square310x310logo/><square70x70logo/><favorite src="C:\Users\user\Favorites\Google.url"/></tile></msapplication></browserconfig>..

C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	data
Category:	dropped
Size (bytes):	889
Entropy (8bit):	7.104607793265337
Encrypted:	false
SSDEEP:	12:15uDGZbVl+KkDbMRv/7//76PcVAcDDx6UK9QEVJoOfJG4KH/TLWRNAfk0YndDe3f:1wDGTjfx77DDxtK9jfAH/3WRmoDWOXw
MD5:	EEFCE1C985430D9BEACB98C54D6ABC21
SHA1:	A9300DC0D4E1E3DA705A5636EE2A5B7CD5E94BA2
SHA-256:	9C676D1A8D3A3F5603D48FD611B30A15F856462CD5A0C7078D4E12657550000B
SHA-512:	DADB7B6A9278477F52B4DF978AA27A3C642F028890BD2EA884CD8EA1775AEC320E67054E8E76E77CBD4182E3BB4ED00EEFE1A98294412BABD7D3B1C3050C4145
Malicious:	false
Reputation:	low
Preview:	F.h.t.t.p.s.:././.w.w.w...g.o.o.g.l.e...c.o.m./.c.h.r.o.m.e./.s.t.a.t.i.c./.i.m.a.g.e.s./.f.a.v.i.c.o.n.s./.f.a.v.i.c.o.n.-.1.6.x.1.6...p.n.g......PNG........IHDR.............(-.S...YPLTE...z.Q.K..A..[.RK.I>.PD..A..\..a..A..a.K@..[..@..[..@.SH..Z.._.WL..@.qQ.PC..A.L@..\.l;.UI..B.fI..A.PC-.P..E.SH..@..X..=.PC.VJ..A!.f..@.VJ.OA.<.QE.YN..@/.e..?T.L.<.RF.WK..B..[.MAK....^I..".d..a.QE.RF.h;F..........>.v..u.~s.J=..;e..[..q..c..H.................?.ud.t.m..k.si.yd?.\/.[n.W..V..T.`T..S#.Qz.LlqL.G.SG.RE..D.PC..A..@.P?.:..s....9tRNS...%..........{i=;1)$........................RPFE?8#..../......IDAT..=..r.Q.D..@H.....2.{W.@...w...`..<M.....y.n....xq.m.l....... ,..0...4U .f[.s..k..htN...3*..;..W0.....\|`..+..'Iz~.[.F...3..Q...G.U..E.#!..$&]4Q.9."..~..i.v.X$..}'....X....o.A.K .K<Q.".8...N+.........w7.v...0.tc....A.)XbJ......IEND.B`.................dCe`....dCe`....

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\1001175813[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	modified
Size (bytes):	42
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEy:1QEoy
MD5:	D89746888DA2D9510B64A9F031EAECD5
SHA1:	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A
SHA-256:	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
SHA-512:	D5DA26B5D496EDB0221DF1A4057A8B0285D15592A8F8DC7016A294DF37ED335F3FDE6A2252962E0DF38B62847F8B771463A0124EF3F84299F262ED9D9D3CEE4C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\26b8484e-52e3-44ac-b958-865809934ebb[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 48908, version 1.0
Category:	downloaded
Size (bytes):	48908
Entropy (8bit):	7.9908769597228275
Encrypted:	true
SSDEEP:	768:2noxWxiIDP1D007rQc2v/5eRPz2S76YGQ3AmzfwSqwSmBHPch7vsqazs6/B40fB8:2n5Q0CZe12S76YGQwmzIhmivsqaAcBF8
MD5:	B1C2C4A57ABC248FA5B015E5DD93000C
SHA1:	E287387E70687D521E839DF86F38CFF3F1D71301
SHA-256:	4D18B41D696C25E7E1A9372398C555C52162D9C995552E792ECDC054274CC8F2
SHA-512:	4769393B4D3A6DB167AC9FEAABFBA27D55056415D3F039A5F14FE3142B49B06A4636379D1E738D1B97C5072E095DE7955799136229D8D7FB273C58014957C0FC
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Helvetica/v2/26b8484e-52e3-44ac-b958-865809934ebb.woff
Preview:	wOFF..............Z............L............GPOS..........1,...;GSUB... .......N./.<OS/2...,...S...`h5\|.VDMX.......\|....o.w.cmap............#.<.cvt .."....X.....:..fpgm..".........6...gasp..'p...........'glyf..'...}.....c.head.......6...6...hhea...<...!...$.M.6hmtx...`..._....Z.T.loca.......W.......4maxp....... ... .[.dname...8..........3.post........... ...2prep................x....T...~w.f......[D^.""/......]...p.5....&..L.Q.q$..:hX...+......#C.....uP....[...8:.c.s.l.....W_}.....}.(...b9$...x.m.d.o....~...!^.1.Z..W.^\|W...O...~L...7fX...p..<.:q..3.:S{2.7S.2.?S.$x..;.Ho..`.C.v......v..N'.7..o...X..Y.D...5.x..L.L...y.S.y..g.g....m.m......{.w..!...{7y...o.......o.o..!_.o................f.,.\|........./.?._.....?..@.@..........'..................`.`........]..................C.BcB.B.C....=.Z..........*..B.P2..7.7....;.{.{.......G........w.?...FZD.G......e.HAdUdC.$.v.N..g.3.....Y...r.:_G..p.c.gt@thtdt\tbtZtVt~ta....-.].d.x...=.hm.W.}.%Y...Y=.FfM..=<......

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\4UaGrENHsxJlGDuGo1OIlI3K[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 82300, version 1.1
Category:	downloaded
Size (bytes):	82300
Entropy (8bit):	7.993868899885629
Encrypted:	true
SSDEEP:	1536:nG4K6l+BuoexS2Sv1TEThLUb2AQ3i/U7sCV30lbRS5NA7UFloGIN46:nGxkBxS2YEThIb2v3iIsCV2H7UFl9Z6
MD5:	78F084CD32CB85327C04655BD20D7135
SHA1:	BA8CD3AC9F80EC121C20A4423987BE8B3A706D55
SHA-256:	DC662D2DD599D356BAF970A6AE9AACB4477FCC84E39159FE4B49ED82D2ACB4B7
SHA-512:	06CF2D6AD91ABF5B8DF8AC54D4345E6560A43C59D013B2170454BA00FBF255B1D5060BD89F34640E0DFFBCB6323B7C4A94AEBEE9A4125286997E17E3606BB5D0
Malicious:	false
Reputation:	low
IE Cache URL:	https://fonts.gstatic.com/s/googlesans/v27/4UaGrENHsxJlGDuGo1OIlI3K.woff
Preview:	wOFF......A\|................................GDEF...........<e.e.GPOS...D..;.....Qr.'GSUB..=\...<..#X....OS/2..O....U...`kr[.cmap..O........@Y..Dcvt ..V....y........fpgm..V........uo..gasp..^H............glyf..^T...a..x..head.......6...6..'.hhea....... ...$.0..hmtx...........H.v4loca.."........&O..^maxp..+.... ... ....name..+....e...m...+post...D......N....prep..@....p..... ..x.U..F.q...s.G........jiZ ...DCB...H...BO....ao........{.^......lb>..zCz......O...i..k.......$9-S.m.$..S<. .x.\|...}..e.V2Z..g4\p..{.5.....~[}_.X}^.#.`..S..U.T.......;... {....!...._../.....?."-=x..Y.p...}.z.$.......f4..w..9.J.033...'.0.p.....^.....:.T...AS.;...^.l.m...@..jD;...h{.C...'....9c.. ...a..(.7v(BY.1Q.rT.{.{'T......34A.B?.gE..B.Q5...C0....c...Y?.....+~\...IR`.'.4 )B...(.R....7..0...w.>>...O......w.x^Xi.r..:...p8R#..."....t-..p[.].-..v..E.K..5..=y8.. ..9...p._.{.;.3a..,c...6..mw;..5\|...5..78.S.&.)v.gr6.p..s!.q1.p9..j.....:Yg......I.`.m.=c..{...9..Ud..d.Rp\|....LI.'\)Y%Y...].O..

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\50ac1699-f3d2-47b6-878f-67a368a17c41[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 22537, version 1.0
Category:	downloaded
Size (bytes):	22537
Entropy (8bit):	7.980046807695369
Encrypted:	false
SSDEEP:	384:7jtnrP2HkbVPlywA397tSeRHNm/gWsatewLC6/q7LJxtL42eHa3NmQNxF:7jhrmUyj3rNIth1q7Nxt824dQ3F
MD5:	AFC80FD38B63916E55B3434D6DC50AA8
SHA1:	A93E6A628D615ECC4A03268D615B2C7339BB82CA
SHA-256:	8E1FB2C958070695B9633261993A47CDAC70A25EB9C321EA0DC7207036D5140D
SHA-512:	AC516CEB938F721E006D05A3E712E6142A0F086EA71A44CA00187A48C183DF7B4B3EEBF9811C8FE9840CB6D345E445DD9A5A3E892B3BBE9DDF7A670161A3B8A8
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Helvetica/v2/50ac1699-f3d2-47b6-878f-67a368a17c41.woff
Preview:	wOFF......X...............Rt................GPOS...l...^.......HOS/2.......T...`e...VDMX... ...V....r8y.cmap...x...m......./cvt .......K........fpgm...4........,...gasp................glyf......9;..\nW...head..G....6...6.z}whhea..G<... ...$.>..hmtx..G\............loca..IX...b.....+~.maxp..K.... ... ...Mname..K........!=..$post..Q........ ...2prep..Q.........y..x...OO.Q...Li.RhE...4..`HHJ..4FME..R..7F.....}....1..u#&.j.BM ...v...;t..x..uD......w.....&....-}.s...E....&u8{..T.\|..T:..\R'f.....W..]..\|....B...,j...kS......Y.,..cm...].T....^OU!.iD)..r..4.1MjZ+Z.=j...S...0k..v.z.+...u...1p7.]]J.....Xf....B.uPm..frK.d..1?........h.}_6.u.e...h...-.!..g].%....2(y.....7.L..k.".su.>l\|.....d~...^...Y.^.b..-se..X....uu.x..~..N.M#.....y...&.2.`.N....m.kA....s...A..0.$k..5.........i..0......q.>....g..}...7........L...=........j;V..jtY..V#.t.1..t...i.b.;.19j.........i.....t.Dt.t.h.5.....u...;...........Jh..KT^.~..2*oAD...........+..G........x.c`a......................

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\704136006388169[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	249005
Entropy (8bit):	5.478861089638576
Encrypted:	false
SSDEEP:	6144:Rk1HWCSntDV/H4K3V/H486EPjQHWuH3Hpn:f6EM
MD5:	EAD7F77461BA4AD1540065627593F0AB
SHA1:	72E4D31E93C7B6621CA0CBB9379D6B7500BB91FB
SHA-256:	7632EBA773406DA1C4E7AF50E61F6063A23F1242A051BFDBCE0DC535B7ABCB26
SHA-512:	92E06E13FB0E8D4C6F284674C8147083980B8846FBB2BA88B50586C7B2621A3DCA6961B1B1EF709DBBACE95A9F3458923EAAEAC5BBF96A372D4FA28D86620801
Malicious:	false
Reputation:	low
IE Cache URL:	https://connect.facebook.net/signals/config/704136006388169?v=2.9.33&r=stable
Preview:	/*. Copyright (c) 2017-present, Facebook, Inc. All rights reserved... You are hereby granted a non-exclusive, worldwide, royalty-free license to use,.* copy, modify, and distribute this software in source code or binary form for use.* in connection with the web services and APIs provided by Facebook... As with any software that integrates with the Facebook platform, your use of.* this software is subject to the Facebook Platform Policy.* [http://developers.facebook.com/policy/]. This copyright notice shall be.* included in all copies or substantial portions of the software... THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS.* FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR.* COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER.* IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN.* CONNECTION WI

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ScrollMagic.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	18500
Entropy (8bit):	5.288803063564337
Encrypted:	false
SSDEEP:	384:CEKmt3JtBOgr3CSEVbMtClyCJ4qelm2JDX6r:jv395bO+t7e4qEJDM
MD5:	955ABE8CF2E241745BEE38B92BEBC76C
SHA1:	414B13E1866A94EAEF2643A5167381BBE2AA7699
SHA-256:	09756F2D963931CD3831E019D7DFC7A71DC6EC0E02ED4CF6232C46E3B40A9909
SHA-512:	0A8289AE94A67E9262ADBE1198E622B78B01F031713A0C808854EE91A3C2101E3003C61586A7D4B05D5666531B8B5A51DCC8BB53AF5D29FD34C36C17BFEBED51
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.gstatic.com/external_hosted/scrollmagic/ScrollMagic.min.js
Preview:	/** @license ScrollMagic v2.0.6 \| (c) 2018 Jan Paepke (@janpaepke) \| license & info: http://scrollmagic.io. . Copyright (c) 2018 Jan Paepke. . Permission is hereby granted, free of charge, to any person obtaining a copy. * of this software and associated documentation files (the "Software"), to deal. * in the Software without restriction, including without limitation the rights. * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell. * copies of the Software, and to permit persons to whom the Software is. * furnished to do so, subject to the following conditions:. . The above copyright notice and this permission notice shall be included in. * all copies or substantial portions of the Software.. . THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR. * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,. * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE. * AUTHORS OR COPYRIGHT HOLDERS

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\WixMadeforText_W_BdIt[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 28692, version 1.13107
Category:	downloaded
Size (bytes):	28692
Entropy (8bit):	7.984015162753741
Encrypted:	false
SSDEEP:	384:0xmMzIjVGNHUnD6SundIUZ9mIqA3b/zdaijMACAE9MVYlJMp2PXO9T9BVzdcAkQO:PWggdIUZw4na1z/TPXmVSAnZFG
MD5:	9557403059EA8B62EF946E44250971FA
SHA1:	F5D7EA5B2DDE5D291490E7AF03DD72E70114299B
SHA-256:	0871C5BF40DA6C907DFD85E3803AC0A950029E66BA1C970B7F4BD5F713541B59
SHA-512:	AF18FEA8D59897ED48B46477A1A4DC8969280302EC3717C284BC671BBB89BF3C93BC1DB8EBD996254FEC392D86FE8D489D3E32EF8B81B0DE537146E753371320
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforText_W_BdIt.woff
Preview:	wOFF......p...........33....................GDEF..]........."."!GPOS..]....x..H.....GSUB..l...........fOS/2.......\...`....cmap...h.......X..:.cvt ............$..Afpgm...x.........0.6gasp..\.............glyf...T..H[..u....Khead.......6...6.D..hhea.......$...$.g..hmtx...X.......h..-loca.......w....i.K.maxp....... ... .9..name..[....,....DCnEpost..\........ ...@prep...$.......Q.T........33...._.<....................................................................................O...X......./.a..........x.%...Q.......Q.t7.....-t.{......e..S..O.>...s....;.].^..R.\./..0..O.s..F.\|..........Zx....4Y..oR.m.m..m.m.m..jjfz..\|'y....o.K....UP%.x&.Gk++...V...:.......^W.j...#.J.TI?.....J..n*..f.g?iWo.?.....U....Q7...R.3..V.[..y\|f[..vL.d[.W....F..%.W..t..i...mMn.h.m.......{#......:.."z/...z..nhn...^.......q.Do.zS.......7...........9U..ir..L.PW?R.\|+M..U.>...q[.v..I.}..........a...........+..H..Sb.......#.Ym._...29G.a#.........%\|..%..w.Z.lU<e?..N.1..<j......[.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\WixMadeforText_W_It[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 27412, version 1.13107
Category:	downloaded
Size (bytes):	27412
Entropy (8bit):	7.982891923389201
Encrypted:	false
SSDEEP:	768:ap6knzmw/hRKu7qDk7lddf2H7jE/MnEzqD2NSXTiheFG:aYJw/Hlxf7Mn5SNi4z
MD5:	8E17780BCDC9E29BFDF2B5EC643E7B3B
SHA1:	CFBB4904DAF466D0AD0864DC43249C30866E7285
SHA-256:	507BC6DAB5FCF62276BFEE3155DDF6083AE9EBB54729FB56040A60DEE9C705B3
SHA-512:	ABA09CC85AAC3F2096A98FEFBDCA5DF572D718A553AC2F2918945E788901D87D0244A15E01CA417945A2E02BB10D6813CF390A83168662747FEB701B39C92223
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforText_W_It.woff
Preview:	wOFF......k...........33....................GDEF..Z........."."!GPOS..[d......Dn....GSUB..g...........fOS/2.......[...`....cmap...H.......X..:.cvt ...0........+...fpgm...X.........0.6gasp..Z.............glyf...h..F+..u.....head.......6...6.}..hhea.......#...$...+hmtx...X.......h.jGRloca.......z...."S..maxp....... ... ....name..Y.........?.k.post..Z........ ...@prep.......,.............33.[.._.<.........................................x.c`d``........,{._0\f@................O...R......./.a...1......x.%.....@...'.H.$xc..:..... l.(h....Z......../.:RL.f.T-......@..U....e..]....9..(....1...x.....J..oW~.m.m.m.m.mc...d.y.s.SIW.z.'d...wx.p>.C..EW.A..@...Cc....3..YF.b........~...t3......'.QN..0.......+.Hj...".Vj %.[.yH..3v..S].5.!Tg....7..F ...q..x.f\^.`\~..1.0myR.qQ...z.U..RM.Tg...@..~.F..\|....[B...D.:.F_[..mB.`....!.%(.h JXk.....~.iH'.P...ul4..3)J.N.#3.{...e......#M.........z.DFh.M..H./..6....v....P..Z...9.+.N..... ......"..:...a.J..... .P..cU..8*.....^..O(.C

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\activityi;src=2542116;type=2542116;cat=chrom0;ord=832802698175;gtm=2wg3o0;~oref=https___www.google[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	368
Entropy (8bit):	5.44280429578039
Encrypted:	false
SSDEEP:	6:hn8FQiowadCc4svmzw9xUpCX96v6OqPbRmEH7fuUo1xidiVzj0Mo:hnMQbwuOaxyCkv4AEH7GXfisVP0N
MD5:	155279A0BFCAE230EFFA498F6CEBC1D2
SHA1:	06D7309F67AE3A3C00F40AAD9F37B15D52BCC520
SHA-256:	F1150117502CDDBC6566148E3F562FAA13F69E9AC1521AE3BD25587F85C8D2E7
SHA-512:	DAE69E55489CBFD338FFD229D4AEBD26D19DBEEB1C9E0CD0C5999BF0A62DDD52240AF814E5A0BCC371C925437234E7CD9E93FC4E9EB99B7F874C7170C6D86F31
Malicious:	false
Reputation:	low
IE Cache URL:	https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=832802698175;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F?
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><img src="https://adservice.google.com/ddm/fls/z/src=2542116;type=2542116;cat=chrom0;ord=832802698175;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F"/></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\animation.gsap.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	2411
Entropy (8bit):	5.443885333865454
Encrypted:	false
SSDEEP:	48:T9CwjsCJ9lDEtsQQMQHWs5G7Jo3oAFzSHrcTXwhKF1baz0vwCQ5biBz5bhLr24:T9djrgtYMQHqEoc9e54DLy4
MD5:	FBC6FD5E2FC6409C75F602320CB5909E
SHA1:	A37D2D19425526B6F9DC1873525AFB437CEFE25F
SHA-256:	ECA64F6A9419A07B0638C88AC89F7B1C7B8D6F16865291DF6F668D200064A233
SHA-512:	1092F44A35A17423AE8F70D554B5204B8A0FFE41355706567B09469D42D60F6A174434DA921D8A21B73EF6862B6FC8D6EAD14FF2B85A373AD4E5B090C39C5801
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.gstatic.com/external_hosted/scrollmagic/animation.gsap.min.js
Preview:	/** @license ScrollMagic v2.0.6 \| (c) 2018 Jan Paepke (@janpaepke) \| license & info: http://scrollmagic.io. . Copyright (c) 2018 Jan Paepke. . Permission is hereby granted, free of charge, to any person obtaining a copy. * of this software and associated documentation files (the "Software"), to deal. * in the Software without restriction, including without limitation the rights. * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell. * copies of the Software, and to permit persons to whom the Software is. * furnished to do so, subject to the following conditions:. . The above copyright notice and this permission notice shall be included in. * all copies or substantial portions of the Software.. . THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR. * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,. * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE. * AUTHORS OR COPYRIGHT HOLDERS

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\animations-vendors.3ce71584.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	213372
Entropy (8bit):	5.308008187653904
Encrypted:	false
SSDEEP:	6144:Kp6AbyGVvuvWP/f/K27ZsCrnvPdYDgdp/YMwuaN4uOV2Jrkm:Kp668WP/rVBk4uOEtkm
MD5:	061426BB972AFBE1135CA30CCAFE0787
SHA1:	7B667A67FB0C0C1527F19C7873066C547DBEEB87
SHA-256:	532B59397CCFBE42140127241BD0082250589F221AC8CE237DBB04F8E6F8D139
SHA-512:	6490EABF6859745AFEDEF7E4500BC97B9C5EF527B74B5F343266BA18C69C2EEA6FCE538F96F470F13FFCB0826836FE717D5A6F94AE2F859AD922D8CE0A9A5981
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/animations-vendors.3ce71584.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[21],{394:function(e,t,n){"use strict";function r(e,t){var n=Object.keys(e);if(Object.getOwnPropertySymbols){var r=Object.getOwnPropertySymbols(e);t&&(r=r.filter((function(t){return Object.getOwnPropertyDescriptor(e,t).enumerable}))),n.push.apply(n,r)}return n}function i(e){for(var t=1;t<arguments.length;t++){var n=null!=arguments[t]?arguments[t]:{};t%2?r(Object(n),!0).forEach((function(t){a(e,t,n[t])})):Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(n)):r(Object(n)).forEach((function(t){Object.defineProperty(e,t,Object.getOwnPropertyDescriptor(n,t))}))}return e}function a(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumerable:!0,configurable:!0,writable:!0}):e[t]=n,e}function o(e){return e*Math.PI/180}var s={normal:function(e,t){return e/t.maxTravelHeight},legacy_in:function(e,t){var n=t.maxTravelHeight,r=t.travelLastFold,i=t.travelFirs

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\black-history-month-themes[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 1000 x 610, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	87138
Entropy (8bit):	7.979760110192943
Encrypted:	false
SSDEEP:	1536:oDX4MgLMjhCPWsE+wnchq68X4m+0fuW1yid4sRmx6NIPelA3Zeh9DCxf:oDIFiXtlncuXa0WW1zdDD+P0Keh9DCd
MD5:	6EF63947E7D5589589D608DDD33F8439
SHA1:	07930D2057D6D572D2D40123A883A4A07F44DD44
SHA-256:	086DB3480EE29F29F997891787C74361844CBE9013D626DE892ECAD7A598C6C5
SHA-512:	CF88110B8D2969DEE946342DC3A08C8E4DE99ECEE38876641D122B46D6F82D1A43C3648758B483FD2819BB573C48B7DF29CDDE4350A22A34FC04DBC4C061B704
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/black-history-month-themes.png
Preview:	.PNG........IHDR.......b.....c!......PLTE....=..;...6S....h..........>.1.gNt........;.......+..........C.....?.1.e,U.459.R.=.u.A..J..D.9V..B..N..:.:.~3S..I..q..F.&N.-Q.?Y..S.!K.....C..S..6..E.E].0a.A7/.Y.'Z.9g.@T.5O./M.:R.SZ.Z].%^.Na.LX.An.FV.R\|..G.)K.Cc.#I.a`.Hu.9^./X.+d....9....2j.'R....Jm.!p.....M.....Ge..{...G.Z..p..jc.!x...Sw.`m.lq.L..;q.ug....Tj.Bz..g....`~..C...V.....j..........."..a.....{v..G..E....w........1Y.`..;a..E....x..o..).....Yk.:r...,..5...k.-..Ih.p..x.............\|...v.....&Q.......Pv.......I..v{..<..........;U......w.~.........b..T..F....c\|...~...'P..&.........e.z$Aj..i..8u......A......t........,{X....}.F..........^.................)C.........m..UW.}......6..EZ.LNO#qC....\|{..YqK...k..^`c...nnq...M\|.K_.!k......k0Ig`W..mD..I_.........tRNS.........T._.....^....Q.IDATx..?..@...".$...M\|......p.%...]..ED*8..8..\ p.q.)....]..m.x'.O.K...<...%m.,..!......YR\....s))..9..iz...r.._.%D~..._....YB.Z.)..E.@.d.q.9)...6......"

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bolt-custom-elements.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	113551
Entropy (8bit):	5.351401537580938
Encrypted:	false
SSDEEP:	1536:QOEzTf4tIH+4VgN8/jd4TPrMsFhb7hKR2lW003UevfilY:TifhhY5QX
MD5:	5FB06CADBF497C26972AF94E2F529397
SHA1:	DAAEDC1CC9A0C9863C19DF9ADEC7FECC51C81FE5
SHA-256:	9366C382B51C6458C73CF5E88A51455726C3F4D4D23E3CC6EA56DDA1A9E77710
SHA-512:	6D8AA904420961D2AC6CCC4467BAB77A126AE9F23A9F6C046B908B64DEDB562E419A113C4108C2BB1C5D49D0665C7B6A0523442DB5BAA9E83702A8182438A36B
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-custom-elements.min.js
Preview:	var customElementsPackage=function(e){var t={};function n(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var i in e)n.d(r,i,function(t){return e[t]}.bind(null,i));return r},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,"a",t),t},n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},n.p="",n(n.s=1)}([function(e,t,n){e.exports=function(e){var t={};function

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bolt-main-prod-old[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	2012259
Entropy (8bit):	5.618038706308556
Encrypted:	false
SSDEEP:	49152:SNnVRSefooi1GQrTMbMdMl8yoDXrK1nP2Uf4dB3v3SjEba8XViEyN:JOQQMdM6AP2Uf4dB3v3SjEba8XViEyN
MD5:	EBBA1C527B51C9CDC591DBFC35310CA1
SHA1:	9CB9AC53C2CB7DCA2D8201DA83616F8810363C75
SHA-256:	26DD368DFA87FB4F597969B4E89D46977CCF102879FF796E388FEA8A62B77232
SHA-512:	A7611C2511EA56C2A1228FC07D29143003A0149949AA8580579A50FAAAC2B49AC921CAC818068C2E4C9C19BA20787223EC85DF4513A6A02C5F51D7BC3DBAF45A
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-main-prod-old.js
Preview:	define(["lodash","coreUtilsLib","react","prop-types","warmupUtils","zepto","react-dom","santa-components","coreUtils","tpaComponents","color","thirdPartyAnalytics","create-react-class","layout-utils","layout","wix-dom-sanitizer","data-capsule","galleriesCommon","bolt-components"],function(e,t,n,r,a,o,i,s,u,l,c,p,d,f,g,m,v,y,h){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var a=t[r]={i:r,l:!1,exports:{}};return e[r].call(a.exports,a,a.exports,n),a.l=!0,a.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var a in e)

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bolt-main-r.init[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	338852
Entropy (8bit):	5.446294168118535
Encrypted:	false
SSDEEP:	3072:Ucwt+ywr9a6+s7BDIMCPS31NOjR/M84hV4HhDSo2wDZDtiu8eYEmss2fPjM:NwtsDISa7r8OVPjM
MD5:	8E2ADD131D5E8CE3B79E71E3A7BDDD6D
SHA1:	CBCDDA54B860DF21C1384FBF0489FE794BCF8279
SHA-256:	58A65336D59C4ABB3CEBBAAE49EE37E0FB489EAF5C3653CC5F20F7149CC25A2F
SHA-512:	597B191A08BDF820F71F3A180B466754DA71CC5BA8FF5ACC1DC7DA38984EDEC9F2770EBEE2486C04BF7C060BF2E44949D8F5560032236E9EE123ACA8C68B29DE
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-main-r.init.js
Preview:	(this.webpackJsonp=this.webpackJsonp\|\|[]).push([[4],{220:function(e,n,r){"use strict";e.exports={prefersReducedMotion:function(e){return!(!(e=e\|\|("undefined"!=typeof window?window:void 0))\|\|!e.matchMedia)&&e.matchMedia("(prefers-reduced-motion: reduce)").matches}}},221:function(e,n,r){"use strict";function t(e,n){return function(e){if(Array.isArray(e))return e}(e)\|\|function(e,n){var r=[],t=!0,o=!1,a=void 0;try{for(var i,s=e[Symbol.iterator]();!(t=(i=s.next()).done)&&(r.push(i.value),!n\|\|r.length!==n);t=!0);}catch(e){o=!0,a=e}finally{try{t\|\|null==s.return\|\|s.return()}finally{if(o)throw a}}return r}(e,n)\|\|function(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}()}var o=r(54);e.exports={getContextId:function(e){var n=e.mainRootId,r=e.innerRoute,t=e.tpaInnerRoute,a=e.lang,i=e.platformGoToEditorCounter,s=e.pagesVersion;return[n,r,t,a,o.uniqueId("context"),i,s].join("$$")},getMainRootIdFromContextId:function(e){return t(e.split("$$"),1)[0]}}},222:function(e,n,r

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bt[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	43
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9pse:Gl3QEsJLse
MD5:	AD4B0F606E0F8465BC4C4C170B37E1A3
SHA1:	50B30FD5F87C85FE5CBA2635CB83316CA71250D7
SHA-256:	CF4724B2F736ED1A0AE6BC28F1EAD963D9CD2C1FD87B6EF32E7799FC1C5C8BDA
SHA-512:	EBFE0C0DF4BCC167D5CB6EBDD379F9083DF62BEF63A23818E1C6ADF0F64B65467EA58B7CD4D03CF0A1B1A2B07FB7B969BF35F25F1F8538CC65CF3EEBDF8A0910
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	72170
Entropy (8bit):	5.291418439127055
Encrypted:	false
SSDEEP:	768:ugT7CZ2ilPNNqNb61qY8ZQUWxikVdotBhhS+ly6Rv5//g7lhH4HfSzO0BTPUQ3j4:jT7+NkbvLF5/AlhH4sKP
MD5:	E2A262292E08E10807A052B02C5951E9
SHA1:	21769E4CBA828D2225D4247D1B14D550C77954E3
SHA-256:	635B050935D2360B9D5FD1F7E7FA3C6B949A14809518AF434C0F31F3AF393046
SHA-512:	587FB55A5BE7621B407EE2554E69CD34A2F9A1685AA53EF76A2D48C36526DB46B774ED2DB17331F7B49F2B2C83FFC62961F69AB8E4EC17DC7779A92808AC305A
Malicious:	false
Reputation:	low
IE Cache URL:	https://browser.sentry-cdn.com/4.6.2/bundle.min.js
Preview:	/! @sentry/browser 4.6.2 (1c1b0715) \| https://github.com/getsentry/sentry-javascript /.var Sentry=function(t){"use strict";var e=function(t,n){return(e=Object.setPrototypeOf\|\|{__proto__:[]}instanceof Array&&function(t,e){t.__proto__=e}\|\|function(t,e){for(var n in e)e.hasOwnProperty(n)&&(t[n]=e[n])})(t,n)};function n(t,n){function r(){this.constructor=t}e(t,n),t.prototype=null===n?Object.create(n):(r.prototype=n.prototype,new r)}var r,o,i=function(){return(i=Object.assign\|\|function(t){for(var e,n=1,r=arguments.length;n<r;n++)for(var o in e=arguments[n])Object.prototype.hasOwnProperty.call(e,o)&&(t[o]=e[o]);return t}).apply(this,arguments)};function s(t,e,n,r){return new(n\|\|(n=Promise))(function(o,i){function s(t){try{u(r.next(t))}catch(t){i(t)}}function a(t){try{u(r.throw(t))}catch(t){i(t)}}function u(t){t.done?o(t.value):new n(function(e){e(t.value)}).then(s,a)}u((r=r.apply(t,e\|\|[])).next())})}function a(t,e){var n,r,o,i,s={label:0,sent:function(){if(1&o[0])throw o[1];return o[1]},tr

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\bundle.min[2].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	65304
Entropy (8bit):	5.220447655902976
Encrypted:	false
SSDEEP:	768:5thPgk5Zi8QLtFJ0+nMACXn3nVWa062vjg4/aBkaAYPiIZRSfWRV0lspnFAz6QCs:pa0CUXgvjg4/UkaAYPigRLnkCdEhs0L
MD5:	CA197586ED80A7767CC602668C7B18BE
SHA1:	4C529C1C294D362DE3CC90CAF487FFEEA8827F56
SHA-256:	D58AE5786D8A1FECE18908C69B138536CB2FC61A5507ACFC2A7107A2D31F10DD
SHA-512:	C857991615F1D1662F275648F757DC80BC8D13C6166C97ECAA121EA290211182D88CF6E1DBD443C313DEE20BC3A3238B01CF2D0908DB106080C32BC37E8D95C2
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-bundle@1.1061.0/dist/bundle.min.js
Preview:	/** MobX - (c) Michel Weststrate 2015, 2016 - MIT Licensed */..!function(e){if("object"==typeof exports&&"undefined"!=typeof module)module.exports=e();else if("function"==typeof define&&define.amd)define("prop-types",[],e);else{var t;t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this,t.PropTypes=e()}}(function(){return function e(t,n,r){function o(a,s){if(!n[a]){if(!t[a]){var u="function"==typeof require&&require;if(!s&&u)return u(a,!0);if(i)return i(a,!0);var c=new Error("Cannot find module '"+a+"'");throw c.code="MODULE_NOT_FOUND",c}var l=n[a]={exports:{}};t[a][0].call(l.exports,function(e){var n=t[a][1][e];return o(n\|\|e)},l,l.exports,e,t,n,r)}return n[a].exports}for(var i="function"==typeof require&&require,a=0;a<r.length;a++)o(r[a]);return o}({1:[function(e,t){"use strict";var n=e(4),r=e(5),o=e(3);t.exports=function(){function e(e,t,n,i,a,s){s!==o&&r(!1,"Calling PropTypes validators directly is not supported by the `prop-types`

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\chrome-logo[1].svg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	SVG Scalable Vector Graphics image
Category:	downloaded
Size (bytes):	5828
Entropy (8bit):	5.292681906113015
Encrypted:	false
SSDEEP:	96:+4JqrKfS5c6qyc/7IRy9dvNK60ALhVxeHRI:HvJ4rHi
MD5:	C365DFBEBEFF9E8606BDF3E3B3AECBCA
SHA1:	4CF31EC373CFE7D1E3A03CF21AC11D38B888F9C3
SHA-256:	610FFD583BAF9476A6AAB758F9C3B76A5C8EBB8A7B2446B7EFCA0B26A97D761D
SHA-512:	70FA9071CEFA580844B41CAF796894CB7CC2ABF2B7E8990B62BA3D09C7975503587DE3787C6B864940DD1318BBD583C9ECA6356C497AD97DBF85F22B8A77EB41
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/chrome-logo.svg
Preview:	<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" width="48" height="48" viewBox="0 0 192 192"><defs><circle id="a" cx="96" cy="96" r="88"/></defs><clipPath id="b"><use xlink:href="#a" overflow="visible"/></clipPath><g clip-path="url(#b)"><path fill="#DB4437" d="M21.97 8v108h39.39L96 56h88V8z"/><linearGradient id="c" gradientUnits="userSpaceOnUse" x1="29.337" y1="75.021" x2="81.837" y2="44.354"><stop offset="0" stop-color="#a52714" stop-opacity=".6"/><stop offset=".66" stop-color="#a52714" stop-opacity="0"/></linearGradient><path fill="url(#c)" d="M21.97 8v108h39.39L96 56h88V8z"/></g><path clip-path="url(#b)" fill="#3E2723" fill-opacity=".15" d="M62.31 115.65L22.48 47.34l-.58 1 39.54 67.8z"/><g clip-path="url(#b)"><path fill="#0F9D58" d="M8 184h83.77l38.88-38.88V116H61.36L8 24.48z"/><linearGradient id="d" gradientUnits="userSpaceOnUse" x1="110.872" y1="164.495" x2="52.538" y2="130.329"><stop offset="0" stop-color="#055524" stop-opacity=".4"/><stop offse

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\components.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	107479
Entropy (8bit):	5.178995573339264
Encrypted:	false
SSDEEP:	1536:k4EbwKaraPyj+TxNWfpgnFBUo6vBmKF9C8tT1IG54m6C/WbNZ+:a2CrWf+gHdD/kO
MD5:	7BF7C826161717F8C6627668F5FDB821
SHA1:	1FD2F26F71B4C5EA61EAB45FD040268A17FB43BA
SHA-256:	85D887A648E6CE1B8743222102CD3401B443BDDF871725FBABA86276FAF0A2D0
SHA-512:	47DFE9E5667675D704CCF37794AA541AD940BB125856D3F8832452474332E868DDD0D1586FF0EE7968062C3CDDADFB268B162303C9715CCD192F7CFFB6726B76
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/components/components.min.js
Preview:	define("components",["lodash","coreUtils","santa-components","componentsCore","prop-types","skins","reactDOM","zepto","santa-core-utils","create-react-class","image-client-api","textCommon","backgroundCommon","santa-animations","galleriesCommon","displayer","imageZoom","comboBoxInput"],(function(e,t,i,n,s,a,o,r,p,l,c,d,u,h,m,g,y,f){return function(e){var t={};function i(n){if(t[n])return t[n].exports;var s=t[n]={i:n,l:!1,exports:{}};return e[n].call(s.exports,s,s.exports,i),s.l=!0,s.exports}return i.m=e,i.c=t,i.d=function(e,t,n){i.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:n})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var n=Object.create(null);if(i.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var s

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\coreUtils.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	116660
Entropy (8bit):	5.352158808373356
Encrypted:	false
SSDEEP:	3072:3Svggjht6Jf0Cd6SKB3YHZn7Svu6NtDYRWq:EBouNtMP
MD5:	7B872A8AE7CCFCD7DC98408080E04B31
SHA1:	2D968A176EF5A479E5DA90E80ED02A49EAE02861
SHA-256:	BBDCF4CD2965B75F0491C66C54DD8DF12C0287788684EC0833F1346047952528
SHA-512:	5AC1483EEB8ED230B1AA0B2CF283329E477FEA61CF06E3F2E759A49F2BDA174818633A21ED6D7DCC926BB26101C5A7B500E3C416A2ABAA6985BECC87CECE2563
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/coreUtils/coreUtils.min.js
Preview:	define("coreUtils",["lodash","warmupUtils","santa-core-utils","warmupUtilsLib","color","thirdPartyAnalytics","xss","data-capsule","mobileLayoutUtils"],(function(e,t,n,o,r,a,i,s,c){return function(e){var t={};function n(o){if(t[o])return t[o].exports;var r=t[o]={i:o,l:!1,exports:{}};return e[o].call(r.exports,r,r.exports,n),r.l=!0,r.exports}return n.m=e,n.c=t,n.d=function(e,t,o){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:o})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var o=Object.create(null);if(n.r(o),Object.defineProperty(o,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var r in e)n.d(o,r,function(t){return e[t]}.bind(null,r));return o},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};retu

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\coreUtils[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	106440
Entropy (8bit):	5.514423242622045
Encrypted:	false
SSDEEP:	1536:/kEG2CvhaFfvXms/fMYNMlVF2pNPakN0IF/U2yCSE3N78Ly+BQ5:/0hef5rPFN5U2yCSlQ5
MD5:	C5855B89AA2BAA5A7DC2601B6D79A246
SHA1:	CA7BDB490EB7F016092CD1DF5FACBEDA78E90B8F
SHA-256:	9762EB531AF491063EEFFED6A53E265BF0DC434CD97D8947841507EE9856598E
SHA-512:	600FE2751F95998371DB89AF562B2F37876AB36C1B558456B2DB6E31002464E40E2E701D95670B6C0B621FF985888D1DDA909EB46ACBF9B4CB3E1D47DF2C367D
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-core-utils@1.2697.0/dist/coreUtils.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t(require("lodash"),require("zepto"),require("warmupUtilsLib")):"function"==typeof define&&define.amd?define(["lodash","zepto","warmupUtilsLib"],t):"object"==typeof exports?exports.coreUtils=t(require("lodash"),require("zepto"),require("warmupUtilsLib")):e.coreUtils=t(e.lodash,e.zepto,e.warmupUtilsLib)}(this,(function(e,t,n){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var o=t[r]={i:r,l:!1,exports:{}};return e[r].call(o.exports,o,o.exports,n),o.l=!0,o.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.definePropert

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\dynamicPages.ea31d9ca.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	3831
Entropy (8bit):	5.281180025971212
Encrypted:	false
SSDEEP:	48:lDrvaqXyuBXMRwmSvGeO+EUitKs+aSeLM8Pix3sUjWqr6mYBwFqhF6MVPTnDeIyE:HuR4vZxSLSeURj6wM1sRRiA1qqVhC
MD5:	245B266A0D84FF98C84D3147009629BD
SHA1:	D7C857C19B07C249173250A3AB2FA8108939021B
SHA-256:	0169501B24183C6A42DC3AB2284FB2C68182307D2BA0902FA5B76FF0C7C6AF9E
SHA-512:	C208F84DB0762D3DB0C856D6ACB80BB60DD667176643EB04A21DEE38F99F1695CF20240914B002E5CC9040E6E8496F4BF9FA11EDFCEE57C687E8450869DE7D7C
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/dynamicPages.ea31d9ca.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[47],{303:function(e,t,r){"use strict";r.r(t),r.d(t,"site",(function(){return R})),r.d(t,"DynamicPagesResponseHandlerSymbol",(function(){return d.a}));var n,a=r(0),o=r(27),i=r(4),c=r(367),u=r(368),s=r(23),d=r(207),l="__403__dp",p="__404__dp",f="__500__dp",b="__uknown_error__dp",h=function(e){return e.replace("./","").split("/")},v=function(e){return h(e)[0]},O=function(e,t){var r=t.result,n=r.page,o=r.data,i=r.head,c=r.tpaInnerRoute,u=r.publicData;return Object(a.a)(Object(a.a)({},e),{pageId:n,dynamicRouteData:{pageData:o,pageHeadData:i,publicData:u,tpaInnerRoute:c}})};!function(e){e.PAGES="pages",e.SITEMAP="sitemap"}(n\|\|(n={}));var g=function(e,t,r,n,a){var o=e.optionsData.bodyData,i=o.routerPrefix,c=o.config,u=o.pageRoles,s=function(e){return"/"+h(e).slice(1).join("/")}(t),d=""+n+i+s+r;return JSON.stringify({routerPrefix:i,routerSuffix:s,fullUrl:d,config:c,pageRoles:u,requestInfo:{formFactor

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\frame-listener.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	12492
Entropy (8bit):	5.160419543755334
Encrypted:	false
SSDEEP:	192:3yEiy5RPrtX3wF++ATgkStaO3umwutHnvlAg6fyvumWUpx2PO+lAg68JD2kD63:3yQQFVQmwckf9mJQPe852T3
MD5:	D829108208F1EB9B9BC884C5E6C43A54
SHA1:	05A79B7F0738CFD2F2FE3C6CEBDBD0A7702EB44C
SHA-256:	22EE05C11B27143CF6474926408154A2723EC321249FAF6684BACA657F64B723
SHA-512:	51646E8E2B5557949EB5A77B10092ABA6E8575C17E696477CDEFF012687E857E9D01B5BD33E511892EFCB8292DB3781323C1CD7440CB9E41C82F8B298A849A1E
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/data-capsule@1.0.83/dist/statics/frame-listener.bundle.min.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define("data-capsule",[],t):"object"==typeof exports?exports["data-capsule"]=t():e["data-capsule"]=t()}("undefined"!=typeof self?self:this,function(){return function(e){function t(n){if(r[n])return r[n].exports;var o=r[n]={i:n,l:!1,exports:{}};return e[n].call(o.exports,o,o.exports,t),o.l=!0,o.exports}var r={};return t.m=e,t.c=r,t.d=function(e,r,n){t.o(e,r)\|\|Object.defineProperty(e,r,{configurable:!1,enumerable:!0,get:n})},t.n=function(e){var r=e&&e.__esModule?function(){return e.default}:function(){return e};return t.d(r,"a",r),r},t.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},t.p="",t.p="undefined"!=typeof window&&window.__STATICS_BASE_URL__\|\|t.p,t(t.s=54)}({0:function(e,t,r){"use strict";function n(e,t){if(!(e instanceof t))throw new TypeError("Cannot call a class as a function")}var o=function(){function e(e,t){for(var r=0;r<t.length;r++){va

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ga-audiences[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	84
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEqjdfXPQE/xlEy:1QEoqh3QEoy
MD5:	6A3F2D147842187CD48B1546EDDD5BA0
SHA1:	AB278C31189DF2939428CF81A3850A2C6DBF5E2E
SHA-256:	D4990F907BCA02F02B3D41216EEA5461609D4BCBA07A3CBEE0D7CF28A6D0D864
SHA-512:	998F55BF5C3D4A71CB3C23782B788F71E7625DF83A37FE8A18F915AAA3BDE5420183A3C709816664E262069EE2FE245CA44799E3476B6DE507B5D68FC86F8960
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\gsap.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	57826
Entropy (8bit):	5.336045925794379
Encrypted:	false
SSDEEP:	768:N1JsoGPTyHRUxrSOdlWfT2OlUFi2rLei2YCv0BiDTTW9t9gE0aZC3n5N:NDFGlrSGlWTCPb9b+
MD5:	663FD753CAE2B462CF8ED119C3F991AB
SHA1:	06A63BC0EC823880B5420C23071E3C3C0582C11A
SHA-256:	732117AC92A33B760D9290A33F1541762EE9449DC417EA249B5A0DF50738AD16
SHA-512:	D11607AA8380466A71344C3E7ACC4D1D768FA17594DFAB300BC6B90609A77B164D98E8437B00AF2913568AD262C1FE34A3C254B20F37D54BBF71120DEEC09D28
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-external-modules@1.644.0/tweenmax-plugins/3.1.1-transition-phase/gsap.min.js
Preview:	/!. GSAP 3.1.1. * https://greensock.com. * . * @license Copyright 2020, GreenSock. All rights reserved.. * Subject to the terms at https://greensock.com/standard-license or for Club GreenSock members, the agreement issued with that membership.. * @author: Jack Doyle, jack@greensock.com. */..!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?e(exports):"function"==typeof define&&define.amd?define(["exports"],e):e((t=t\|\|self).window=t.window\|\|{})}(this,function(e){"use strict";function _inheritsLoose(t,e){t.prototype=Object.create(e.prototype),(t.prototype.constructor=t).__proto__=e}function _assertThisInitialized(t){if(void 0===t)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return t}function n(t){return"string"==typeof t}function o(t){return"function"==typeof t}function p(t){return"number"==typeof t}function q(t){return void 0===t}function r(t){return"object"==typeof t}function s(t){return!1!==t}function t(){return"undefined"!

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\helvetica[1].css Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	29917
Entropy (8bit):	5.035402319919693
Encrypted:	false
SSDEEP:	192:ZVlDpZKJ56E/Zn5v5D2Z9Ye+RUVMn0DpUZM9MBkzmNNfNefNtL/+8/U7748NWDYD:i1diD8FGS/PaL5ENOOz9oy
MD5:	39099ECA9738473EAA97CA6D87F4A5BF
SHA1:	6BA90D5D62954E52271BB44A2F5EE008CA576FAE
SHA-256:	2A238BAB6155365B6F5257D64D17277B0E70E5A217B90D53F2A3FC96F6707A9E
SHA-512:	641C0EACB9829FC34D4CC678E33BA96B156E54EE67F5D90C0238B9B241E8AFC24F7C1A0817CFFB27F8E805F33BBD9BD15E2B5243925A6B803B2612840D22E63F
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v7/helvetica.css
Preview:	/* fonts helvetica /../@import url("//fast.fonts.com/t/1.css?apiType=css&projectid=33bd0973-5b82-45be-bb77-837225874dfe");/..html{. background-image:url("//fast.fonts.com/t/1.css?apiType=css&projectid=33bd0973-5b82-45be-bb77-837225874dfe");.}.../ Original old fonts */..@font-face {. font-family: "Helvetica Neue";. src: url("//static.parastorage.com/services/third-party/fonts/Helvetica/Fonts/b7693a83-b861-4aa6-85e0-9ecf676bc4d6.eot?#iefix") format("embedded-opentype"),. url("//static.parastorage.com/services/third-party/fonts/Helvetica/Fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff") format("woff"),. url("//static.parastorage.com/services/third-party/fonts/Helvetica/Fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf") format("truetype"),. url("//static.parastorage.com/services/third-party/fonts/Helvetica/Fonts/da09f1f1-062a-45af-86e1-2bbdb3dd94f9.svg#da09f1f1-062a-45af-86e1-2bbdb3dd94f9") format("svg");.}..@font-face {. font-family: "Helvetica Neue Thin";. font-

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\identity[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	11633
Entropy (8bit):	5.7883624283841515
Encrypted:	false
SSDEEP:	192:sCQHyB0Qt5BeeOvnJdTQn8dMf2IUiVIgqgxdbYpH380QtKgSbq8kjMc9Ix0vvOuG:sCJBTMMf2IUiGUU8QgSbqRFy0vvpi
MD5:	A4B4E2FB56CBAC0AA769F30236149A3B
SHA1:	2B80252D14157774F2F06A65EE9B55B66CF4D8DB
SHA-256:	3BEA34F20C813024F046166FB0AD98A8EB93D5AB93052CEB993EEE238ECE5B66
SHA-512:	46D1C72B70B054EAC2B6C511F7C09ECC176566037322AC0FAEA7FFC10071503CD71903EB514D6C482A21185BB53571400359EC2B2080BB1DCA9AD6146566E795
Malicious:	false
Reputation:	low
IE Cache URL:	https://connect.facebook.net/signals/plugins/identity.js?v=2.9.33
Preview:	/*. Copyright (c) 2017-present, Facebook, Inc. All rights reserved... You are hereby granted a non-exclusive, worldwide, royalty-free license to use,.* copy, modify, and distribute this software in source code or binary form for use.* in connection with the web services and APIs provided by Facebook... As with any software that integrates with the Facebook platform, your use of.* this software is subject to the Facebook Platform Policy.* [http://developers.facebook.com/policy/]. This copyright notice shall be.* included in all copies or substantial portions of the software... THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS.* FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR.* COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER.* IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN.* CONNECTION WI

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\intersection-observer-polyfill.5f183a8d.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	8906
Entropy (8bit):	5.142345649054618
Encrypted:	false
SSDEEP:	192:Vg/PYNqqzDODGgXdDDo4SpQmNhhWa3ghHUtigFmgJWBC425NVGpJYh3gkC6YFZm+:VgH8t3ihXdDjsQmNhh3gpUJDJWBCjcaa
MD5:	E49C2097D1FA87F363C38775C6C4C0DD
SHA1:	0D637B238E866D1C866B4587DE0EA05EF4F5C2BC
SHA-256:	13590CA936462AB3DCE0C4BA5C2AC714F0F5BA0B5D3FB14FBFC5B8BD94F4394D
SHA-512:	D38C357EE66C3E14B3418F22E228188B68CFC97FEEA68FB9C731A6472C0F214E61C5170A53028A9F03A90B8A5636D25EDFA335C06D9F179FDE78910E2D21BC17
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/intersection-observer-polyfill.5f183a8d.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[62],{781:function(t,e){!function(){"use strict";if("object"==typeof window)if("IntersectionObserver"in window&&"IntersectionObserverEntry"in window&&"intersectionRatio"in window.IntersectionObserverEntry.prototype)"isIntersecting"in window.IntersectionObserverEntry.prototype\|\|Object.defineProperty(window.IntersectionObserverEntry.prototype,"isIntersecting",{get:function(){return this.intersectionRatio>0}});else{var t=window.document,e=[],n=null,o=null;r.prototype.THROTTLE_TIMEOUT=100,r.prototype.POLL_INTERVAL=null,r.prototype.USE_MUTATION_OBSERVER=!0,r._setupCrossOriginUpdater=function(){return n\|\|(n=function(t,n){o=t&&n?a(t,n):{top:0,bottom:0,left:0,right:0,width:0,height:0},e.forEach((function(t){t._checkForIntersections()}))}),n},r._resetCrossOriginUpdater=function(){n=null,o=null},r.prototype.observe=function(t){if(!this._observationTargets.some((function(e){return e.element==t}))){if(!t\|

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\layout.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	145097
Entropy (8bit):	5.27080890708655
Encrypted:	false
SSDEEP:	1536:smMr3o1C+p78HehPcX4d4jMicDeEWuC5RARwWeLFXU1MRPw25:ZWo1CdHehPcIKMifEWuC5+VcDPw25
MD5:	0C18CD68DC0C70A886D910F73B16A78A
SHA1:	5254DF79E9B58E5203357A31F65D7D9653591AC4
SHA-256:	2663165F94D02964715CD215616749F2DF17BB640326EEDC85C6C02876D1349B
SHA-512:	73011B1A6DADA79963309CE9A600B293ADD7FEFECECD90D7C20E919A487E20D41A7E1537A86CC3340E5EBD37A7C3D1B6269C90EEA7670451E06313C885E0A317
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/layout/layout.min.js
Preview:	define("layout",["lodash","zepto","experiment","warmupUtils","warmupUtilsLib","image-client-api","santa-components-layout"],(function(e,t,i,n,r,o,a){return function(e){var t={};function i(n){if(t[n])return t[n].exports;var r=t[n]={i:n,l:!1,exports:{}};return e[n].call(r.exports,r,r.exports,i),r.l=!0,r.exports}return i.m=e,i.c=t,i.d=function(e,t,n){i.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:n})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var n=Object.create(null);if(i.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var r in e)i.d(n,r,function(t){return e[t]}.bind(null,r));return n},i.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return i.d(t,"a",t),t},i.o=function

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\main.v2.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	89496
Entropy (8bit):	5.360020370550665
Encrypted:	false
SSDEEP:	1536:wbhQM1RxVnSFfdfFMbAq1jwOU9dlYTAfZpSMTndG9xZfFNJNO7uEW2:I8XqpwOESMTndO9NzO7k2
MD5:	999A976CF2D3A69A8B8FDA9F07F33699
SHA1:	F91E5D08D071C1281D37A89605CADB80735DF3D5
SHA-256:	08EC4DCE6974BFC4AAA527179BDD8D66D137748CD47D159849CEC2125A6CC89D
SHA-512:	AA62EFC16DCACBA74E7F2D1DA1FB3FA14EEAE5CDA9E209935D760D82E6A11D3652C9FD083E82BC29C9B4558CB33F5AF9A85D5A00A30C02ECDE817288CED87993
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/js/main.v2.min.js
Preview:	(function(){var f,aa="function"==typeof Object.defineProperties?Object.defineProperty:function(a,b,c){a!=Array.prototype&&a!=Object.prototype&&(a[b]=c.value)},k="undefined"!=typeof window&&window===this?this:"undefined"!=typeof global&&null!=global?global:this;function ba(){ba=function(){};k.Symbol\|\|(k.Symbol=ca)}var ca=function(){var a=0;return function(b){return"jscomp_symbol_"+(b\|\|"")+a++}}();.function l(){ba();var a=k.Symbol.iterator;a\|\|(a=k.Symbol.iterator=k.Symbol("iterator"));"function"!=typeof Array.prototype[a]&&aa(Array.prototype,a,{configurable:!0,writable:!0,value:function(){return da(this)}});l=function(){}}function da(a){var b=0;return ea(function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}})}function ea(a){l();a={next:a};a[k.Symbol.iterator]=function(){return this};return a}function m(a){l();var b=a[Symbol.iterator];return b?b.call(a):da(a)}.var fa="function"==typeof Object.create?Object.create:function(a){function b(){}b.prototype=a;return new b},ha;if("functio

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\main.v3.min[1].css Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	203048
Entropy (8bit):	5.066880694984304
Encrypted:	false
SSDEEP:	1536:4pD7iyiUL+5eSLMd6Ll0sRslr6YY1llN2hDts52j9sJwW7jWlelqnVDXhUqjqQQg:UrkQeiB
MD5:	91344A7129A5AE2742F61BEC35FB482D
SHA1:	4C8EEBCD76434ACA23B55CE81816E45D10B3937C
SHA-256:	CE71AFE1D89A0C658F0EEB7F15A5232C6EF30C7D287E2683498656A0B84B50B7
SHA-512:	F408D40A08E986586935B2B760363A52684C2C818829CD6FEAFD07276046EF8E8A90001DFC1F915684CDC61653996E56DD11C81D9833DA0D3DC009D57270933C
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/css/main.v3.min.css
Preview:	.chr-accordion__image img,.chr-card-and-image__image,.chr-fifty-fifty__half-1 img,.chr-fifty-fifty__half-2 img,.chr-google-translate__device-image,.chr-scrollable__image{height:auto;width:100%}.chr-modal-dialog.eula ul,.chr-footer-social__list,.chr-footer-links__list,.chr-footer-glinks__list,.chr-footer-help-language,.chr-header-v3__drawer-nav-list,.chr-header-v3__drawer-subnav-list{list-style:none;padding:0}.chr-modal-dialog__buttons .throbber,.chr-modal-dialog.eula .eula-content,.chr-modal-dialog.eula .other-platform,.chr-modal-dialog.eula .os,.chr-modal-dialog.eula .platform,.chr-modal-dialog.eula .chrome-os,.chr-modal-dialog.eula .other-platform.mac .other-mac,.chr-modal-dialog.eula .other-platform.win .other-win,.chr-modal-dialog.eula .other-platform.win64 .other-win64,.chr-modal-dialog.eula .other-platform.linux .other-linux,.chr-modal-dialog.eula .other-platform.betachannel.win49 .chr-modal-dialog__button,.chr-modal-dialog.eula .other-platform.betachannel.mac49 .chr-modal-dialog

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\mobileLayoutUtils.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	291205
Entropy (8bit):	5.502659448401162
Encrypted:	false
SSDEEP:	3072:ClSyhMUsKZFcQDvbX6r5xmMadzxNv12M3owkvSa5boPGiZIU2yCS87:khzssvbgr5M3owkvR5boPGAN2yCSK
MD5:	F2ABF3FFAED32767721FE0D1A7057402
SHA1:	CBE465E33E10F40B724E6A777D2B12BC2C7FD654
SHA-256:	3A17C94CEECF26457342B187D9DD86D1EC7F1A54786E22D7B4C206FFEE871003
SHA-512:	B0F0823915F5ED60E8606C5044AF60539028A9C17E671B1422E291A0A8844B976BA54ED13A3FBB3FBF2300F6E2B61FE76D60B45F0A034F423D8EB8922CFB3707
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-mobile-core@1.1227.0/dist/mobileLayoutUtils.min.js
Preview:	define(["lodash"],(function(e){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var i in e)n.d(r,i,function(t){return e[t]}.bind(null,i));return r},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,"a",t),t},n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},n.p="",n(n.s=128)}([function(t,n){t.exports=e},function(e,t,n)

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\modernizr[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	18121
Entropy (8bit):	5.487052413899393
Encrypted:	false
SSDEEP:	384:sEVrsUrsbn8b9ElD9HW590TpJGd+xesmAnxpakrwHVXHh1pz:RV/Q8b9wD5jebALak0HVXHl
MD5:	22B1D136ACE6916B80EE05FD4889066E
SHA1:	03903EC6E52233623AFE851E351E160B72ED2828
SHA-256:	8C2D2E5D88589A1283EC0CDF49BEDC2DD3A8F40FE77C39C3E00ED8CEF1968FF3
SHA-512:	9BBBCBA7803D76C8F8CBD9974733211D8ED703E640B2FC673715DCC091413A2FE3E385CE1886DFCD7C5153EBDC154B1A5D83D0F004369C355EBCEDD841E2E9F7
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.gstatic.com/external_hosted/modernizr/modernizr.js
Preview:	/*. @license. * MIT License. * Copyright (c) 2009.2011. * Permission is hereby granted, free of charge, to any person obtaining a copy. * of this software and associated documentation files (the "Software"), to deal. * in the Software without restriction, including without limitation the rights. * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell. * copies of the Software, and to permit persons to whom the Software is. * furnished to do so, subject to the following conditions:. * The above copyright notice and this permission notice shall be included in. * all copies or substantial portions of the Software.. * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR. * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,. * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE. * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER. * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, T

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\pfavico[1].ico Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Category:	downloaded
Size (bytes):	1150
Entropy (8bit):	1.2100731437092027
Encrypted:	false
SSDEEP:	3:3NhDllvlNl/khXhCC1111111111111111111111111111111111111111111111H:7Jq55555555555555R
MD5:	B53CE85A6CCE2AE00037A6CA13C90866
SHA1:	292D9AEB457AB7FEDBAD452854332AEFF267A78E
SHA-256:	33C1436F8C40CA2582D091C449FCCC34ED9BF73F02526C5FDEF44F4F06C6321B
SHA-512:	9271B4BD6B07C15662E9265359AD80CBEDF971C127F8C17EF289AE7A552C3BDA93A8416881493196E956FDC5B2A4DF03CBDA838F4203C7F7B12DCDBFE27B31CB
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/client/pfavico.ico
Preview:	............ .h.......(....... ..... .....@.............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\polyfill.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	data
Category:	downloaded
Size (bytes):	22629
Entropy (8bit):	5.262393792354482
Encrypted:	false
SSDEEP:	384:x/2ggnPTclMcL65uNlPvgtDj6WnW+Y6/cTxJtlwMHnWazh5vd2uZvOC1:x/hL60NlPkW+F/cTxfXHWazhDXZvOC1
MD5:	42E531D2C282ACC7A2EC77E00CEC1D10
SHA1:	87B8F7A381B07C2771F3CF4B651F304470B5F4D8
SHA-256:	38F84B4BF4D91C67D64FFBEE5CC4B6A39BAA9653E5369532D902F9F06F650A57
SHA-512:	BAC8A94B872E3E196CA45906E2780ED1E546B42DDC2318A9FF4F1B4D14EF7FC49783160C3295AD39B54C1B051DE61F7BCBF2935C5FD368E24B2E5E39FDA00F36
Malicious:	false
Reputation:	low
IE Cache URL:	https://polyfill.io/v3/polyfill.min.js?features=fetch
Preview:	/* Disable minification (remove `.min` from URL path) for more info */..(function(self, undefined) {function Call(t,l){var n=arguments.length>2?arguments[2]:[];if(!1===IsCallable(t))throw new TypeError(Object.prototype.toString.call(t)+"is not a function.");return t.apply(l,n)}function CreateMethodProperty(e,r,t){var a={value:t,writable:!0,enumerable:!1,configurable:!0};Object.defineProperty(e,r,a)}function Get(n,t){return n[t]}function HasOwnProperty(r,t){return Object.prototype.hasOwnProperty.call(r,t)}function IsCallable(n){return"function"==typeof n}function SameValueNonNumber(e,n){return e===n}function ToObject(e){if(null===e\|\|e===undefined)throw TypeError();return Object(e)}function GetV(t,e){return ToObject(t)[e]}function GetMethod(e,n){var r=GetV(e,n);if(null===r\|\|r===undefined)return undefined;if(!1===IsCallable(r))throw new TypeError("Method not callable: "+n);return r}function Type(e){switch(typeof e){case"undefined":return"undefined";case"boolean":return"boolean";case"numbe

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\skin-utils[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	284572
Entropy (8bit):	5.517855793283513
Encrypted:	false
SSDEEP:	3072:Mdc7/01xDZFcQ41NRr5M8GMpdzxNv5u2po8kvSA8FPrPZvU2yCSrc://+xW1LC8c2po8kv18FPrhs2yCSo
MD5:	C4F04FB651FD898F85DE8643B1ABDEAC
SHA1:	35C0115DF95291AD67E1DEE57A2A92739523EF4F
SHA-256:	A3876C20B36B29CAE94FF0BE2354008917235E1D97D498156434E6B6F6F48812
SHA-512:	3DFE2D888BBDA47F9F88C051BC9943014EB678947E47CFDCBB36634BCA980CF215C733E9E6708C60B60A87C6285AE5F24C74820E6B4910F2F97D6850B0D05A8D
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-skin-utils@1.1685.0/dist/skin-utils.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t(require("lodash"),require("color")):"function"==typeof define&&define.amd?define(["lodash","color"],t):"object"==typeof exports?exports["skin-utils"]=t(require("lodash"),require("color")):e["skin-utils"]=t(e.lodash,e.color)}(this,(function(e,t){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var i in e)n.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\skins.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	393702
Entropy (8bit):	5.370441249701614
Encrypted:	false
SSDEEP:	12288:j4WQCBH8AAULsDm10EtpJe5jTK9EDNHWKOzVpSbKu1wqryUJ+0CyBe9zI6Y5b+AA:j4+yBe9zIMA3Q
MD5:	40587291FA2E7431517216BC208600B4
SHA1:	131A4AEB87B630D0E96D7A5E17C27E12274B8F98
SHA-256:	76FD2F7C71D5CF7E208603BE997E23A6573820A9353A0833350DF13648FDED4F
SHA-512:	8636BBC2FAD01E39BAF47E4A2FD7E95BA7F82EA6C16F4F13D49D40598D20FABFA461C8986F5EE115A98182C96F4B1A328929B2FAD8C6D72854AA49B3DF2350B3
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/skins/skins.min.js
Preview:	define("skins",["lodash","santa-components","santa-core-utils","skinUtils"],(function(t,e,o,r){return function(t){var e={};function o(r){if(e[r])return e[r].exports;var a=e[r]={i:r,l:!1,exports:{}};return t[r].call(a.exports,a,a.exports,o),a.l=!0,a.exports}return o.m=t,o.c=e,o.d=function(t,e,r){o.o(t,e)\|\|Object.defineProperty(t,e,{enumerable:!0,get:r})},o.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},o.t=function(t,e){if(1&e&&(t=o(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var r=Object.create(null);if(o.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var a in t)o.d(r,a,function(e){return t[e]}.bind(null,a));return r},o.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return o.d(e,"a",e),e},o.o=function(t,e){return Object.prototype.hasOwnProperty.call(t,e)

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\src=2542116;type=2542116;cat=chrom0;ord=8924832293155;gtm=2wg3o0;~oref=https___www.google[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	42
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEy:1QEoy
MD5:	D89746888DA2D9510B64A9F031EAECD5
SHA1:	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A
SHA-256:	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
SHA-512:	D5DA26B5D496EDB0221DF1A4057A8B0285D15592A8F8DC7016A294DF37ED335F3FDE6A2252962E0DF38B62847F8B771463A0124EF3F84299F262ED9D9D3CEE4C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\tc_imp[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	43
Entropy (8bit):	3.142069457963608
Encrypted:	false
SSDEEP:	3:CU1urkltxlHh/:gg/
MD5:	DB04C7B378CB2DB912C3BA8A5A774EE3
SHA1:	DEE34BD86C3484D31002182AA2B7CAA4699126B8
SHA-256:	98B3D9D20E032F90ACA49E9B116225D539FF6FBDB7E42C3C363F63896AC03D2A
SHA-512:	826225FC21717D8861A05B9D2F959539AAD2D2B131B2AFED75D88FBCA535E1B0D5A0DA8AC69713A0876A0D467848A37A0A7F926AEAFAD8CF28201382D16466AB
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\thirdPartyAnalytics.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	C source, ASCII text, with very long lines
Category:	downloaded
Size (bytes):	9873
Entropy (8bit):	5.205156652219834
Encrypted:	false
SSDEEP:	192:jcvj1yLBPBT2nQc94VE9Mz9hrbZ4iDwwpzH1AKyfCpsJ+W4:g1ymnXWV6OdPDllH1ECmJ+W4
MD5:	907C5062AE2E2C1732B12348708E30A0
SHA1:	832E34675A984610BF11BE4810D0ECEEF30FE240
SHA-256:	32567FEC7314C675F45B50A968C9B6AB076AB459C00362CFE7EC8CFD08A18D1A
SHA-512:	68A85A9558E42AAF2BF2475FC2D8A435B98EA5AB50A6B465A2BE895180EA0AF52FB740D68EE452B2AE39B53C48018EB38A2EEF654F7AD2D062A4ED14BA05792F
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/thirdPartyAnalytics/thirdPartyAnalytics.min.js
Preview:	define("thirdPartyAnalytics",["lodash","warmupUtils","santa-core-utils"],(function(n,e,t){return function(n){var e={};function t(i){if(e[i])return e[i].exports;var r=e[i]={i:i,l:!1,exports:{}};return n[i].call(r.exports,r,r.exports,t),r.l=!0,r.exports}return t.m=n,t.c=e,t.d=function(n,e,i){t.o(n,e)\|\|Object.defineProperty(n,e,{enumerable:!0,get:i})},t.r=function(n){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(n,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(n,"__esModule",{value:!0})},t.t=function(n,e){if(1&e&&(n=t(n)),8&e)return n;if(4&e&&"object"==typeof n&&n&&n.__esModule)return n;var i=Object.create(null);if(t.r(i),Object.defineProperty(i,"default",{enumerable:!0,value:n}),2&e&&"string"!=typeof n)for(var r in n)t.d(i,r,function(e){return n[e]}.bind(null,r));return i},t.n=function(n){var e=n&&n.__esModule?function(){return n.default}:function(){return n};return t.d(e,"a",e),e},t.o=function(n,e){return Object.prototype.hasOwnProperty.call(n,e)},t.p

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\tpaComponents.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	91651
Entropy (8bit):	5.348329174205209
Encrypted:	false
SSDEEP:	1536:FM1ivfr+qBZTzPlJ2FipSA2FGsi81BEMzIJU:Lr+qBZTzNJ2Fip3ai81BEMzIJU
MD5:	911DB28187DDD73B3F184BF58D58489B
SHA1:	4E64B1645E34AD48125C611CEF8E895AD6765A54
SHA-256:	11F64D3DD79AA58863B8FA0506F5D001003763B342A6595CB58ECD53F9CA26D3
SHA-512:	22EA82ADBE08E816A701C90F48FCF2C2585494DFF7559032D4AD96B0B83953C6E5D28BD66B25F8646155766779837F73005925E4FD9E34AFC1572230EC9C5BD3
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/tpaComponents/tpaComponents.min.js
Preview:	define("tpaComponents",["lodash","coreUtils","santa-components","componentsCore","prop-types","skins","reactDOM","zepto","experiment","warmupUtils","santa-core-utils","create-react-class","react","layout"],(function(e,t,i,n,s,r,o,a,p,c,d,l,u,h){return function(e){var t={};function i(n){if(t[n])return t[n].exports;var s=t[n]={i:n,l:!1,exports:{}};return e[n].call(s.exports,s,s.exports,i),s.l=!0,s.exports}return i.m=e,i.c=t,i.d=function(e,t,n){i.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:n})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var n=Object.create(null);if(i.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var s in e)i.d(n,s,function(t){return e[t]}.bind(null,s));return n},i.n=function(e){var t=e&&e.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ugc-viewer[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	129
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9psOjBMllRPQEsJ9psOjBMllRPQEsJ9pse:Gl3QEsJLsMal3QEsJLsMal3QEsJLse
MD5:	D2566C366F730CCD475BD1BF9C09CB6C
SHA1:	EA3CBBAD88A086493CD4FD035513BEC67B27BF52
SHA-256:	A7C2383A000E585F7FFF39FD181F1F236DDAD954BC1722753BB1ACFAA0AC8B51
SHA-512:	1A436C0F5D7A23051DD74B887BCA53E87C08A69E371B4530D184E8CD5BCB6FB0070DF988380B9826A32A17DEFCAF81CA80CBE2CAA841FB5382EB1DD4AE35129D
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;GIF89a.............!.......,...........L..;GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\wix-code-sdk-providers.3a33b93f.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	21967
Entropy (8bit):	5.195471144417698
Encrypted:	false
SSDEEP:	384:bRn9hWQn0pfB9UYAP0LmGK8XObt0sxhc8Ln7N3bC3GN/E7Oqc0H4:bV9hnsgPC3Q/0H4
MD5:	B392F208AE22E5B8A9ADE9A83954D51A
SHA1:	F54B32ABC34DD3F4F6839DE389D74E09CE1AA9BE
SHA-256:	D4D99A7C3214ADF1C2440ED27034D66AD748FB1FCF7B65E7B606EB7B8F8B7906
SHA-512:	E2DE00A789C486747935B8B7D41D2FBF2D5711A7160C1E58C22C891575CBD9428E5A348650AC745AB668F4F92F49D68D9EB6853020DB3C51AA59878917BC4142
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/wix-code-sdk-providers.3a33b93f.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[3],{281:function(t,e,n){"use strict";n.r(e),n.d(e,"site",(function(){return i}));var r=n(117),o=n(247);n.d(e,"name",(function(){return o.a})),n.d(e,"namespace",(function(){return o.b}));var i=function(t){t(r.q).to(n(572).dashboardWixCodeSdkHandlers)}},309:function(t,e,n){"use strict";n.r(e),n.d(e,"site",(function(){return d})),n.d(e,"name",(function(){return a.a})),n.d(e,"namespace",(function(){return a.b}));var r=n(117),o=n(27),i=n(366),u=n(367),a=n(218),c=Object(o.h)([i.a,Object(o.f)(u.e,a.a),r.p],(function(t,e,n){var r=e.pageIdToTitle,o=n.mode;return{platformEnvData:{site:{experiments:t,isResponsive:n.site.isResponsive,pageIdToTitle:r,mode:o}}}})),s=Object(o.h)([Object(o.g)(u.a)],(function(t){return{getSdkHandlers:function(){return{getSitemapFetchParams:function(e){return t?t.getSitemapFetchParams(e):null}}}}})),d=function(t){t(r.g).to(c),t(r.q).to(s)}},310:function(t,e,n){"use strict";n.r

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\wix-dom-sanitizer[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	19220
Entropy (8bit):	5.284078809599163
Encrypted:	false
SSDEEP:	384:3YyrTijbyGi/LA7A0MpCdzxv8ZlMiIV/iMewjtYC23MiVjfhuYrY9:vTxLsd9v8bMiS/iDGtYC23ZbuYr2
MD5:	BF53692C2D49A9E59E611AF682416BB4
SHA1:	87ED7DA4FD43B66A124D4180CE69596C88672F6D
SHA-256:	76F4A71B7ED39504017336D133F172CECEF1B2505E2557746E44F4647097BE5E
SHA-512:	B7BCA4D406D02950A849709DA913B2B4A0DD4A2F3E9B0CD5A4A9E93301F59F8F5F5C168D3EA80FC4A3BE9541848F806F415157FF07CB604A28D315A3E12A1DD5
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-dom-sanitizer@1.783.0/dist/wix-dom-sanitizer.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports["wix-dom-sanitizer"]=t():e["wix-dom-sanitizer"]=t()}(this,(function(){return function(e){var t={};function r(n){if(t[n])return t[n].exports;var o=t[n]={i:n,l:!1,exports:{}};return e[n].call(o.exports,o,o.exports,r),o.l=!0,o.exports}return r.m=e,r.c=t,r.d=function(e,t,n){r.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:n})},r.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},r.t=function(e,t){if(1&t&&(e=r(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var n=Object.create(null);if(r.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var o in e)r.d(n,o,function(t){return e[t]}.bind(null,o));return n},r.n=function(e){var t=e&&e.__esMod

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\wixFreemiumBanner.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	91411
Entropy (8bit):	5.445500119924285
Encrypted:	false
SSDEEP:	768:M8vtZ/lLqS9E399jKhHp9I0QF80X1P9W8wIX1k4X17Tq/X1sJ:M8vtZ/lLqSE3bjKhHXITF8aWnPA++
MD5:	EDFA821708DFE708B6CE87916D065BF7
SHA1:	081DB9DCC04A981F57FB17CC7F63AECFB7F25F82
SHA-256:	7CF1B47A2B5EF91B4CA85B594886416306620F2A19DD0EE217DFCB0A874015BB
SHA-512:	E38B3FBAD963666B991BCB1FBF37F0EC18A481DA57526CF14A869A4F3DA7D51B627FC456F9EDB54841281B0042A0921A8B45CED98848A705B2845DA23270A6CD
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/wixFreemiumBanner/wixFreemiumBanner.min.js
Preview:	define("wixFreemiumBanner",["lodash","coreUtils","santa-components","componentsCore","prop-types","react"],(function(e,t,o,r,a,n){return function(e){var t={};function o(r){if(t[r])return t[r].exports;var a=t[r]={i:r,l:!1,exports:{}};return e[r].call(a.exports,a,a.exports,o),a.l=!0,a.exports}return o.m=e,o.c=t,o.d=function(e,t,r){o.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},o.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},o.t=function(e,t){if(1&t&&(e=o(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(o.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var a in e)o.d(r,a,function(t){return e[t]}.bind(null,a));return r},o.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return o.d(t,"a",t),t},o.o=function(e,t){return Object

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\wixMadefor[1].css Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	4339
Entropy (8bit):	4.828748558866936
Encrypted:	false
SSDEEP:	96:/QPOPLLQPbPU9QPfPgdQH4rDWQ1SpQZ+ADWQ4xlQKvjDWQTcTQoh/DWQpOO:/D7DQDADZ
MD5:	D76884A66F7EE1E86BE1841EE2B954F4
SHA1:	7BA60D9EAECD1E5CC809368B5912BBA8F370D3E2
SHA-256:	DB704B465A4ED21E3950FE3FFD95DBAA22F130D73AE7064D7E1EB643BF68A4C1
SHA-512:	89221219FA4868B78DB5480587FFA7C5065E179AD2D143F68F36EA08024B9638BBB86397D3F8E4AE0F5634684E423AEA516A41CE474FD30B770D7E5D71CC94E8
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/v11/wixMadefor.css
Preview:	/* new wixMadefor font/.../ Madefor Display */.@font-face{. font-family:"Madefor-Display";. src: url("//static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforDisplay_W_Rg.woff2") format("woff2"),. url("//static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforDisplay_W_Rg.woff") format("woff");.}..@font-face{. font-family:"Madefor-Display-Bold";. src: url("//static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforDisplay_W_Bd.woff2") format("woff2"),. url("//static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforDisplay_W_Bd.woff") format("woff");.}..@font-face{. font-family:"Madefor-Display-ExtraBold";. src: url("//static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforDisplay_W_XBd.wo

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\xss.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	27954
Entropy (8bit):	5.2180021601732784
Encrypted:	false
SSDEEP:	384:DDJ6NokIwHWvsSHzxc5R61A0+3PJ8K73imq2fw/94HFzKvkGuIcDYP8ALJiy+03V:DEfIwZ9ztyyw/etKvvqI7lmpo
MD5:	03A1F336E798CB76FD006A89BB5C86CD
SHA1:	22DD332C6E792D26784CA427F4E95BB45AB5EDA1
SHA-256:	7021FC60565C79ECBE0D8113A83DBF68E9E719EFEAC07B360D9CDA18863E5A55
SHA-512:	9CC7CDB71F2426EA9878703AD9D1FD992C4605B0F96D7360575965995A73C09875FC755220DEA60C74B6FB61B55666B7D90A0DFD861F0A9DA4849C1F5389347E
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/xss@0.2.18/dist/xss.min.js
Preview:	(function e(t,n,r){function s(o,u){if(!n[o]){if(!t[o]){var a=typeof require=="function"&&require;if(!u&&a)return a(o,!0);if(i)return i(o,!0);var f=new Error("Cannot find module '"+o+"'");throw f.code="MODULE_NOT_FOUND",f}var l=n[o]={exports:{}};t[o][0].call(l.exports,function(e){var n=t[o][1][e];return s(n?n:e)},l,l.exports,e,t,n,r)}return n[o].exports}var i=typeof require=="function"&&require;for(var o=0;o<r.length;o++)s(r[o]);return s})({1:[function(require,module,exports){var FilterCSS=require("cssfilter").FilterCSS;var getDefaultCSSWhiteList=require("cssfilter").getDefaultWhiteList;var _=require("./util");function getDefaultWhiteList(){return{a:["target","href","title"],abbr:["title"],address:[],area:["shape","coords","href","alt"],article:[],aside:[],audio:["autoplay","controls","loop","preload","src"],b:[],bdi:["dir"],bdo:["dir"],big:[],blockquote:["cite"],br:[],caption:[],center:[],cite:[],code:[],col:["align","valign","span","width"],colgroup:["align","valign","span","width"],d

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\zepto.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	26386
Entropy (8bit):	5.176792166274628
Encrypted:	false
SSDEEP:	384:He+VbNwN6J4wfYRWzmEABSF0ztlbtj4jXh2FYx:HbNwvRWh2xlBjCx2e
MD5:	50A4556B0089CFA1CB61E88EA23BBCCE
SHA1:	6865443A258954FA19B8AA682E1F4C77D42493D1
SHA-256:	BEB9F5E32ED61FBCE010497242A9B6B8219242B5FFC636038E7891510C773725
SHA-512:	06BBD560D84A87AC924F6E04E4363F2E8A4B3B977EF0A626217CABA41209D8F2BE0B2C89C3F70B486FC17C9A2658B0B521B94DAE688958696B1AE78A2DDFC493
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/zepto@1.2.0/dist/zepto.min.js
Preview:	/* Zepto v1.2.0 - zepto event ajax form ie - zeptojs.com/license */.!function(t,e){"function"==typeof define&&define.amd?define(function(){return e(t)}):e(t)}(this,function(t){var e=function(){function $(t){return null==t?String(t):S[C.call(t)]\|\|"object"}function F(t){return"function"==$(t)}function k(t){return null!=t&&t==t.window}function M(t){return null!=t&&t.nodeType==t.DOCUMENT_NODE}function R(t){return"object"==$(t)}function Z(t){return R(t)&&!k(t)&&Object.getPrototypeOf(t)==Object.prototype}function z(t){var e=!!t&&"length"in t&&t.length,n=r.type(t);return"function"!=n&&!k(t)&&("array"==n\|\|0===e\|\|"number"==typeof e&&e>0&&e-1 in t)}function q(t){return a.call(t,function(t){return null!=t})}function H(t){return t.length>0?r.fn.concat.apply([],t):t}function I(t){return t.replace(/::/g,"/").replace(/([A-Z]+)([A-Z][a-z])/g,"$1_$2").replace(/([a-z\d])([A-Z])/g,"$1_$2").replace(/_/g,"-").toLowerCase()}function V(t){return t in l?l[t]:l[t]=new RegExp("(^\|\\s)"+t+"(\\s\|$)")}function _(t

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\050b1948-f226-4d20-a65a-15d8ed031222[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 22912, version 1.0
Category:	downloaded
Size (bytes):	22912
Entropy (8bit):	7.981203288200719
Encrypted:	false
SSDEEP:	384:9llcXrCfMOBb/3v42KcHscKd5Hz5TUEbtYXQjVa7ZZx+YdkaUpSV/QRBsbQJ:9llc7AbfVHSFUXuyZZElaUpG/q
MD5:	6AA6E18FE4F8FCAF8147E6196A2ED4F2
SHA1:	94850CC02FDD10CE3626B4717A20BA2A84E36720
SHA-256:	4A636E6C5A476278C861C00829AFB12B122F074B1E34693C8C6788D857D66D2F
SHA-512:	BF9211CB4EB1D8EE2C5DA099044D2911A647958D5DC4215B651C84D721919B5B9427767704651145345F5231FE5D918F9FEA1DD955CBCE9F53024FCD3B9D535B
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Helvetica/v2/050b1948-f226-4d20-a65a-15d8ed031222.woff
Preview:	wOFF......Y...............S.................GPOS...l.......^.O..OS/2.......T...`e...VDMX...p...\....p.x\|cmap.......g........cvt ...4...X.....:..fpgm............,...gasp................glyf... ..:C..]..@head..Hd...6...6..}.hhea..H.... ...$...,hmtx..H............mloca..J....\......`maxp..M.... ... ...Tname..M0............post..S........ ...2prep..S.............x..S.k.A..f.d7?l..".. ".....6..%V[.bL.[D..(9.GQP...{... .B..4....k....H...o.4I....f..{ow.o.....a....5.8......J.....6_.X.~...J..9@k..pV.lE...N4.H<Z{R...#b...]...r.:.......C(")>?.7...ot.U..>.....X...P..<D.~.....f..m4.../..0.WU...rzG..z....fu......&.m..Z...o...i..r....k.....2q.v=F..d.Lf=H.(a.7Av...]....%..e..<.@..@.X$....[D....V...<..w...N=<\| .>..#7..~.>.....\|........^.A...u....RS..Ym.v.vp..........X.k.....0.0..;I.....s.....+..BF.W...n...5N.....IrhTH..2.5....:!.>.S...r.Me...'...O.O.&....D.r...*.B...}..S...}s.cnc.....#.}.-.6$/..p....~..]_?..{O.+}T'~rl..."...v+j....Ej.(.1./.4.D....3-...\"...t...

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\1001175813[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	42
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEy:1QEoy
MD5:	D89746888DA2D9510B64A9F031EAECD5
SHA1:	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A
SHA-256:	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
SHA-512:	D5DA26B5D496EDB0221DF1A4057A8B0285D15592A8F8DC7016A294DF37ED335F3FDE6A2252962E0DF38B62847F8B771463A0124EF3F84299F262ED9D9D3CEE4C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\1006927621[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	42
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEy:1QEoy
MD5:	D89746888DA2D9510B64A9F031EAECD5
SHA1:	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A
SHA-256:	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
SHA-512:	D5DA26B5D496EDB0221DF1A4057A8B0285D15592A8F8DC7016A294DF37ED335F3FDE6A2252962E0DF38B62847F8B771463A0124EF3F84299F262ED9D9D3CEE4C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\3d84bae5ad4d4d8a96de15e9f4b79a08[1].svg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	SVG Scalable Vector Graphics image
Category:	downloaded
Size (bytes):	1385
Entropy (8bit):	4.129066840649089
Encrypted:	false
SSDEEP:	24:tCzcRj04WwUzoJpfM6Ve6KmZYRVILgQqTmXMIIXuK7KLAWF3Ds5YuFQaAE:wijf/M0pf9V5fYOgQqTmXotOLBghFQab
MD5:	4D0FFCA03B31AE92FB3459ACF490DB9A
SHA1:	4D94E2F3BEF0A284997C1D18EAF83514C40F1F72
SHA-256:	C2DC7E0BECDBAB5E9A5C79E527BB95FEC10667645CC6F2F8177F5E0F4F585EA1
SHA-512:	D69CFBFF8A535504DB28F6850A7CD6978364896647BA16821606042BD839AC94D783AC693A14258EED993EC63C314EFDE399BBF1DA11E2C51E001FB311DCE340
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.wixstatic.com/shapes/3d84bae5ad4d4d8a96de15e9f4b79a08.svg
Preview:	<svg data-bbox="0 0 50 50" data-type="shape" xmlns="http://www.w3.org/2000/svg" width="50" height="50" viewBox="0 0 50 50">. <g>. <path d="M25 48.077c-5.924 0-11.31-2.252-15.396-5.921 2.254-5.362 7.492-8.267 15.373-8.267 7.889 0 13.139 3.044 15.408 8.418-4.084 3.659-9.471 5.77-15.385 5.77m.278-35.3c4.927 0 8.611 3.812 8.611 8.878 0 5.21-3.875 9.456-8.611 9.456s-8.611-4.246-8.611-9.456c0-5.066 3.684-8.878 8.611-8.878M25 0C11.193 0 0 11.193 0 25c0 .915.056 1.816.152 2.705.032.295.091.581.133.873.085.589.173 1.176.298 1.751.073.338.169.665.256.997.135.515.273 1.027.439 1.529.114.342.243.675.37 1.01.18.476.369.945.577 1.406.149.331.308.657.472.98.225.446.463.883.714 1.313.182.312.365.619.56.922.272.423.56.832.856 1.237.207.284.41.568.629.841.325.408.671.796 1.02 1.182.22.244.432.494.662.728.405.415.833.801 1.265 1.186.173.154.329.325.507.475l.004-.011A24.886 24.886 0 0 0 25 50a24.881 24.881 0 0 0 16.069-5.861.126.126 0 0 1 .003.01c.172-.144.324-.309.49-.458.442-.392.88-.787 1.293

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\4UabrENHsxJlGDuGo1OIlLU94bt3[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 82716, version 1.1
Category:	downloaded
Size (bytes):	82716
Entropy (8bit):	7.993713530548
Encrypted:	true
SSDEEP:	1536:hijC7nihKxAiyoVOuS+VhAhFO22tkZWEleJ/oItoGIN9:gIgKThK+XPkZ7It9k
MD5:	6108B8DFDDDD5F9D46A75347D4D803BE
SHA1:	E6A27CF8C983E886B7FBFE3BC8D51E7C797D2F89
SHA-256:	F811A1FE35E8D890E072467515DF338DB4CE562E1CEFDCAC5CB8F76E505AE89B
SHA-512:	52D04EFDC8F3A9F52F7227CEA3E5E5808C3B8E1C12D9D98EB5BABFE2E7953162FA2E13639CD850D595B15214357FB42340B4494E300EC9E4D25C00A2F577BDE7
Malicious:	false
Reputation:	low
IE Cache URL:	https://fonts.gstatic.com/s/googlesans/v27/4UabrENHsxJlGDuGo1OIlLU94bt3.woff
Preview:	wOFF......C.................................GDEF...........XkvkWGPOS...X..;.........GSUB..=....<..#X....OS/2..P8...U...`k.\.cmap..P........@Y..Dcvt ..V.............fpgm..W8.......uo..gasp.._.............glyf.._.......u.ua.8head.......6...6..'.hhea...T... ...$....hmtx...t.......H.Nq(loca..$........&..8.maxp..-.... ... ....name..-,...m......H.post../.......*N....prep..Ad.......^....x.EO%T@.........{...i..4.4\...t.z...7..mgi....`RR.H.....9...C.I.....).._..h.^C.g...\|@,.r........8d.q.......lp.x....p\Lc.sX`...}.p...T...H.DW..N...Q.x......B..H..zI....A..&%P+.R8Vf..UVE]mu.k`O..).9.57h....1tx..Y.t.G...kv%.....1.........0..%v....h..!l.7....1..N........f.~US]..F... ..\5...>.X.=.wC....!g..>.O.p0.#...a..(m0w(BY.9Q.rT...qh'T.}.a..`34A..)gEAN.....p.....\|.C........k>....R....i@T.b.QM.ZYu..7..r...;...:~.a....N<!.4B..I....8...P.....3.w-.tw{......r3...>.l.....<..q ....p"......2a..-c...v...P;..5..i.....Y...8G..8....K....+..k...(..:XG.d...{..gm.M.I...h....?.R..!..YH.q..K

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\642100862[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	84
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEqjdfXPQE/xlEy:1QEoqh3QEoy
MD5:	6A3F2D147842187CD48B1546EDDD5BA0
SHA1:	AB278C31189DF2939428CF81A3850A2C6DBF5E2E
SHA-256:	D4990F907BCA02F02B3D41216EEA5461609D4BCBA07A3CBEE0D7CF28A6D0D864
SHA-512:	998F55BF5C3D4A71CB3C23782B788F71E7625DF83A37FE8A18F915AAA3BDE5420183A3C709816664E262069EE2FE245CA44799E3476B6DE507B5D68FC86F8960
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\819384062[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	84
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEqjdfXPQE/xlEy:1QEoqh3QEoy
MD5:	6A3F2D147842187CD48B1546EDDD5BA0
SHA1:	AB278C31189DF2939428CF81A3850A2C6DBF5E2E
SHA-256:	D4990F907BCA02F02B3D41216EEA5461609D4BCBA07A3CBEE0D7CF28A6D0D864
SHA-512:	998F55BF5C3D4A71CB3C23782B788F71E7625DF83A37FE8A18F915AAA3BDE5420183A3C709816664E262069EE2FE245CA44799E3476B6DE507B5D68FC86F8960
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ScrollToPlugin.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	2852
Entropy (8bit):	5.217000388303245
Encrypted:	false
SSDEEP:	48:QXSHhNKsC6TmTAJpI5ZQ5wamo7VJm6fAjyud3qZtzqOyAFqVCG7EPEQEWs9XCYYQ:C8KsCEmTAJpI5ZQ5wamSRfAutWOfF0Tx
MD5:	D29232AA62F9740CB6F1A8CEDC26D8DC
SHA1:	E6742CEE6B36AE8EB1BF26D4529BC7BA2AEB8D3E
SHA-256:	7090E6A71A15E2D47E830528798A657BECC16D41B78EADE27EC8624EA6A38812
SHA-512:	917465EA8903E6700A0B4A50C3236AF1A3F327560A6C3FCC6D55A9A693CFAA3B093675936B8EDD2D8243439D2658CF737E9077DCDE9EE3366CAAE8AD4A65DDEA
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-external-modules@1.644.0/tweenmax-plugins/3.1.1-transition-phase/ScrollToPlugin.min.js
Preview:	!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?e(exports):"function"==typeof define&&define.amd?define(["exports"],e):e((t=t\|\|self).window=t.window\|\|{})}(this,function(t){"use strict";var e,i,o,s,n,r,l,u=function(){return"undefined"!=typeof window},f=function(){return e\|\|u()&&(e=window.gsap)&&e.registerPlugin&&e},p=function(t){return"string"==typeof t},a=function(t,e){var i="x"===e?"Width":"Height",r="scroll"+i,l="client"+i;return t===o\|\|t===s\|\|t===n?Math.max(s[r],n[r])-(o["inner"+i]\|\|s[l]\|\|n[l]):t[r]-t["offset"+i]},c=function(t,e){var i="scroll"+("x"===e?"Left":"Top");return t===o&&(null!=t.pageXOffset?i="page"+e.toUpperCase()+"Offset":t=null!=s[i]?s:n),function(){return t[i]}},h=function(t,e){var i=r(t)[0].getBoundingClientRect(),l=!e\|\|e===o\|\|e===n,u=l?{top:s.clientTop-(o.pageYOffset\|\|s.scrollTop\|\|n.scrollTop\|\|0),left:s.clientLeft-(o.pageXOffset\|\|s.scrollLeft\|\|n.scrollLeft\|\|0)}:e.getBoundingClientRect(),f={x:i.left-u.left,y:i.top-u.top};return!l&&e&&(f.x+=c(e,"x"

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\WixMadeforDisplay_W_Bd[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 27080, version 1.13107
Category:	downloaded
Size (bytes):	27080
Entropy (8bit):	7.984576267611114
Encrypted:	false
SSDEEP:	384:YGJNjRUmxJdaYP4ekBDEggz90TzZWzjlru54l0AkjRrk31JNbGpN6MDfcWG:9rUmxJYYP43FY7qWv1JZEzFG
MD5:	19D333269CAABD296357B1A7E72FBB5D
SHA1:	FBE6AB746415B8713FFFE51DFFFDC3C9D59BC40C
SHA-256:	8A6A9A30D97D0C3591326A34B222515BA5A5B7D16E68F4FF49DDBE0FA13EB541
SHA-512:	00861456CC778E5150AB1F1498F3BCBF1A3770580DE621927560D3DC4D448D7CC01BE21C426C7F06A5BEFE9335456A03798C8EA65E10DC66FCFD394CCDDA23CA
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforDisplay_W_Bd.woff
Preview:	wOFF......i..........33....................GDEF..W0........"."!GPOS..W.......E.&.{EGSUB..e...........fOS/2.......X...`....cmap...........X..:.cvt ...h........$^.%fpgm.............0.6gasp..W$............glyf......CO..s.v>..head.......6...6.mI.hhea....... ...$...ehmtx...P...Z...h.3bloca...$...t........maxp....... ... .D..name..U....%....@BlVpost..W........ ...>prep...h......._$i........33v.w+_.<...........+/............................x.c`d``..........X..EP..-............P...X......./.a..........x.%...B1../..4H...i.....2H6`.T..'w..%. Iv.......zYE....b.T.......f.@. ....4....Zx....tG....[.6>/>...m.m#.m..j....t&o....;.8w..4J....j...l.\|..s.0[X(\.....b^.=.....-...P.'.~..`o)..q.xWK.U.7n.Y.j...E.55,...K.p..ak...Y.q.!\.>.p..NW.p.{gcOW.....L..k.b.f........*xB3P.HX......`..Kj.v...6Jl..........7.......R.}.q.#.2.....q..s..Q.a9...^..a.+\|.5.h<.......hNt......B....I..37k....P.r.ST.+..E.cT...%,.E.A.?.az..i@\|.;..'k..-v=..O.>.n%.....We..>.)..p.om.5.#NP.......i.}.!...j\

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\WixMadeforText_W_Bd[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 26940, version 1.13107
Category:	downloaded
Size (bytes):	26940
Entropy (8bit):	7.983196044654624
Encrypted:	false
SSDEEP:	768:ei+5ISPc4Mq85akb8yCh/uX2Qfvj566p4ruUR2FG:waSPcNq85dzChGGYJKruURb
MD5:	1B77CABA6C9D4D264DD5E101A8326D9D
SHA1:	0AEF11FFF06D2A166705A50E44E545B3D7FE5DF3
SHA-256:	640522494DAF6FB6A791DC1D67AE7A3884D25F87E439A83EC59BAF71D5E39D63
SHA-512:	BA83A6976FB8329D04EBD8897F863289AF694EFC34291D248BE9F9D576E43B61B4B261F2453B89A68BFA8BDC2CB16600B565CED54AFAB47611076A42A6B6EB51
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforText_W_Bd.woff
Preview:	wOFF......i<..........33....................GDEF..WP........"."!GPOS..W....O..C....qGSUB..e,..........fOS/2.......Y...`....cmap...........X..:.cvt ...d........$..Afpgm.............0.6gasp..WD............glyf......Co..s.x..head.......6...6..I.hhea....... ...$...Fhmtx...T...\...h.3<aloca...$...v.....}c.maxp....... ... .9..name..V....!....=tidpost..W0....... ...@prep...l.......Q.T........33..._.<...........+/.........&..................x.c`d``....e.....X..EP..-............M...X......./.a..........x.%....0../..Q(\....[..{.. .d....wx....d.$......LC.f...w....@.`<..H.\|iy.h..t..I.@....!.[...x.....Y..OU?.m.k.m...q..m..._en.."\M...(.c_k...Z...&......7:..h...-.r..Z..w.Q.~EW..#\'......p..??H#.'..c...WW?[C}-..5.W.x.C#X..s.....O..P......U.;F.mw.ND.Q....'..!.......4'..nS;r..k.t....7L......+.N....`7........i.o..~..S...nb.^.f.k. .*.ubL-6W.K.^m........-.].x..`S..TG......e?i..q\.Av.:..v.....;..z..........F..\m.....m`..;..z.....h.N....w.w......+Z.....5......m..>.~.../=;..i...>~(.....

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\WixMadeforText_W_MdIt[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 29748, version 1.13107
Category:	downloaded
Size (bytes):	29748
Entropy (8bit):	7.985185178927653
Encrypted:	false
SSDEEP:	768:HnkhSzpM44Q3IOYkOyF9afGJ2zeEwILUppcQKRWAUXFSEgFG:Hkh0xwuhbafGJ2dLMUWA2Sy
MD5:	32F3E3707D0AB7F9D86367FB30425ABF
SHA1:	BE74B2636AE55828943F0145479557A1F44FBD8A
SHA-256:	0570726D9B35862B303637EFFD8718EE7E2BE3088EFFD566BEE07D443AEEE6EB
SHA-512:	10639864512919815EC77AFC5EBB457495BCC0B2F8E118AA63236B2354B2D069DF26E295B00ED68C30B0CE43B3A8FF72319CDFC26972112C70B72007F4DE2C5F
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforText_W_MdIt.woff
Preview:	wOFF......t4.......d..33....................GDEF.._........."."!GPOS..``......J.D..vGSUB..p$..........fOS/2.......\...`.=..cmap...X.......X..:.cvt ............&...fpgm...h.........0.6gasp.._.............glyf...,..JJ..yta...head.......6...6.@..hhea.......#...$....hmtx...X.......h..<tloca.......y....t.U.maxp....... ... .D..name..^x...5...PP.}.post.._........ ...@prep............B.es......33.Id._.<.......................................x.c`d``.........,.._0\f@................P...U......./.a..........x.%..AQ.....2.Jw;k.-T..Z...b..H.{9...:....So..Y.ld.u..M.zj..@8.]..\|;..Yn...>$..@.........cx....%A.D.j.m.m.m.m.m....;....Z..._>!....G.!.....7....o.sq0[&c.......{.........~.....u.1...?...g...8.....4.BkKd.RH..H3.).'.P\.....\|g~G:..2..9.-C...h2.uyn..@..l<WP: ..A9.s.\...R/$.e...~.H&.7.{"C./..P......ss.W...^U..^S..S...m..D.6p....h4.8...Y...^d.IH..PI. .vFY.(..+...........Hw.uc.O.j...{..Y.a!Z...b....%Hp9....CI;g!...W$.4..).....'..y.+ ..7... 71S.1f3..i&.l.K.z..1%3}1.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\WixMadeforText_W_Md[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 27876, version 1.13107
Category:	downloaded
Size (bytes):	27876
Entropy (8bit):	7.981912701503317
Encrypted:	false
SSDEEP:	768:4ykhSNOuWMXnoEpsfdZnfNPlNtH5E4dVQFG:zkhsOuPK1zP7tZEGB
MD5:	7EFC62924AA0D697C0FE9592A2DA44A5
SHA1:	27D1436BD7E9C36ECCBD295622584E1332E8DDE5
SHA-256:	158A4B3011AB5707FA5A4AE4FD3858A187A13022E1AA9C98EE5ACDF04AC4C6BF
SHA-512:	5F659A9D77DD36DE3AAD302FE1003E2A14A35E02C861E35F8B0C72D2BE8AB809FBBB0FEE64958BDC5F2399DC2A5C4DEA48AE6805DB36B30B7260151FAA6E611F
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforText_W_Md.woff
Preview:	wOFF......l...........33....................GDEF..Zp........"."!GPOS..Z.......C.I..GSUB..h...........fOS/2.......[...`.=..cmap...........X..:.cvt ...L........&...fpgm.............0.6gasp..Zd............glyf......E...v"A7..head.......6...6.sI.hhea....... ...$...Rhmtx...T...i...h..I.loca.......v......k.maxp....... ... .D..name..Y....3....C.u$post..ZP....... ...@prep...\|........B.es......332..._.<...........+/.........1..................x.c`d``....e....WXZ."(...............N...X......./.a..........x.%....P...+^Q..............3L...;......-....x.....#..l........,.K.P.*(5......Pz.cR......x.....;..W.....m[.m.m...c.m{.6m.U<s./...z.N....Y.....z..=m.m..t.....U..c.xk..N...O.<...k...J.....,.@..D.d....r...\......G.z...ID..h.B.z...Qd.7..u....n.....i....;v.0...C..........d(..a...H..%!$....j..^J...3....y.4[.kj. A..V..HV.Y._$..r^[q......%..U...N.sP..fo.P`.`.r...r.W.T."....N.....H.w9...z...8.N..<....4T....q.T.:.L.w.:.I.KH.a.U..N...../Z;..O..W"A..B..do;.....2..d.x.gI..h...

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\activityi;src=2542116;type=2542116;cat=chrom0;ord=8924832293155;gtm=2wg3o0;~oref=https___www.google[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	369
Entropy (8bit):	5.430143478811698
Encrypted:	false
SSDEEP:	6:hn8FQiowadCc4svmzw9xUpCX96v6OqPbRmEH7fuUo1xwQpzj0Mo:hnMQbwuOaxyCkv4AEH7GXfwQpP0N
MD5:	E2796BB82FE61808CE81EDFDD05743BD
SHA1:	B50CF42D377D2A8EC5D717DD31411BAF7EAA4DEE
SHA-256:	AFB46093D85306368B784956B29EE95C6AE40B4A9AD173B7B524C0D21D772D77
SHA-512:	CFC665A07CB2FCAF7976CF2E3F45CB6B249E9D9B4F6FC9F5F2D8EAAEFD71F5B582C498A184E83BABBE9021168E9DF7E8FF4ABD894C2AEEAFE7C8FA407CE5E8D0
Malicious:	false
Reputation:	low
IE Cache URL:	https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=8924832293155;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F?
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><img src="https://adservice.google.com/ddm/fls/z/src=2542116;type=2542116;cat=chrom0;ord=8924832293155;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F"/></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\activityi;src=4382365;type=count;cat=websi0;ord=1;num=1196866999169;gtm=2wg3o0;auiddc=666480753.1617249090;u1=fffb8729-a9da-45fc-9840-773923f9b2e7;~oref=https___www.wix[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	560
Entropy (8bit):	5.494485096690619
Encrypted:	false
SSDEEP:	12:hnMQbwuOaxyCkv4A1ZHwV7ewyA3yxs3AEIAgKWwka2W2KD:hMiRO9w03WqAgKKyl
MD5:	BE830AC14B901D9913160214D029A0EF
SHA1:	32CE7309B583B240F02C8DBCC6631DFAD8E181D9
SHA-256:	0D4B9DCA93D4ACF11DBCDD8C8D92A014A7DB5AA54E98127AC37F39685B5ACC03
SHA-512:	0AEDE120995DC785E31E0574312FC3F5382B1842121E01A79FFEB5A876B4E84DB61AC742D5D96591F5B34071E4338D1DDAA87F0273E6DB866A98A8129E333B49
Malicious:	false
Reputation:	low
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><iframe src="https://adservice.google.com/ddm/fls/i/src=4382365;type=count;cat=websi0;ord=1;num=1196866999169;gtm=2wg3o0;auiddc=666480753.1617249090;u1=fffb8729-a9da-45fc-9840-773923f9b2e7;~oref=https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%3FforceBolt%3D%26ssrIndicator%3Dfalse" width="1" height="1" frameborder="0" style="display:none"></iframe></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\bolt-components[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	32233
Entropy (8bit):	5.339293024216153
Encrypted:	false
SSDEEP:	768:kspK1cgUt7ZfRBjvxjo476T/d3A2FWG59S68W1:1fRBjvxjo0w/d3A2FPj
MD5:	C8C93DF05D76F873FC3E591CBE0E4ADE
SHA1:	6AA17E2C785EE5310F768A63D16AC6FE3E20C30F
SHA-256:	ECD3F04926C5DD040448BEE00DDC20F512635E2724C77D2F4F4E06B8E26022FE
SHA-512:	CDAE42BA49A31933052A8EF06B9855A2E98FBC8CA2377FEBC29AB5873DA114DE2055C96DEBBA58E4F680888FB8FA9258EFC26EC246B4B6B98CD9A3467651ABA1
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/bolt-components/dist/bolt-components.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t(require("react"),require("prop-types"),require("santa-components"),require("lodash"),require("santa-core-utils")):"function"==typeof define&&define.amd?define(["react","prop-types","santa-components","lodash","santa-core-utils"],t):"object"==typeof exports?exports["bolt-components"]=t(require("react"),require("prop-types"),require("santa-components"),require("lodash"),require("santa-core-utils")):e["bolt-components"]=t(e.react,e["prop-types"],e["santa-components"],e.lodash,e["santa-core-utils"])}(this,function(e,t,r,o,n){return function(e){var t={};function r(o){if(t[o])return t[o].exports;var n=t[o]={i:o,l:!1,exports:{}};return e[o].call(n.exports,n,n.exports,r),n.l=!0,n.exports}return r.m=e,r.c=t,r.d=function(e,t,o){r.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:o})},r.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Objec

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\bolt-main-r.animations[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	15274
Entropy (8bit):	5.080529892478533
Encrypted:	false
SSDEEP:	192:rckTmdKq52wUOFZZUj20KAH5KFe6fpC9zBLPuN4LKvDRUhrn2TADIpIaNFtNpIGV:YYmd1dgH8epuNPXpFU3zjsMKp5U+P
MD5:	C32870DC55DFA4744D99E83759A1EB74
SHA1:	F79CCE00E4F8CC918DC02C34E670C52D4E360052
SHA-256:	5295872441FD446B4D7F8705B044D62FF4C491CD5D41903EC73B817296ED4B33
SHA-512:	2788C3F4CC4ACE7EE209D717E9D09A115C24D5CB7FF8EDBF0A98F871D5A5D06970D3891AB30A1FD8DF04755C7B4D82FC2EEA9E238C4FAE787823C0D45A251B7F
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-main-r.animations.js
Preview:	(this.webpackJsonp=this.webpackJsonp\|\|[]).push([[1],{147:function(e,t,n){"use strict";var i=n(861),a=n(865).init,r=n(867).AnimationManager,o=null;e.exports={runWarmupAnimations:function(e,t,n,s,c){var l,u=e["santa-animations"],f=e.gsap3,d=e.ScrollToPlugin3;return l=function(){var e=i.create(f.gsap,[d.ScrollToPlugin]),l=new r({santaAnimations:u,tweenEngineAndFactory:e},t),p=window.warmupData&&!n&&window.warmupData.animationData\|\|{},m=window.rootNavigationInfo?window.rootNavigationInfo.pageId:"",v=!!Object.keys(p).length;o=a({manager:l,model:p,pageId:m}),v&&(o.start(),c(!0)),s(l)},void("loading"===document.readyState?window.document.addEventListener("DOMContentLoaded",l):Promise.resolve().then(l))},stopWarmupAnimations:function(){return o&&o.stop()}}},861:function(e,t,n){"use strict";var i=n(862),a=n(863);e.exports={create:function(e,t){var n=a.create(e,t);return{factory:i.create(),engine:n}}}},862:function(e,t,n){"use strict";var i={error:function(){var e;return(e=console).error.apply(e

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\bootstrap-features.53cf58f0.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	130735
Entropy (8bit):	5.222976997836822
Encrypted:	false
SSDEEP:	1536:hiMBqgJxJ7NlnQE4Gr+8vw03YbXvGaqc5iEKM6fBUpoA0S6rtbxd1mK+:xJxtNFQwcqVE4yF
MD5:	F46478B1D58B4F802AD3A817B0B3A778
SHA1:	93AF85D7594C2EAF374805CDE7C94745DE0E0357
SHA-256:	6D3B8499E126497EA7ADCC38E9E645A03B2F3AA316B1915412CD2D5E044BCE71
SHA-512:	C23C2392D5A262960CAE276A5B29B6EE4363DBFFDAE2EC4F484C0030B2453B86BB00466E9620AB69932F64A7DE0690C94D840F6EB4992C84148E47DEDFF53E4A
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/bootstrap-features.53cf58f0.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[0],[,,,,function(t,e,n){"use strict";n.d(e,"e",(function(){return r})),n.d(e,"g",(function(){return o})),n.d(e,"c",(function(){return i})),n.d(e,"a",(function(){return u})),n.d(e,"b",(function(){return a})),n.d(e,"f",(function(){return c})),n.d(e,"d",(function(){return s})),n.d(e,"h",(function(){return l})),n.d(e,"i",(function(){return d})),n.d(e,"j",(function(){return f}));var r=Symbol("Router"),o={Dynamic:Symbol("DynamicRoutingMiddleware"),Protected:Symbol("ProtectedRoutingMiddleware"),BlockingDialogs:Symbol("BlockingDialogsRoutingMiddleware")},i=Symbol("PageJsonFileNameMiddleware"),u=Symbol("CustomNotFoundPageMiddleware"),a=Symbol("CustomUrlMiddleware"),c=Symbol("RoutingLinkUtilsAPI"),s=Symbol("PopHistoryStateHandler"),l=Symbol("UrlChangeHandlerForPage"),d=Symbol("UrlHistoryManager"),f="router"},,,,function(t,e,n){"use strict";n.d(e,"c",(function(){return r})),n.d(e,"a",(function(){return

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\bt[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	86
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9psOjBMllRPQEsJ9pse:Gl3QEsJLsMal3QEsJLse
MD5:	BE36F8869549C7991811C657D7D3775F
SHA1:	8A0CDEAE965A2FA569B2E8677F21D5D71FBAF8BC
SHA-256:	555F405B368AAE998B4C727B5994E0BC9F1D73FCBDBA5DD108DF004A04649A39
SHA-512:	01EE71EE2213737732BF78590F01F56FC19C38D8A48274D11AC4716547A2E13AF32C03C1A37B6FC8961DEB7968814B3C71A926AE91E3688F0E78D59761B24F4D
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ca003289-5ee3-45c2-94ad-36c743c35fc1[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 31147, version 1.0
Category:	downloaded
Size (bytes):	31147
Entropy (8bit):	7.987396350283174
Encrypted:	false
SSDEEP:	768:C9IfZeyachSjRMkny9BzuEUnCQJbPaZ3kI1irZQo:C9MqjRj8Qn1pak0iio
MD5:	F3471862C553872A8A36648B3D1F55D4
SHA1:	FD60A4A0674CFCB218C2CC425222501D78815087
SHA-256:	8177D7B57C7E74E786593452C92DCCE54B2610766530F30E856848E56A603E46
SHA-512:	3A5073177947A16028012E6571EEE0CCA99E7B908FDD9EFDEF06F2C1555A5BED784EF610E2C645BD463FD712F59BB9C7B0E46D0A67F78ED03701F385047FBB0A
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Helvetica/v2/ca003289-5ee3-45c2-94ad-36c743c35fc1.woff
Preview:	wOFF......y..............t.................GPOS................GSUB...(............OS/2.......S...`eDz.VDMX...P...Z....r.y.cmap...............'cvt ...\|...K........fpgm............,...gasp...T............glyf...\..P.........head..fH...6...6.z}.hhea..f....!...$.>.Lhmtx..f........(.G3sloca..i`.......,.j.maxp..m`... ... .Y.Mname..m........!I..$post..sL....... ...2prep..s`........y..x..TMOSQ.=.J.mi-Vl..Q..hLP.".4iSQ.jD..qc.QKX...\.A..4Q.......[....a......y...E}'w.w./.B..0.W..........C.b8.>....B&.C\|....R.#......W.R.V.....s...qP.Q..jO.M.M.....:U...C..J;,..F+u....pM..........!.B.6i.9.+.Tp..V.@.........W[&99..+.Zm......k...c....\|.....P.T\|.<.......I..oo......y....."...1....o\|.5j/..(..........2..n..w.l.3.9..._...\...,...S].r...o..6,...A?.%..!8.NF...E..q..ad1.[.'&p........f..O../0.y,.%....x..A$...X...@.a.n.Yz.z....OX..K....a.E.,..;.?.s.0K6.\|s.'..\|..Z".....rF.......8.D............Du.U....Q.Q.Ji.."Zp..3D..k.....KD+F.z\&.0J.U..\!..J.p...:.]5...coS.....~".O....%\| .2>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\chrome-logo-new[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 121 x 40, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	2064
Entropy (8bit):	7.804367689715755
Encrypted:	false
SSDEEP:	48:38DhfQf3qtjhOc0TkbYJDSeNu57dXCoIf3NUHwOjdyc81RmXj:381YiCkb0SeNudby9vAz
MD5:	4B9A71E5C15A4DA1E20F200E9D250780
SHA1:	BD6B89544D35B20E50B439F3A3970F75B39A431D
SHA-256:	A2062146BA85EEAEDD0B68706FF94C3DF4022F6B08D7E2B5ADF18F24DFB91DEC
SHA-512:	A11EA249CD58AA8E94E5B883D9C76F6479B8597AB84F645F1AC4D32CBF90D00D16FF9F2B15F21177161224EDC221546EAF549091487099F7B002457A4A3D2CA5
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/chrome-logo-new.png
Preview:	.PNG........IHDR...y...(........)....PLTE..._bh^ah``h_bg_ch`ah`en^bh_ch_bh_cg^cg_bg`hh^bh`ci`bf_cg.e[..Y..[^ch.qj..[.>`gh.8_ch..@.^S`dh..^.cX..E.._.WL..b.RE..B..@..?..Z.bV..>.]Q..?..^..@..Z.\P.L?..]..@.N@.K?_bh+.k.UK..C^ah^.[..Y.SG..@..H.>.<.j^.l`..b.e]..F.@..@8.s.L.pe..@_bi_bh_ch..D..B..A.OC.MAJ...._.....`..^K..M....c.QE..b..\".e.SG.K?.RFL..H....]..[.UI.J=.THL....`.....@..C.N@..?.....Z..X.RF.QD..@.L>.....I.PC..B.H:........L.WK..A.h<_...........e..U..S..P..O..D.j<..;.9.D7.C6.....................`..M.....{r..n+.g,.`@.X.\Q_wPk.O^.M..K.M@.J=..<.m;.k;.I;.:.:.m:.L:.H9.8.7.A4b............................k......y.yE.wp.w3.q.vm.md.yb.mb.xa'.VQ}R..QsqQ.O..N2.N2.M..L..L..L.XL..K.Y@.f=.A4R..d...QtRNS..` .@....o.P ._0.@@ . .@! ..pP .......po`P@0 .................o``PPO@@00...=.O....IDATX...s.A....+.%........m..^.(..mBJ.h..........._...\..o.e..i.7....{ow..!....2.%.r....:G...,...J.)U...&8.D=z.hg.....U-..z.....SjO..R.j.?.]..5}.'.. &f..A=.....Tq...)S.7A

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\chrome[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, UTF-8 Unicode text, with very long lines
Category:	dropped
Size (bytes):	223832
Entropy (8bit):	5.448281377195453
Encrypted:	false
SSDEEP:	3072:YVTWj4Hn9YapEEwJ67iTdp4j1A/fSr5573hxieWU:69AEWo79
MD5:	F77A13E0857020F088336E1A3B2C2719
SHA1:	124E12E80C6984777BDBA682878AADA1D7CBF3D0
SHA-256:	5272FB57E5FCC9001CEF4A2AE23727FBD4F7013DED08097F7CCF8405129BE604
SHA-512:	50FBC351F0F04066C61147212745588EB6E52CF4D785FFEF42009D114398F1720AA401B44C1877C8408FB4C1B4FB029981842893E58834C742ED43E01E9EB037
Malicious:	false
Reputation:	low
Preview:	<!DOCTYPE html>. [if IE 9 ]> <html class="no-js ie ie9" lang="en" dir="ltr"> <![endif]-->. [if IE 8 ]> <html class="no-js ie ie8" lang="en" dir="ltr"> <![endif]-->. [if IE 7 ]> <html class="no-js ie ie7" lang="en" dir="ltr"> <![endif]-->. [if IE 6 ]> <html class="no-js ie ie6" lang="en" dir="ltr"> <![endif]-->. [if (gte IE 10)\|!(IE)]> > <html itemscope itemtype="https://schema.org/WebPage" class="no-js no-ie" lang="en" dir="ltr"> <![endif]-->.<head>. <meta charset="utf-8">. <meta http-equiv="content-language" content="en-us">.. <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>. <link rel="preconnect" href="https://tools.google.com" >. <link rel="preconnect" href="https://www.youtube.com" >. <link rel="preconnect" href="https://s.ytimg.com" >. <link rel="preconnect" href="https://www.googletagmanager.com" >. <link rel="preconnect" href="https://adservice.google.c

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\chrome_throbber_fast[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 24 x 24
Category:	downloaded
Size (bytes):	4469
Entropy (8bit):	6.7695629044778185
Encrypted:	false
SSDEEP:	48:HwGZ9KnRJzLTMYtb62yy6J/7aQ5xhU8gACGyL7orC:HzHgHMcauQ5x5eLH
MD5:	81247683E65B6F536D25AF4B2917E823
SHA1:	331043F7F52D006377003B2AFAE4EC8EB877CEE5
SHA-256:	3E846532CACBDA65EB384367C713A798D6D6D619D97ED30D136C6ECB911AB9BB
SHA-512:	075EF7168959423DC01D3057384B1D6ADDCF7848162C44405ADCD8A8FE9412C8FF30B80259302D96D25BF262AB382E362626482AF3D5036E19817D1A5D6B9A39
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/chrome_throbber_fast.gif
Preview:	GIF89a.......4f...t.....L~......\.....<r.......\.....T~....Dr...4j...\|...\..........d.....T.....Dv.................................................................................................!..NETSCAPE2.0.....!..... .,..........b@.p......q..B......8...aeb"..@l.......P.A..v..x.CJ. p.A..Z...C.cc..C.a..C.Z..B....~.............A.!.......,.........4f...d........Lz............Dv.t........\..<n........4j...l........T..\|.....\.............U.'..tp.P....R.t..8..........}...R.M..D..]v5.Quu\|.........+..`4j!!N.....~.......d!.!.......,.........4f...t..Lz....\.......Lv....\........<n...T.....d..4j...t..T~....\..........................S.&..0B.Q.q..xL. .x.X1.=9...P.D....V...Sr.8... ...$..,.xA3..#.m...\|N.....~.....\|!.!.......,.........4f......t..T~......Dr.........\.....<n.......Lv......4j......\|..\........Dv......d.........U.'..(....0.i@.L6A.....`.W..z.G.6..&....9L...EA ...O..c$..Bxj@m..\|N.....~......."!.!.......,.........4f...d.....Lz..........Dr...t..T.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\close-icon[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	380
Entropy (8bit):	6.947082124793556
Encrypted:	false
SSDEEP:	6:6v/lhPkMFKQ6sXRBOgM1Vi/rlsZ/DuujMnD673pN6BOQwVMBQbKRU6z8l0Q+jp:6v/7sDQpSc/yZ/DFjf75N6BOQ1mbx6zX
MD5:	C4EC8F447FC5E74D5344720083582D0E
SHA1:	BA55F17FF89D96F909B79B396EC88098240C8B67
SHA-256:	129A06E9E3C9F1F7AA75B0EE630F000184F08A36E9BFB14CBA1DF578C5013FE6
SHA-512:	21FF30024F47E06C143B555669A8F2971E30FFEEA61A7603F67B57A428EC9CECDCAA793D301249508F5163A5E7549A018D27FA2F2952C5DCC8FDBAE4F23AB9DE
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/close-icon.png
Preview:	.PNG........IHDR... ... .....D......BPLTE................................................:;? !%......TVYTUYq.w\....tRNS.... ..._0.`.......IDAT8.....0.C.-.(`(...u...J+`.)....B.....>D'5};....]...7.hz..c...5...........d..x.`....o...~"38.P....$(Q;.au........:.......:_.........z.]8.du.:..B/.Q..O.~..P..v:..0.H.....y:.%.ewu..g..6...i...@..dY'}.+...../\|..Sl....IEND.B`.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\collect[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	35
Entropy (8bit):	2.9889227488523016
Encrypted:	false
SSDEEP:	3:CUdrllHh/:HJ/
MD5:	28D6814F309EA289F847C69CF91194C6
SHA1:	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE
SHA-256:	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
SHA-512:	1D68B92E8D822FE82DC7563EDD7B37F3418A02A89F1A9F0454CCA664C2FC2565235E0D85540FF9BE0B20175BE3F5B7B4EAE1175067465D5CCA13486AAB4C582C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............,...........D..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\f[1].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	36195
Entropy (8bit):	5.4956916474428485
Encrypted:	false
SSDEEP:	384:KU+DSK2hCxjo7BcGfF2O2tqLGadLKqWiYgMkHRKDNCnRDAzFotwBc3T9yFVuIr6t:kDDfOSaoPgMkxKHPTr6IBxmf
MD5:	7F0BD087C305D9450CAC19B6F729B3E0
SHA1:	A171271C1602A36D65EE606629FC5F3865E9AF11
SHA-256:	B3BCD37CBDD3273EC26B2FE7FE823C9A07E14809480BA6FD08280E409C0AB0D6
SHA-512:	9B52D0793840BEE3A894A2219BFC8B89CA55A57D1304DFF5AD53A644480093EC5E85C2DED340493E4228F2FB9A5FE87B860D716F77DFD748B040E20D61861D20
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.googleadservices.com/pagead/conversion_async.js
Preview:	(function(){/* . . Copyright The Closure Library Authors. . SPDX-License-Identifier: Apache-2.0 .*/ .function aa(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}}var ba="function"==typeof Object.defineProperties?Object.defineProperty:function(a,b,c){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=c.value;return a}; .function ca(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var c=a[b];if(c&&c.Math==Math)return c}throw Error("Cannot find global object");}var da=ca(this),ea="function"===typeof Symbol&&"symbol"===typeof Symbol("x"),l={},fa={};function p(a,b){var c=fa[b];if(null==c)return a[b];c=a[c];return void 0!==c?c:a[b]} .function u(a,b,c){if(b)a:{var d=a.split(".");a=1===d.length;var e=d[0],f;!a&&e in l?f=l:f=da;for(e=0;e<d.length-1;e++){var g=d[e];if(!(g in f))break a;f=f[g]}d=d[d.length-1];c=ea&&"es6"===c?f[d]:null;b=b(c)

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\f[2].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2038
Entropy (8bit):	5.850628628251471
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkG+lkSEW5gHdyWOi/K7FiAQEjpX:+UURWTCgVhktlkSEWORyMXGX
MD5:	B05B6D4B8BBDFCC885E8F6EFCB0FDFD7
SHA1:	63EC5B90E50F71A4F00D92FA32C8BFC97129E12D
SHA-256:	77A103A88BAD0D7FA1F2EAD801C0BAC84BA01789600E0F21278AF2D79060151B
SHA-512:	F67C69E40DCF8E05BD762EFCE6C892662F67F11DF17E6D2167CF4C8F73DEEF43686B4570CAE431D183C6256CD8747CFE388921C9D543C1020124A7F543A1DE28
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\focus-within-polyfill[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	1171
Entropy (8bit):	5.1458024367829545
Encrypted:	false
SSDEEP:	24:YXw4ZXLL8jdOAT3r8j/uZp93ceY90l78BQLoOiQL4mT6xQMnmb3q/FcEmzNchNhx:6IMI38/8Xr+0l78B2vN4W6CRb31XzNcv
MD5:	C187011C9A45C15A6FCBF5D62A5D755F
SHA1:	E3FD6FAED2154EE94559F362EA0390B46ABF75BB
SHA-256:	452A163BE231D77006015E7D6F2A5B8AB5987D915C1F1E6907DDFBBA3AEC6EEC
SHA-512:	E5025DB65F3A66552C838B24374071130040D2E0CF13A4E4F75DA3A8C8DB00228EEAB8F45695F709CB834FF43D4B2DB757D8AA9046AB6A8E1990A4227AC0B4A4
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/focus-within-polyfill@5.0.9/dist/focus-within-polyfill.js
Preview:	'use strict';(function(){(function(){function e(a){for(var b=[];a=a.parentNode\|\|a.host\|\|a.defaultView;)b.push(a);return b}function f(a){return function(b){var c="undefined"!==typeof b.getAttribute?b.getAttribute("class")\|\|"":void 0;"undefined"!==typeof c&&-1===c.indexOf(a)&&b.setAttribute("class",c.concat(" ",a).trim())}}function g(a){return function(b){var c="undefined"!==typeof b.getAttribute?b.getAttribute("class")\|\|"":void 0;if(c){var d=c.indexOf(a);0<=d&&(0===d\|\|0<=h.indexOf(c.charAt(d-1)))&&.(c=c.replace(a,"").trim(),""===c?b.removeAttribute("class"):b.setAttribute("class",c))}}}function k(){var a=function(b){function a(){d=!1;"blur"===b.type&&Array.prototype.slice.call(e(b.target)).forEach(g("focus-within"));"focus"===b.type&&Array.prototype.slice.call(e(b.target)).forEach(f("focus-within"))}if(!d){window.requestAnimationFrame(a);var d=!0}};document.addEventListener("focus",a,!0);document.addEventListener("blur",a,!0);f("js-focus-within")(document.body);return!0}var h=["\n","\t"

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ga-audiences[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	84
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEqjdfXPQE/xlEy:1QEoqh3QEoy
MD5:	6A3F2D147842187CD48B1546EDDD5BA0
SHA1:	AB278C31189DF2939428CF81A3850A2C6DBF5E2E
SHA-256:	D4990F907BCA02F02B3D41216EEA5461609D4BCBA07A3CBEE0D7CF28A6D0D864
SHA-512:	998F55BF5C3D4A71CB3C23782B788F71E7625DF83A37FE8A18F915AAA3BDE5420183A3C709816664E262069EE2FE245CA44799E3476B6DE507B5D68FC86F8960
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\google-chrome-logo[1].jpg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x24, frames 3
Category:	downloaded
Size (bytes):	2745
Entropy (8bit):	7.741604826071945
Encrypted:	false
SSDEEP:	48:4ewFmUlcfuDKaAooAhjZQKNFaSze+coezpM6yDdEC5axXO8lldq:ZwRlmu+aIAbbNNbeVMBDdECzYlI
MD5:	DABB508820425E63D8138A1F7E94FDE0
SHA1:	E16615B860F2C203488E000CA7C489D49B2B5521
SHA-256:	84D5A4525BE1835AE8F3DEA212A449572B0200C0AA1CBD5D0CFB68783B6034F9
SHA-512:	6723552796917C2841DAD928F7912DE2E6F1B9967DF099BC6D49C724B84275AF807E44B503F30B50ADE8F12645394B709EB72B33C51262D8BE795FF5DBD4A49C
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/fallback/google-chrome-logo.jpg
Preview:	......JFIF.............C....................................................................C...............................................................................................................................................................x.N..Z.o9[..{.`{...MM..Xs..5A"........3.B...?D..2.\.........W.C...O./..Ve-.............T/..l"6ftkq..TV.^o.,-..Z...L....7 %FTZ..sj.@.....$..............................!12"..........G.v.m..[.W...!.7....[.~..h.E..f.^...T#..y\|...Y"....#..3..U..b...F.X....<s...o...J.t.l"4U{5W(g}.>....v...e)m.]k.....O.9.,M.7...Ek....;..YJe........R..:.......K.n..;..QF.0...N.G7./._..O>=#.V#...UF....O^.$~.z#\|.^...5.?........)...1g.N....2.Qc........A....XL.R.)$....N. ~(X..^sch...u....\|.G.1..2..a.d.Tf.._.'.?.._..+..:.f...+.#....LM-... ..\|.lo..Lt\|.J.4._....VzH.....g.....J.NH.....8!o.!..........&.C.~c+.p....5...GsA.5.%n.:}E...=...g1...}....:.P........f.b..r.X..;.P..].2.".t3D..h.8.:.....)3.IW...l(l.\|..7,fD..5xL...6...h..d.q

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\hero-anim-bottom-left[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	10370
Entropy (8bit):	7.893992617262281
Encrypted:	false
SSDEEP:	192:sSFk37+mY6YnIYbLW+UKaSSVMm+L2VhAu9O2ENR7YkM3oZ413iSgqDP3TGQ:ri37+gYbLVULWrS9O2IA3W6SrqDiQ
MD5:	63082350A0AD4DF2A5E62FF571BB239D
SHA1:	47F5367BE0A58EEC1D754CD6B74978C73E015DC2
SHA-256:	8FFC1F0C1364321C2A9612AB498316EE83D24EF84E78EF737C1255279B864878
SHA-512:	DABEB2706093A1CDBDA6DA2C919FAC8D95C418020619DA884F19FAC827FD08E0F95ADF4FC384C2CB15BA217EB1457357FCD1B1729866CBC8FD26272395B9B631
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/hero-anim-bottom-left.png
Preview:	.PNG........IHDR...............6.....pHYs.................sRGB.........gAMA......a...(.IDATx....wT.....%..1"=.3....=.AR.{.}..I?.!.w..~....M..c.......".T2.9=N.!...a#....{..k....T.........M.Ws..6....,Ve2.;.KZ../.7e.2i.=...r....eiO.......7.......N.....u.>..S..N.u.F..`H4...I6#...`0.=....6.%.G...j..W.....)..&...Y.y..j..?.cSm...UK.d.x3Y........._.d.......6.Bg1....._....L5.X.... @P(O....E2......C3R...4.y...A.`C....n..%...<lB.m...F.T.....z../R..h...LkEa...>.s..PE..1Ucd.[Y..!+..! .j3`.-[.g.5.z...g6....u2O.`......."...........W../jP..J.7....s!LB..L.].h"3/O\.PA?. .f`..b..~.=..3.}.]!,...g.Q..4....]t..h.+.h.@A.. .].c.W..s.Iyu.k...a}-....6.?.U...@...@..c...b%.\.....k.T.C`....=.............C..V.$.3;5.(@.....u.ac9.Z%.......E.Q\|.."......I1a~...g..[.....]ihTBh.(9/.j`.r.z.a.mf..ma.q9......\.v....$.m^.`/......7C....nfY.......9.+...ar.0.N..lZX.y{...in.#4...a.Z.r.6.Z. .....4..'.&..mZ.e.........$...2...cw).....8q.]..Gh`'.}':3..^....Z\.(..,l<. cF..mQ.\|..o..).

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\imageClientApi[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	35995
Entropy (8bit):	5.575170334715127
Encrypted:	false
SSDEEP:	768:LlTm0T2sEA93iTuoaL1/QsUjpv0scpd1dpbxvFNdlcdmdsEs/dbgL0ziK:Vd3iTuoaL1/VXMPGL0eK
MD5:	BF11A31D6BD9EAD3F8EF9C871D38EAB7
SHA1:	EF16C90A04FF70B304F222A6FFC97336D817FED9
SHA-256:	7A1E77C13481F363D05F6612817E84C7C27F2E294AB84609C5442542F63C80AF
SHA-512:	6480175F9F08D142F4D71B31DB9AF6AF6E9E79EA804E50F7E576761E2FDFF8C2A271C388BA47C022735214A14D5A6CC47FF6CFF6FAE87625973B46DB58D18CC1
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/image-client-api@1.4060.0/dist/imageClientApi.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports.imageClientApi=t():e.imageClientApi=t()}(this,(function(){return function(e){var t={};function i(r){if(t[r])return t[r].exports;var a=t[r]={i:r,l:!1,exports:{}};return e[r].call(a.exports,a,a.exports,i),a.l=!0,a.exports}return i.m=e,i.c=t,i.d=function(e,t,r){i.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(i.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var a in e)i.d(r,a,function(t){return e[t]}.bind(null,a));return r},i.n=function(e){var t=e&&e.__esModule?function

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\insight.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	4322
Entropy (8bit):	5.34276622153142
Encrypted:	false
SSDEEP:	96:LvleavwqOcvwM6kpL5CN6Cysim8jvuoHFmtXgM4nldI2XDzxp:Zvwkvw/8Ao7vjmtQ5lW2hp
MD5:	D3B7F1A92DD6719F87830997E69F3675
SHA1:	A8BC777FD7187E3A56D5214A3BBDDD95EC575DED
SHA-256:	5F3B103A1268F862A5E432D607F8E5220DEA9D301D13565B0ECDED3AD9C25AB2
SHA-512:	FDBBB5FB56922C71CBF877CA1CD901AFD243342106303C85F3074868EEF27AC1E0E6C0AB0A46961457C8441A2A2A1C75136977FF908EDC68C59A3386117E7653
Malicious:	false
Reputation:	low
IE Cache URL:	https://snap.licdn.com/li.lms-analytics/insight.min.js
Preview:	!function(){"use strict";function n(){return(new Date).getTime()}function l(n,e){var i=n.cookie.match(new RegExp("(?:^\|; )"+encodeURIComponent(e).replace(/([\.$?\|{}\[\]\\\/\+^])/g,"\\$1")+"=([^;])"));return i?decodeURIComponent(i[1]):""}function _(n,e,i,t){var r=t.days_until_expiration,o=void 0===r?1:r,a=t.path,d=void 0===a?"/":a,c=t.domain,l=void 0===c?null:c,_=function(n){var e=(new Date).getTime()+n,i=new Date;return i.setTime(e),i.toUTCString()}(864e5*o),s=encodeURIComponent(e)+"="+encodeURIComponent(i);s=s+";expires="+_,l&&(s=s+";domain="+l),s=s+";path="+d,n.cookie=s}function t(n){return n.webkit&&n.webkit.messageHandlers&&n.webkit.messageHandlers.LIPixli\|\|!1}function e(n,e){var i="https://px.ads.linkedin.com/collect?"+e;t(n)?n.webkit.messageHandlers.LIPixli.postMessage(i):(new n.Image).src=i}function i(n,e){var i="https://px.ads.linkedin.com/insight_tag_errors.gif?"+e;t(n)?n.webkit.messageHandlers.LIPixli.postMessage(i):(new n.Image).src=i}function s(n){return n.map(functio

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\installer.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	55423
Entropy (8bit):	5.4774704387403395
Encrypted:	false
SSDEEP:	768:eag7mwt+1GF5Dc5I5OI1+c8/KxBOfs8Iu6DF45r9h3EX+G/pIjb9bZowiS3J:Smwt+1K5WI1Qiafs8iwFE+G/pIjBFuSZ
MD5:	CCCC73EBC4889A3E8CB921A1F09684D7
SHA1:	E8FC1BD1AB5BE395EE6FB96C361EC3FA0C078212
SHA-256:	0A61524429200ACDD270D7761B4AF9DAA8DA5604BAD5ABFCF441D0B499B4CDB5
SHA-512:	71C060468FD12BEEE18C6C354B0DCA44478E10182375236704D1F670E32EBFFB5F6B98F48C4DCE8196DDF158A4758C9876DA9DC5909DBB2D283AA2A5706FFB1F
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/js/installer.min.js
Preview:	(function(){var h,aa="function"==typeof Object.create?Object.create:function(a){function b(){}b.prototype=a;return new b},ba;if("function"==typeof Object.setPrototypeOf)ba=Object.setPrototypeOf;else{var ca;a:{var da={Mb:!0},ea={};try{ea.__proto__=da;ca=ea.Mb;break a}catch(a){}ca=!1}ba=ca?function(a,b){a.__proto__=b;if(a.__proto__!==b)throw new TypeError(a+" is not extensible");return a}:null}var fa=ba,k=this;function l(a){return"string"==typeof a}function ha(){}.function n(a){var b=typeof a;if("object"==b)if(a){if(a instanceof Array)return"array";if(a instanceof Object)return b;var c=Object.prototype.toString.call(a);if("[object Window]"==c)return"object";if("[object Array]"==c\|\|"number"==typeof a.length&&"undefined"!=typeof a.splice&&"undefined"!=typeof a.propertyIsEnumerable&&!a.propertyIsEnumerable("splice"))return"array";if("[object Function]"==c\|\|"undefined"!=typeof a.call&&"undefined"!=typeof a.propertyIsEnumerable&&!a.propertyIsEnumerable("call"))return"function"}else return"nul

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	94232
Entropy (8bit):	5.529102234619335
Encrypted:	false
SSDEEP:	1536:JupMsRGbOlh0E+HGDv+/HRE6cszcpE5KZQXL8Q6uS+01W9nKP9dQflAods+:JupMFuh0u+5ss7XL8Qa++f+
MD5:	7D17BE47A811055E233A12606B0C28F2
SHA1:	4000EEE365E44CEAA7B2DA17E5D705444DA6C2AD
SHA-256:	D86C6B76F3F5FF3BD63CF44F2C6048BC55DD50E1C2A22EDA32B94C12601E4228
SHA-512:	CA0D3B32338ACE54DB9433BB133CFC1E65F8BADD56352E7A45778D6698122965C4337745999483F9B5FB576FEF7C246034A854982092AED0599F42B46C3DF04D
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.googletagmanager.com/gtag/js?id=AW-1006927621
Preview:	.// Copyright 2012 Google Inc. All rights reserved..(function(){..var data = {."resource": {. "version":"1",. . "macros":[{. "function":"__e". },{. "function":"__cid". }],. "tags":[{. "function":"__rep",. "once_per_event":true,. "vtp_containerId":["macro",1],. "tag_id":1. }],. "predicates":[{. "function":"_eq",. "arg0":["macro",0],. "arg1":"gtm.js". }],. "rules":[. [["if",0],["add",0]]].},."runtime":[].....};../.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0./.var aa,ba=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}},ca=function(a){var b="undefined"!=typeof Symbol&&Symbol.iterator&&a[Symbol.iterator];return b?b.call(a):{next:ba(a)}},da="function"==typeof Object.create?Object.create:function(a){var b=function(){};b.prototype=a;return new b},ea;.if("function"==typeof Object.setPrototypeOf)ea=Object.setPrototypeOf;else{var ha;a:{var ia={a:!0},ma={};

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\js[2].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	110127
Entropy (8bit):	5.54201394931787
Encrypted:	false
SSDEEP:	1536:AnDD2knuipMXbOlh0E+HGJ+/HRE6cszpZvKZQf8PrmO+01W9nKPJZfdsFlgoAL5i:SHnnuipMruh0O+5ssPf8Pl+hZAjDTs
MD5:	0045A2208DADFBEB92315B70F884BCA4
SHA1:	490BD605F7FF5B4DD0F466B0E885C6CBB2D04881
SHA-256:	758A4EE0BD87C9A3EF262FA7CF600CFF5E014196D4F239B999B97E878D08F363
SHA-512:	9A9E9DCD208FF4EDFE194E7802772055F000B6CDE7314C44F2A1CC4AD772BFA81FBD2398C4AB69F9E9E273144EEFEB840347B2D163F0E0EBA9DD925699F1A84A
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google-analytics.com/gtm/js?id=GTM-N7S69J3&cid=490784794.1617249124
Preview:	.// Copyright 2012 Google Inc. All rights reserved..(function(){..var data = {."resource": {. "version":"527",. . "macros":[{. "function":"__e". },{. "function":"__dee". },{. "function":"__u",. "vtp_component":"QUERY",. "vtp_queryKey":"utm_campaign",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQueryParam":false. },{. "function":"__c",. "vtp_value":false. },{. "function":"__gaoo_c",. "vtp_trackingId":"UA-26908291-1". },{. "vtp_experimentKey":"OPT-N7S69J3_OPT-KLQ5K",. "function":"__c",. "vtp_value":true. },{. "function":"__u",. "vtp_component":"URL",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQueryParam":false. },{. "vtp_component":2,. "function":"__c",. "vtp_value":"Windows". },{. "function":"__k",. "vtp_name":"_opt_utmc",. "vtp_decodeCookie":true. },{. "function":"__or",. "vtp_values":["list",["macro

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\lodash.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	73261
Entropy (8bit):	5.36112989542208
Encrypted:	false
SSDEEP:	1536:qaNdvaGKU+//A2kPJ3upjp5P/JpW3A3UNp:qauRP/SY+
MD5:	BC0594C54450E8AC689739B6B198067A
SHA1:	32F09EC3EC0950F47A35FC0D656559D5B164DACD
SHA-256:	55E35A1415438685F71FE809DFB0E94FF9D3B994DD8D8AE8F7206BB878D59A84
SHA-512:	DE86A9A5731555A73719EDCE9DD5B45AAA464D6C7D8E344903C4978A7F11C663DF73CAE0F3B6F7D451B2D785871BF64C4484A8F690637B35BDCB4D1160010E34
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/lodash@4.17.15/lodash.min.js
Preview:	/*. @license. * Lodash lodash.com/license \| Underscore.js 1.8.3 underscorejs.org/LICENSE. */.;(function(){function n(n,t,r){switch(r.length){case 0:return n.call(t);case 1:return n.call(t,r[0]);case 2:return n.call(t,r[0],r[1]);case 3:return n.call(t,r[0],r[1],r[2])}return n.apply(t,r)}function t(n,t,r,e){for(var u=-1,i=null==n?0:n.length;++u<i;){var o=n[u];t(e,o,r(o),n)}return e}function r(n,t){for(var r=-1,e=null==n?0:n.length;++r<e&&false!==t(n[r],r,n););return n}function e(n,t){for(var r=null==n?0:n.length;r--&&false!==t(n[r],r,n););return n}function u(n,t){for(var r=-1,e=null==n?0:n.length;++r<e;)if(!t(n[r],r,n))return false;.return true}function i(n,t){for(var r=-1,e=null==n?0:n.length,u=0,i=[];++r<e;){var o=n[r];t(o,r,n)&&(i[u++]=o)}return i}function o(n,t){return!(null==n\|\|!n.length)&&-1<v(n,t,0)}function f(n,t,r){for(var e=-1,u=null==n?0:n.length;++e<u;)if(r(t,n[e]))return true;return false}function c(n,t){for(var r=-1,e=null==n?0:n.length,u=Array(e);++r<e;)u[r]=t(n[r],r,n)

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\lpo-gmail_desktop[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 924 x 578, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	26120
Entropy (8bit):	7.970148835455555
Encrypted:	false
SSDEEP:	384:Ulo6Z4UA/w1Zv3WP1TXizvtMK4f0yAG7DxXM1GWzXNLtzOVELPlrWfFCjtGJ:IzZ4kZve1rUv6lfLpxXWfu6rw8Y
MD5:	6EEE5B573F68426E627946F8C9745906
SHA1:	92EBEF2B2B3A8F354B61DCE7D662367D45CD3237
SHA-256:	A5EB09DEBA45E4D1DEED9C360D0D72926498F8285FCB89E4A98CA461367F53A3
SHA-512:	E16D3904E6A6716DB1894007E776011652B728FC10AA8D9B6D5BCA50646B7B0C7C325AC76D2CFBFBEC85F6D166EF9DA398B23AA9322A4054A21C754EC50C1EEA
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/lpo-gmail_desktop.png
Preview:	.PNG........IHDR.......B....../8.....PLTE...???-22...?@@....==(--...CCC...4CC',,9==...5AA............................................................................._ch......sv{}........pqs......................................s...>.....UVYcdf......<=?............................XXZ....................D8...sss....ljUVX...... !"...B............/1...imq....p.......:;>IJLHIK......z\|}stv./............\\\...........C5...........p...........ijl............bV....SN..)...........K.....G.:5..........d5.S..r...........2.O.....LMM.....H=<>f.....A~....8.;.....s........g...sn.ZO........e]...y...cS.#!..n./)....:g.P.j.U.J.OB2e....q_.SG.&..`.........zv............wn......Y.w......~{..d..E.....y.pe.Og<4...........na^QSU[KJ......X....t....C........c....-.T`.....tRNS...../.'\.1.&.[.]\7U......b.IDATx...].La..qg..^n.g..8.v..XI4J...\.{n9.F.3.B.P.h6dN#oy...).^r.ll..D^s.(w......9g...1s..L3.<ggN...s.f..D.a........C.O.P.r.._..C.@......_"?$W...

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\main.c9d8a82e.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	172595
Entropy (8bit):	5.19475202732045
Encrypted:	false
SSDEEP:	1536:4TtAOzZRai2QMwGJhSj4h5pGePzQr100zW922HZtXoO2lzobfi2aSUB:4pxDRkwGJ8JkoO2L
MD5:	F7C999471598DA3B76BBA85DD63EC90B
SHA1:	07C124EC3812FFFA8C355A54900C0C1E3856F966
SHA-256:	6F332726386CD1B6D9BC6FDB192E94A217570C88054424109084816A5F26478C
SHA-512:	E527F0F1E57507ED1100288E11279D7D190EA476E939EB3148F7422AD10A0C3DAAA77D9900216564146F60B1AB0331EA187FEBBBA62CDE869A5E50EF6E8FD3DB
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/main.c9d8a82e.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[66,24],{104:function(e,t,n){"use strict";n.r(t);var r=n(0);Object(r.b)(void 0,void 0,void 0,(function(){return Object(r.d)(this,(function(e){switch(e.label){case 0:return window.__IE_deprecation__?[2]:[4,window.externalsRegistry.lodash.loaded];case 1:return e.sent(),n(173),[2]}}))}))},105:function(e,t,n){"use strict";var r=n(106),i=n(69),o=n(70);e.exports.BiLoggerFactory=r,e.exports.BiLogger=i,e.exports.BiLoggerManager=o.BiLoggerManager,e.exports.factory=function(){return new r},e.exports.manager=o.manager},106:function(e,t,n){"use strict";var r="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e},i=function(){function e(e,t){for(var n=0;n<t.length;n++){var r=t[n];r.enumerable=r.enumerable\|\|!1,r.configurable=!0,"value"in r&&(r.writable=!0),Object

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\minified[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines, with LF, NEL line terminators
Category:	downloaded
Size (bytes):	137771
Entropy (8bit):	5.302873083232577
Encrypted:	false
SSDEEP:	1536:0krhOL89lCIR2/XW9Pu9CABZ4XCbbXHaNG5ViGTct:0kkLeFRoWfABZ4ybbX6A5V3Yt
MD5:	18EB21E8D1074FD7A594D3748BA0CB33
SHA1:	0A226FA07A6E2DB5F5F03F1E980740CB67CEBFFA
SHA-256:	C64775436F34A6D26E276BBBC97BECDA2D4C73F15D70D5B13587D72123DFC5FD
SHA-512:	8ADFD7C67270EE6B98B89C06E3983BE03C625736EEE178597A588CB664E5268390387AA5611771A10A77466210AFC7F47066D85EAF9207B89A2DAF04A796802B
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/core-js-bundle@3.2.1/minified.js
Preview:	/*. core-js 3.2.1. * https://github.com/zloirock/core-js. * License: http://rock.mit-license.org. * . 2019 Denis Pushkarev (zloirock.ru). */.!function(kt){"use strict";function __webpack_require__(t){if(e[t])return e[t].exports;var r=e[t]={i:t,l:!1,exports:{}};return n[t].call(r.exports,r,r.exports,__webpack_require__),r.l=!0,r.exports}var n,e;e={},__webpack_require__.m=n=[function(t,r,n){n(1),n(60),n(61),n(62),n(63),n(64),n(65),n(66),n(67),n(68),n(69),n(70),n(71),n(72),n(73),n(74),n(77),n(80),n(82),n(84),n(85),n(86),n(87),n(89),n(90),n(92),n(100),n(101),n(102),n(103),n(111),n(112),n(114),n(115),n(116),n(118),n(119),n(120),n(121),n(122),n(123),n(125),n(126),n(127),n(128),n(134),n(135),n(137),n(138),n(139),n(143),n(144),n(146),n(147),n(149),n(150),n(151),n(152),n(159),n(161),n(162),n(163),n(165),n(166),n(168),n(169),n(171),n(172),n(173),n(174),n(175),n(176),n(177),n(178),n(179),n(180),n(181),n(184),n(185),n(187),n(189),n(190),n(191),n(192),n(193),n(195),n(197),n(199),n(200),n(202),n

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ooi.751f312e.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	18929
Entropy (8bit):	5.244834604553055
Encrypted:	false
SSDEEP:	384:LNoL+GVWBa6xotl/Xg77yRvLINiV2G2wXF+VP:LNkcMPg7mlLINiVbPF+VP
MD5:	476391C075DE156C10B2DE06E238E825
SHA1:	64F2790932B115DC21788758E3F61612563EC2D1
SHA-256:	821F53C22DFECEF8EDC83AE6B1E687DEC9C020BE0CC595F615EFAEA5505B2CC7
SHA-512:	96F246356EB37FC302530529B75351A93438B8BEDC7B8E60BAC58A081CBDBD0135FFD501FA9155CBB0FF8F5DA683550C31DAB3D53A30631875BF2040D7BD7DB5
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/ooi.751f312e.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[71],{298:function(e,t,n){"use strict";n.r(t),n.d(t,"page",(function(){return k})),n.d(t,"site",(function(){return P})),n.d(t,"editor",(function(){return x})),n.d(t,"name",(function(){return d.c})),n.d(t,"ReactLoaderForOOISymbol",(function(){return d.b})),n.d(t,"OOISsrManagerSymbol",(function(){return d.a}));var r=n(0),o=n(27),i=n(371),a=n(367),c=n(376),s=n(777),u=n(366),l=n(35),f=n(220),d=n(197),p=n(7),h=n.n(p),m=n(430);var b=Object(o.h)([i.e,i.d,Object(o.f)(a.d,d.c),Object(o.f)(a.e,d.c),c.b,l.a,s.a,f.a,u.a,Object(o.f)(a.b,d.c)],(function(e,t,o,i,a,c,s,u,l,f){var d=o.ooiComponents,p=o.accessibilityEnabled,b=i.viewMode,y=i.formFactor,v=s.registerToThrottledScroll,g=u.getFontsConfig,w=function(e){return t+"_"+e};return{pageWillMount:function(){return Object(r.b)(this,void 0,void 0,(function(){var t;return Object(r.d)(this,(function(o){switch(o.label){case 0:return h.a.forEach(d,(function(t){var

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\overrides.bundle[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	5389
Entropy (8bit):	4.9549817366382225
Encrypted:	false
SSDEEP:	96:UpM8C8dtyEvEWlEmcfXGunhXWiIrKBKWvws//ZkHCm:S1lfyEvEW6mcfXGunhXPIrvKws/xkim
MD5:	3A88565F1ED4152A7C6BEB8454668339
SHA1:	613C01F3F3A00F313F0DC43EAC0F32B15C8CB168
SHA-256:	17DFD5FCB0B4F3555824C2BC7F6E7A8F66586E0D19E3039046F68F4F56BE6FBB
SHA-512:	13E35768E27EA00E95F30C92EFB3643387B17D27F66CECF8270C7FAAAE024B8F950B2BD16CD8E3100601F6D1B8ED6D9B296F6AE3EF7686A1C3AB01C892AAC77A
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-ui-santa@2.0.277/dist/statics/overrides.bundle.js
Preview:	(function webpackUniversalModuleDefinition(root, factory) {..if(typeof exports === 'object' && typeof module === 'object')...module.exports = factory();..else if(typeof define === 'function' && define.amd)...define([], factory);..else if(typeof exports === 'object')...exports["overrides"] = factory();..else...root["overrides"] = factory();.})((typeof self !== 'undefined' ? self : this), function() {.return /****/ (function(modules) { // webpackBootstrap./**/ .// The module cache./**/ .var installedModules = {};./**/./**/ .// The require function./**/ .function __webpack_require__(moduleId) {./**/./**/ ..// Check if module is in cache./**/ ..if(installedModules[moduleId]) {./**/ ...return installedModules[moduleId].exports;./**/ ..}./**/ ..// Create a new module (and put it into the cache)./**/ ..var module = installedModules[moduleId] = {./**/ ...i: moduleId,./**/ ...l: false,./**/ ...exports: {}./**/ ..};./**/./**

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\page-features.087592ee.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	19137
Entropy (8bit):	5.195796504279397
Encrypted:	false
SSDEEP:	384:jo0/u+xlFn7jl2cNZ69Ocf5KQ/XyHMKd/5fMLo:ruup2cNZnS5KQ/CcLo
MD5:	B624FB72669B35BD9745838CBA5D6F3B
SHA1:	6A4CA4AF8D904341B07D1ED8D11185679484A8F9
SHA-256:	F5BFCDF22C4378A18CF43016472C5390E9A3EFA194A3EE2A9321295590E4496F
SHA-512:	57C7EFA6E0A9B037A1DB471AEE5493C7FCFB0DB5E819A5D051F4CF0B4D6D3929103FB5BDCD56922DC24E8BC1658D095DBA209E330A02A80B3316328684AB954E
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/page-features.087592ee.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[1],{191:function(t,n,e){"use strict";e.r(n),e.d(n,"page",(function(){return p})),e.d(n,"Animations",(function(){return r.a})),e.d(n,"name",(function(){return r.b})),e.d(n,"getAnimatorManager",(function(){return o.b}));var r=e(200),o=e(429),a=e(375),u=e(117),i=e(367),c=e(27),l=e(372),d=Object(c.h)([Object(c.f)(i.b,r.b),u.o],(function(t,n){return{pageWillMount:function(){if(!t.get()){var r=e.e(21).then(e.bind(null,822)).then((function(t){var e=t.createAnimatorManager;return Object(l.a)((function(){return e(n)}))}));t.update((function(){return{animatorManager:r}}))}}}})),s=e(0),f=e(378),b=Object(c.h)([r.a,f.a,u.a],(function(t,n,e){return{getSdkHandlers:function(){return{runAnimation:function(r,o){return Object(s.b)(this,void 0,Promise,(function(){var a,u,i,c,l;return Object(s.d)(this,(function(d){switch(d.label){case 0:return a=Array.isArray(r.targetId)?r.targetId:[r.targetId],i=new Promise((fun

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\protectedPages.c3173846.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	4086
Entropy (8bit):	5.234698350697281
Encrypted:	false
SSDEEP:	96:3Po5fG7a/Jz9GLl3OqzFXACwgj9tAWOcov:3z7kpkL5ZQIAWVov
MD5:	CCC93EE9F14E3BAB2DFBF0EEC296B847
SHA1:	B54003796BC5CB9A5C78AC3D8F4CBEC662FE2CAA
SHA-256:	00A1FADE7E88879C71983AC6A966B353A1335C77BD414B07D4CFF2AE3AC8A556
SHA-512:	007A1159B36899E1731EA7C8333EFBBDCD6C564FD9E6757F2DEB81E64429E9C269744F73D54060C7D14425F23A38869027983B77E0C3B19D7BED8AE193800099
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/protectedPages.c3173846.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[81],{300:function(e,t,n){"use strict";n.r(t),n.d(t,"site",(function(){return P})),n.d(t,"page",(function(){return M}));var r,a=n(0),i=n(27),o=n(367),u=n(221);!function(e){e.SM="SM",e.Pass="PASS",e.NONE="NONE"}(r\|\|(r={}));var c=Object(i.h)([Object(i.f)(o.c,u.a),Object(i.f)(o.e,u.a),Object(i.f)(o.b,u.a)],(function(e,t,n){return{handle:function(i){return Object(a.b)(this,void 0,void 0,(function(){var o,u,c,s,d;return Object(a.d)(this,(function(b){return i.pageJsonFileName?[2,i]:(o=i.pageId,u=n.get(),c=u.pagesMap,s=u.loginAndNavigate,c[o]?[2,Object(a.a)(Object(a.a)({},i),{pageJsonFileName:c[o]})]:((d=function(n){var a=e.pagesSecurity[n];return a&&a.requireLogin?r.SM:t.passwordProtected[n]\|\|a&&a.passwordDigest?r.Pass:r.NONE}(o))===r.NONE&&function(e,t){throw new Error("we do not have authentication info for protected page "+e+" page security: "+t)}(o,e.pagesSecurity[o]),s(i,d),[2,null]))}))}))}}})

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\react-dom.production.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	118656
Entropy (8bit):	5.363639995060682
Encrypted:	false
SSDEEP:	1536:kdnEfBUGQfXNd5LZRqB8CbQD6n0ztgB6sMNMjoviotzJtN2F:CnEPQltWb/nstgBCMcY
MD5:	DCF51763FB4A654E15A4E6E7754CA5D2
SHA1:	BF19EC32AF23FB8F2C0C75549A3996B725F80D35
SHA-256:	BC5B7797E8A595E365C1385B0D47683D3A85F3533C58D499659B771C48EC6D25
SHA-512:	498B179806E5661AEE08D515993A79FEFD9AD459E889AD3A889877F8BF41F7051AAA94558DC34142CA80825406F5BE7E21A5427CB0C7E7EBD6F76DC92F97A964
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/react-dom@16.13.1/umd/react-dom.production.min.js
Preview:	/** @license React v16.13.1. * react-dom.production.min.js. . Copyright (c) Facebook, Inc. and its affiliates.. . This source code is licensed under the MIT license found in the. * LICENSE file in the root directory of this source tree.. /./. Modernizr 3.0.0pre (Custom Build) \| MIT.*/.'use strict';(function(I,ea){"object"===typeof exports&&"undefined"!==typeof module?ea(exports,require("react")):"function"===typeof define&&define.amd?define(["exports","react"],ea):(I=I\|\|self,ea(I.ReactDOM={},I.React))})(this,function(I,ea){function k(a){for(var b="https://reactjs.org/docs/error-decoder.html?invariant="+a,c=1;c<arguments.length;c++)b+="&args[]="+encodeURIComponent(arguments[c]);return"Minified React error #"+a+"; visit "+b+" for the full message or use the non-minified dev environment for full errors and additional helpful warnings."}.function ji(a,b,c,d,e,f,g,h,m){yb=!1;gc=null;ki.apply(li,arguments)}function mi(a,b,c,d,e,f,g,h,m){ji.apply(this,arguments);if(yb){if(yb){var n=gc

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\react.production.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	12463
Entropy (8bit):	5.381746255537871
Encrypted:	false
SSDEEP:	384:U97UMSCgItJCmeTfNQUlxwMmerA0NPYe7:ogI4SKxV
MD5:	EDF56A42BCA6B565BF7DFCBD8FFC221A
SHA1:	31CB4CEA0064ED80C1B0C5F5D58E1956A7E2293F
SHA-256:	C9486F126615859FC61AC84840A02B2EFC920D287A71D99D708C74B2947750FE
SHA-512:	49426E8E1B54599525C2C0016993674C5465BC2BBB5C605904BD55177DEA46FBE0364DE9052F44DF9DE471A838240BF4E7F9EC07DB1A9D25C56DD1C0516F7E96
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/react@16.13.1/umd/react.production.min.js
Preview:	/** @license React v16.13.1. * react.production.min.js. . Copyright (c) Facebook, Inc. and its affiliates.. . This source code is licensed under the MIT license found in the. * LICENSE file in the root directory of this source tree.. */.'use strict';(function(d,r){"object"===typeof exports&&"undefined"!==typeof module?r(exports):"function"===typeof define&&define.amd?define(["exports"],r):(d=d\|\|self,r(d.React={}))})(this,function(d){function r(a){for(var b="https://reactjs.org/docs/error-decoder.html?invariant="+a,c=1;c<arguments.length;c++)b+="&args[]="+encodeURIComponent(arguments[c]);return"Minified React error #"+a+"; visit "+b+" for the full message or use the non-minified dev environment for full errors and additional helpful warnings."}.function w(a,b,c){this.props=a;this.context=b;this.refs=ba;this.updater=c\|\|ca}function da(){}function L(a,b,c){this.props=a;this.context=b;this.refs=ba;this.updater=c\|\|ca}function ea(a,b,c){var g,e={},fa=null,d=null;if(null!=b)for(g in void

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\santa-animations[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	145106
Entropy (8bit):	5.232092877992787
Encrypted:	false
SSDEEP:	3072:JoIbR0xr9S3A97yVOHjbXYbBOx2GKEQmz1:JoIbR0xr9S3A97yVOHjbXYbBOx2GKElx
MD5:	19F081BF57FC59651F6948EBD9FE63D5
SHA1:	3173319BAD8974EB84224F416A293DC0F326E018
SHA-256:	B0BB3035E130188B671956EF5BD957B9281C19151CE60A742F4AD460CE1E3BC3
SHA-512:	9DCD07E8D680945017D75D76E32358E6AF2FF8219BE947A3AAAA87D73912BCC5C487AC8AC05697F360F994B25161AAC6BDECF4D84DF7B6A0461A4DD8BF04E6FD
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-animations@1.493.0/dist/santa-animations.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports["santa-animations"]=t():e["santa-animations"]=t()}(this,(function(){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var a=t[r]={i:r,l:!1,exports:{}};return e[r].call(a.exports,a,a.exports,n),a.l=!0,a.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var a in e)n.d(r,a,function(t){return e[t]}.bind(null,a));return r},n.n=function(e){var t=e&&e.__esModul

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\santa-components-layout.prod[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	2983
Entropy (8bit):	5.219668107161619
Encrypted:	false
SSDEEP:	48:Zok0twETRDeVtSuMY69cL4l07k62e2pUqbsXrH3ey8eW+NnW7zWbexZ88vEL:R0tNaSn1CQ8imHj8eaUe72L
MD5:	E85D9E5F869F9468986ED518DD644364
SHA1:	2EF0D880F6A3C5C998585862C252A0A8440D57B5
SHA-256:	BF9C8F5C8F9692D3659206CFC4378FD00621DB20F7A80863773C07329BF995CE
SHA-512:	3CAD527D17097FF0895BF06B5FD4F7BA1270AE16FF9DA8D8F44EBE9AD7205BC32234EFC3EA77A8F2E8175911BC6C8A4B299047941AB11E10DE631DEC2406D516
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-components@1.1968.0/dist/santa-components-layout.prod.js
Preview:	!function(e,t){if("object"==typeof exports&&"object"==typeof module)module.exports=t(require("lodash"));else if("function"==typeof define&&define.amd)define(["lodash"],t);else{var n="object"==typeof exports?t(require("lodash")):t(e.lodash);for(var r in n)("object"==typeof exports?exports:e)[r]=n[r]}}(this,(function(e){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var i in e)n.d(r,i,f

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\siteMembers.cad616aa.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	35331
Entropy (8bit):	5.334848694347553
Encrypted:	false
SSDEEP:	768:Ds11x7qo3+C5lqE2WkGuDZe791R1r4bzJcAhi2AaVW3OQVHYD/V4llFSM:w11Fj3N5lqElGwf1IcAA2ADOQVHtSM
MD5:	B9D7993D78B1D1B1F03E6EE1C70FF2A9
SHA1:	E2864A0A39248752CD636BEC68E528D3A1E5EA92
SHA-256:	85C2E32A909509578F4B06C5BAB240E63720EA84F9749F2CB78F081937BE8923
SHA-512:	77CAE00DA7F2200D2F33D553080F78273E5D595AF053CABF7355F6B09C2991CA7AD7D4887CA2AA5CA434D1BBBC1824451812E5329D4608E813FE3BC2F23A4ACF
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/siteMembers.cad616aa.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[96],{194:function(e,t,n){"use strict";n.r(t),n.d(t,"site",(function(){return x})),n.d(t,"page",(function(){return q})),n.d(t,"SiteMembersApiSymbol",(function(){return P.b})),n.d(t,"BIEvents",(function(){return k})),n.d(t,"PrivacyStatus",(function(){return S.d})),n.d(t,"INTERACTIONS",(function(){return S.b})),n.d(t,"AUTH_RESULT_REASON",(function(){return S.a})),n.d(t,"memberDetailsFromDTO",(function(){return j.d})),n.d(t,"isLoginAcceptableError",(function(){return j.b})),n.d(t,"isSignupAcceptableError",(function(){return j.c}));var o=n(27),i=n(0),r=n(367),s=n(368),a=n(117),c=n(376),u=n(386),l=n(387),d=n(365),b=n(377),m=n(366),g=n(235),h=n(23),p=n(4),v=n(35),f=n(189),O=n(383),w=n(7),S=n(53),C=n(237),P=n(195),D=function(){function e(e,t,n){this.propsStore=e,this.structureApi=t,this.siteScrollBlocker=n}return e.prototype.displayDialog=function(e,t,n,o){return void 0===o&&(o={}),Object(i.b)(this,v

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\src=2542116;type=2542116;cat=chrom0;ord=1088143482153;gtm=2wg3o0;~oref=https___www.google[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	42
Entropy (8bit):	2.9881439641616536
Encrypted:	false
SSDEEP:	3:CUXPQE/xlEy:1QEoy
MD5:	D89746888DA2D9510B64A9F031EAECD5
SHA1:	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A
SHA-256:	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
SHA-512:	D5DA26B5D496EDB0221DF1A4057A8B0285D15592A8F8DC7016A294DF37ED335F3FDE6A2252962E0DF38B62847F8B771463A0124EF3F84299F262ED9D9D3CEE4C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........D.;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\src=4382365;type=count;cat=websi0;ord=1;num=1196866999169;gtm=2wg3o0;auiddc=666480753.1617249090;u1=fffb8729-a9da-45fc-9840-773923f9b2e7;~oref=https___www.wix[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	559
Entropy (8bit):	5.496024875814731
Encrypted:	false
SSDEEP:	12:hnMQbwuOaxyCkv4A1Z3wV7ewyA3yxs3AEIAgKWwka2W2KD:hMiRO9A03WqAgKKyl
MD5:	7FA39DE974DF4F7CE1B3793B1E34A2F3
SHA1:	E3F667AC0492E1BBEBA3B6F69ADFFE57FFD4B54B
SHA-256:	7B2EAB6C17FDEA65D1C542EF5EB6AE3182DBC856DF1B3D9FAA51C19EA44E47B1
SHA-512:	7B1CA101602B11D6926D664A38519346CA2ECE6715AFAB1AEFD4684C5AA4435FF1A1CFA3B57016E768272D566CCB3F7D5E91D8D151208978A6FDC472339B2993
Malicious:	false
Reputation:	low
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><iframe src="https://adservice.google.ch/ddm/fls/i/src=4382365;type=count;cat=websi0;ord=1;num=1196866999169;gtm=2wg3o0;auiddc=666480753.1617249090;u1=fffb8729-a9da-45fc-9840-773923f9b2e7;~oref=https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%3FforceBolt%3D%26ssrIndicator%3Dfalse" width="1" height="1" frameborder="0" style="display:none"></iframe></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\tfa[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	65537
Entropy (8bit):	5.744691496696501
Encrypted:	false
SSDEEP:	1536:W2q8zsx5KsHthaARUitJk1dtZIvpE2whCzXaqfsQH/mXdS1FIoi:W2fydht61d7IvBdkS/O
MD5:	31BF65C8D965BF49AD570211EA3935F2
SHA1:	C54A44806A4D1D61E063C4C8EC19B5088387FC2F
SHA-256:	55BE1913CF973CA6256C844E696AD782024DD3C01CC0881DAB176167CA805356
SHA-512:	67CF8430BA1413687F03049D35C7A90F0D62E26C79E37E8168C51426589531413AA21B4E6BB2619ED05CBAF14C3A3523D5CC53A34CAB74114C0E33AFEB924D07
Malicious:	false
Reputation:	low
IE Cache URL:	https://cdn.taboola.com/libtrc/unip/1316991/tfa.js
Preview:	/! 20210309-9-RELEASE 2021-03-09 /..!function(t){var e='TFASC';e.indexOf("{jsScope}")>-1&&(e="TRC"),t[e]\|\|(t[e]={})}(window),function(t,e){t.TRC=t.TRC\|\|{};var i=function(){return!0},n=function(i,n,r,a){var o=i+"/"+encodeURIComponent(r\|\|t.TRC.publisherId)+"/log/3"+"/"+n;return a&&(o+="?"+e.TRCLogger.formatParams(a)),o},r=function(e,n){var r,a=new(t.XDomainRequest\|\|t.XMLHttpRequest);return a.open(e,n),a.onload=i,a.onerror=i,a.ontimeout=i,a.onprogress=i,a.withCredentials=!0,a};t.TRC.TRCLogger=e.TRCLogger={post:function(t,i,a,o,s){var c=n(t,i,o,s),u=r("POST",c);u.setRequestHeader&&u.setRequestHeader("Content-Type","application/x-www-form-urlencoded"),u.send(e.TRCLogger.formatParams(a))},get:function(t,e,i,a){var o=n(t,e,a,i),s;r("GET",o).send()},formatParams:function(t){var e=[];for(var i in t)t.hasOwnProperty(i)&&e.push(encodeURIComponent(i)+"="+encodeURIComponent(t[i]));return e.join("&")}}}(window,window['TFASC'.indexOf("{jsScope}")>=0?"TRC":'TFASC']),function(t,e){if(e&&!e.MessageDel

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\tr[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	downloaded
Size (bytes):	44
Entropy (8bit):	2.8317663774021287
Encrypted:	false
SSDEEP:	3:CU9yltxlHhn:mn
MD5:	B798F4CE7359FD815DF4BDF76503B295
SHA1:	F8CC6ADDF1707AD236AD9970B0A48F9733D07DA5
SHA-256:	10D8D42D73A02DDB877101E72FBFA15A0EC820224D97CEDEE4CF92D571BE5CAA
SHA-512:	921944DC10FBFB6224D69F0B3AC050F4790310FD1BCAC3B87C96512AD5ED9A268824F3F5180563D372642071B4704C979D209BAF40BC0B1C9A714769ABA7DFC7
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.facebook.com/tr/?id=704136006388169&ev=PageView&dl=https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%3FforceBolt%3D%26ssrIndicator%3Dfalse&rl=https%3A%2F%2Fwww.foothillsvaccineclinic.com%2Fcovid-registration-form&if=true&ts=1617249094164&sw=1280&sh=1024&v=2.9.33&r=stable&ec=0&o=14&fbp=fb.1.1617249094153.1122864896&it=1617249093946&coo=false&rqm=GET
Preview:	GIF89a.............!.......,...........D..;.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\ugc-viewer[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	43
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9pse:Gl3QEsJLse
MD5:	AD4B0F606E0F8465BC4C4C170B37E1A3
SHA1:	50B30FD5F87C85FE5CBA2635CB83316CA71250D7
SHA-256:	CF4724B2F736ED1A0AE6BC28F1EAD963D9CD2C1FD87B6EF32E7799FC1C5C8BDA
SHA-512:	EBFE0C0DF4BCC167D5CB6EBDD379F9083DF62BEF63A23818E1C6ADF0F64B65467EA58B7CD4D03CF0A1B1A2B07FB7B969BF35F25F1F8538CC65CF3EEBDF8A0910
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\viewerComponentService.bundle[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	37910
Entropy (8bit):	5.041233872358874
Encrypted:	false
SSDEEP:	384:SL+FVpPyyVJpP1HmxGfaweb3yXvwjYbbAj5JFHnGrQna8JEO2zpkiJ8ZVhkUVR:HjlP1HmxGfawebiYjmbA9vGrQna+b24
MD5:	B277AA4D6F248BD13B816F205EF24A30
SHA1:	2109D3BD60122833CC43C5D9848ED172540D94C0
SHA-256:	31A47DF6DF8E47819CB2D8A850F08F828F113DEBAD601ACF71AEC6619E600B9C
SHA-512:	921C0CF20F842190C9CF747527B1C2146006752D2263D66DAE30CA5AAEB37339A67ECE385FC8B2DB19DD029DECAD1C85BB36F5AD43D856969BD050751B4A0085
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-ui-santa@2.0.277/dist/statics/viewerComponentService.bundle.js
Preview:	(function webpackUniversalModuleDefinition(root, factory) {..if(typeof exports === 'object' && typeof module === 'object')...module.exports = factory(require("react"), require("prop-types"), require("lodash"), require("santa-components"), require("react-dom"));..else if(typeof define === 'function' && define.amd)...define(["react", "prop-types", "lodash", "santa-components", "reactDOM"], factory);..else if(typeof exports === 'object')...exports["viewerComponentService"] = factory(require("react"), require("prop-types"), require("lodash"), require("santa-components"), require("react-dom"));..else...root["viewerComponentService"] = factory(root["React"], root["prop-types"], root["_"], root["santaComponents"], root["ReactDOM"]);.})((typeof self !== 'undefined' ? self : this), function(__WEBPACK_EXTERNAL_MODULE__0__, __WEBPACK_EXTERNAL_MODULE__1__, __WEBPACK_EXTERNAL_MODULE__3__, __WEBPACK_EXTERNAL_MODULE__4__, __WEBPACK_EXTERNAL_MODULE__33__) {.return /******/ (function(modules) { // webp

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\warmupUtils[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	128658
Entropy (8bit):	5.516168134078029
Encrypted:	false
SSDEEP:	1536:mFGPmCkbdzxNv20jDU0zStww+dmaCYjde39Hhi:UGAbdzxNvzDxStvCmaCYjds9Hhi
MD5:	A5100488474FF774819214CE8C1F52EE
SHA1:	793589015FF0FA61E7F05E234536D667C6F51581
SHA-256:	8B9F2F862D6D078385757E1D620957A0B3505C9FDA16D1ADFAF46685B23BFC93
SHA-512:	EECE473EA001C2FE8C4D5EFA3E9B1DA6D5C04F4E05F1684BF18F4F8734F4FFEEBAEA283F6DD4EC3905DBC7D213074AC5B0CA9D04C8401952E5F153417E3BC919
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-core-utils@1.2697.0/dist/warmupUtils.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t(require("lodash"),require("zepto"),require("image-client-api")):"function"==typeof define&&define.amd?define(["lodash","zepto","image-client-api"],t):"object"==typeof exports?exports.warmupUtils=t(require("lodash"),require("zepto"),require("image-client-api")):e.warmupUtils=t(e.lodash,e.zepto,e["image-client-api"])}(this,(function(e,t,a){return function(e){var t={};function a(i){if(t[i])return t[i].exports;var r=t[i]={i:i,l:!1,exports:{}};return e[i].call(r.exports,r,r.exports,a),r.l=!0,r.exports}return a.m=e,a.c=t,a.d=function(e,t,i){a.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:i})},a.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},a.t=function(e,t){if(1&t&&(e=a(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var i=Object.create(null);if(a.r(i),Objec

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\wixui.Captcha.chunk[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with CRLF, LF line terminators
Category:	downloaded
Size (bytes):	89782
Entropy (8bit):	5.18424439083889
Encrypted:	false
SSDEEP:	1536:uU6UnSMR6DYFzqtcWW3/UWcAX2jVRrV43L:uUJzq23/GAXUV34b
MD5:	1E85ABD3F2E16F4457E2442AF21BCA8C
SHA1:	1D1E6A91DC71488907326BA0B647373193093CE7
SHA-256:	EE394230AD9464EF44C71E239928CD69601EB0E1AA896C41A748E227D5EA6BF6
SHA-512:	B16D6C7B081161B58A445B496BB7238F89491F9BA50F9A140C12A958608472A0746A643E2475CDB32417D482F2ABE023D12A81FF0E49D1F4AB9FDDA276504F82
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-ui-santa@2.0.277/dist/statics/wixui.Captcha.chunk.js
Preview:	((typeof self !== 'undefined' ? self : this)["webpackJsonp_wix_ui_santa"] = (typeof self !== 'undefined' ? self : this)["webpackJsonp_wix_ui_santa"] \|\| []).push([[50],{../**/ 10:./!*****************************************!\. !* ../node_modules/tslib/tslib.es6.js !. \****************************************/./! exports provided: __extends, __assign, __rest, __decorate, __param, __metadata, __awaiter, __generator, __createBinding, __exportStar, __values, __read, __spread, __spreadArrays, __await, __asyncGenerator, __asyncDelegator, __asyncValues, __makeTemplateObject, __importStar, __importDefault, __classPrivateFieldGet, __classPrivateFieldSet /./! all exports used /./*/ (function(module, __webpack_exports__, __webpack_require__) {.."use strict";.__webpack_require__.r(__webpack_exports__);./ harmony export (binding) / __webpack_require__.d(__webpack_exports__, "__extends", function() { return __extends; });./ harmony export (binding) */ __webpack_require__.d(__web

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\wixui.StylableButton.chunk[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	27962
Entropy (8bit):	5.324309709253207
Encrypted:	false
SSDEEP:	768:0Ez0jf70W20J/uvDGH3eZLEb5EzKd7/TmypcHEzKniWx78reXwld3m:vWIXCWjp
MD5:	076884489F7594C8147FE1BC3BAB6156
SHA1:	B0F70ED05BB43E70CC3165A7F335805ED7ECF874
SHA-256:	9B35DD678AC9CE940BA7F14543BC918F813CC342F107DD8C443D2FF48C5F1A16
SHA-512:	B8A61BC0F3F32326BFAFF5391EFADDAB0A7ACB463A1B9D6D1F3E31EC1D122D3401A12EE2D9ACB9A8CCEF35BF0F5810DB76A37DE843A4318C37BB8A9D8D7AEB1C
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-ui-santa@2.0.277/dist/statics/wixui.StylableButton.chunk.js
Preview:	((typeof self !== 'undefined' ? self : this)["webpackJsonp_wix_ui_santa"] = (typeof self !== 'undefined' ? self : this)["webpackJsonp_wix_ui_santa"] \|\| []).push([[67],{../**/ 15:./!****************************************************!\. !* ./components/StylableButton/StylableButton.js !. \***************************************************/./! exports provided: StylableButton /./! exports used: StylableButton /./*/ (function(module, __webpack_exports__, __webpack_require__) {.."use strict";./ harmony export (binding) / __webpack_require__.d(__webpack_exports__, "a", function() { return StylableButton; });./ harmony import / var react__WEBPACK_IMPORTED_MODULE_0__ = __webpack_require__(/! react / 0);./ harmony import / var react__WEBPACK_IMPORTED_MODULE_0___default = /#__PURE__/__webpack_require__.n(react__WEBPACK_IMPORTED_MODULE_0__);./ harmony import / var prop_types__WEBPACK_IMPORTED_MODULE_1__ = __webpack_require__(/! prop-types / 1);./ harmony impor

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\Container_DefaultAreaSkin.ed6e3dcf.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	883
Entropy (8bit):	5.1540076784791315
Encrypted:	false
SSDEEP:	24:avCtPBvCtPemgww1v7MWlDu7fwJyEMuUr6ksXMcSH:VZoZWJ4EqMSsX7SH
MD5:	33876F362EBD0E34846510FA20E7BE84
SHA1:	6965028E5D5EF274044FD6B9D358D97443CE64AE
SHA-256:	B5CF194E05821784B199CDC21DDFC24CC6354712CF5E8B12A2ED7754F9C25F30
SHA-512:	5A670DF215A6651F24CCAF397F2B546667B574E6434234E5E28D62C54A89877ECDA65DA4D09F1BD7DC8C20148EE4431541E5E9BF39508525323FCEDE51F40FB0
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/Container_DefaultAreaSkin.ed6e3dcf.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[51],{1037:function(e,t,n){e.exports={root:"_1lRal",bg:"_2iB5S"}},225:function(e,t,n){"use strict";n.r(t);var r=n(3),s=n(178),a=n(661),c=n(1037),l=n.n(c);t.default=function(e){return s.createElement(a.a,Object(r.a)({},e,{classes:l.a}))}},661:function(e,t,n){"use strict";n.d(t,"a",(function(){return c}));var r=n(3),s=n(178),a=n(656),c=function(e){var t=e.classes,n=Object(r.e)(e,["classes"]);return s.createElement(a.a,Object(r.a)({},n,{className:t.root,renderSlot:function(e){var n=e.containerChildren;return s.createElement(s.Fragment,null,s.createElement("div",{className:t.bg}),n)}}))}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/editor-elements/dist/Container_DefaultAreaSkin.ed6e3dcf.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\Container_RectangleArea.d3c310c8.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	880
Entropy (8bit):	5.165801869661639
Encrypted:	false
SSDEEP:	24:avCtPBvCtPeoMwqq7MgDu7fwJyEMuUr6ksXMcMJ:VZoZCM4gqMSsX7a
MD5:	4EE8CBC5AFBC234EE5C89A0E495947B8
SHA1:	95F84EA071F6A0711D6D7D13FC183D8DBAA1A23A
SHA-256:	384C48F785FEBDACB57AC6E6BC896FB8BCE69419A9C0F5659424C3327C250AD9
SHA-512:	B41E218A51AC1048F4C6528208AB6277C64CDA797E4BEC6AD1DC104A448A3EF84A2DBAE490A0D65F356813FA70410CA765CFFD260E903A0642C121862ADABEEB
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.d3c310c8.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[64],{1042:function(e,t,n){e.exports={root:"vU_aM",bg:"_2VvTi"}},230:function(e,t,n){"use strict";n.r(t);var r=n(3),s=n(178),a=n(661),c=n(1042),l=n.n(c);t.default=function(e){return s.createElement(a.a,Object(r.a)({},e,{classes:l.a}))}},661:function(e,t,n){"use strict";n.d(t,"a",(function(){return c}));var r=n(3),s=n(178),a=n(656),c=function(e){var t=e.classes,n=Object(r.e)(e,["classes"]);return s.createElement(a.a,Object(r.a)({},n,{className:t.root,renderSlot:function(e){var n=e.containerChildren;return s.createElement(s.Fragment,null,s.createElement("div",{className:t.bg}),n)}}))}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/editor-elements/dist/Container_RectangleArea.d3c310c8.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\DropDownMenu_OverlineMenuButtonSkin.b044c7e9.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	2114
Entropy (8bit):	5.334179826768165
Encrypted:	false
SSDEEP:	48:VZoZb/hoThmAYpvz7WZSzABKp64+GoMGQne4Q7yk7lMRsKXcKX7o9:32toToVDzE4+GoJyejOvsKXcKLo9
MD5:	9024F38EDFDA7AAA1BCDE290C30A63F2
SHA1:	3273C2D41EA4E673EFF44A9AB6412021CF9A9FB9
SHA-256:	EA8F32CC2319AACDE6892DABFA43EDB167881ED021FB5B5D8A18678F2C22374D
SHA-512:	5D2B09F116701B99CF1A0B1B9D2F8390B025CDD86F8BF85D0274D5DF481AB285B76752864356899B78410A3014B5215C4E2B7D1220B35467C9BC402572A00A47
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/DropDownMenu_OverlineMenuButtonSkin.b044c7e9.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[100,90],{189:function(e,t,n){"use strict";n.r(t);var r=n(3),a=n(178),i=n(768),s=n(847),o=n.n(s),u=function(e){return a.createElement(i.a,Object(r.a)({},e,{skinsStyle:o.a,skin:"OverlineMenuButtonNSkin"}))},l=n(767),p=n(846),c=n.n(p);t.default=function(e){return a.createElement(l.a,Object(r.a)({},e,{styles:c.a,Button:u}))}},266:function(e,t,n){"use strict";n.r(t);var r=n(189);n.d(t,"default",(function(){return r.default}))},767:function(e,t,n){"use strict";var r=n(3),a=n(178),i=n(668);t.a=function(e){var t=e.styles,n=e.Button,s=Object(r.e)(e,["styles","Button"]);return a.createElement(i.a,Object(r.a)({},s,{styles:t,Button:n}))}},768:function(e,t,n){"use strict";var r=n(3),a=n(178),i=n(648),s=n.n(i),o=n(683),u=n(676),l=n(675);t.a=function(e){var t=e.id,n=e.isDropDownButton,i=e["aria-haspopup"],p=e.isMoreButton,c=e.dir,m=e.textAlign,f=e.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\EOOWTHDK.gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	downloaded
Size (bytes):	43
Entropy (8bit):	2.7374910194847146
Encrypted:	false
SSDEEP:	3:CU9yltxlHh/:m/
MD5:	DF3E567D6F16D040326C7A0EA29A4F41
SHA1:	EA7DF583983133B62712B5E73BFFBCD45CC53736
SHA-256:	548F2D6F4D0D820C6C5FFBEFFCBD7F0E73193E2932EEFE542ACCC84762DEEC87
SHA-512:	B2CA25A3311DC42942E046EB1A27038B71D689925B7D6B3EBB4D7CD2C7B9A0C7DE3D10175790AC060DC3F8ACF3C1708C336626BE06879097F4D0ECAA7F567041
Malicious:	false
Reputation:	low
IE Cache URL:	https://cx.atdmt.com/?c=4193018291510283170&f=AYwOVKjmJZRBAxQsGa-esK7KXX_bynB8hyglmnn752yYErLjVgIKGXaON7_KCOs4hm2jH_33WKCWss_vdxSf97AU&id=704136006388169&l=3&v=0
Preview:	GIF89a.............!.......,...........D..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\FiveGridLine_SolidLine.539a3d84.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	827
Entropy (8bit):	5.176206664747793
Encrypted:	false
SSDEEP:	24:avCtPBvCtPe5QPEyDT6exhk9E+CamKVyO8rxOLj9XXMcQV:VZoZWW1DG9ETCxX7QV
MD5:	AA1331E0E0C1C5B41DDB29D4A20839A9
SHA1:	FCFBEBBD6D481021E6360361E44F4A021C4C0F04
SHA-256:	C21FEFE006AB3C46717B48636613DB07A9E5680AE12645DAA706BA2FFB6EB66C
SHA-512:	BFE9CCDE3AE09FA48B2B9BE74B12720E2B77CA3921A89C7201A1F33C87CBA81D1A892CE1491449F0485D05C7123B63E49D3C280E4A485F0D3C37ECE470F50B00
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.539a3d84.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[143],{1158:function(e,n,t){e.exports={root:"_1e6g2"}},293:function(e,n,t){"use strict";t.r(n);var s=t(3),o=t(178),r=t.n(o),a=t(658),u=t(1158),c=t.n(u);n.default=function(e){e.children;var n=Object(s.e)(e,["children"]);return r.a.createElement(a.a,Object(s.a)({},n,{className:c.a.root}))}},658:function(e,n,t){"use strict";t.d(n,"a",(function(){return o}));var s=t(178),o=function(e){var n=e.id,t=e.children,o=e.className,r=e.onMouseEnter,a=e.onMouseLeave;return s.createElement("div",{id:n,className:o,onMouseEnter:r,onMouseLeave:a},t)}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/editor-elements/dist/FiveGridLine_SolidLine.539a3d84.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\activePopup.1e06371f.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	942
Entropy (8bit):	5.142167991916005
Encrypted:	false
SSDEEP:	24:lDmNk/BPjHrSbYLNiwpcnreIiA0i9NnmUASxAnm3p9BSx4A77ckgA3M:lDNBPXAYJiNaFkXnmUASxAnm31Sx4A7k
MD5:	1C5BDFC58BE295FBE2869526981C8056
SHA1:	5F67C2540CAA629FBA1CEB80BC8E4125B57DAC11
SHA-256:	F4DA14D9A669D09DBB899ECC01387E43C8397E384EBB1779E4EA849366E117CD
SHA-512:	3299EEE2BBDA2B5F9EBDF70FA063342860CFCE83EADE5C71410CCD61BA7774BB19E61CF26BF358F8EE0905C32FD8207F752AA29481A8126768CA3462EF07A45B
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[19],{315:function(t,e,n){"use strict";n.r(e),n.d(e,"page",(function(){return s}));var u=n(0),o=n(27),r=n(367),p=n(376),c=n(270),i=n(189),a=function(t,e){return t.reduce((function(t,n){var o;return Object(u.a)(Object(u.a)({},t),((o={})[n]={currentPopupId:e},o))}),{})},b=Object(o.h)([Object(o.f)(r.d,c.a),p.b,Object(o.g)(i.c)],(function(t,e,n){return{pageWillMount:function(){return Object(u.b)(this,void 0,void 0,(function(){return Object(u.d)(this,(function(u){return n&&(n.registerToPopupEvent("popupOpen",(function(n){e.update(a(t.activePopupObservers,n))})),n.registerToPopupEvent("popupClose",(function(){e.update(a(t.activePopupObservers))}))),[2]}))}))}}})),d=n(375),s=function(t){t(d.a.PageWillMountHandler).to(b)}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/wix-thunderbolt/dist/activePopup.1e06371f.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\activityi;src=2542116;type=2542116;cat=chrom0;ord=4025465958136;gtm=2wg3o0;~oref=https___www.google[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	369
Entropy (8bit):	5.434015202193485
Encrypted:	false
SSDEEP:	6:hn8FQiowadCc4svmzw9xUpCX96v6OqPbRmEH7fuUo1xSzj0Mo:hnMQbwuOaxyCkv4AEH7GXfSP0N
MD5:	811199B6FB8A61961D68F849FC35FAD3
SHA1:	5EA184F89768654F73E74BAEABFB5CEEB55D074D
SHA-256:	36BDAED217206616DD6E058A0551AE39481E5D2D513DD02EF4CFD8F02093328E
SHA-512:	C2698B14C4BA2A9656C039E396976CAAE5AC4BD468924BE814CA44BC8B72FE518B3287C4AC8E39476654970AA61DFBE89BF73AD2CC936050DE201D078C03FC44
Malicious:	false
Reputation:	low
IE Cache URL:	https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=4025465958136;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F?
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><img src="https://adservice.google.com/ddm/fls/z/src=2542116;type=2542116;cat=chrom0;ord=4025465958136;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F"/></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\autotrack[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	25247
Entropy (8bit):	5.291680583527389
Encrypted:	false
SSDEEP:	768:Rt9hXjJ9UP+8qeyDVrQi7xD21qTOxcVB9yNGm:L9hXjJYyDVrQi7xD21qTfBu
MD5:	5E6539FD0B1C0778A5254A4ED1305DB8
SHA1:	6DFE476E85112334A53D16C11E319A7422D8396E
SHA-256:	449F80795C70E94FA7457BA00A62EEAE62CE7EFE0ABAB9681B379833AAFED838
SHA-512:	003D9E211CCA5C2FF77EB9A2C275796697C931EF1361D7013B010ECD41E304C33BD3F538105241C3A69224853B5AA45021596B3766FA13B9143CA82AAA23FC60
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.gstatic.com/external_hosted/autotrack/autotrack.js
Preview:	/*. @license. * Copyright 2016 Google Inc. All Rights Reserved.. . Licensed under the Apache License, Version 2.0 (the "License");. * you may not use this file except in compliance with the License.. * You may obtain a copy of the License at. . http://www.apache.org/licenses/LICENSE-2.0. . Unless required by applicable law or agreed to in writing, software. * distributed under the License is distributed on an "AS IS" BASIS,. * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.. * See the License for the specific language governing permissions and. * limitations under the License.. */.(function(){var f,aa="function"==typeof Object.defineProperties?Object.defineProperty:function(a,b,c){if(c.get\|\|c.set)throw new TypeError("ES3 does not support getters and setters.");a!=Array.prototype&&a!=Object.prototype&&(a[b]=c.value)},k="undefined"!=typeof window&&window===this?this:"undefined"!=typeof global&&null!=global?global:this;function l(){l=function(){};k

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bc176270-17fa-4c78-a343-9fe52824e501[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 30192, version 1.0
Category:	downloaded
Size (bytes):	30192
Entropy (8bit):	7.97938449205579
Encrypted:	false
SSDEEP:	768:zKTyKQfjvSP7I5zwRPw+ku8KOV2YsBnkRSAHq:OTGfjC7I5z8P18vV+eSAK
MD5:	4DC77F0FF1474412272BA230B085D035
SHA1:	E2558F88D8F2878B4A5510967D107223B6C29BD1
SHA-256:	C629B3CE163A14DF3B642F01044A989647EBBDB0F7D5D1D95783BDCE89A8A666
SHA-512:	9A7B656A56D652E4BB6E7BAAA8B8AFA3C684CF1B5292EB1BF3EFB9254BF7384164B315289A2AB8C96B93E410E63747357E3670CFABB395A69551810C5776CCD5
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff
Preview:	wOFF......u........(........................OS/2...X...X...`g).gcmap.......L........cvt .......&...&...~fpgm...$.......s.Y.7gasp...(............glyf...0..JB....E3.{head..Nt...6...6....hhea..N.... ...$...)hmtx..N...........;.kern..P.......:&....loca..j.........~N..maxp..l`... ... ....name..l.........b...post..uh....... ...2prep..u\|...r....}...x.c`f\|.8.....i.S...C..f..`.................a=P....\|..........l.'....\|F...]....@.......x.E../.a...o..{[\|V.z.m....(....W.77.9:..Hl.....3Ym.wf.&Of^@.!....B......1T.T.jN.Cud.1=..=.t.....M.u.>K......7.P.B..q.C...m..MT...qo\.)...V..q.~..]..g....'..h.vy.M....Y\.{s.y.aL..'^x./~.K.@.......N..D.M........I.<.XI!.4.. .,..!.<.)...)...J)....SE55.RG=.4.D3-..F;.t.E7=..G?.8.d.aF.e.q&.d.ifXe.evXc.%^Yg.Y6.b....f../.^P%...4.+./.6.:.1.....L....................x.].=N.0...8,..H..-+.+..R8.P.@(<.?.D..Hih\p..3]..`.....3......k..m.......L.. ...I ..U.I..8sl..w..dQ?..:.x.....o[...`..V.t...).Q.....s.....L./..L`.//..F..i.C..+=*ctEc.h.. ....G..d...57

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bootstrap-components-classic.4e8d8bbf.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	20487
Entropy (8bit):	5.290632438988253
Encrypted:	false
SSDEEP:	192:32SzRSG4f+ajlghbQjs5cTb85WtTkGdjkkuK9/b8jQ9ZqYIXTcaWUX98xLM:32pmJATbEqTN8jQvqYucNLM
MD5:	B7C5CBC8BCB9BDA3322B7C8BFE5E56A8
SHA1:	4D8DD032CC9E3BBBF818803A2859D166DFF4E09A
SHA-256:	114B4BBED49897B63EF4331EB663843C1C679B12E4AF63EB5AB5DBEB7A77F97B
SHA-512:	36530860C8BF57D50EAB8E094A11E5F03E2C8B6161601E4BCA01EBA2CBD8863240A4BB33F226B0E23EF09387A0028D65325E1CE5629B4DF106F68824A1195CD1
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-classic.4e8d8bbf.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[1],{0:function(e,n,t){"use strict";t.r(n);n.default=function(e){var n=e.updateProps;return{onSizeChange:function(e,t){n({width:e,height:t})}}}},1024:function(e,n,t){e.exports={"fill-layer":"FgquG",fillLayer:"FgquG","layers-container":"_3_wbk",layersContainer:"_3_wbk","full-screen-scroll-effect":"rxIAk",fullScreenScrollEffect:"rxIAk","bg-media":"_33YMf",bgMedia:"_33YMf","bg-underlay":"P0kib",bgUnderlay:"P0kib","image-fill-layer":"_3r8sA",imageFillLayer:"_3r8sA","media-padding-layer":"_30ITO",mediaPaddingLayer:"_30ITO",transforms:"cNGww","alpha-canvas":"_20Y_I",alphaCanvas:"_20Y_I"}},1025:function(e,n,t){e.exports={"video-container":"_3dXjv",videoContainer:"_3dXjv","video-poster":"_36AyC",videoPoster:"_36AyC","video-poster-img":"a2kfA",videoPosterImg:"a2kfA",video:"_3owv4"}},1026:function(e,n,t){e.exports={"media-container":"_3JnjQ",me

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bootstrap-components-common.b37b13ef.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	34578
Entropy (8bit):	5.261330285039984
Encrypted:	false
SSDEEP:	384:321qstu1YygZ8hWe9dU6FGBfe7mhzz4zvQHPaOHv6bZkHWuN+NEZ+tNoLl:321rdygZ8hWe9eSGl9N2nbZikNToLl
MD5:	B31D467A3B74047EC0E898380DF2D659
SHA1:	FF8EE78F33F8F60474285D1605649F8F3735F233
SHA-256:	9B32DDD628AADF4F7B45842C79AD8933E7D78201F92B3DB1996BA93BDEA0477C
SHA-512:	63420FCAA3F8E3484EB306C79EDE5922CC0D88373580C4E2F930B2619917B56134648D7D3A548FD4FF4BD25002E61AC8AD995CE134EEDE560B106610D92C9F39
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-common.b37b13ef.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[0],{1023:function(e,t,n){e.exports={image:"_1SQyl","filter-effect-svg":"_1jWBE",filterEffectSvg:"_1jWBE",shapeCrop:"_1ShVK"}},1165:function(e,t,n){e.exports={screenWidthBackground:"_2bvSO",HeaderHideToTop:"FLo-t",headerHideToTop:"FLo-t",HeaderHideToTopReverse:"_11kPv",headerHideToTopReverse:"_11kPv",HeaderFadeOut:"PiEiL",headerFadeOut:"PiEiL",HeaderFadeOutReverse:"_7Ekpc",headerFadeOutReverse:"_7Ekpc",inlineContent:"YkLEO",centeredContent:"_2QWcW",centeredContentBg:"_3oKi4",root:"_2pCeI"}},1183:function(e,t,n){e.exports={root:"_2qI_L",container:"_3MMC_",listItem:"_1aZQ0",link:"_3LmCZ",image:"_2sUJZ"}},1186:function(e,t,n){e.exports={link:"_3lfWv",clickable:"_36KJs",svgRoot:"_36XXs",nonScalingStroke:"_3Qjwl",hasShadow:"_1Bfd6"}},1255:function(e,t,n){"use strict";var r=n(1256);function a(){}function i(){}i.resetWarningCache=a,e.exports

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\bootstrap-components-responsive.8ac86d6d.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	15933
Entropy (8bit):	5.272741920099662
Encrypted:	false
SSDEEP:	384:32wgMwsQMSNLpOq45c+nuSjPgcwKNbZRYEVwvbpILl:323fouSjPsKjRYEVwmLl
MD5:	5F26906DBB40DE47D497990F63C8D896
SHA1:	2F531FB647AC4FE397C37451C8F8E798D3AFBDB7
SHA-256:	38774705235EA02066F66EBF52B96F9456BC82981B9D42729CE716905EEC39F6
SHA-512:	F4925C2C77C406977FD6F24C49BB9DBBC87BE3198302A48D45580FEDCE34AE19369550DB9DBB0D66773281D80887A57146FBBC94635CCF427214B8ED71ECB7BF
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/bootstrap-components-responsive.8ac86d6d.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[2],{1124:function(e,t,n){e.exports={root:"_2Kt7m",TextOnlyMenuButtonNSkin:"_2TFvc",textOnlyMenuButtonNSkin:"_2TFvc",linkElement:"_25Cim",wrapper:"_3zfdd",label:"_3YCIf"}},1125:function(e,t,n){e.exports={wrapper:"_2cbNh",navContainer:"zmzdJ",itemsContainerWrapper:"_1lx0g",itemsContainer:"_3ryjj",menuItem:"_3vxeZ",dropdownButton:"_1Xzw5",dropWrapper:"GQcif",moreContainer:"_3u_t0",showMore:"_322RQ",moreButton:"_2LjR0",utility:"_1QReQ",TextOnlyMenuButtonSkin:"_13c26",textOnlyMenuButtonSkin:"_13c26"}},1517:function(e,t,n){e.exports={link:"_1QJUd",root:"_1sXY0",label:"FZdzR"}},179:function(e,t,n){"use strict";n.r(t);var r=n(3),a=n(178),o=n.n(a),i=n(648),s=n.n(i),l="responsive-container-overflow",u="responsive-container-content",c=function(e){var t=e.children,n=e.className;return o.a.createElement("div",{className:n,"data-testid":l},t)};t.d

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\clicktrue_invocation[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	70956
Entropy (8bit):	5.44324897357286
Encrypted:	false
SSDEEP:	1536:JxZtP1ybRKkC8McHLsZM+9IvX06Xo+j+y14tlwIvyEY9zKQAXqtkGAaa:4ofM+PamwKQla
MD5:	521E24F9AD78496FCD4FE6E092579FDE
SHA1:	30FC3237ED385F7D68EFA85239929CB74EA6C1C5
SHA-256:	8E0D2587E7BF5E5B1FBFA96D41B41FD16A38298A20B89A768AB0341A0D71FFFD
SHA-512:	177BA196AE1239DB6C8052CF763143C2137F92A3E63BAFAF13F9E340D059994BC4C07FD57E0B572CAF5FED068148AC30DCF0AE34BCA1B08708FC80576724C8DE
Malicious:	false
Reputation:	low
IE Cache URL:	https://ob.cheqzone.com/clicktrue_invocation.js?id=4960
Preview:	!function(r){var t={};function n(e){if(t[e])return t[e].exports;var i=t[e]={i:e,l:!1,exports:{}};return r[e].call(i.exports,i,i.exports,n),i.l=!0,i.exports}n.m=r,n.c=t,n.d=function(r,t,e){n.o(r,t)\|\|Object.defineProperty(r,t,{enumerable:!0,get:e})},n.r=function(r){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(r,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(r,"_",{value:!0})},n.t=function(r,t){if(1&t&&(r=n(r)),8&t)return r;if(4&t&&"object"==typeof r&&r&&r._)return r;var e=Object.create(null);if(n.r(e),Object.defineProperty(e,"default",{enumerable:!0,value:r}),2&t&&"string"!=typeof r)for(var i in r)n.d(e,i,function(t){return r[t]}.bind(null,i));return e},n.n=function(r){var t=r&&r._?function(){return r.default}:function(){return r};return n.d(t,"a",t),t},n.o=function(r,t){return Object.prototype.hasOwnProperty.call(r,t)},n.p="",n(n.s=2)}([function(r,t){var n,e,i,a,o,c,u,f,v,s=window,d=s.document,l=s.location,h=encodeURIComponent,m=(decodeURIComponent,s

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\collect[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	35
Entropy (8bit):	2.9889227488523016
Encrypted:	false
SSDEEP:	3:CUdrllHh/:HJ/
MD5:	28D6814F309EA289F847C69CF91194C6
SHA1:	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE
SHA-256:	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
SHA-512:	1D68B92E8D822FE82DC7563EDD7B37F3418A02A89F1A9F0454CCA664C2FC2565235E0D85540FF9BE0B20175BE3F5B7B4EAE1175067465D5CCA13486AAB4C582C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............,...........D..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\color.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	18954
Entropy (8bit):	5.462041906644879
Encrypted:	false
SSDEEP:	384:DmUI8qSy0vgJON6aAPXVhuR7DOegpSnoVTX6W9FDW6+I65nFuM9:DTFHN6vPX+7DOegpSnoVT7FDW6bM9
MD5:	7F8F0363808B72AE76DE192F51689D33
SHA1:	212EEE29A63222FD2B558CC5F432347EE31407D8
SHA-256:	CE88CFE2A86DD05C6ED0B3A876C0FD93C3B5CCCAE146D2FB9CF0BA2E2EC729F6
SHA-512:	4846DB41108A0BE652B183C0081746FC0180AC7233B9977254270B3C0073EB09200ABC62A6F8BCD5ADAF3D1F5B56FA746FE495E63316113D486DF22E60E9C697
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-external-modules@1.644.0/color-convert/0.2.0/color.min.js
Preview:	(function e(t,n,r){function s(o,u){if(!n[o]){if(!t[o]){var a=typeof require=="function"&&require;if(!u&&a)return a(o,!0);if(i)return i(o,!0);throw new Error("Cannot find module '"+o+"'")}var f=n[o]={exports:{}};t[o][0].call(f.exports,function(e){var n=t[o][1][e];return s(n?n:e)},f,f.exports,e,t,n,r)}return n[o].exports}var i=typeof require=="function"&&require;for(var o=0;o<r.length;o++)s(r[o]);return s})({1:[function(require,module,exports){Color=require("./color")},{"./color":2}],2:[function(require,module,exports){var convert=require("color-convert"),string=require("color-string");module.exports=function(cssString){return new Color(cssString)};var Color=function(cssString){this.values={rgb:[0,0,0],hsl:[0,0,0],hsv:[0,0,0],cmyk:[0,0,0,0],alpha:1};if(typeof cssString=="string"){var vals=string.getRgba(cssString);if(vals){this.setValues("rgb",vals)}else if(vals=string.getHsla(cssString)){this.setValues("hsl",vals)}}else if(typeof cssString=="object"){var vals=cssString;if(vals["r"]!==un

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\comboBoxInput.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	32298
Entropy (8bit):	5.413232241801773
Encrypted:	false
SSDEEP:	768:BC2C7ZTfX1017qTqNX3017qTofHTk17qT0kye:uJfX1017qTqNX3017qTofHTk17qT0kye
MD5:	00F241AA303942FD276951555595909C
SHA1:	FEF3B3743F9C1CDCD0C721257ECD2518A56159C2
SHA-256:	3601506B77DB5387EBA5B37EE822469B053D30233B9B9CCF0A94BDA50DEC0400
SHA-512:	35E7F47CE8CEE461B269E575A771DB9EA199D6943F216B786C177543B4D57A709266AC00DDB1D3A72CF1C8DA4425865F93B20960548BA18D506923FD224F0742
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/comboBoxInput/comboBoxInput.min.js
Preview:	define("comboBoxInput",["lodash","santa-components","componentsCore","prop-types","skins","textCommon"],(function(e,t,o,r,i,l){return function(e){var t={};function o(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,o),i.l=!0,i.exports}return o.m=e,o.c=t,o.d=function(e,t,r){o.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},o.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},o.t=function(e,t){if(1&t&&(e=o(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(o.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var i in e)o.d(r,i,function(t){return e[t]}.bind(null,i));return r},o.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return o.d(t,"a",t),t},o.o=function(e,t){return Object.pr

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\core[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	1136
Entropy (8bit):	5.03683792228148
Encrypted:	false
SSDEEP:	24:PQe7ib1cWZGa94c6o5lqaNacwMa+BZOY596IzkH+pQVHZxRWZ0XDL:P1gFjieOagcVZeKk1pwwv
MD5:	C6FBF499A6A1AFDEF9597A0D274BDD3F
SHA1:	E48789B1798CB3087492D45449DAECCCF07F5A32
SHA-256:	B0A826FA53A52C446352D13C02654EFF897691E910DBF3A3D79B44757FD37FEA
SHA-512:	FD6086EBEDE536E651333268885E446153F92CE3F0FB5C6940B59F7FFB94C59AA700DC777A1C4E6CBD5A82FFDDD1A0D96A5999BE9B1FC5E242547FC04858417D
Malicious:	false
Reputation:	low
IE Cache URL:	https://s.pinimg.com/ct/core.js
Preview:	!function(t){var u={};function r(n){if(u[n])return u[n].exports;var e=u[n]={i:n,l:!1,exports:{}};return t[n].call(e.exports,e,e.exports,r),e.l=!0,e.exports}r.m=t,r.c=u,r.d=function(n,e,t){r.o(n,e)\|\|Object.defineProperty(n,e,{enumerable:!0,get:t})},r.r=function(n){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(n,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(n,"e",{value:!0})},r.t=function(e,n){if(1&n&&(e=r(e)),8&n)return e;if(4&n&&"object"==typeof e&&e&&e.e)return e;var t=Object.create(null);if(r.r(t),Object.defineProperty(t,"default",{enumerable:!0,value:e}),2&n&&"string"!=typeof e)for(var u in e)r.d(t,u,function(n){return e[n]}.bind(null,u));return t},r.n=function(n){var e=n&&n.e?function(){return n.default}:function(){return n};return r.d(e,"a",e),e},r.o=function(n,e){return Object.prototype.hasOwnProperty.call(n,e)},r.p="",r(r.s=0)}([function(n,e){!function(n){var e=n.createElement("script");e.async=!0,e.src="https://s.pinimg.com/ct/lib/main.dec9d

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\css[1].css Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	883
Entropy (8bit):	5.154285040481079
Encrypted:	false
SSDEEP:	24:G9X3OY7aRqU3OY4aRK/iOY7aNxQ+/iOY4aNxR:IOEaRqoOXaRNOEaN4OXaND
MD5:	AE7CADE20EE17C81FA21251F6627C076
SHA1:	AE0041D92D4B524046416CD9A34ABF1065C25491
SHA-256:	961A61C92667F372C80B83AC60BA4C8C30E5D1C9BECBEF3EDAC9CFDF108FF21A
SHA-512:	8AC1912B71761F653E2C737244BBE7DDABAAA7C2AA60E002ADAFB7385C890EEB957ABE5B63F1587159419A5B719BFA1007483FBDA97C082EB955B65C287226BA
Malicious:	false
Reputation:	low
Preview:	/. See: https://fonts.google.com/license/googlerestricted. */.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/googlesans/v27/4UaGrENHsxJlGDuGo1OIlI3K.woff) format('woff');.}.@font-face {. font-family: 'Google Sans';. font-style: normal;. font-weight: 500;. font-display: swap;. src: url(https://fonts.gstatic.com/s/googlesans/v27/4UabrENHsxJlGDuGo1OIlLU94bt3.woff) format('woff');.}.@font-face {. font-family: 'Roboto';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5g.woff) format('woff');.}.@font-face {. font-family: 'Roboto';. font-style: normal;. font-weight: 500;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9vAA.woff) format('woff');.}.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\dataRefs.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	2041
Entropy (8bit):	5.190139902311718
Encrypted:	false
SSDEEP:	24:KdmozBNSHGFcvCr6zBP0tRbSRLyRK13cB9AWLL8BmGa9LRhoBTLiwwMWlBbqrzfp:xoznSHGdLNSxyAUwugTLHAqdLk0Os0hC
MD5:	366375B125BB0C6CCFA52D3D4BCD6D0C
SHA1:	D2BFD21725AE9D77745887733B5BFD2C59D8B3E3
SHA-256:	D45FC23014AACC380C879B26D1C71F8E9E31C4BCD8C0869A9B64EDD656AE8AED
SHA-512:	8C7B822720AA4FA756E669F95CD22CA1712F82436782AD9A1F386E10D6385CEE210F45525AEBFB6F3197643A938C9BE7416EFCFD442E864986D8BAC329695108
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-ui-santa@2.0.277/dist/statics/dataRefs.bundle.min.js
Preview:	!function webpackUniversalModuleDefinition(e,r){"object"==typeof exports&&"object"==typeof module?module.exports=r():"function"==typeof define&&define.amd?define([],r):"object"==typeof exports?exports.dataRefs=r():e.dataRefs=r()}("undefined"!=typeof self?self:this,(function(){return function(e){var r={};function __webpack_require__(t){if(r[t])return r[t].exports;var _=r[t]={i:t,l:!1,exports:{}};return e[t].call(_.exports,_,_.exports,__webpack_require__),_.l=!0,_.exports}return __webpack_require__.m=e,__webpack_require__.c=r,__webpack_require__.d=function(e,r,t){__webpack_require__.o(e,r)\|\|Object.defineProperty(e,r,{enumerable:!0,get:t})},__webpack_require__.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},__webpack_require__.t=function(e,r){if(1&r&&(e=__webpack_require__(e)),8&r)return e;if(4&r&&"object"==typeof e&&e&&e.__esModule)return e;var t=Object.create(null

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[1].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2040
Entropy (8bit):	5.842033364077973
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkG7EJ29ggyWOixp7FKpE5k7VH:+UURWTCgVhkOEJ23RXiNN
MD5:	5BDEEBE237E25ECAC9B5B23908513111
SHA1:	F05D98C8014E1971978A1EE722A7EFC85945D89A
SHA-256:	8D56B16519A89090EBC630B884283C28B221C9C9B9FB84071DB548EFEC691831
SHA-512:	1A732956056FB593F738D167C9DA99FC2504018ECF9C258DC654919B3369FB3B5FE0ED5126A7907E4978E3C2CDD6136699D04C4E3F46A8592FA36C7D5B69CA2A
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[2].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2765
Entropy (8bit):	5.792943083910719
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkGPw4hxgWO6p7FKqa3t0ibShxgWO6p7FKqa3t0i06:+UURWTCgVhk4hxb5Qdmhxb5QdN
MD5:	870136BBE9814BE6B7158DBE9D23E097
SHA1:	EA2C0E89C9F8308020461F9BA3D2219FA912CFF5
SHA-256:	6FE572E6ED469698AA8522B1292EEA4FAEC7F52663234D2132C4EBC453486AA1
SHA-512:	A92C9EED7F1F137395C41A8F961D19C79D2F4ADB479F8F1D7B6D28F3D6A6C9447165AA4746FF74D56CAF50D93BD96FCC6AB74CB7BDE034AF3E1B3588476C8E98
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[3].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2739
Entropy (8bit):	5.77716398402767
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkG31BWO6p7FKqaEzbS1BWO6p7FKqaEz06:+UURWTCgVhki105/zm105/zN
MD5:	347C540D3015EFB8C4C5A5A9135C1E61
SHA1:	0AC58255792A7A6AD063989C47EA0E8256174312
SHA-256:	674F36808CB1E0D58D4CA7D75DF46407B04532D5503435A20728F71D76F3787F
SHA-512:	D28103B35D28D7EBE4EFF756C6F55E01D75B8E9052EDF9E26CD568263C327F90E2AA632F1A64D21950819A0B64373F71AACE634371E99EA8ADCEF112948A1467
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[4].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2038
Entropy (8bit):	5.850400369361117
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkG+luEWNpgHdyWOi/K7FiAQENG:+UURWTCgVhktluEWURyMXOG
MD5:	D4C253F27E446D208DB61EECD4F9740E
SHA1:	734B174720082365BC00A2BE7DB787A2E3CB1660
SHA-256:	A98DD235C30703F81D6214753CFE8A11F0EC0B590F6ADAC1635D139FF4DE7D05
SHA-512:	F00F11BE6AF18027C19C65C1350511F89254024ECE625FCD30A4F1862F4772FE04A72261A2B536FB6D28BA37A287F0AAC9A8959A6951342A5D0D4AF4D6D81C6E
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\f[5].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2039
Entropy (8bit):	5.8518925614731385
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkG+liEWUgHdyWOi/K7FiAQEB+r:+UURWTCgVhktliEWXRyMXq+r
MD5:	AE62F1CFDE538687DA4EF1C415FE9991
SHA1:	89C1665993D64CBF8354D6596D7A46EEF89289DA
SHA-256:	B27BB0E1AE799137D0715C4F7F8E26BC0DA2BB64CEEFDA8D2BC336E696649059
SHA-512:	4F0B998FB8B69AFF35083C0F3A294E837CB58984763797E313062FA96A56D95F179C4C4BC13F7F9791F2E58CD462739E291F4025812E67E7207D690F9CEF1C76
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\favicon-16x16[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	711
Entropy (8bit):	7.4911673943513915
Encrypted:	false
SSDEEP:	12:6v/7//76PcVAcDDx6UK9QEVJoOfJG4KH/TLWRNAfk0YndDe3ybvCrOXr86:e77DDxtK9jfAH/3WRmoDWOXL
MD5:	988D28184980A93CA829A9BDC2A300A4
SHA1:	9681B2963D0FB24A11F18EF5F8F408619FA02F13
SHA-256:	534A229E57245A665AAD607B16288D90AD0476653B3A4866C1B7276D22F67214
SHA-512:	B4BDC67AB606A3EBF61023E7CB5B6E676D0AC8F7033CC138D6A40FB751BDF94ADB00CB161B21F8B3A94BBC08CA0B819F24AAF0C21C2BF42FD5A40D5BCD00E6E3
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/favicons/favicon-16x16.png
Preview:	.PNG........IHDR.............(-.S...YPLTE...z.Q.K..A..[.RK.I>.PD..A..\..a..A..a.K@..[..@..[..@.SH..Z.._.WL..@.qQ.PC..A.L@..\.l;.UI..B.fI..A.PC-.P..E.SH..@..X..=.PC.VJ..A!.f..@.VJ.OA.<.QE.YN..@/.e..?T.L.<.RF.WK..B..[.MAK....^I..".d..a.QE.RF.h;F..........>.v..u.~s.J=..;e..[..q..c..H.................?.ud.t.m..k.si.yd?.\/.[n.W..V..T.`T..S#.Qz.LlqL.G.SG.RE..D.PC..A..@.P?.:..s....9tRNS...%..........{i=;1)$........................RPFE?8#..../......IDAT..=..r.Q.D..@H.....2.{W.@...w...`..<M.....y.n....xq.m.l....... ,..0...4U .f[.s..k..htN...3*..;..W0.....\|`..+..'Iz~.[.F...3..Q...G.U..E.#!..$&]4Q.9."..~..i.v.X$..}'....X....o.A.K .K<Q.".8...N+.........w7.v...0.tc....A.)XbJ......IEND.B`.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\gtm[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	119943
Entropy (8bit):	5.536160589515457
Encrypted:	false
SSDEEP:	3072:U7h1m/2MLf7pMrui0r+5ssGa8Oo++Q+y27:U7h1m/2MLN+s68Mh+yk
MD5:	E5DD6E5D2AA1A8CC29BDDAAB2950EC27
SHA1:	79199C46D0BFF575C9689CA5DAA1C22DA4A1548B
SHA-256:	BD9D62110C4129C4228E425AAB1B27F0E82E415E78748FFDA5CF95E86A4327C7
SHA-512:	36366664CF18262F29D412D8A4795B5764E0B82F026A9BCB854B75D61CC9B33DC3D41D4AA17FB754A98458473E74E57001CB8CC51843C2D5C6999A490592BAD4
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.googletagmanager.com/gtm.js?id=GTM-PZ6TRJB
Preview:	.// Copyright 2012 Google Inc. All rights reserved..(function(){..var data = {."resource": {. "version":"44",. . "macros":[{. "function":"__e". },{. "function":"__v",. "vtp_dataLayerVersion":2,. "vtp_setDefaultValue":false,. "vtp_name":"edgeSModeApi". },{. "function":"__v",. "vtp_dataLayerVersion":2,. "vtp_setDefaultValue":false,. "vtp_name":"linkUrl". },{. "function":"__v",. "vtp_dataLayerVersion":2,. "vtp_setDefaultValue":false,. "vtp_name":"edgeVersion". },{. "function":"__v",. "vtp_dataLayerVersion":2,. "vtp_setDefaultValue":false,. "vtp_name":"formerSMode". },{. "function":"__u",. "vtp_component":"PATH",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQueryParam":false. },{. "function":"__r". },{. "function":"__u",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQueryParam":false. },{. "function":"__u",.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\headerPlaceholderHeight.27bbf85b.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	709
Entropy (8bit):	5.356785154904158
Encrypted:	false
SSDEEP:	12:lDm9iI9emDZ8hYKWHx/ma9VqnCAu4bIiMQXu+DRRro0nxmviotu2vnbA5+hGigC+:lDmNkmDwQxb9qoWIi1XzRRro0xmvDtvS
MD5:	E646061C1033397A268BE691FD03D17F
SHA1:	5D99214DB6F0CF0464AA3FB73E769C5CA9FE4C18
SHA-256:	E82EDA8AD37956CA883BF6AD3B87D4CA3789B98211792DDF5F2E0BFE2DEC5666
SHA-512:	90D86D95C881FF4D423B43F973A56EB80B74FDA51F24919429B11FDCA0AF03D346367105379258E23AE8C9C1B41CCF6D479402A91DB675B8E769F09FD8035A75
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/headerPlaceholderHeight.27bbf85b.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[58],{351:function(e,n,t){"use strict";t.r(n),t.d(n,"page",(function(){return f}));var o=t(27),u=t(117),a=t(378),i=t(41),r=t.n(i),c=t(287),p=Object(o.h)([u.b,Object(o.f)(a.a,c.a)],(function(e,n){return{pageDidMount:function(){r.a.measure((function(){var t=e.document.getElementById("SITE_HEADER");t&&new e.ResizeObserver((function(){n.update({"SITE_HEADER-placeholder":{height:t.offsetHeight+"px"}})})).observe(t)}))}}})),d=t(375),f=function(e){e(d.a.PageDidMountHandler).to(p)}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/wix-thunderbolt/dist/headerPlaceholderHeight.27bbf85b.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\hero-anim-middle[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 120 x 119, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	1835
Entropy (8bit):	7.824318886457247
Encrypted:	false
SSDEEP:	24:N/6j17HCxHafMsHBnh8e8cq+IOGFWE8cKfjqwoOngKr2u7aS4tvn6hT4+JEw2ICQ:N/6B7ixHuMQMcMBnKGw3j7waBvcm8xS
MD5:	FA999B474F624E95CC5B034D0C0F1B5D
SHA1:	20ACF398075DA770ADA903421360724332401A03
SHA-256:	0017424F37E64BB1DB2C47E6AF6640E23EAAEC9B82067E3B8D58669C7EE6F9CA
SHA-512:	51EC3DAC08F9E95A3800C6C5A23853E27907BFA4D2152FAB7AAFD8F396B1EA45D6E4EFD59D3AE929054B0C0D7CDCC420851C1A87AD5C554CC176CFE504504083
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/hero-anim-middle.png
Preview:	.PNG........IHDR...x...w......2......pHYs.................sRGB.........gAMA......a.....IDATx..._n.G....of..R+./..u...h...p..N@......=..' 9....s.'...x!.JU...%...TN0N.xf...}.(.!....ggfg.!..B.!..B.!..B.!..B.!..B.......Y.j[..: ..I....U......#}..,.....9~.]...)ije...........;.J....a.R...k6...PR...U..$1w]i....!.".u..n\|Q..4......6r...%h.....8.A..ks...c..ocuB.q..SD...6..f../.Z.UP...gi..+.{0...v.z..>qU.".%....mf.p...j.\|...Js2.....C+0...].p..{.m.Z...../.Yl.B,ae.r........l../...8.\h..C...6.]-.s...".....A.eosOSsm..o#f."),`.+.....T.Y...)$.g..j..s/....A..m.j.`......=.^....Tr..O.,j.{/.W0...4.G...ZE..g.j.c..y...y:@..J...... .xU4.U..R.."..po8RJ....n...)..6.+\XP..-x'k..{O.:[...l./.Z.&.HZ...,\|.M.&.h..#...[ws.1.....~..U{:.j........C...y.........c.k.t.4h...K..(..P.N....!.......1...-..p......"....$...{..DY.Rr.M"..,J=].B.&E@a.hc^@..*.D@A.6@%v....Fag.H..c).....p....XY......e~.O....6._tg...-.....S..T.k.......:...s.<..3.m.#.c......lL..q....D.x.SlA..m...2.ta..~o.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\hero-anim-top-right[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 540 x 540, 8-bit/color RGBA, non-interlaced
Category:	downloaded
Size (bytes):	14482
Entropy (8bit):	7.818828809433939
Encrypted:	false
SSDEEP:	384:89shbPvrPzKTlciumUYMfC6anCsFaXvFCS1fxH7LB5thn:3bPzPVvYMfCiN9x/B5t5
MD5:	5E91A6415C7265B35EE35492AB1BC3E8
SHA1:	03F41FFA18B6DF3C900AA1AD76C20AF6C267DBC2
SHA-256:	C06246E45DD849F3138D7F6BD00622570581EA7948186F6AA5BBF45C7B803C51
SHA-512:	9233334B1A2608E52B70BABEFDCC4557BEB07A68E083BAC5F7E57A5F08707F2537E2642D42A6812A2C7829C830A48AFBFDC5869155642968699CE8467242C895
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/hero-anim-top-right.png
Preview:	.PNG........IHDR...............w\|....pHYs.................sRGB.........gAMA......a...8'IDATx....v....g......2k%....jb$.....0x. `...{.....;..#_..y....DjYY9..c5H.Y..jb...j.wu.....R....g-@.9#3r.O...g+.P8.ZY..{s"..lEMH`&T..2.9-Z&....\..(.1V......Nu...D.......^.q.D%..XlM.T..T5.P8J...V..........9....4.....5..........r.{......_.{...m....5......;.J.o...@...B....f.IC......_u..5.C...lb..."/L.`......2.P..E2...9..I..=...>HH3H,.!.=....DtM....p..0l6.K.M.!....PUn.&.Su.'..C..,..L.-...B...`[.".i..t..Yi\|...(.,.jD.~......RT...:T......r.D-.a..2j1.S%...C..z,{8....XX#..`Q...Pj~.JA..e.w.=...0b..j.UF\.qo...md>.p..o....@.....4XL.6....?...E.,f...v.m."........t6..B..B...........M.....r....U.R...<SQt...Q..4..\.!D7.CT.......1@g..@......0...^...4..rQ..../...&.N...\;.,>H6. .M...@....>VV....;..V."..)...f.....#>....@...8....p.\...,..C......@..^.}......Vr7.L.......#..M.C..s...?k.$.....d[.D.eQ>.8.U."{/.a...#'{8.*.mU.@.5J.c....f@.......4..w. x...F...#a.U...!.I.i.....{.a..v.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\icon-twitter[1].jpg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	JPEG image data, baseline, precision 8, 24x24, frames 3
Category:	downloaded
Size (bytes):	3248
Entropy (8bit):	3.4606109454311187
Encrypted:	false
SSDEEP:	24:XK1hxWwN85Xhw3wL0t6FzmnTuICCMfX1Ek2kS8:Y6N5Xhw3MI6xkTG/GNkP
MD5:	1AA78E00E927D91BE556E86102C4A81D
SHA1:	8CFA69EAB3F53EC2E2B06809B76D3603DD8ED775
SHA-256:	3EE62D693DC92044C158DA9FCBB15951220C6A7177D98D2D55724FD87E99B2F7
SHA-512:	BD2A4F6276A56714CB0339834831255E0357EA8B22895979C7677C04DEA1E4129A6DFF0DA897C4FC12CB5DA89D1CF96F4C5F8436F764B55F69725F3077725D69
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/fallback/icon-twitter.jpg
Preview:	.....Phttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c140 79.160451, 2017/05/06-01:08:21 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about=""/> </rdf:RDF> </x:xmpmeta>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\icon-youtube[1].jpg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	JPEG image data, baseline, precision 8, 24x24, frames 3
Category:	downloaded
Size (bytes):	3130
Entropy (8bit):	3.2116499708773896
Encrypted:	false
SSDEEP:	12:XK1TbpOo4IU2cDPilY1Q92Im3XhwDk0qneKcBdpuNyCay9DNX8l77ijKfHq1bFn:XK1hxWwN85Xhw3wcnpBy9DKxGOfOd
MD5:	4EC281E5F8C5DDD2D7E8BFAEACA5BA09
SHA1:	FF5AC0CABCC97D1DF7A58FA6C50BB88D16186969
SHA-256:	CE9F74A710EC6612D9AE867C817C0556EBF218B77954137F7D13BD8147E94FA7
SHA-512:	A36DDF264D42955204AFA7FDCCC799CA849E1F6759C8B07A82A1A76B579AAACEC729F504B013F4278CE15A38B4CFFDE97484098607561DCD93B69AAC538A1C0C
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/fallback/icon-youtube.jpg
Preview:	.....Phttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c140 79.160451, 2017/05/06-01:08:21 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about=""/> </rdf:RDF> </x:xmpmeta>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\main.dec9de31[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	49915
Entropy (8bit):	5.558904016320933
Encrypted:	false
SSDEEP:	768:zA6OqoX5Fd4f2lOj2ErCyqbuX4Wsrgvvygw5//4+HHYloUCiz+HiWfzX6KmWBKME:2pjlK2/uXOPhi106KB9E
MD5:	4CE1DA905831534A18F4B0D3A2B11C3F
SHA1:	F232E4B4B0E408F442978C9F1B69D028F8EC0072
SHA-256:	850420A74B035447DCF888C73803E7588D07AA16C80C3EE326C7C575186BD001
SHA-512:	0AC6D1052421EA4327042613225E507FAA1D20193438DEDC4DA5C208F7278BFE888ADF89CF17CF28B7BE8018FA82A4C03D584996FA050E418235FC6EF9A04434
Malicious:	false
Reputation:	low
IE Cache URL:	https://s.pinimg.com/ct/lib/main.dec9de31.js
Preview:	!function(i){var r={};function e(t){if(r[t])return r[t].exports;var n=r[t]={i:t,l:!1,exports:{}};return i[t].call(n.exports,n,n.exports,e),n.l=!0,n.exports}e.m=i,e.c=r,e.d=function(t,n,i){e.o(t,n)\|\|Object.defineProperty(t,n,{enumerable:!0,get:i})},e.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"u",{value:!0})},e.t=function(n,t){if(1&t&&(n=e(n)),8&t)return n;if(4&t&&"object"==typeof n&&n&&n.u)return n;var i=Object.create(null);if(e.r(i),Object.defineProperty(i,"default",{enumerable:!0,value:n}),2&t&&"string"!=typeof n)for(var r in n)e.d(i,r,function(t){return n[t]}.bind(null,r));return i},e.n=function(t){var n=t&&t.u?function(){return t.default}:function(){return t};return e.d(n,"a",n),n},e.o=function(t,n){return Object.prototype.hasOwnProperty.call(t,n)},e.p="",e(e.s=5)}([function(t,x,B){"use strict";!function(t){var u=B(15),o=B(16),s=B(17);function i(){return c.TYPED_ARRAY_SUPPORT?214

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\ooiTpaSharedConfig.886a4044.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	687
Entropy (8bit):	5.2113629423344365
Encrypted:	false
SSDEEP:	12:lDm9iI9eJ9qDhOarZshyGka+5qDbRoYYvK8LIunYc8ZShF+hGigc:lDmNkvSlZxpEbTYzLIunYc8sTkgc
MD5:	38FA7FE873EA0396155BB86C73244B8A
SHA1:	DBAAC9BBD699F630895599C595070A0B32E98905
SHA-256:	811B3FC8D1DEC09D0CA87A6A39253E8C635798CF571B9ADAB75FEC2FFA5F27D6
SHA-512:	F60AFBE352F1385F14C6C0CB337B40867591B86E3BEF73DA4F3110B2F0AADE1213EA3E434551CEDFA9AB932B3A3D1C49ACFBE81D2CA0A9DACC8E8522A0A07D3B
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/ooiTpaSharedConfig.886a4044.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[72],{231:function(t,n,e){"use strict";e.r(n),e.d(n,"page",(function(){return c})),e.d(n,"editor",(function(){return u})),e.d(n,"OoiTpaSharedConfigSymbol",(function(){return r.a}));var i=e(27),o=e(367),r=e(220),a=Object(i.h)([Object(i.f)(o.e,r.b),Object(i.f)(o.c,r.b)],(function(t,n){var e=t.wixStaticFontsLinks,i=t.imageSpriteUrl,o=n.fontsMeta;return{getFontsConfig:function(){return{cssUrls:e,fontsMeta:o,imageSpriteUrl:i}}}})),c=function(t){t(r.a).to(a)},u=c}}]);.//# sourceMappingURL=https://static.parastorage.com/services/wix-thunderbolt/dist/ooiTpaSharedConfig.886a4044.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\pageTransitions.be89e7bb.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	2226
Entropy (8bit):	5.224425119887273
Encrypted:	false
SSDEEP:	48:lDFGHsgIAJXlsUKSfUMhvdRMcWKvy++bTYOxAFcHjv:K9K+vbWRxA2Hjv
MD5:	500DE6F7AC61084E123C1B591B194599
SHA1:	ACFD98D11A6F8A545A7171DFC736679B2DF5F454
SHA-256:	AF28FD688B85706B881F05E9ACA69F38B085DB1D1B3BDD210418E10640D20D3D
SHA-512:	A0F4B2C71E568E7FE280857E475532790A0AB850ABF5BFBAA73C01ED4C3E69FCAAE41EE8DC58663066A63BB87C48525E0BE484341C59713ABC1C7879A6011AC8
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/pageTransitions.be89e7bb.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[74],{98:function(n,t,e){"use strict";e.r(t),e.d(t,"page",(function(){return O})),e.d(t,"PageTransitionsSymbol",(function(){return u.b})),e.d(t,"PageTransitionsCompletedSymbol",(function(){return u.a}));var i=e(0),o=e(27),r=e(367),a=e(376),u=e(204),c=["type","alignType","fittingType","scrollType","colorOverlay","colorOverlayOpacity","color","videoId","uri","opacity"],d=function(n,t,e,i){return i.every((function(e){return(n&&n[e])===(t&&t[e])}))&&e.every((function(o){return!n&&!t\|\|d(n&&n[o],t&&t[o],e,i)}))},f=function(n,t){if(!t\|\|!n)return!1;var e=t.mediaRef,o=e&&e.type,r=n.mediaRef,a=r&&r.type,u=!e&&!r,f=u\|\|o===a,l="WixVideo"===o&&f,s=Object(i.h)([],Object(i.e)(c));if(l){var p=s.indexOf("color");s.splice(p,1)}else u&&(s=["color"]);return f&&d(t,n,["mediaRef","imageOverlay"],s)},l=Object(o.h)([Object(o.f)(r.d,u.c),a.b,u.a,Object(o.f)(r.b,u.c)],(function(n,t,e,i){return{pageWillMount:function(o)

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\platform.5b826978.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	15718
Entropy (8bit):	5.210308901861775
Encrypted:	false
SSDEEP:	384:A4Oe2EC/2puTYecTuERxmDuaAruDUubw9ZMBFBaBRY:A4NVCtbY6DunFjY
MD5:	0CDB355AD54E9CF7612AFCE7514391B7
SHA1:	2D484CF30AC8127FE039730B1F73EC7B14CFE30A
SHA-256:	2E9D82669AE669134B305BE7BB1116C13351B7E1985DA6B064D40EBA76911A37
SHA-512:	EB144EE0EBBCB37D8208B06B2761E918A0A319875FCE8B1BBF80980FCB832B5B07271E1C247D9AB809842DCDBB404FD509A43A8162CC4A22E8171D182FC951E3
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/platform.5b826978.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[77,41],{551:function(t,e,r){"use strict";(function(t,e){var n;(n=void 0!==t&&"[object process]"==={}.toString.call(t)\|\|"undefined"!=typeof navigator&&"ReactNative"===navigator.product?e:self).Proxy\|\|(n.Proxy=r(552)(),n.Proxy.revocable=n.Proxy.revocable)}).call(this,r(97),r(42))},552:function(t,e){t.exports=function(){var t,e=null;function r(t){return!!t&&("object"==typeof t\|\|"function"==typeof t)}return(t=function(t,n){if(!r(t)\|\|!r(n))throw new TypeError("Cannot create proxy with a non-object as target or handler");var a=function(){};e=function(){t=null,a=function(t){throw new TypeError("Cannot perform '"+t+"' on a proxy that has been revoked")}},setTimeout((function(){e=null}),0);var o=n;for(var i in n={get:null,set:null,apply:null,construct:null},o){if(!(i in n))throw new TypeError("Proxy polyfill does not support trap '"+i+"'");n[i]=o[i]}"function"==typeof o&&(n.apply=o.apply.bind(o));var

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\platformPubsub.5f1d9daf.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	3264
Entropy (8bit):	5.141224818604851
Encrypted:	false
SSDEEP:	48:lDMUeztxA7VFaGNLCquEm42EZJuN6g0uDU0iXYGuw7b5fj1xXgc2yGHpwClhKgwo:yvERw/E+wEDGYGuw7Vsc25e3IvPeOz
MD5:	AD6C38CC42F273D2616F39BC96613D37
SHA1:	909AA6B582EC26F8B4CC8DE6445B4B62188718D6
SHA-256:	8EDAD993861F0DF3C862098905B0306E605562A28A42A1CB830A9E545ABEC2F7
SHA-512:	47FB3790AD4A363EF6EBD39B71C695F1DE00E4D984A4992B45882AAB7449851D808CBDA126E81C14094CE81FD681B99F118F76036670AA4E0B01F4F3B8EC3AC3
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/platformPubsub.5f1d9daf.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[78],{209:function(e,n,t){"use strict";t.r(n),t.d(n,"page",(function(){return f})),t.d(n,"editor",(function(){return b})),t.d(n,"PlatformPubsubSymbol",(function(){return i.a})),t.d(n,"name",(function(){return i.b})),t.d(n,"TPA_PUB_SUB_PREFIX",(function(){return r.b})),t.d(n,"stripPubSubPrefix",(function(){return r.c}));var r=t(419),i=t(198),s=t(117),u=t(375),a=t(27),c=Object(a.h)([i.a],(function(e){return{getSdkHandlers:function(){return{publish:function(n,t,r,i){e.publish(n,"worker",{eventKey:t,isPersistent:i,eventData:r})},subscribe:function(n,t,r,i){e.subscribe(n,"worker",{eventKey:t,isPersistent:i},r)},unsubscribe:function(n,t){e.unsubscribe(n,"worker",t)}}}}})),o=Object(a.h)([i.a],(function(e){return{pageWillUnmount:function(){e.clearListenersBesideStubs()}}})),f=function(e){e(i.a).to(r.a),e(s.q).to(c),e(u.a.PageWillUnmountHandler).to(o)},b=function(e){e(i.a).to(r.a),e(s.q).to(c)}},419:fu

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\screenIn.190ec987.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	5848
Entropy (8bit):	5.075965371453874
Encrypted:	false
SSDEEP:	96:CTiXvSgzUrBIUBKXEmKEDL7eDSCtd1+gpCnfThZf:CTiXvSgc2CKXEm5DTqKoC7bf
MD5:	8D9B60132336F21DDA2C3C8B7052BE42
SHA1:	426784386D4CB343AF54AA13C5917FEEFE7E9D69
SHA-256:	E04AF3226947DC0DF84BBA0C051737F4D3FBD75AD438DE9F64AFCEF5F2AE3167
SHA-512:	6A018C06AE1DE2D69A37868BE00AC8CCBFCFE2D1CE0BBE6607791C5CDAE16D66E1840795249469E5C0D5552EE43CD6C289E723F25410589F60624A22D58A571D
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/screenIn.190ec987.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[89],{305:function(t,n,e){"use strict";e.r(n),e.d(n,"page",(function(){return g}));var i=e(0),o=e(367),a=e(381),r=e(370),s=e(27),c=e(200),u=function(t){return t+"-screenIn"},d=function(){function t(t){this.animator=t,this.definitions={},this.sessionState={played:new Map,running:new Map}}return t.prototype._shouldSkipPlayedAnimation=function(t){var n=this.sessionState.played.has(t),e=this.sessionState.played.get(t)\|\|{},i=e.playOnce,o=e.persistOnNav;return n&&(i\|\|o)},t.prototype._hideComponent=function(t){var n=document.querySelector("#"+t);n&&(n.style.opacity=0)},t.prototype.unhideComponent=function(t){var n=document.querySelector("#"+t);n&&(n.style.opacity="",n.style.visibility="inherit")},t.prototype._addAnimatingClass=function(t){var n=document.getElementById(t);n&&n.classList.add("animating-screenIn")},t.prototype._addExitAnimatingClass=function(t){var n=document.getElementById(t);n&&(n.cla

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\siteTags.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	10276
Entropy (8bit):	5.396037097431734
Encrypted:	false
SSDEEP:	192:t9RiE0PSrzejQivOFjCkKjNRgjQOMNPPUx/PYobXtzbbr6rLg0fBM:t9oEsweP1OWPeHYKqvq
MD5:	BB126B6054C4D9C61702D224B8344943
SHA1:	8B88E88265520F452A62DAEDB6BC0360013EBC33
SHA-256:	DDA89763EA7326A81ED4AE3EFBE40DE7BF84DA62E89A7C12CDDF536E9DC28CC5
SHA-512:	83FC76A2472AF14899A96A272FD91807475DA8D2C8BAB3967CA2EE4253647D1CA69E796BD0858E15E19544179104B3161E8EAACDBA9EEBF9D9816F7D4831D604
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/tag-manager-client/1.282.0/siteTags.bundle.min.js
Preview:	!function(t){var n={};function e(o){if(n[o])return n[o].exports;var r=n[o]={i:o,l:!1,exports:{}};return t[o].call(r.exports,r,r.exports,e),r.l=!0,r.exports}e.m=t,e.c=n,e.d=function(t,n,o){e.o(t,n)\|\|Object.defineProperty(t,n,{enumerable:!0,get:o})},e.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},e.t=function(t,n){if(1&n&&(t=e(t)),8&n)return t;if(4&n&&"object"==typeof t&&t&&t.__esModule)return t;var o=Object.create(null);if(e.r(o),Object.defineProperty(o,"default",{enumerable:!0,value:t}),2&n&&"string"!=typeof t)for(var r in t)e.d(o,r,function(n){return t[n]}.bind(null,r));return o},e.n=function(t){var n=t&&t.__esModule?function(){return t.default}:function(){return t};return e.d(n,"a",n),n},e.o=function(t,n){return Object.prototype.hasOwnProperty.call(t,n)},e.p="https://static.parastorage.com/services/tag-manager-client/1.282.0/",e(e.s=7)}([function(t,n,e){"use

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\sosp.704d10a0.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	950
Entropy (8bit):	5.208361189006931
Encrypted:	false
SSDEEP:	24:lDmNknzWKg2v7esU0iZL7+18xveIrp4Luh9wcAXK8rxkgw:lDxWKDqsI818BFNh6XKAx2
MD5:	EE6CC7C22AD92305B5A74466C9E40B16
SHA1:	F7292FBD5792B221D962EF4012BF1BAE325A7294
SHA-256:	E82A13694823BA6338D61C6FF5FF3E12D796D7FD87B7F73BCC42AC6EFB20A896
SHA-512:	33DE3CF942F6C03E67D54CB81C36FDD33AECB4755CEDE4EEBA3F7BCFBFB486DF534CB1E02B0E88DFAF1F5DF6B39D2120499ADF809C0A8B40CBE0E2A3BEDF7C61
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/sosp.704d10a0.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[99],{313:function(n,t,o){"use strict";o.r(t),o.d(t,"page",(function(){return c}));var e=o(27),p=o(375),s=o(367),a=o(376),i=o(0),u=function(n,t,o){return{pageWillMount:function(e){return Object(i.b)(this,void 0,void 0,(function(){return Object(i.d)(this,(function(p){return function(n,t,o,e){var p,s,a=t.sospCompId,i=t.sospParentId,u=t.position,r=t.pagesToShowSosp,c=o.get(i);c&&(r[n]?(c.components.includes(a)\|\|o.addComponentToParent(i,a,u),e.update(((p={})[i]={className:"page-with-sosp"},p))):(c.components.includes(a)&&o.removeComponentFromParent(i,a),e.update(((s={})[i]={className:"page-without-sosp"},s))))}(e,n,t,o),[2]}))}))}}},r=o(266),c=function(n){n(p.a.PageWillMountHandler).to(Object(e.h)([Object(e.f)(s.d,r.a),a.d,a.b],u))}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/wix-thunderbolt/dist/sosp.704d10a0.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\thunderboltElements.ab20d4a4.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	156618
Entropy (8bit):	5.231076155510408
Encrypted:	false
SSDEEP:	1536:kIZpM9EKC92V5kZqhffqSZpM9EKC92V5SrNXbxL+2rC4cKTfoO61m7qIHLro:/7zFm7zzS2QOmmOIg
MD5:	57CEE2AC2B2AD516691A4F8EF8781EC5
SHA1:	299B0118E5F9906D672F669898BAB32B5D3A727A
SHA-256:	F13E918340B6C7A8D535831890F47B640122341E3859628CC833DF90AD601198
SHA-512:	83944A974C1705EF291FF973ECD74E2732D04033D4AA3D8AE5895CCB0EE978EF42A97F2A1C7548C5A7497349D23C2B7E2A9DB1C794D23A4EB4A2A878B565AD33
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/thunderboltElements.ab20d4a4.bundle.min.js
Preview:	("undefined"!=typeof self?self:this).thunderboltElements=function(e){function n(n){for(var t,o,i=n[0],l=n[1],u=0,a=[];u<i.length;u++)o=i[u],Object.prototype.hasOwnProperty.call(r,o)&&r[o]&&a.push(r[o][0]),r[o]=0;for(t in l)Object.prototype.hasOwnProperty.call(l,t)&&(e[t]=l[t]);for(c&&c(n);a.length;)a.shift()()}var t={},o={413:0},r={413:0};function i(n){if(t[n])return t[n].exports;var o=t[n]={i:n,l:!1,exports:{}};return e[n].call(o.exports,o,o.exports,i),o.l=!0,o.exports}i.e=function(e){var n=[];o[e]?n.push(o[e]):0!==o[e]&&{0:1,1:1,2:1,3:1,4:1,5:1,6:1,7:1,8:1,9:1,10:1,12:1,13:1,14:1,15:1,16:1,17:1,18:1,19:1,21:1,23:1,24:1,25:1,26:1,27:1,28:1,30:1,31:1,32:1,33:1,34:1,35:1,36:1,37:1,38:1,39:1,40:1,41:1,42:1,43:1,44:1,45:1,46:1,47:1,49:1,50:1,51:1,52:1,53:1,54:1,55:1,56:1,57:1,58:1,59:1,60:1,61:1,62:1,63:1,64:1,65:1,66:1,67:1,68:1,69:1,70:1,71:1,72:1,73:1,74:1,75:1,76:1,77:1,78:1,79:1,80:1,81:1,82:1,83:1,84:1,85:1,86:1,87:1,88:1,89:1,90:1,91:1,92:1,93:1,94:1,95:1,96:1,97:1,98:1,99:1,100:1,

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\tpa.f6e17687.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	66782
Entropy (8bit):	5.3463990852314405
Encrypted:	false
SSDEEP:	768:JMUjbeHXgVQG0nbDzOU+e9aW69Y/pM1Pi9nsQql:JMBxnTOU+yaW6No9sQql
MD5:	9D90DAED86247B32283106E4A6985328
SHA1:	6A0F7C085EE958F50B1302CEA13DCC97B0419F53
SHA-256:	6F7AA0FA44614CA9527B860CDC1374B99D2AE0FFC3555BC5296C6F9D6387FC45
SHA-512:	DA429C7EFF76A01971950E2C633144CE5BDC292C220AFF6B6D3EFA57D0AC92DCECAE9EFE991453297CCCA76880D45B008929A4628DE74E6B8485E9927899EE9E
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/tpa.f6e17687.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[108],{230:function(e,t,n){"use strict";n.r(t),n.d(t,"page",(function(){return an})),n.d(t,"TpaPopupSymbol",(function(){return s.h})),n.d(t,"TpaEventsListenerManagerSymbol",(function(){return s.d})),n.d(t,"TpaModalSymbol",(function(){return s.f})),n.d(t,"TpaSymbol",(function(){return s.i})),n.d(t,"TpaFullScreenModeSymbol",(function(){return s.e})),n.d(t,"SiteMapSymbol",(function(){return s.b})),n.d(t,"name",(function(){return s.j}));var i=n(375),r=n(388),a=n(117),o=n(0),u=n(27),c=n(367),s=n(185),d=n(188),l=function(e,t){return e+"_rtby_"+t},p=function(e){return e.split("_rtby_").length>1},f=function(e){var t=Object(o.e)(e.split("_rtby_"),2),n=t[0];return t[1]\|\|n},g=n(217),h=n(206),b=Symbol("TPA_HANDLER_EMPTY_RESPONSE"),m={WIX_CHAT:"14517e1a-3ff0-af98-408e-2bd6953c36a2",WIX_RESTAURANTS:"13e8d036-5516-6104-b456-c8466db39542"},v="PageLink",O="ExternalLink",I="AnchorLink",j="EmailLink",P="PhoneLin

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\tpaCommons.5946c45b.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	8557
Entropy (8bit):	5.237695447120552
Encrypted:	false
SSDEEP:	192:U0M2HF4ajJjzDJdjmcS0pRkNUVAnxPP4MNOOou2Sx30NszFlf1n:U0MY9Jj3Jdjmb6arv2S0y1n
MD5:	032A1CDFC58931736D13EADD3CE638B6
SHA1:	0A69CE00964C7130C362796428EE6F44E4B949E5
SHA-256:	05EB2663CCB2D7D3723607A974D380032C9683E1D5BDCBBEB31ABD58FC4B8FC7
SHA-512:	BDE025559FC15DC34EF89668BAE9928AAC14068488A9834EDA4F71B2083EC5AE6DAF79675CCD70932008018B4EAC4D8AEFDE84A08BD30F7A1D40BBCB081F8F06
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.5946c45b.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[109],{186:function(e,t,n){"use strict";n.r(t),n.d(t,"site",(function(){return H})),n.d(t,"TpaHandlersManagerSymbol",(function(){return o.e})),n.d(t,"TpaSectionSymbol",(function(){return o.f})),n.d(t,"name",(function(){return o.i})),n.d(t,"TpaDataCapsuleSymbol",(function(){return o.d})),n.d(t,"TpaContextMappingSymbol",(function(){return o.c})),n.d(t,"MasterPageTpaPropsCacheSymbol",(function(){return o.a})),n.d(t,"TpaSrcBuilderSymbol",(function(){return o.g})),n.d(t,"PinnedExternalIdStoreSymbol",(function(){return o.b})),n.d(t,"TpaSrcUtilitySymbol",(function(){return o.h}));var r=n(375),a=n(388),o=n(188),i=n(0),c=n(27),u=n(23),l=n(367),d=n(117),p=n(365),s=n(377),f=n(376),g=n(7),m=n.n(g),b=n(22),v=n(28),h=Object(c.h)([Object(c.f)(l.e,o.i)],(function(e){return{getQueryParams:function(t){var n=t.compId,r=t.pageId,a=t.tpaCompData,o=t.options.extraQueryParams,c=e.siteRevision,u=e.viewMode,l=e.device

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\vendor-react-dom.7455c905.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	399
Entropy (8bit):	5.297817790081168
Encrypted:	false
SSDEEP:	6:lD3frPS9idfrPS9uriUoJIMnPDLAk1GHqA9dXtebgZGxS7hk+cGyAGDTSgsaHFvr:lDm9iI9eiUoJIOPXd1ieg4x+hGig9vr
MD5:	0A87D8A4DD21CACE2BD436B5FF517ACE
SHA1:	3E1E69938D98D48B877423E98026798D65194F15
SHA-256:	51D0A89AF17D38734B00C24D7CC859019C156719F951D94BB886A9D5581C0BD2
SHA-512:	896DBF82B021FC001907E4349616C7EF91E941BC5F99C73D94DC0E7E5AD8A966598BB4931584722A05EDA387AECB8594111BE69D30FBE0F1E4062AD852959468
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[112],{131:function(n,t,e){"use strict";var o=e(132);Object.assign(window.ReactDOM,o),window.externalsRegistry.reactDOM.onload()},3:function(n,t){n.exports=React}},[[131,2,152]]]);.//# sourceMappingURL=https://static.parastorage.com/services/wix-thunderbolt/dist/vendor-react-dom.7455c905.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\vendors~vendor-react-dom.076a3201.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	122769
Entropy (8bit):	5.259007751204055
Encrypted:	false
SSDEEP:	1536:0vCh/FDjep4K2H9ml1wfHfAsVDqHSZ6jfHeFoDoYBz12:0qh/FUI9q5j2FoDoYB4
MD5:	D7471CEE0D20E3E8767DB58C6DD1D65D
SHA1:	1011BBC5D4F6139B20529116674D5715CBCBC6C8
SHA-256:	A218D566D89E27B070C02CC3B6B11539BE5D37A554A3694C2CF37D876A987CAB
SHA-512:	C5ADBD8F962A2B1CFB7EE71FD8BD8CFAA03FCFDEB0A639ADF255F3A9F8F792E46953AF562B9EC3846D920605A5AA66451CC68A38BA246480D22E3BAD5E64EB71
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/vendors~vendor-react-dom.076a3201.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[152],{132:function(e,t,n){"use strict";!function e(){if("undefined"!=typeof __REACT_DEVTOOLS_GLOBAL_HOOK__&&"function"==typeof __REACT_DEVTOOLS_GLOBAL_HOOK__.checkDCE){0;try{__REACT_DEVTOOLS_GLOBAL_HOOK__.checkDCE(e)}catch(e){console.error(e)}}}(),e.exports=n(133)},133:function(e,t,n){"use strict";var r=n(3),l=n(61),i=n(134);function a(e){for(var t="https://reactjs.org/docs/error-decoder.html?invariant="+e,n=1;n<arguments.length;n++)t+="&args[]="+encodeURIComponent(arguments[n]);return"Minified React error #"+e+"; visit "+t+" for the full message or use the non-minified dev environment for full errors and additional helpful warnings."}if(!r)throw Error(a(227));function o(e,t,n,r,l,i,a,o,u){var c=Array.prototype.slice.call(arguments,3);try{t.apply(n,c)}catch(e){this.onError(e)}}var u=!1,c=null,s=!1,f=null,d={onError:function(e){u=!0,c=e}};function p(e,t,n,r,l,i,a,s,f){u=!1,c=null,o.apply(d,arg

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\viewerViewModeJson[1].json Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	11732
Entropy (8bit):	5.138074172608005
Encrypted:	false
SSDEEP:	192:1HQ7+0irwM61weX6GJ+DxLDFMMBCMv0JcSNjtSJDTazBKJOn0klzmOKvU88QU6uC:GwEMQwbxvFTejt+MdFivgQkNuDa6g7tE
MD5:	A44F1D0E278CEAFA2A4C196BE3E330B9
SHA1:	E215FBFE0E87F5E09195D674AFDE774CD555F965
SHA-256:	F4E1BB17B15E3B4A318E74EF943FEB689C59DCC5B99B378F644676585E87B694
SHA-512:	F66D329A1D4BB869F09E843FBA3638848CD101AFD1184B39C23ED918C0DB1EF2A2DEE895799AF8408F4A73D86BFC4233559DEB1486CF31C3A8F2DEE9D19B9FB4
Malicious:	false
Reputation:	low
IE Cache URL:	https://siteassets.parastorage.com/singlePage/viewerViewModeJson?ck=6&commonConfig=%7B%22siteRevision%22%3A%2223%22%7D&experiments=bv_migrateResponsiveToVariantsModels%2Cbv_migrateResponsiveLayoutToSingleLayoutData%2Cdm_removeMissingResponsiveRefs%2Cbv_cartPageResponsiveLayoutFixer%2Csv_usedFontsDataFixer&isHttps=true&isUrlMigrated=true&metaSiteId=7495ef56-6f96-4160-bf8f-3e452f199a48&quickActionsMenuEnabled=false&siteId=8ec0be37-3817-4e57-bb3d-85e551922dc7&v=3&pageId=311dce_498f2e05f4e78ef2074bc70edc3c3f1b_23&module=viewer-view-mode-json&moduleVersion=1.283.0&viewMode=desktop&dfVersion=1.1248.0
Preview:	{"structure":{"type":"Page","styleId":"p1","metaData":{"sig":"xw3-36"},"id":"ibens","components":[{"type":"Component","styleId":"txtNew","metaData":{"sig":"xw3-35"},"id":"comp-kjvg5y0v","dataQuery":"#dataItem-kjvg5y0v1","skin":"wysiwyg.viewer.skins.WRichTextNewSkin","layout":{"width":682,"height":162,"x":36,"y":122,"scale":1,"rotationInDegrees":0,"fixedPosition":false},"propertyQuery":"propItem-kjvg5y0y","componentType":"wysiwyg.viewer.components.WRichText"},{"type":"Component","styleId":"txtNew","metaData":{"sig":"wdr-119"},"id":"comp-kjvg5y13","dataQuery":"#dataItem-kjvg5y131","skin":"wysiwyg.viewer.skins.WRichTextNewSkin","layout":{"width":607,"height":72,"x":36,"y":303,"scale":1,"rotationInDegrees":0,"fixedPosition":false},"propertyQuery":"propItem-kjvg5y151","componentType":"wysiwyg.viewer.components.WRichText"},{"type":"Component","styleId":"style-kjvggrhq","metaData":{"sig":"wdr-21"},"id":"comp-kjvggdqc","skin":"wysiwyg.viewer.skins.line.SolidLine","layout":{"width":339,"height"

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\viewerViewModeJson[2].json Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	56673
Entropy (8bit):	4.891929135786168
Encrypted:	false
SSDEEP:	768:ByQiJT9dygYbURN2SXY0mS+svZkioYAj1sSIYYz:0QiJT9f/XrWlYAj1sSIYYz
MD5:	0DDD51DEAAC875812ACFF08EEE8865E8
SHA1:	0AA7DD170116F406FBBA61255A53CB2C589C801E
SHA-256:	EEA53DA93D00FE18DC4A8563A22F8646542EBCF41AB21CE26A3F5F65E5C600FC
SHA-512:	52B414FB1F18001CF2FCBA10D52C08E6106BF39D0D8D1ACD8175AE7D95F8AA653BA42AD1336BCF89AEFA0CB0E41360BB8D34BC751BECA3C5BAB0EC3F423D1F92
Malicious:	false
Reputation:	low
IE Cache URL:	https://siteassets.parastorage.com/singlePage/viewerViewModeJson?ck=6&commonConfig=%7B%22siteRevision%22%3A%2223%22%7D&experiments=bv_migrateResponsiveToVariantsModels%2Cbv_migrateResponsiveLayoutToSingleLayoutData%2Cdm_removeMissingResponsiveRefs%2Cbv_cartPageResponsiveLayoutFixer%2Csv_usedFontsDataFixer&isHttps=true&isUrlMigrated=true&metaSiteId=7495ef56-6f96-4160-bf8f-3e452f199a48&quickActionsMenuEnabled=false&siteId=8ec0be37-3817-4e57-bb3d-85e551922dc7&v=3&pageId=311dce_a07942efca748dfd1db1c98df9dc8f1f_23&module=viewer-view-mode-json&moduleVersion=1.283.0&viewMode=desktop&siteRevision=23&dfVersion=1.1248.0
Preview:	{"structure":{"type":"Document","metaData":{"sig":"xw3-0"},"documentType":"document","componentProperties":{},"themeData":{},"children":[{"type":"Container","styleId":"hc1","metaData":{"sig":"wdr-151"},"id":"SITE_HEADER","components":[],"skin":"wysiwyg.viewer.skins.screenwidthcontainer.TransparentScreen","layout":{"width":1116,"height":91,"x":0,"y":0,"scale":1,"rotationInDegrees":0,"fixedPosition":false},"componentType":"wysiwyg.viewer.components.HeaderContainer"},{"type":"Container","styleId":"pc1","metaData":{"sig":"wdr-152"},"id":"PAGES_CONTAINER","components":[{"type":"Container","metaData":{"sig":"wdr-154"},"id":"SITE_PAGES","components":[],"skin":"wysiwyg.viewer.skins.PageGroupSkin","layout":{"width":1116,"height":848,"x":0,"y":0,"scale":1,"rotationInDegrees":0,"fixedPosition":false},"propertyQuery":"SITE_PAGES","componentType":"wysiwyg.viewer.components.PageGroup"}],"skin":"wysiwyg.viewer.skins.screenwidthcontainer.BlankScreen","layout":{"width":1116,"height":848,"x":0,"y":0,"sc

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\windowMessageRegistrar.df5ac917.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	592
Entropy (8bit):	5.168162872326427
Encrypted:	false
SSDEEP:	12:lDm9iI9eiQ0qk7BZe5J2AZGk+V+K6eAJuDLEY1MIuSCn+hGigtAFzD:lDmNkdk7BZuZpMkfYvESbonkgyFP
MD5:	A49379074809B90BAA823A73108D27D9
SHA1:	2230C6CC25CB53601FE7790A8E888E871D787145
SHA-256:	69B0FF4FCED98BC2F0AC1510C4F34AD9FF9DFC62AF344099E7C5224C377AD9A2
SHA-512:	4ABBE19AD33CF81CD8D0D95E7EA020C1BCDCF62AD7038DE4FBF4DF3CE83937CE58972AF43AA2BFB71C294A7A7E348367018F5AB9E9ED1116F8A52AE901936C8E
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegistrar.df5ac917.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[156],{258:function(n,t,e){"use strict";e.r(t),e.d(t,"site",(function(){return u})),e.d(t,"editor",(function(){return s})),e.d(t,"WindowMessageRegistrarSymbol",(function(){return d.a}));var o=e(27),i=e(117),r=Object(o.h)([i.b],(function(n){return{addWindowMessageHandler:function(t){n._addWindowMessageHandler(t)}}})),d=e(226),a=function(n){n(d.a).to(r)},u=a,s=a}}]);.//# sourceMappingURL=https://static.parastorage.com/services/wix-thunderbolt/dist/windowMessageRegistrar.df5ac917.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\wix-perf-measure.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	28769
Entropy (8bit):	5.18523075266326
Encrypted:	false
SSDEEP:	384:3+46maV16caPzaIvSV9wRFii6CTJoNJuvh0JuiQnM:4tYratSYCTJor6hbiQM
MD5:	176EE9E7E73026DF1413537B2D27C82D
SHA1:	72B958A6B21A49AC48EA177F0A3D16B346BF2808
SHA-256:	E61EC2C61740084793830D0F25C0B509BFDEB09D9C3BB897205A51D99A1FAFF7
SHA-512:	334DDE40C261DC9AE118598A079423668EFB0F429F86FEE8F27F8606D882AFF8B8AD834EBE03F6020CC334FECF788C63B4D78FC562FECEB8D6EF5FDA36FB26A9
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-perf-measure/1.401.0/wix-perf-measure.bundle.min.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define("wix-perf-measure",[],t):"object"==typeof exports?exports["wix-perf-measure"]=t():e["wix-perf-measure"]=t()}("undefined"!=typeof self?self:this,(function(){return function(e){var t={};function n(r){if(t[r])return t[r].exports;var i=t[r]={i:r,l:!1,exports:{}};return e[r].call(i.exports,i,i.exports,n),i.l=!0,i.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var i in e)n.d(r,i,function(t){return e[t]}.bind(null,i

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\49631ce8-9201-47a8-8874-45371417c35f[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 46997, version 1.0
Category:	downloaded
Size (bytes):	46997
Entropy (8bit):	7.989237873572494
Encrypted:	false
SSDEEP:	768:JDga4M1D00FctfkV05NR+iIxr/4eFoYkaJBOxn6LWsyp7V7EnoZdx4qGkPfiMyaR:BbQ0FiNRRg/2Yka/OhXJAo3x4qr6Eqfa
MD5:	27D4ADB0671DCD86A9D940D0619D9768
SHA1:	B4F8BBA6352C36D0A1D45B506BDC27BA6D6FC5AE
SHA-256:	A5441B3F8476E6178BAC04CD2C8204C4D30B6DF8408ACF90317EB583DF7DB4D5
SHA-512:	0E4951C7D8AB3B822A28EB1D3058E8D093B3E2ED3707F204774E64750593B399D902EFECD3B4A6ECA70D43DAC434F124F6B41C3F3ADD869238EB5A074F7C0D2D
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Helvetica/v2/49631ce8-9201-47a8-8874-45371417c35f.woff
Preview:	wOFF..............P8.......H...M............GPOS........../b6\|.=GSUB...h.......N./.<OS/2...t...R...`gvz.VDMX............p6w.cmap...H........#.<.cvt .. ....K........fpgm..!(........6...gasp..%............'glyf..%...w....&`D..head.......6...6....hhea.......!...$.>..hmtx.......}......Sgloca...`...Z......[<maxp....... ... .:.iname............A,5Spost...\|....... ...2prep............y..x...tV...9...'...!<..R....+.G.J.B....T..uI..RZk..b..8T).i..j.F1.d.Z..._...c......Ag....O.. ..5kr.w....w.}.>..{..(....i...\.P....U......d......G..o%..sU^~...r]A...Z..-.....-WO/.}r\R.kW.v.kO...k..o..x..7.1.c...8...7."s,........./.]Y.E._.1.......5.U....^.....'\/.j\....;...=.=.]..^.........=..O.g..a.&...&o..........-..z..7y.z.yWz.{.z...>.......J\|.....=.{..W.[....5...4./.0...._._.....A.:.S.-........&.....J.?.....X.X.X...l.l.l.........G...u..L.......9.....#..........!.(54&..Z.Z..#.4.".6.L.6t0......pexC.....k.H8........I.........K.%1+qp.......xw..g..HlH.K.$.M:...3..'.&.$/L^..2ym...

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\67da9da8-4b53-4407-9184-abce69bfc8b5[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 31640, version 1.0
Category:	downloaded
Size (bytes):	31640
Entropy (8bit):	7.987419157519047
Encrypted:	false
SSDEEP:	768:2ksR9I2XrELLNH2szA8XginR2NvWwYinLhmL9sEH+L:2ksR9droLTzjginR2NvpndmJsFL
MD5:	24174D7A19C1C3BDB8863E4D5966C81E
SHA1:	C6D6A0E39D2F1F02875D29645922100ACD5F67CC
SHA-256:	AEB41D763A82AA10BFE8C920F7C7DC92A6F4FD07083AA9272F488C1834F21CBA
SHA-512:	02E3B54765CDD14C2B6DD5AABEA75FA80CD72620D8BD376B06A61EA4D10F339C8E762F0319A8A64E184D5ED684783066B33CA075F6C9556DA7DC83F40CE3AE75
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/Helvetica/v2/67da9da8-4b53-4407-9184-abce69bfc8b5.woff
Preview:	wOFF......{...............v.................GPOS.............x..GSUB................OS/2...X...S...`f.\|.VDMX.......\....p.xlcmap...............&cvt .......X.....:..fpgm...,........,...gasp................glyf......R^...\|v...head..h ...6...6..~.hhea..hX...!...$.E.ihmtx..h\|.......$=\3.loca..k,.......(.j..maxp..o(... ... .u.Tname..oH............post..u........ ...2prep..u,............x..TMKTQ.~.w....G...u.).@PD........HqSf_..h..?..j.A."..m..E.&\.....>6..9........z......e.C.x{.>....>.......4..we.>x.L..A.......Z.Z.........S.fpDd...".D...D:Z..._c.....yhY..N.?.Z=....C.O.G.......f....h..Qfa.J..W.uT...5...?{2.<.;...,.....r\|."V$o....9j5.}..I.............Y49b........M.?.G.J..9.g.sv..)o>..n./.L.W.A4;c2..d..jF....a.J.z...~.Q...c..{....I&.{....].=....x..9[.p.)}.N.gQ..e.....6.bLu..7%+2>.z4...hG..1.;.<.+..k.....=......O..%,..V.......T..P.U%.kw0......B1.f..... ..9."\..1..~.1Hx.6....Ba..@$.....$};x........$.....5..+... ...7)u...U...Q5<.y.l...6r.B8....DL"....d.^}.......y/.j.Y.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\DocumentMedia.73dfebf3.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	963
Entropy (8bit):	5.197819422420072
Encrypted:	false
SSDEEP:	24:avCtPBvCtPeIq7+jVrGrAzSar6BzbwHTadr6jKVLVjSr7nXMcU6Y:VZoZIKrOMdg5SXX7Uf
MD5:	CC957DE419086327D09FC877DAFA8CBE
SHA1:	BBB7753D1B0279B9EA440F88B370E860D3603F3D
SHA-256:	649C96A66FFC210CF342F6C6A4E067CE776061C5B3C8C43EA4F2D9F2A4701680
SHA-512:	9610BC30EC3AF522BCE5CFC2CA401D8430DF7B6996B4B50B11581A85A5B037B3231D5F78E019479BCF78426469143DC2B5E02B2E7609565E2B90BB95A1787916
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[89],{1078:function(e,t,a){e.exports={link:"_U9uT",imageContainer:"XK-Iq",image:"_3CT9I",title:"_2rqvd"}},265:function(e,t,a){"use strict";a.r(t);var n=a(3),i=a(178),s=a(660),l=a(652),o=a(1078),r=a.n(o);t.default=function(e){var t=e.id,a=e.title,o=e.image,c=e.link,d=e.onMouseEnter,m=e.onMouseLeave;return i.createElement("div",{id:t,onMouseEnter:d,onMouseLeave:m},i.createElement(l.a,Object(n.a)({},c,{className:r.a.link,title:a\|\|o.alt}),i.createElement("div",{className:r.a.imageContainer,"aria-hidden":"true"},i.createElement(s.a,Object(n.a)({},o,{id:"image-"+t,className:r.a.image,containerId:t,displayMode:"fit",name:""}))),a&&i.createElement("span",{className:r.a.title},a)))}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/editor-elements/dist/DocumentMedia.73dfebf3.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOlCnqEu92Fr1MmEU9vAA[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 66456, version 1.1
Category:	downloaded
Size (bytes):	66456
Entropy (8bit):	7.991041370753205
Encrypted:	true
SSDEEP:	1536:9I6x2fDNupGaMI7Tvq41VficHnry4R61SowFUXKO1wWQ2:9I6xSDA7H7Lq41VficHGm6EvUX71pX
MD5:	851A2B5A8394EB1B868678BFD31A1A8A
SHA1:	0F633AE8F8836076EA5AE369FBBC58D1733156AC
SHA-256:	9915A79AFE8C10196DD8FC8A666E89D9E416C738020AE87D1B14051D891C848D
SHA-512:	479033FD3B228C974076D077DCE43CC55CB04B0CBA30D2B9B3242F2888884737BCA6E14521A80B8BDE6B8180FB3BD9753391442F053E15E4D4D49DE405ECB754
Malicious:	false
Reputation:	low
IE Cache URL:	https://fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9vAA.woff
Preview:	wOFF........................................GDEF.......,....pjm.GPOS......'...V...%.GSUB..)..........x..OS/2.......S...`..cmap.......U...FP...cvt ..88...\...\1..Kfpgm..8....2......$.gasp..9.............glyf..9.......m`\|@.qhdmx...\...N........head......6...6...rhhea....... ...$....hmtx...............hloca...$...r....=T.maxp....... ... ....name..............:.post........... .m.dprep...........S...)x......P.....;+.6.l..-...<.v.m....g.._..u........P...;.&8...N,sb...Yo7...u. ..r..g.E'.;q..N.u.>..#..N.....w'~...%.f;.+!EE[H.m)...T.VQ5[C5....H...6US.J.m.u.....R.;@..`..c4.N.D;Y..tM.35...\;_....!....E?.~..(..{.p.^.w.....mJH.i!.E.h..".X\k7..vs.b...vg.c........Q...;.......j#..^.qLg..?mV.x..C..A....m...c.m..q.z.p...[.6..Y.....;..{.....J..x.i...^8k...5v2.O.9g..'...O\|..&..5.\|.............n.."...O?..H.:.3.%J...y....?.....9z.(..>.pN5`...=.0....A......N...#VP.5......)&.l.].6-.G.S..5....c.>.....LpO.Mh.. .=iCJ..B..23Ey.<..X......V....hR...N\,..+...G.,.....b^U.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\KFOmCnqEu92Fr1Me5g[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 66044, version 1.1
Category:	downloaded
Size (bytes):	66044
Entropy (8bit):	7.99257726789333
Encrypted:	true
SSDEEP:	1536:PTt6Zseur7QcUm9m5f2Uq/lw8P01SClflkKz4JpZKzDdxyw:PR6s8cU2moUq/lw8OSCl0pAzDdxyw
MD5:	A91AD097D24828AF724D4FEE36A063ED
SHA1:	1C76A4CB77FA559AE0B445413FF54E169546BFAD
SHA-256:	71AA99E21C708E5DE2FF54F2E6D6BB4E4D462AF3DE5B9ABB071FCD5C6D42FC48
SHA-512:	190B3C893F358ABE055064550B08C72BE47324341D547687D0A327FFEFD069A80373AE93B1419895BA02F4FDEADA6EF2E3E758B84C7DB03686D1325E24F93374
Malicious:	false
Reputation:	low
IE Cache URL:	https://fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Me5g.woff
Preview:	wOFF...............L........................GDEF.......,....pjm.GPOS......"...N..sk.GSUB..%P.........x..OS/2......R...`....cmap..h...U...FP...cvt ..3....T...T+...fpgm..4....5....w.`.gasp..5L............glyf..5X...T..t$Z..Nhdmx......L........head.......6...6.j.zhhea...0... ...$....hmtx...P...2....g..aloca.......\|.....&.maxp....... ... ....name... .......t.U9.post........... .m.dprep...........I.f..x......P.....;+.6.l..-...<.v.m....g.._..u........P...;.&8...N,sb...Yo7...u. ..r..g.E'.;q..N.u.>..#..N.....w'~...%.f;.+!EE[H.m)...T.VQ5[C5....H...6US.J.m.u.....R.;@..`..c4.N.D;Y..tM.35...\;_....!....E?.~..(..{.p.^.w.....mJH.i!.E.h..".X\k7..vs.b...vg.c........Q...;.......j#..^.qLg..?mV.x...d.a.....6.2.4.[..4.w.}&.[.......f..ZE...5C..........a. ..8UQp.j`..=...E..O.{.....;d..B.C......k(..XYEi...u...}.......u...E.>.4..!s.-.f..~....;._rb..]..F....P.._..../C......=....:.sm.9....J..k.^~N[..R..g..A>..'.._zsy.JP./.j....T2...{.{.gq.xX......ce..'C.N..h.-z....YW.s...*.jM.O

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\MeshGroup.132daa54.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	521
Entropy (8bit):	5.1825655296381585
Encrypted:	false
SSDEEP:	12:avCRLPCyvCRLPsJT6qJ0WqpQBu+jxrzjeI+hGxMvkauHY:avCtPBvCtPeek5GAbxrzjXXMca
MD5:	285F362BA02110167C3F62036B88D3DC
SHA1:	5EBFF7538FF64FFFDAAE1E2F8718E90FB2268531
SHA-256:	6DCA181A545C6DDDBB3D60584C471F3A35B9AD64A065615CA878E786C1A998DB
SHA-512:	59582E13B8C914DCF2C5DA2FB848D291543E1F8E41127D3223E7D5CB86E272576478247F80A63FB78D97E80C66342BE33B423C9977753F87B17C30C9B6B6ED50
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js
Preview:	(("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements=("undefined"!=typeof self?self:this).webpackJsonp_thunderbolt_elements\|\|[]).push([[215],{534:function(e,t,s){"use strict";s.r(t);var n=s(3),l=s(178),a=s(703);t.default=function(e){var t=e.id,s=e.meshProps,d=e.children,i=e.className;return l.createElement("div",{id:t,className:i},l.createElement(a.a,Object(n.a)({id:t},s),d))}}}]);.//# sourceMappingURL=https://static.parastorage.com/services/editor-elements/dist/MeshGroup.132daa54.chunk.min.js.map

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\WixMadeforText_W_Rg[1].woff Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	Web Open Font Format, TrueType, length 26104, version 1.13107
Category:	downloaded
Size (bytes):	26104
Entropy (8bit):	7.98125788470629
Encrypted:	false
SSDEEP:	768:AAPFnTujLBLXY1QeKq5X253Cbs/y3/yspaw+oPjO09FG:A920T3C4y3/ys+mRe
MD5:	1A0CA11ADF2C74087410EC6D02B86AA7
SHA1:	E8B0C1A2D023E989D0270898F8C863AB5F9DF11F
SHA-256:	F2E3AE2666C03A75C5A9DF7073540DE7E55E168327AEA24BDFE1F9D7796C6F0C
SHA-512:	438C38767BDB263C8B9F5DCE11A87B785B76426E1838C9EF4346830E64D0608CCDCD69719D977A760ECFA18FFE9A55CD8A4FF49384059A9AE3E045C839EA94F4
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/santa-resources/resources/viewer/user-site-fonts/fonts/WixMadefor/v2/WixMadeforText_W_Rg.woff
Preview:	wOFF......e...........33....................GDEF..Vx........"."!GPOS..W.......A...V.GSUB..a...........fOS/2.......[...`....cmap...........X..:.cvt ............'..ofpgm.............0.6gasp..Vl............glyf......B...s.B?..head.......6...6.iI.hhea....... ...$...dhmtx...T...Q...h.RSnloca...<...y.....N..maxp....... ... .~..name..U8........@.lGpost..VX....... ...@prep...d........H6........33$..._.<...........+/.........9...r..............x.c`d``....e.....X.."(.....X.........P...X......./.a...#......x.%...Aa.....Y....rg....F...bo...y.p.I)Lp....v...)....oK.B..R..J...^o......(.........L.3.x....,I....~.=.m.g.m.m.m.7..DUo/...."...z.{....\|.).qN..Q>..t.?Ui{.2{_..k.....v.._.")..~.a.C./.y..V.]4*.....)....0...j<.iv.&..Zl'k..^v....c.h..Qv..1........f-....8;..Q/j.....h.m....>a{.....8...]`W...'......&.o8P#..V.k.....k\|Av....p....9I.Y..}.1jrFi..F.#..q.M.......^#..../...v.:..~...Nw?.N.x...)M._a..6a.6.1.V.ZO....\...C.?c'....7.v..ke../j.p..d.......X[A.....X!...=L.h[..\|.H+..

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\activityi;src=2542116;type=2542116;cat=chrom0;ord=1088143482153;gtm=2wg3o0;~oref=https___www.google[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	369
Entropy (8bit):	5.422387847029655
Encrypted:	false
SSDEEP:	6:hn8FQiowadCc4svmzw9xUpCX96v6OqPbRmEH7fuUo1xr3V6zj0Mo:hnMQbwuOaxyCkv4AEH7GXfr3V6P0N
MD5:	6FABF56C6FFBE57F3F82DF81CC71FEF1
SHA1:	3761F835245176A9AF5A903EF4168CB29C921DD9
SHA-256:	06AE20FA1ED5BBD3B7292DAFA54F8E25EB9D9DABC08B9215636B733E64C03494
SHA-512:	F9E53308C0A06C9565B3F912D481744C4094BE64FB9B6EC82E5C4D75126D27F71F9FC90FB86CE6D81D2CD8E1B971FBAF5D9AD8F31D79F7FE359642DCE339C34D
Malicious:	false
Reputation:	low
IE Cache URL:	https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chrom0;ord=1088143482153;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F?
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><img src="https://adservice.google.com/ddm/fls/z/src=2542116;type=2542116;cat=chrom0;ord=1088143482153;gtm=2wg3o0;~oref=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fchrome%2F"/></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\analytics-event-adapter.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	25461
Entropy (8bit):	5.22391815212944
Encrypted:	false
SSDEEP:	384:B4zFRNtSsuo6leFlW1oM6GsWfwEkyCpCeui7b7wfpGz8Ih2l+RRJHf8zJoM:ONpFlW1oMKWfsyCY/WKp5IhJNYJb
MD5:	BC27205476DF4C7E1D9A0CABD1ECCBD1
SHA1:	5A81AAD07B4169355B272AADE48F77141D688232
SHA-256:	1DDA1C9A086F985D82E193FC6A92A4246DED68D91332F1C715CF7392C7E88FCA
SHA-512:	0C1FA2C44C1C5D83936CBD5196E48677821AD23BA16DBFE49CCC005E0E911CA13A41E55BEBC170517CB0650EFB04061CD4566932237BBCED57364BF7856A3A82
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/promote-analytics-adapter/2.618.0/analytics-event-adapter.bundle.min.js
Preview:	!function(e,n){"object"==typeof exports&&"object"==typeof module?module.exports=n():"function"==typeof define&&define.amd?define("promote-analytics-adapter",[],n):"object"==typeof exports?exports["promote-analytics-adapter"]=n():e["promote-analytics-adapter"]=n()}("undefined"!=typeof self?self:this,function(){return function(e){var n={};function t(r){if(n[r])return n[r].exports;var o=n[r]={i:r,l:!1,exports:{}};return e[r].call(o.exports,o,o.exports,t),o.l=!0,o.exports}return t.m=e,t.c=n,t.d=function(e,n,r){t.o(e,n)\|\|Object.defineProperty(e,n,{enumerable:!0,get:r})},t.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},t.t=function(e,n){if(1&n&&(e=t(e)),8&n)return e;if(4&n&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(t.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&n&&"string"!=typeof e)for(var o in e)t.d(r,o,function(n

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\analytics[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	48759
Entropy (8bit):	5.5215063523389265
Encrypted:	false
SSDEEP:	768:/yR3fYFBLbfsce5XqY1TyPnHpX/KWY3SoavPVRhwmCgYUD0lgEw0stZc:/y9gZfA5h1UHpXxY3Soiuw0sU
MD5:	0A4E309B5F2D7439B4F8876B19F37FC7
SHA1:	7AC30F933A2B889EDBE5D3449F4EC90049B0E2A9
SHA-256:	F79723478F4C48501CD49AC52B81D6244A6562B9D3F08CE8AB208A8B8878D4C4
SHA-512:	891337D9CD308331BD0166BAA7C99C2B856D47F0ADE8AF596F71AFFC962546BBE0952554C51CC9A10E28BB4CEE3648AEC819D83A8935E69E95F53F5CBF141C44
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google-analytics.com/analytics.js
Preview:	(function(){/.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0./.var n=this\|\|self,p=function(a,b){a=a.split(".");var c=n;a[0]in c\|\|"undefined"==typeof c.execScript\|\|c.execScript("var "+a[0]);for(var d;a.length&&(d=a.shift());)a.length\|\|void 0===b?c=c[d]&&c[d]!==Object.prototype[d]?c[d]:c[d]={}:c[d]=b};var q={},r=function(){q.TAGGING=q.TAGGING\|\|[];q.TAGGING[1]=!0};var t=function(a,b){for(var c in b)b.hasOwnProperty(c)&&(a[c]=b[c])},v=function(a){for(var b in a)if(a.hasOwnProperty(b))return!0;return!1};var x=/^(?:(?:https?\|mailto\|ftp):\|[^:/?#]*(?:[/?#]\|$))/i;var y=window,z=document,A=function(a,b){z.addEventListener?z.addEventListener(a,b,!1):z.attachEvent&&z.attachEvent("on"+a,b)};var B=/:[0-9]+$/,C=function(a,b,c){a=a.split("&");for(var d=0;d<a.length;d++){var e=a[d].split("=");if(decodeURIComponent(e[0]).replace(/\+/g," ")===b)return b=e.slice(1).join("="),c?b:decodeURIComponent(b).replace(/\+/g," ")}},F=function(a,b){b&&(b=String(b).toLowerCase());if("p

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\backgroundCommon.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	60216
Entropy (8bit):	5.274025448600827
Encrypted:	false
SSDEEP:	768:TjafYaN3TR/I6L3qBuOCUBVZCqCxT3gN1FR/7NgZFbz8Smz9PGIuIYI46R:TjIPFhL3qB2UBQT3gNDNI8bGIuW4c
MD5:	F4A1B118D8A81907FE22E6401C4026FD
SHA1:	1CBC709E00623FA3440F3652A6AFDD5CFF2B5FD7
SHA-256:	1CA1F108F149E99F1111750AD7210D27011FDEDB31EAA58B884E1DBA236720B7
SHA-512:	93AF81E433658D1FA05BD4601164D0D2295B8436EF14C084A3517CA22C733BBDC79C78970B72B28AFDB8E0E7BD0D7F1788AE9F17B5346D64C6785095D4F16AC8
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/backgroundCommon/backgroundCommon.min.js
Preview:	define("backgroundCommon",["lodash","coreUtils","santa-components","componentsCore","prop-types","skins","warmupUtils","image-client-api","color","pmrpc"],(function(e,t,i,o,n,a,r,s,p,d){return function(e){var t={};function i(o){if(t[o])return t[o].exports;var n=t[o]={i:o,l:!1,exports:{}};return e[o].call(n.exports,n,n.exports,i),n.l=!0,n.exports}return i.m=e,i.c=t,i.d=function(e,t,o){i.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:o})},i.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var o=Object.create(null);if(i.r(o),Object.defineProperty(o,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var n in e)i.d(o,n,function(t){return e[t]}.bind(null,n));return o},i.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\bat[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	28733
Entropy (8bit):	5.307228433868498
Encrypted:	false
SSDEEP:	384:otUVCwh9wC22xo1kB4KZrhbwM05Jkr9qNHfs9nB/wDSliNqCET8zT7QAEqny7YyV:pCwhBRMDOZwDhzT7QSnKYye0
MD5:	815C752A1218F66565366C60C0E4B265
SHA1:	615F539F4291D33C097AC72C75F69A14D5A6EEBE
SHA-256:	F14F0D4CA69DB0C2914322578F10BF3F9393771F439C9F670CC4D40971B0AF8D
SHA-512:	A8B6A69036D47649463F890EA3EFF428223300D8A7353273F931462A55B2F54FF4837262F38FF4437E214C07E40930CB6A094674590951C7A8AF51B987AE31F3
Malicious:	false
Reputation:	low
IE Cache URL:	https://bat.bing.com/bat.js
Preview:	function UET(o){this.stringExists=function(n){return n&&n.length>0};this.domain="bat.bing.com";this.URLLENGTHLIMIT=4096;this.pageLoadEvt="pageLoad";this.customEvt="custom";this.pageViewEvt="page_view";o.Ver=o.Ver!==undefined&&(o.Ver==="1"\|\|o.Ver===1)?1:2;this.uetConfig={};this.beaconParams={};this.supportsCORS=this.supportsXDR=!1;this.paramValidations={string_currency:{type:"regex",regex:/^[a-zA-Z]{3}$/,error:"{p} value must be ISO standard currency code"},number:{type:"num",digits:3,max:999999999999},integer:{type:"num",digits:0,max:999999999999},hct_los:{type:"num",digits:0,max:30},date:{type:"regex",regex:/^\d{4}-\d{2}-\d{2}$/,error:"{p} value must be in YYYY-MM-DD date format"},"enum":{type:"enum",error:"{p} value must be one of the allowed values"},array:{type:"array",error:"{p} must be an array with 1+ elements"}};this.knownParams={event_action:{beacon:"ea"},event_category:{beacon:"ec"},event_label:{beacon:"el"},event_value:{type:"number",beacon:"ev"},page_title:{},page_location:

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\bhm-laptop_desktop[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 745 x 450, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	33767
Entropy (8bit):	7.980621511869612
Encrypted:	false
SSDEEP:	768:5JkJmZ15wOmjSL5y0ahuZG2LuuYtx+4iOe11XY/ZEKxlw:5SEysuNx+4ePXAS2i
MD5:	F1F6FBA431CB2CDFDC479F43775642B0
SHA1:	05DD6D5CA07D52AF82AFF4881B6DE250D8A541B8
SHA-256:	3989E5E33F8ABEFB2741E80A8F8938B31B06639BC0F944C396731F7B40082B40
SHA-512:	7E030BA11306965741EAD9E1D113C7ABE60F99C65125CD53BBD2CA6542A754E7857D0822B61973F9C1F512523A22F01F7F6E0FB3A24B9670EC3EAA3968741787
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/bhm-laptop_desktop.png
Preview:	.PNG........IHDR.............e..Q....PLTE...... MMM444UUU???888QQQ===LLL...===:::>>>>>>??? ...___oooggg///tP.....d.~Z.=-l...}Y........c.......^E.......~W.p.....`.uQ.\.....^.###...YA.`2.eA.l9.hhhLLL666CCC)))......000~\.;;;xS....```\|X.zU.OOO.a.==={V.ZZZ......aaaxS.{W....yT._.UUU.s.o.f8..x.n.u.c....i.\|.111uQ.m.c.ttt...^^_.f.l.tM.x...'''...+++---pF.f.....rJ....p...yyy......///.=....x.\|Q.....lA..x......D.f.......tS........]...V.`........._............................kkk....j............w...................q.e6.......9..........0&vc....F................ccc...s:..........s.r......L...I>n............X..K9.&....v..hR...=.C.......}...h`.PK.....\O.D.G..k..m^.XI..E.....34...4K...g<.f..5.j`.........7Oi.h..\2_m..{{..o.X...KrF..v.......tRNS....?..Q./...c.y....h.}.(....~IDATx...]..0...J.*G.z..".j...;ZG.a.e......8...V.k~.Y....T...'....rn..?O../.....Iq_....g..e.Y.../o]:........vS7..iNW..,M,.B..=..g(Z..w.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\bolt-main-r.vendors~init[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	54888
Entropy (8bit):	5.4201453479125625
Encrypted:	false
SSDEEP:	768:pR0yuyYT+yDVLn044tuNzID1tDvj7Z8e1E4qNuTOY7geC3583Vdd:pOlbL0bwIDfvxsNuTO+Cy
MD5:	4136DF18EDD427D099A987B8DAD2F4AA
SHA1:	AEB9A1E6F683731B1900A63E2E42214E31C7EBE9
SHA-256:	80E5685A2E48AF700DD59E4C0D9FE5FB2F08647B47EFEB359AE6C8E5EAF9D8FE
SHA-512:	63D91E2928DEECC50D751A8E7EACA1BDDFD00B9229EB5CE97B1E60994BF6FAF46AFBFC7A5DFD85373DC8F3244EF0BCB1B52AF74CCBF9FE9D196ED75A7AA60186
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/bolt-main-r.vendors~init.js
Preview:	(this.webpackJsonp=this.webpackJsonp\|\|[]).push([[8],{187:function(e,l,a){"use strict";Object.defineProperty(l,"__esModule",{value:!0});var o=a(54);l.top=function(e){return e.top},l.left=function(e){return e.left},l.bottom=function(e){return e.top+e.height},l.height=function(e){return e.height},l.fitToContentHeight=function(e){return Boolean(e.fitToContentHeight)},l.getContainerHeight=function(e){return o.max([e.height\|\|0,e.minHeight\|\|0])},l.isRotated=function(e){return o.isNumber(e.rotationInDegrees)&&0!==e.rotationInDegrees}},277:function(e,l,a){"use strict";Object.defineProperty(l,"__esModule",{value:!0});var o=a(446);l.isPolicyAllowsBsi=function(e){return!e\|\|!e.policy\|\|e.policy[o.ConsentPolicyCategories.Analytics]&&e.policy[o.ConsentPolicyCategories.Functional]}},278:function(e,l,a){"use strict";Object.defineProperty(l,"__esModule",{value:!0}),l.validateExternalApi=function(e){for(var l=[],a=1;a<arguments.length;a++)l[a-1]=arguments[a];return l.forEach(function(l){if(!e\|\|"function"!

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\bolt-performance[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	43
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9pse:Gl3QEsJLse
MD5:	AD4B0F606E0F8465BC4C4C170B37E1A3
SHA1:	50B30FD5F87C85FE5CBA2635CB83316CA71250D7
SHA-256:	CF4724B2F736ED1A0AE6BC28F1EAD963D9CD2C1FD87B6EF32E7799FC1C5C8BDA
SHA-512:	EBFE0C0DF4BCC167D5CB6EBDD379F9083DF62BEF63A23818E1C6ADF0F64B65467EA58B7CD4D03CF0A1B1A2B07FB7B969BF35F25F1F8538CC65CF3EEBDF8A0910
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\bt[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	129
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9psOjBMllRPQEsJ9psOjBMllRPQEsJ9pse:Gl3QEsJLsMal3QEsJLsMal3QEsJLse
MD5:	D2566C366F730CCD475BD1BF9C09CB6C
SHA1:	EA3CBBAD88A086493CD4FD035513BEC67B27BF52
SHA-256:	A7C2383A000E585F7FFF39FD181F1F236DDAD954BC1722753BB1ACFAA0AC8B51
SHA-512:	1A436C0F5D7A23051DD74B887BCA53E87C08A69E371B4530D184E8CD5BCB6FB0070DF988380B9826A32A17DEFCAF81CA80CBE2CAA841FB5382EB1DD4AE35129D
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;GIF89a.............!.......,...........L..;GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\cdn_detect[1] Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	11
Entropy (8bit):	3.459431618637298
Encrypted:	false
SSDEEP:	3:OWY:OWY
MD5:	7C12772809C1C0C3DEDA6103B10FDFA0
SHA1:	12039D6DD9A7E27622301E935B6EEFC78846802E
SHA-256:	4795A1C2517089E4DF569AFD77C04E949139CF299C87F012B894FCCF91DF4594
SHA-512:	3775186C9EDAD1CBDD412A66873511F2C34A65C93862C6B7AA4E1A39EBE354BE0B7E0353B3A24DAC6C09855D32F7630B496466F028E1420B38D2E35E2ECC026C
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/cdn_detect
Preview:	1234567890.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\clientWorker.e6e195d6.bundle.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	452109
Entropy (8bit):	5.362165106348871
Encrypted:	false
SSDEEP:	3072:Z0VLe0ai0k83TWIw6tmEQNfVcxiEHI4v58rsi2moiW7fIspci2D6dLigQWz2t/VA:l3TW4ZQ2HnldJuD6d7vrbj
MD5:	1E705E75B60734CF21F47C3286E7B303
SHA1:	02029CFBD1E55B9861A669BD4D1B91F5CA9CD9AB
SHA-256:	E2240D5DDA35274B5544947758B5A6930D7E3609DF32B7B8FCB682314640D42D
SHA-512:	1707BAC7EF8A976164AC1FBF2B538629EE4F9156BFC02663B4B8EBFBA4D35885581A44C601F94F24E2FCB4F7571FB67D666477925DFE9C8516CBBE83C449D046
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.foothillsvaccineclinic.com/_partials/wix-thunderbolt/dist/clientWorker.e6e195d6.bundle.min.js
Preview:	!function(e,t){"object"==typeof exports&&"object"==typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):"object"==typeof exports?exports.clientWorker=t():e.clientWorker=t()}(self,(function(){return function(e){self.webpackWorker__wix_thunderbolt_app=function(t,r){for(var i in r)e[i]=r[i];for(;t.length;)n[t.pop()]=1};var t={},n={11:1};function r(n){if(t[n])return t[n].exports;var i=t[n]={i:n,l:!1,exports:{}};return e[n].call(i.exports,i,i.exports,r),i.l=!0,i.exports}return r.e=function(e){var t=[];return t.push(Promise.resolve().then((function(){n[e]\|\|importScripts(r.p+""+({0:"SEO_DEFAULT",1:"AppController.corvid",2:"Fallback.corvid",3:"Repeater.corvid",4:"blog-archive-index",5:"blog-category-index",6:"blog-post-index",7:"blog-tags-index",8:"bookings-service-index",9:"breadcrumbs-component-index",10:"challenges-page-index",12:"componentsRegistryPlatform",13:"events-page-calculated-index",14:"events-page-index",15:"events-page-structured-data-index",16:"for

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\collect[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	35
Entropy (8bit):	2.9889227488523016
Encrypted:	false
SSDEEP:	3:CUdrllHh/:HJ/
MD5:	28D6814F309EA289F847C69CF91194C6
SHA1:	0F4E929DD5BB2564F7AB9C76338E04E292A42ACE
SHA-256:	8337212354871836E6763A41E615916C89BAC5B3F1F0ADF60BA43C7C806E1015
SHA-512:	1D68B92E8D822FE82DC7563EDD7B37F3418A02A89F1A9F0454CCA664C2FC2565235E0D85540FF9BE0B20175BE3F5B7B4EAE1175067465D5CCA13486AAB4C582C
Malicious:	false
Reputation:	low
Preview:	GIF89a.............,...........D..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\componentsCore.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	34991
Entropy (8bit):	5.1759691573185655
Encrypted:	false
SSDEEP:	384:k6g680OvgHweHduehEIOXRJlb3ZL+mZJqDnG2ZKbVsjz83CTK1/jLwhq40zZ:X8m5Hx+BJlb3ZLZaja
MD5:	D6CF1EBA6C70BECBEF2E84177BE65EF7
SHA1:	D496CF49D9EFBFA8622950A9353A9AEB959D5C35
SHA-256:	151A1E3A41FD50F31D96EB76EE9C3F2160387B8DF4E751C2DD92584BF18665BD
SHA-512:	095E1435C59385BC80C110DF035C356B93998B5509B1A088E03DE087B81C680DFC6DDF21D66E15CE86B83B00DD8E7A38218B442F5ED5A401C38DA636E66F49AB
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/componentsCore/componentsCore.min.js
Preview:	define("componentsCore",["lodash","coreUtils","santa-components","prop-types","skins","reactDOM","zepto","santa-core-utils","warmupUtilsLib","create-react-class","react"],(function(e,t,n,i,r,o,s,a,c,l,u){return function(e){var t={};function n(i){if(t[i])return t[i].exports;var r=t[i]={i:i,l:!1,exports:{}};return e[i].call(r.exports,r,r.exports,n),r.l=!0,r.exports}return n.m=e,n.c=t,n.d=function(e,t,i){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:i})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var i=Object.create(null);if(n.r(i),Object.defineProperty(i,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var r in e)n.d(i,r,function(t){return e[t]}.bind(null,r));return i},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:f

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\covid-registration-form[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
Category:	downloaded
Size (bytes):	397328
Entropy (8bit):	5.6730579424846805
Encrypted:	false
SSDEEP:	3072:mcRQ7Svwe7BcRXJ4Na/hGT4bWKa1FgbpfkTaXL4mZOe5Ff1t9mTTi6RLlQdoX4ba:mcRLtcv46e49f1bmXi6jHQHC
MD5:	63DB3A11B3AB6B83CEBF7818222A3B17
SHA1:	9237281CE79F2CA7BBB2D25145C4C9B8931210E3
SHA-256:	6038A85C751F6C07348BF76C07DBB623F983A763E55AA57E2B30DEC0704308B1
SHA-512:	A73F05FD24A00B46E53E9667FA36976751C198EC266398B67F82B4A21FE6329E1B8C8B1BA7A4F52490535B816F4A9D5303DBC74B839F875F7256EEB8761BD87D
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.foothillsvaccineclinic.com/covid-registration-form
Preview:	<!DOCTYPE html>.<html lang="en">.<head>. . <meta charset='utf-8'>. <meta name="viewport" content="width=device-width, initial-scale=1" id="wixDesktopViewport" />. <meta http-equiv="X-UA-Compatible" content="IE=edge">. <base href="https://www.foothillsvaccineclinic.com/">. <meta name="generator" content="Wix.com Website Builder"/>.. <link rel="icon" sizes="192x192" href="https://static.parastorage.com/client/pfavico.ico">. <link rel="shortcut icon" href="https://static.parastorage.com/client/pfavico.ico" type="image/x-icon"/>. <link rel="apple-touch-icon" href="https://static.parastorage.com/client/pfavico.ico" type="image/x-icon"/>. Safari Pinned Tab Icon -->. <link rel="mask-icon" href="https://static.parastorage.com/client/pfavico.ico"> -->.. Legacy Polyfills -->. <script src="https://static.parastorage.com/unpkg/core-js-bundle@3.2.1/minified.js" nomodule=""></script>. <script src="https://static.parastorage.com/unpkg/focus-within-polyfill@5.0.9/dist/focu

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\custom-elements-polyfill.408af93e.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	18450
Entropy (8bit):	5.183762517205347
Encrypted:	false
SSDEEP:	384:fUv/usTiGpBBkhtOT/T5hXjvsR9y+tPBwKTRXkrJ6913D:fE//Qtc3kK+t/Rf913D
MD5:	B5935C4535ECFB68036171E6C9AF8A3B
SHA1:	3C7F1B8842DF39298773715F0CDA5363BF0ABEF3
SHA-256:	EFC14514B672883D34956B7CB0626F41B85131B23A617FF73B1BA18837FD5D82
SHA-512:	9AB101860E6E602DCE6A208BC639F67AF499F6DF32C5AE6192ECB34166930740449CF3031B6599C0A1A08848F1ACE6ED37A36EF64B09FD671FEFB279A08322F2
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/custom-elements-polyfill.408af93e.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[43],{780:function(t,e){(function(){"use strict";var t=window.Document.prototype.createElement,e=window.Document.prototype.createElementNS,n=window.Document.prototype.importNode,o=window.Document.prototype.prepend,r=window.Document.prototype.append,i=window.DocumentFragment.prototype.prepend,a=window.DocumentFragment.prototype.append,l=window.Node.prototype.cloneNode,c=window.Node.prototype.appendChild,s=window.Node.prototype.insertBefore,u=window.Node.prototype.removeChild,h=window.Node.prototype.replaceChild,f=Object.getOwnPropertyDescriptor(window.Node.prototype,"textContent"),d=window.Element.prototype.attachShadow,p=Object.getOwnPropertyDescriptor(window.Element.prototype,"innerHTML"),m=window.Element.prototype.getAttribute,w=window.Element.prototype.setAttribute,y=window.Element.prototype.removeAttribute,v=window.Element.prototype.getAttributeNS,E=window.Element.prototype.setAttributeNS,

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\dataRefs.bundle[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	5342
Entropy (8bit):	5.086595360056435
Encrypted:	false
SSDEEP:	96:UpMvR8dtyEvEWlEmcfXGunhXWiIrKBKWvdB18:SkefyEvEW6mcfXGunhXPIrvKdz8
MD5:	0E0E902359DFBCB706F0BB1753D6AFED
SHA1:	DC7EADFA0DB378ACF476A529988A9ED5FC205AB0
SHA-256:	826A2A28EDB627C7ECFF289C4B0C01C4E5A5F05CF3A7242C2B57F00C1D65E228
SHA-512:	4A86EB3DC684C3F7FA67171F41FB3DE5AFEDCA8582893028815AA6C3879075385CBF52678A07D2DEA2F67889D74152E509C779D13C37D2016A7E8A3B3F71E4A1
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/wix-ui-santa@2.0.277/dist/statics/dataRefs.bundle.js
Preview:	(function webpackUniversalModuleDefinition(root, factory) {..if(typeof exports === 'object' && typeof module === 'object')...module.exports = factory();..else if(typeof define === 'function' && define.amd)...define([], factory);..else if(typeof exports === 'object')...exports["dataRefs"] = factory();..else...root["dataRefs"] = factory();.})((typeof self !== 'undefined' ? self : this), function() {.return /****/ (function(modules) { // webpackBootstrap./**/ .// The module cache./**/ .var installedModules = {};./**/./**/ .// The require function./**/ .function __webpack_require__(moduleId) {./**/./**/ ..// Check if module is in cache./**/ ..if(installedModules[moduleId]) {./**/ ...return installedModules[moduleId].exports;./**/ ..}./**/ ..// Create a new module (and put it into the cache)./**/ ..var module = installedModules[moduleId] = {./**/ ...i: moduleId,./**/ ...l: false,./**/ ...exports: {}./**/ ..};./**/./****

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\displayer.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	67102
Entropy (8bit):	5.352197088503686
Encrypted:	false
SSDEEP:	768:+IxFGqv1Wt2j1K7CZrE6QceQxjlEG4jvavNrk/j0YN9uKn3C9u0mslzaGwlcF:+Ixi2jRmwxjl34jcNw9IKkOGWcF
MD5:	978C38A84D041B8081A7E7C7AC37AA3D
SHA1:	39E070B520F2475E7DF8C69DAC7BE8F806BFEA84
SHA-256:	A57295E4D49D2ACE0D529E2EABDFC2B9957F7986116CE3079B6397DAD0CB0F72
SHA-512:	AFE81D1C11C29663304700E8B49CD7A02F6AFF882DA564FB8BFA417CDDC85C89C477E1C7B92B312C62304CCE0AF43E29ECC061A66607FD9EF6DEF118806FBFE3
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/displayer/displayer.min.js
Preview:	define("displayer",["lodash","coreUtils","santa-components","componentsCore","prop-types","skins","reactDOM","image-client-api"],(function(t,e,i,r,o,a,p,n){return function(t){var e={};function i(r){if(e[r])return e[r].exports;var o=e[r]={i:r,l:!1,exports:{}};return t[r].call(o.exports,o,o.exports,i),o.l=!0,o.exports}return i.m=t,i.c=e,i.d=function(t,e,r){i.o(t,e)\|\|Object.defineProperty(t,e,{enumerable:!0,get:r})},i.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},i.t=function(t,e){if(1&e&&(t=i(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var r=Object.create(null);if(i.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var o in t)i.d(r,o,function(e){return t[e]}.bind(null,o));return r},i.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return i.d(e,"a",e),e},i.o=f

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\f[1].txt Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	dropped
Size (bytes):	2039
Entropy (8bit):	5.846345488292752
Encrypted:	false
SSDEEP:	48:0VUUIqzPrqTnJcgVhkG+lsEWugHdyWOi/K7FiAQEGQ:+UURWTCgVhktlsEWZRyMX5Q
MD5:	EABCCBC0B675C265EF85EB1A2431207A
SHA1:	231FEC2DE91D873E2EFB67D4E4BED1598224F410
SHA-256:	F95C6C49936D0CED83AE89BB3C7186ED9B70610E84D345778F6AB376FC303B62
SHA-512:	BAD53797E8FEB2B7EA9F3B764C3B631DFB40FB3D19B4674BEBA434600D7568A409F88430CE22B875C69B6347D46CDA7DD23D88BE167C27DF205C22A813E85F96
Malicious:	false
Reputation:	low
Preview:	(function(){var s = {};(function(){/* Copyright The Closure Library Authors. SPDX-License-Identifier: Apache-2.0 */ var c={},f=this\|\|self;var l=/#\|$/;function n(d){var g=d.search(l),a;a:{for(a=0;0<=(a=d.indexOf("fmt",a))&&a<g;){var b=d.charCodeAt(a-1);if(38==b\|\|63==b)if(b=d.charCodeAt(a+3),!b\|\|61==b\|\|38==b\|\|35==b)break a;a+=4}a=-1}if(0>a)return null;b=d.indexOf("&",a);if(0>b\|\|b>g)b=g;a+=4;return decodeURIComponent(d.substr(a,b-a).replace(/\+/g," "))};function r(d,g,a){function b(){--p;if(0>=p){var e;(e=d.GooglebQhCsO)\|\|(e={});var q=e[g];q&&(delete e[g],(e=q[0])&&e.call&&e())}}for(var p=a.length+1,m=0;m<a.length;m++){var h=n(a[m]),k=null;1!=h&&2!=h\|\|!(h=d.document.getElementById("goog_conv_iframe"))\|\|h.src\|\|(k=h);k\|\|(k=new Image);k.onload=b;k.src=a[m]}b()}var t=["ss_"],u=s\|\|f;t[0]in u\|\|"undefined"==typeof u.execScript\|\|u.execScript("var "+t[0]); for(var v;t.length&&(v=t.shift());)t.length\|\|void 0===r?u[v]&&u[v]!==Object.prototype[v]?u=u[v]:u=u[v]={}:u[v]=r;}).call(this);;s.ss_(window,'

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\fbevents[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	93376
Entropy (8bit):	5.3917536957896575
Encrypted:	false
SSDEEP:	1536:5M+OWt6w6aic9MeoJ2my8LuThe7KFv0a9sIOC1jaMu5Qm2B+QNSMngUSZYSlIUiZ:5OQRj1SVBYDG2
MD5:	1DE516A5B6B1C6033B92EE5F5D50C140
SHA1:	9E37DA5D5D789074D1DADD60977A9575A6332DD5
SHA-256:	9E7EA2B4BA8E2BCC4A964D6192E4671DC5F6863A1C7E35B52B229A3C1E67A68D
SHA-512:	99EF8E73A5D560CB3504B6BF1BC237957687280AFC99FCFF7A4B882FD2AE423B19721D6444FBD63D3ABCCFF8BD0A5CED79899CE02A2116D7710D2A89BEE370E3
Malicious:	false
Reputation:	low
IE Cache URL:	https://connect.facebook.net/en_US/fbevents.js
Preview:	/*. Copyright (c) 2017-present, Facebook, Inc. All rights reserved... You are hereby granted a non-exclusive, worldwide, royalty-free license to use,.* copy, modify, and distribute this software in source code or binary form for use.* in connection with the web services and APIs provided by Facebook... As with any software that integrates with the Facebook platform, your use of.* this software is subject to the Facebook Platform Policy.* [http://developers.facebook.com/policy/]. This copyright notice shall be.* included in all copies or substantial portions of the software... THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS.* FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR.* COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER.* IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN.* CONNECTION WI

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\fetch.umd[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	14805
Entropy (8bit):	4.758498348901479
Encrypted:	false
SSDEEP:	384:2c9oamnRGWqkphLV53G8FsDujopncgkrDTho7RR9c:2iunRGWqkpRTwE8cNrxo7RR9c
MD5:	456C02EE2A496580A24E5AEE614BA9B3
SHA1:	508EF9378B49D348BC88C92E02F459724971EA5F
SHA-256:	9A0C4301B6E804A7A808EB69694ED08567605811AE9BEF1D3F19C88E20BDEC92
SHA-512:	58D5718D7C7A018A206339C9529085C6A714188FAF548B8CBD7DA2FED997DE898F580DAB1DEA138189186021404AE5510CAD57D3F052A2D20ABDBC2505A16AB7
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/whatwg-fetch@3.0.0/dist/fetch.umd.js
Preview:	(function (global, factory) {. typeof exports === 'object' && typeof module !== 'undefined' ? factory(exports) :. typeof define === 'function' && define.amd ? define(['exports'], factory) :. (factory((global.WHATWGFetch = {})));.}(this, (function (exports) { 'use strict';.. var support = {. searchParams: 'URLSearchParams' in self,. iterable: 'Symbol' in self && 'iterator' in Symbol,. blob:. 'FileReader' in self &&. 'Blob' in self &&. (function() {. try {. new Blob();. return true. } catch (e) {. return false. }. })(),. formData: 'FormData' in self,. arrayBuffer: 'ArrayBuffer' in self. };.. function isDataView(obj) {. return obj && DataView.prototype.isPrototypeOf(obj). }.. if (support.arrayBuffer) {. var viewClasses = [. '[object Int8Array]',. '[object Uint8Array]',. '[object Uint8ClampedArray]',. '[object Int16Array]',. '[object Uint16Array]',. '[object Int32A

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\galleriesCommon.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	4129
Entropy (8bit):	5.210747730963494
Encrypted:	false
SSDEEP:	96:YJFqr6XHhbEVLBcd9wSiyUsOD7klj/3aTqEU5CemUYu0E:YJ1RcWoSKsOD7klj/oqj5CemU70E
MD5:	01D80E46A9B39435AC06B3C210BDF2C8
SHA1:	9BD64459F8CC105C84779C5E25912174437CD2C2
SHA-256:	22B1E0568CFC5107C5D59C07056BA7C03F39C9666F1D70701FC89B9FFFC2AF3B
SHA-512:	11B3606F3CFD1ECD7461CBB83204B2806A0DC8909DA60429C25F7E3415E65A300C1EA8EBD044B45261F1AEF9FC6746199215DA6307DCD59A6EDC6C768785AF21
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/galleriesCommon/galleriesCommon.min.js
Preview:	define("galleriesCommon",["lodash","coreUtils","santa-components","skinExports"],(function(t,e,o,i){return function(t){var e={};function o(i){if(e[i])return e[i].exports;var n=e[i]={i:i,l:!1,exports:{}};return t[i].call(n.exports,n,n.exports,o),n.l=!0,n.exports}return o.m=t,o.c=e,o.d=function(t,e,i){o.o(t,e)\|\|Object.defineProperty(t,e,{enumerable:!0,get:i})},o.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},o.t=function(t,e){if(1&e&&(t=o(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var i=Object.create(null);if(o.r(i),Object.defineProperty(i,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var n in t)o.d(i,n,function(e){return t[e]}.bind(null,n));return i},o.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return o.d(e,"a",e),e},o.o=function(t,e){return Object.prototype.hasOwnProperty.call

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\google-logo-one-color[1].jpg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	JPEG image data, baseline, precision 8, 86x28, frames 3
Category:	downloaded
Size (bytes):	4992
Entropy (8bit):	5.4750750601521405
Encrypted:	false
SSDEEP:	48:Y6N5XhwyUuL0GXV60ipLcvyCoyHzQ4m8WOTcDN8D5fE6:H5qyUuT60iCvPRm8WOTcDSD5fE6
MD5:	5B856138975423814107326E2FA47826
SHA1:	27E99D08D7EC1C73C4A938C69C275EEC3CE62F9E
SHA-256:	47C129740EF242CBE19218FB5A8EF253391C875F92423EB2CB1D73F34AD22474
SHA-512:	B2A23129EE45236F0E41ED63C8F73FD337DA168ADDDFBF50738E71CD84268160CE77FDE06FF93D3C6CAD056FB35DBB13AF8677BCA441B97056068206B637613F
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/fallback/google-logo-one-color.jpg
Preview:	.....Phttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c140 79.160451, 2017/05/06-01:08:21 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about=""/> </rdf:RDF> </x:xmpmeta>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\gtm[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	239175
Entropy (8bit):	5.542489318666642
Encrypted:	false
SSDEEP:	6144:6fYuCXmp6B5Y6mjWwxmj4L84nGu3fOtTSLVZxKBpc+lR60buT:6fCrfrO
MD5:	F8443C85D1A38F236C1FDC8E85262C4F
SHA1:	D58B6CE98366E463D57A5B2B539C5312429D79B6
SHA-256:	F60BF074C432342344E94F71AF8C25ED330B824F3FEBAEC75C6EF25C997F18FE
SHA-512:	85CDB03B4DAE84C4845E2FFA3AF0512B7F3C377CDBFB4EFBECFA231501C1923FB9EE085DCDE58C873627726B54AB942DAD8442CDB1170204264F835BCCF6EDB0
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.googletagmanager.com/gtm.js?id=GTM-MDD5C4
Preview:	.// Copyright 2012 Google Inc. All rights reserved..(function(w,g){w[g]=w[g]\|\|{};w[g].e=function(s){return eval(s);};})(window,'google_tag_manager');(function(){..var data = {."resource": {. "version":"571",. . "macros":[{. "function":"__e". },{. "function":"__u",. "vtp_component":"PATH",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQueryParam":false. },{. "function":"__j",. "vtp_name":"rendererModel.documentType". },{. "function":"__u",. "vtp_component":"HOST",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQueryParam":false. },{. "function":"__c",. "vtp_value":"wixed.wixeducation.com, signup.wixeducation.com, wixeducation.com". },{. "function":"__v",. "vtp_name":"postCategory",. "vtp_dataLayerVersion":1. },{. "function":"__k",. "vtp_name":"userType". },{. "function":"__u",. "vtp_enableMultiQueryKeys":false,. "vtp_enableIgnoreEmptyQue

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\icon-fb[1].jpg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	JPEG image data, baseline, precision 8, 24x24, frames 3
Category:	downloaded
Size (bytes):	3273
Entropy (8bit):	3.4997108570579964
Encrypted:	false
SSDEEP:	24:XK1hxWwN85Xhw3wtQGI5ruDNYYta+F6Bksj:Y6N5Xhw3WQGI5rnC6V
MD5:	54E3C5D4FEF2ED67136B2D2089D51B6D
SHA1:	468FABF67390BED6EC8CCFD42D8C4CB3642F2503
SHA-256:	30D9BB71A0CEF1AF6AC9D3820B19ADE24E27E8ACD8F1BC17E00014A4DFDED12A
SHA-512:	676C56CE9642765A2FB7DFAAFE81456DCC2AD3D9C177BBCB3199C02D1BC5236CE2F2C1981BB15501BD5758A6172436E958F528A5F07F54751428DA2DC9F19D2D
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/fallback/icon-fb.jpg
Preview:	.....Phttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c140 79.160451, 2017/05/06-01:08:21 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about=""/> </rdf:RDF> </x:xmpmeta>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\icon-help[1].jpg Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	JPEG image data, baseline, precision 8, 20x21, frames 3
Category:	downloaded
Size (bytes):	3287
Entropy (8bit):	3.54107963615874
Encrypted:	false
SSDEEP:	24:XK1hxWwN85Xhw3TL/Fbm+j5djx41tQKC/g3nfmp9hx3B:Y6N5Xhw3li+vx41+1p933B
MD5:	B14EDD59B0B6BBE624B8EFC19F2724AC
SHA1:	3B1345D845498E12723B24770DF8863BF72BAC45
SHA-256:	BB963DED37FEEA9AEA52FDC5901808752446E5EB0A901304F15C4A923F5FF659
SHA-512:	13302472CF0EB048B5199B98F7B56A56033338371771E45A9E8BBDD441BAC8C2A32C6E2C125536B70B1349D0D47D06C109244DB7F4326436A19979125B782EDF
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/fallback/icon-help.jpg
Preview:	.....Phttp://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c140 79.160451, 2017/05/06-01:08:21 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about=""/> </rdf:RDF> </x:xmpmeta>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\imageZoom.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	38750
Entropy (8bit):	5.269496272384624
Encrypted:	false
SSDEEP:	768:oe2dO+ffpuRdEtv//FBzCqGlCmdqUEP38p8dWJxhAcSv:oezRdEp//FBzCqGlCmdqUEP38qwb+
MD5:	40BFEEEE9DB56B7C198C3FC40F037C96
SHA1:	2DB70EA24C760A0BFCE5E0747312D2416CDA9A4D
SHA-256:	6AFE17ED07B060DCFBF39804D0ABC5F9B6514C57B956ED29FD51021E67286128
SHA-512:	BB4D1A150EB315520CA65D91CED089CBCDC1BC798DFE870B2A2CC5339296DD41417D3D1571956659F3B986478DF31A1578EC664A914C0A3C938204D971A1D85D
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/imageZoom/imageZoom.min.js
Preview:	define("imageZoom",["lodash","coreUtils","santa-components","componentsCore","prop-types","skins","reactDOM","zepto","image-client-api"],(function(t,e,i,n,o,s,a,r,p){return function(t){var e={};function i(n){if(e[n])return e[n].exports;var o=e[n]={i:n,l:!1,exports:{}};return t[n].call(o.exports,o,o.exports,i),o.l=!0,o.exports}return i.m=t,i.c=e,i.d=function(t,e,n){i.o(t,e)\|\|Object.defineProperty(t,e,{enumerable:!0,get:n})},i.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},i.t=function(t,e){if(1&e&&(t=i(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var n=Object.create(null);if(i.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var o in t)i.d(n,o,function(e){return t[e]}.bind(null,o));return n},i.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return i.d(e,"a",e

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\internet-explorer[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	343372
Entropy (8bit):	5.594250963934422
Encrypted:	false
SSDEEP:	3072:3RQKaDtfrDwWctPwvcnT1y4+lemuRmdHzui:3gDtfrDwW8PwERy4+lemuRmd6i
MD5:	517DCA85B9A92DB9C023A44B682ED33D
SHA1:	99439E24C65DD7AE9BCCB94ADB6F6CDF86A9B8CE
SHA-256:	B7916CE51FF6A1EF0302B48BE7E6A9106684AC618E79C2B5B28A0EA77E481BB6
SHA-512:	D1EA018624B5A9CDD4E932DF18BBCBAA224A95AAB0CC132BEB8288CE8D4588D84EFE2A099D3E11CE4B491DFC1DDB6E64B1BDF52C945BD95A80278EC5C735E848
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.wix.com/outdated-browser/internet-explorer?forceBolt=&ssrIndicator=false
Preview:	<!DOCTYPE html>.<html lang="en">.<head>. <meta http-equiv="X-UA-Compatible" content="IE=Edge"/>. . <meta charset="utf-8"/>. <meta name="generator" content="Wix.com Website Builder"/>. <link rel="shortcut icon" href="https://www.wix.com/favicon.ico" type="image/x-icon"/>. <link rel="apple-touch-icon" href="https://www.wix.com/favicon.ico" type="image/x-icon"/>. . . . . <meta http-equiv="X-Wix-Meta-Site-Id" content="7495ef56-6f96-4160-bf8f-3e452f199a48"/>. <meta http-equiv="X-Wix-Application-Instance-Id" content="8ec0be37-3817-4e57-bb3d-85e551922dc7"/>. . . <meta http-equiv="X-Wix-Published-Version" content="23"/>. . . . . <meta name = "format-detection" content = "telephone=no"/>. . . . . <link rel="alternate" hreflang="fr" href="https://fr.wix.com/outdated-browser/internet-explorer"/>. . <link rel="alternate" hreflang="pt" href="https://pt.wix.com/outdated-browser/internet-e

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\js[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	98900
Entropy (8bit):	5.524607171297151
Encrypted:	false
SSDEEP:	1536:JupMsRGbOlh0E+HGW+/HRE6cszcpB5KZQ8zvT7kp8Q6uS+01W9nKP9dQflAodSY+:JupMFuh0P+5ssI8Ip8Qa++2+
MD5:	27D3A6E26F514FBB8D5AB7C6FD777B70
SHA1:	436CB972926FCA7987728C139FF18DD3E22C2768
SHA-256:	03D82DA4EDA146A7173E9EB153DE5D32915BB422AD414BFEABA66B4A3FAFDC4F
SHA-512:	B46D29BE2935D5530BA1F409F0450B2B768E2B032BC9CAA0CC357B8A44696D80B4931CABE1E5930A611E58FC7D34E5AC9A0DDDC10367A5B406AC745742FB7000
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.googletagmanager.com/gtag/js?id=UA-26908291-4
Preview:	.// Copyright 2012 Google Inc. All rights reserved..(function(){..var data = {."resource": {. "version":"1",. . "macros":[{. "function":"__e". },{. "function":"__cid". }],. "tags":[{. "function":"__rep",. "once_per_event":true,. "vtp_containerId":["macro",1],. "tag_id":1. }],. "predicates":[{. "function":"_eq",. "arg0":["macro",0],. "arg1":"gtm.js". }],. "rules":[. [["if",0],["add",0]]].},."runtime":[].....};../.. Copyright The Closure Library Authors.. SPDX-License-Identifier: Apache-2.0./.var aa,ba=function(a){var b=0;return function(){return b<a.length?{done:!1,value:a[b++]}:{done:!0}}},ca=function(a){var b="undefined"!=typeof Symbol&&Symbol.iterator&&a[Symbol.iterator];return b?b.call(a):{next:ba(a)}},da="function"==typeof Object.create?Object.create:function(a){var b=function(){};b.prototype=a;return new b},ea;.if("function"==typeof Object.setPrototypeOf)ea=Object.setPrototypeOf;else{var ha;a:{var ia={a:!0},ma={};

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\json[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	752
Entropy (8bit):	5.685543745280516
Encrypted:	false
SSDEEP:	12:nTWZnAQ06oMMl5lCUqQ0binRwvjqLI5OlnkH9hDu4ivtpy8tH9hV:nunAQBoMW5lOQYiRwLJ5Ol4vDuVpy8tp
MD5:	5A060C96A3717EC6B45F0B3A78C7AD01
SHA1:	A6C1420A82C66DF7F465B54A073CA1DC3CD84604
SHA-256:	0761FA7FB7D3B5AE1B7FBA99E4DAFFD2701E51B832D10FEDA899E30B93205DD2
SHA-512:	5E15C7BFF37772250842C6BD707B7843C026B738669BE57EDDEEFE1975458F16B129328F0CAA9168D40F9D33D43FC4BFFC4EF4DE8A8AF9E851FB6E4518AFFC38
Malicious:	false
Reputation:	low
IE Cache URL:	https://trc.taboola.com/1316991/trc/3/json?tim=1617249092929&data=%7B%22id%22%3A375%2C%22ii%22%3A%22%2Foutdated-browser%2Finternet-explorer%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1617249092899%2C%22cv%22%3A%2220210309-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FforceBolt%3D%26ssrIndicator%3Dfalse%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dwix-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1617249092929%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%3FforceBolt%3D%26ssrIndicator%3Dfalse%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
Preview:	TFASC.trkCallback({"trc":{"si":"a68d31a2bfd04b27b1bf6fba33d2fabb","sd":"v2_a68d31a2bfd04b27b1bf6fba33d2fabb_94966dfe-5bcf-480e-b38b-963f90f46ec5-tuct75e4a35_1617216693_1617216693_CNawjgYQ_7BQGKOKu9yILyABKAEwKziy0A1A0IgQSN7Y2QNQ____________AVgAYABoopyqvanCqcmOAQ","ui":"94966dfe-5bcf-480e-b38b-963f90f46ec5-tuct75e4a35","plc":"DESK","wi":"-2834769839819890914","cc":"CH","route":"IL:IL:V","el2r":["debug","social","perf"],"uvpw":"1","pi":"1316991","cpb":"EhIyMDIxMDMwOS05LVJFTEVBU0UYASAAKhZ0YWJvb2xhc3luZGljYXRpb24uY29tMgh3YXRlcjAyMziA6MSgBUCy0A1I0IgQUN7Y2QNY____________AWMI1xYQ1B8YI2RjCPcaELclGCdkYwjSAxDgBhgIZGMIlhQQnhwYGGRjCPQUEJ4dGB9k","evh":"1052397145","vl":[{"ri":"82e805724dc774f70d403594711b7d8a","uip":"rbox-tracking","ppb":"CMoG","v":[]}]}})

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\lpo-chrome_desktop[1].png Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	PNG image data, 924 x 578, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	12392
Entropy (8bit):	7.96331146164846
Encrypted:	false
SSDEEP:	192:HL2ZEn95vgYfAyY2o+8q1NZDhIJ0Kq/ET3X2txeGJpQ3fH9W/kGooqcw3HMYtn:HLgwNgiVfr1lIJSo2txeXfH9d5oHiHlF
MD5:	8E3BCC84E8F47D22B9297D2BC1BCAC72
SHA1:	455468C25188679D2B82F81421CDE8C614833339
SHA-256:	10988C3BFABFDC40706A70BE95D5CA5D9C1F9D651A88943873BB916056B43371
SHA-512:	60C71550F95A532B1E31C51C7A472771121696B9A6B401CD4B04D4FFE53AF5ABDA952C94333BA4C613E6571EE68AEF8F8822D73BB5DA1F58AF77F89EDD783E3D
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.google.com/chrome/static/images/homepage/lpo-chrome_desktop.png
Preview:	.PNG........IHDR.......B....../8.....PLTE...111@@@.88...4CC?@@......'..899...9EE'*...(//...&''6BBCCC'''+00......-.......................B............C5...............................4.S......................................sv{Z..}..&......................G......M..tw\|............r...............N.i.......rh...!!!.ZN...ghk...ttvjmrI...............1(....NB......,".'..........bcf...[YZ..Ae...f[...............R...................Z........w..&............{.g............`.......u..b.$..........w.=.r.wn............yz\|.TI.NC.....!............ronJKM@:;.....A..V.................pc.eS..=X..............e.--/................h.......p.v.................quy.rg.$$..8............[.w.M@o.=$...'"..C.._........r.Vj..O.:e.......Vo.L_..........V...[.WQ.M.F.E=.:1..qh..q.K..?y.......tRNS......./\'.1..\&[&..'(7-%.Uo..K..,.IDATx...=..`...4..z.."...Y..o.w...F..PE.`....]D....D.Ag.+..(*...EA.\|..APQ..qRtq.I...^...'..\.{.m.f..$M....2.Xz#-..r.........S...lw.o.y.`Co....

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\main-r.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	189963
Entropy (8bit):	5.282734271412698
Encrypted:	false
SSDEEP:	1536:a5ebqUEpFoz82wc01GpRaQ01L0CCkZVBuBLHGHad9DhURTCx3NBL2KH1NjOF2873:wE701GLt2Wo29bH1cQtbkL
MD5:	B75D592C61BFCF3C03AB8AA04C751B5D
SHA1:	75F183F2F4B1AE775FE48946580F413BC633A38E
SHA-256:	06054E44B7A06BA3815394568D2543DB2AB2DD2E1F812D33DFF5A68B80DCB2A2
SHA-512:	C7C4BA0394BC4676596C7502C7A6B87619F5245F962643F73935E32615E5CF9F423BB32B15825CBD66410F4BE5F1EB3F162A67A46D644E35262F6D4BFA94235D
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/bolt-main/app/main-r.min.js
Preview:	!function(e){function t(t){for(var n,o,i=t[0],a=t[1],s=0,c=[];s<i.length;s++)o=i[s],Object.prototype.hasOwnProperty.call(r,o)&&r[o]&&c.push(r[o][0]),r[o]=0;for(n in a)Object.prototype.hasOwnProperty.call(a,n)&&(e[n]=a[n]);for(u&&u(t);c.length;)c.shift()()}var n={},r={5:0};function o(t){if(n[t])return n[t].exports;var r=n[t]={i:t,l:!1,exports:{}};return e[t].call(r.exports,r,r.exports,o),r.l=!0,r.exports}o.e=function(e){var t=[],n=r[e];if(0!==n)if(n)t.push(n[2]);else{var i=new Promise(function(t,o){n=r[e]=[t,o]});t.push(n[2]=i);var a,s=document.createElement("script");s.charset="utf-8",s.timeout=1800,o.nc&&s.setAttribute("nonce",o.nc),s.src=function(e){return o.p+"bolt-main-r."+({1:"animations",2:"bolt-ds-viewer-manager",3:"custom-elements",4:"init",6:"vendors~bolt-ds-viewer-manager",7:"vendors~custom-elements",8:"vendors~init"}[e]\|\|e)+".js"}(e),0!==s.src.indexOf(window.location.origin+"/")&&(s.crossOrigin="anonymous");var u=new Error;a=function(t){s.onerror=s.onload=null,clearTimeout(c

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\pa[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	dropped
Size (bytes):	43
Entropy (8bit):	3.0950611313667666
Encrypted:	false
SSDEEP:	3:CUMllRPQEsJ9pse:Gl3QEsJLse
MD5:	AD4B0F606E0F8465BC4C4C170B37E1A3
SHA1:	50B30FD5F87C85FE5CBA2635CB83316CA71250D7
SHA-256:	CF4724B2F736ED1A0AE6BC28F1EAD963D9CD2C1FD87B6EF32E7799FC1C5C8BDA
SHA-512:	EBFE0C0DF4BCC167D5CB6EBDD379F9083DF62BEF63A23818E1C6ADF0F64B65467EA58B7CD4D03CF0A1B1A2B07FB7B969BF35F25F1F8538CC65CF3EEBDF8A0910
Malicious:	false
Reputation:	low
Preview:	GIF89a.............!.......,...........L..;

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\pm-rpc.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	40801
Entropy (8bit):	5.179635720204025
Encrypted:	false
SSDEEP:	768:hivwQ+FtDocLb6VnWq8FSuzNBD8Ck6ZEn:hivwQ+PocX6OlRJ8Ck6Za
MD5:	6D2CE335B730660879C0B6949489201C
SHA1:	04207F9F622E642A257E7C60EB95368F8C77D49E
SHA-256:	F6F745CF79C117E16618576087B958DF0B47361BB672BD270F37CC7246C85FA7
SHA-512:	4C80DFB6B36D7A7E2D71594BC7AD39B252D8319E4993CC008C0985ED77521FCB32CE9FAE9E1BA4582B5EF5112224783EB787A757583C5EBEDCFFF97A0C3369F3
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/pm-rpc@1.0.14/build/pm-rpc.min.js
Preview:	!function(t,r){"object"==typeof exports&&"object"==typeof module?module.exports=r():"function"==typeof define&&define.amd?define("pmrpc",[],r):"object"==typeof exports?exports.pmrpc=r():t.pmrpc=r()}(this,function(){return function(t){function r(n){if(e[n])return e[n].exports;var o=e[n]={i:n,l:!1,exports:{}};return t[n].call(o.exports,o,o.exports,r),o.l=!0,o.exports}var e={};return r.m=t,r.c=e,r.i=function(t){return t},r.d=function(t,e,n){r.o(t,e)\|\|Object.defineProperty(t,e,{configurable:!1,enumerable:!0,get:n})},r.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return r.d(e,"a",e),e},r.o=function(t,r){return Object.prototype.hasOwnProperty.call(t,r)},r.p="",r(r.s=150)}([function(t,r){var e=Array.isArray;t.exports=e},function(t,r,e){var n=e(40),o="object"==typeof self&&self&&self.Object===Object&&self,i=n\|\|o\|\|Function("return this")();t.exports=i},function(t,r,e){function n(t){return null==t?void 0===t?a:c:s&&s in Object(t)?i(t):u(t)}var o=e(8),i=e(

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\requirejs.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines, with no line terminators
Category:	downloaded
Size (bytes):	17493
Entropy (8bit):	5.208224058486374
Encrypted:	false
SSDEEP:	384:ayznN5k6MTQmeYl8oSdNdSoUYdHvEDezCnGgqo6N6TBIueHtf:hI6MTQxYl8oSdNdS/QHvED9StETBKHtf
MD5:	18823F6A6D208EE1E361BB266AB794D5
SHA1:	E9FA356AC13BD24C051804A6E4EC3E053BC8001C
SHA-256:	D5F10F852B112A514A19F2B778EEF5D2D1307878757F0A24539C051831CEFAF8
SHA-512:	737365F3EEE0E0B3124DDAE6EB6D72EE47FDBF74833E78712CD85C8C525B2840959E66474DDA3E2113B4E6C34B4C7FC3DEF03ABB55F7D9E8682C2ED61557617A
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/requirejs-bolt@2.3.6/requirejs.min.js
Preview:	var requirejs,require,define;!function(global,setTimeout){var req,s,head,baseElement,dataMain,src,interactiveScript,currentlyAddingScript,mainScript,subPath,version="2.3.6",commentRegExp=/\/\[\s\S]?\\/\|([^:"'=]\|^)\/\/.$/gm,cjsRequireRegExp=/[^.]\srequire\s$\s["']([^'"\s]+)["']\s$/g,jsSuffixRegExp=/\.js$/,currDirRegExp=/^\.\//,op=Object.prototype,ostring=op.toString,hasOwn=op.hasOwnProperty,isBrowser=!("undefined"==typeof window\|\|"undefined"==typeof navigator\|\|!window.document),isWebWorker=!isBrowser&&"undefined"!=typeof importScripts,readyRegExp=isBrowser&&"PLAYSTATION 3"===navigator.platform?/^complete$/:/^(complete\|loaded)$/,defContextName="_",isOpera="undefined"!=typeof opera&&"[object Opera]"===opera.toString(),contexts={},cfg={},globalDefQueue=[],useInteractive=!1;function commentReplace(e,t){return t\|\|""}function isFunction(e){return"[object Function]"===ostring.call(e)}function isArray(e){return"[object Array]"===ostring.call(e)}function each(e,t){var i;if(e)for(i=0;i<

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\santa-components.prod[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	UTF-8 Unicode text, with very long lines
Category:	downloaded
Size (bytes):	676166
Entropy (8bit):	5.505186723029507
Encrypted:	false
SSDEEP:	6144:zpV8ZSJ/4cNmBC9t2yCSHeNgmmsgT9plhgZdoLS:GBj9gT9BKou
MD5:	E3021A69B385B2F5C8F71467103F716E
SHA1:	FA459C940B907E9F88E8E3ABCAE775FFD35D3952
SHA-256:	EE36A63536A938C209CDDAC23A457E64C816175871235E707C03328C790CE85F
SHA-512:	60D6CAE99831271E07BAA7F354323DB73C8B1F627A854623109915610B20CA7FC5487BCD16FCADC8F71347F4364052E4D131E4489D882B140906826387B00BC0
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/unpkg/@wix/santa-components@1.1968.0/dist/santa-components.prod.js
Preview:	!function(e,t){if("object"==typeof exports&&"object"==typeof module)module.exports=t(require("lodash"),require("prop-types"),require("react"),require("create-react-class"),require("zepto"),require("reactDOM"),require("image-client-api"));else if("function"==typeof define&&define.amd)define(["lodash","prop-types","react","create-react-class","zepto","reactDOM","image-client-api"],t);else{var r="object"==typeof exports?t(require("lodash"),require("prop-types"),require("react"),require("create-react-class"),require("zepto"),require("reactDOM"),require("image-client-api")):t(e.lodash,e["prop-types"],e.react,e["create-react-class"],e.zepto,e.reactDOM,e["image-client-api"]);for(var o in r)("object"==typeof exports?exports:e)[o]=r[o]}}(this,(function(e,t,r,o,n,i,a){return function(e){var t={};function r(o){if(t[o])return t[o].exports;var n=t[o]={i:o,l:!1,exports:{}};return e[o].call(n.exports,n,n.exports,r),n.l=!0,n.exports}return r.m=e,r.c=t,r.d=function(e,t,o){r.o(e,t)\|\|Object.definePropert

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\skinExports.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	45545
Entropy (8bit):	4.985248326211914
Encrypted:	false
SSDEEP:	384:V8G3f6/N/U/w/h/EB/1/z/p/X/3/lsKbWcVnnx2eSPI1Z8MgzM5:V8Gj35V4BM5
MD5:	E3B310E8689B6965D19169917C521FB4
SHA1:	198FFCD1FCA30A54E77AAEC71CE000772FDB1C30
SHA-256:	33B44DD1DD54694D140CAFA355D6F929354909A8DF68CF24E739B0ED3FB13FB3
SHA-512:	7A1A3DF38CA2F7269CC67E67CAA868ACDB29579C7975330553B9E8CF8E2BD0D4D7A4A2569D19E6F0D9612DA61D2AA88DD02ACB8D8786F7ADDDF1659CF6E1B234
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/skinExports/skinExports.min.js
Preview:	define("skinExports",[],(function(){return function(i){var e={};function n(s){if(e[s])return e[s].exports;var r=e[s]={i:s,l:!1,exports:{}};return i[s].call(r.exports,r,r.exports,n),r.l=!0,r.exports}return n.m=i,n.c=e,n.d=function(i,e,s){n.o(i,e)\|\|Object.defineProperty(i,e,{enumerable:!0,get:s})},n.r=function(i){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(i,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(i,"__esModule",{value:!0})},n.t=function(i,e){if(1&e&&(i=n(i)),8&e)return i;if(4&e&&"object"==typeof i&&i&&i.__esModule)return i;var s=Object.create(null);if(n.r(s),Object.defineProperty(s,"default",{enumerable:!0,value:i}),2&e&&"string"!=typeof i)for(var r in i)n.d(s,r,function(e){return i[e]}.bind(null,r));return s},n.n=function(i){var e=i&&i.__esModule?function(){return i.default}:function(){return i};return n.d(e,"a",e),e},n.o=function(i,e){return Object.prototype.hasOwnProperty.call(i,e)},n.p="",n(n.s=1073)}({1073:function(i,e,n){var s,r;s=[n(10

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\src=4382365;type=count;cat=websi0;ord=1;num=1196866999169;gtm=2wg3o0;auiddc=666480753.1617249090;u1=fffb8729-a9da-45fc-9840-773923f9b2e7;~oref=https___www.wix[1].htm Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	HTML document, ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	194
Entropy (8bit):	5.144203472842556
Encrypted:	false
SSDEEP:	6:hn8FQiowadCc4svmzw9xUpCX96v6OqPbRm9:hnMQbwuOaxyCkv4A9
MD5:	5EDEA4CDE2C1A9C8E8150DEAF71CE73D
SHA1:	725019DAAF24DED79DCAAC96C897CC4727CC8B35
SHA-256:	05978957C6C8B028F2785DC77271C286BFAC76E30B7BCD7E835C2927FBE897CF
SHA-512:	E55349AB79FEF70C5DF45009E9EA2E4CA57678305A25B3279CFFAD472192654FE86E30B9471313243FB081D7B2C2958E8F888F87C648AAE5FF00E289C69B615E
Malicious:	false
Reputation:	low
IE Cache URL:	https://adservice.google.ch/ddm/fls/i/src=4382365;type=count;cat=websi0;ord=1;num=1196866999169;gtm=2wg3o0;auiddc=666480753.1617249090;u1=fffb8729-a9da-45fc-9840-773923f9b2e7;~oref=https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%3FforceBolt%3D%26ssrIndicator%3Dfalse
Preview:	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"></body></html>

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\textCommon.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	7855
Entropy (8bit):	5.181882266727943
Encrypted:	false
SSDEEP:	96:x69y6lhK+DBhilnuTi1z2x7qvMHSS5UeFaXj4yzmj90DCpUyoR4IJn8RcLQj7eiQ:x6Fs1Kx7qAV4Xjja5wCpI18CLQOiQ
MD5:	56CE57CA0F78C1AB251596C253AC711B
SHA1:	D407A6A577BC5AB9923144E6F2FD533AFC854489
SHA-256:	FBF6CBE620C3A67FBE96FB584E322C290C007E8FCB9666BE52AAB0586679FD65
SHA-512:	1DC43ABF2CCA0546F63B693C1C1F33F1ABC85EFA1B5566426C863E3ED829676D3271867AF2435B5645EEDA7B37790D9082A5F1121634AD54C60DBEF5E27D168A
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/textCommon/textCommon.min.js
Preview:	define("textCommon",["lodash","santa-components","componentsCore","prop-types","skins"],(function(t,e,n,i,r){return function(t){var e={};function n(i){if(e[i])return e[i].exports;var r=e[i]={i:i,l:!1,exports:{}};return t[i].call(r.exports,r,r.exports,n),r.l=!0,r.exports}return n.m=t,n.c=e,n.d=function(t,e,i){n.o(t,e)\|\|Object.defineProperty(t,e,{enumerable:!0,get:i})},n.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},n.t=function(t,e){if(1&e&&(t=n(t)),8&e)return t;if(4&e&&"object"==typeof t&&t&&t.__esModule)return t;var i=Object.create(null);if(n.r(i),Object.defineProperty(i,"default",{enumerable:!0,value:t}),2&e&&"string"!=typeof t)for(var r in t)n.d(i,r,function(e){return t[e]}.bind(null,r));return i},n.n=function(t){var e=t&&t.__esModule?function(){return t.default}:function(){return t};return n.d(e,"a",e),e},n.o=function(t,e){return Object.prototype.hasOwnProp

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\tr[1].gif Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	GIF image data, version 89a, 1 x 1
Category:	downloaded
Size (bytes):	44
Entropy (8bit):	2.8317663774021287
Encrypted:	false
SSDEEP:	3:CU9yltxlHhn:mn
MD5:	B798F4CE7359FD815DF4BDF76503B295
SHA1:	F8CC6ADDF1707AD236AD9970B0A48F9733D07DA5
SHA-256:	10D8D42D73A02DDB877101E72FBFA15A0EC820224D97CEDEE4CF92D571BE5CAA
SHA-512:	921944DC10FBFB6224D69F0B3AC050F4790310FD1BCAC3B87C96512AD5ED9A268824F3F5180563D372642071B4704C979D209BAF40BC0B1C9A714769ABA7DFC7
Malicious:	false
Reputation:	low
IE Cache URL:	https://www.facebook.com/tr/?id=704136006388169&ev=SubscribedButtonClick&dl=https%3A%2F%2Fwww.wix.com%2Foutdated-browser%2Finternet-explorer%3FforceBolt%3D%26ssrIndicator%3Dfalse&rl=https%3A%2F%2Fwww.foothillsvaccineclinic.com%2Fcovid-registration-form&if=true&ts=1617249120710&cd[buttonFeatures]=%7B%22classList%22%3A%22stylablebutton643855516__label%22%2C%22destination%22%3A%22%22%2C%22id%22%3A%22%22%2C%22imageUrl%22%3A%22%22%2C%22innerText%22%3A%22Download%20Google%20Chrome%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%E2%86%92%22%2C%22numChildButtons%22%3A0%2C%22tag%22%3A%22span%22%7D&cd[buttonText]=Download%20Google%20Chrome%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%E2%86%92&cd[formFeatures]=%5B%5D&cd[pageFeatures]=%7B%22title%22%3A%22Internet%20Explorer%20Web%20Browser%20Is%20Ending%20Support%20Soon%22%7D&cd[parameters]=%5B%5D&sw=1280&sh=1024&v=2.9.33&r=stable&ec=2&o=14&fbp=fb.1.1617249094153.1122864896&it=1617249093946&coo=false&es=automatic&tm=3&rqm=GET
Preview:	GIF89a.............!.......,...........D..;.

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\vendors~wix-resize-observer-polyfill.a82cd12d.chunk.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	8332
Entropy (8bit):	5.081401668173565
Encrypted:	false
SSDEEP:	96:SvEGsDB9cWGGycWtlQvroUiqEaRx/DcfhTdQzc/IvqwqSi/otQSAMD5e1hvZpTgd:S8t9ZI9YntDAdQzAIfm1h79iJeNs
MD5:	9644F139F8ADB7EA32325968EB94FC06
SHA1:	61ADD83A9D3B586EB44098C53665CB36F8AF1E99
SHA-256:	29829648F415B8ED854714BB0F67B3A06E2C26E294633D5EAFDC3B933D40CB72
SHA-512:	98D5793741ADD31084818B26DE2B728A7BEC2EB6F94676BB3928A5CB015190B05352CAF0BF4456EF1162371F267571BF38798723EB1EE8EF74ABB90730268A42
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-thunderbolt/dist/vendors~wix-resize-observer-polyfill.a82cd12d.chunk.min.js
Preview:	(window.webpackJsonp__wix_thunderbolt_app=window.webpackJsonp__wix_thunderbolt_app\|\|[]).push([[153],{42:function(t,e){var n;n=function(){return this}();try{n=n\|\|new Function("return this")()}catch(t){"object"==typeof window&&(n=window)}t.exports=n},782:function(t,e,n){"use strict";n.r(e),function(t){var n=function(){if("undefined"!=typeof Map)return Map;function t(t,e){var n=-1;return t.some((function(t,i){return t[0]===e&&(n=i,!0)})),n}return function(){function e(){this.__entries__=[]}return Object.defineProperty(e.prototype,"size",{get:function(){return this.__entries__.length},enumerable:!0,configurable:!0}),e.prototype.get=function(e){var n=t(this.__entries__,e),i=this.__entries__[n];return i&&i[1]},e.prototype.set=function(e,n){var i=t(this.__entries__,e);~i?this.__entries__[i][1]=n:this.__entries__.push([e,n])},e.prototype.delete=function(e){var n=this.__entries__,i=t(n,e);~i&&n.splice(i,1)},e.prototype.has=function(e){return!!~t(this.__entries__,e)},e.prototype.clear=function()

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\warmupUtils.min[1].js Download File
Process:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
File Type:	ASCII text, with very long lines
Category:	downloaded
Size (bytes):	173646
Entropy (8bit):	5.258774296641457
Encrypted:	false
SSDEEP:	3072:HzDEWGvEWX/arVL8NLt7DVIz9/2nHj7HUsuUOjWw:HzDEWGvEcket7xIZ2D4VUc
MD5:	4DF6DDF62C76F937EE3BDEA0D925DBA0
SHA1:	7B2545872F4E68EA2759765CC98EECC2C5A6A4E5
SHA-256:	077CF6024D89F86331408A84EE15668D379E930EABA1B6403B3578C2D18D50D6
SHA-512:	1EF635A1BD37420DA372364A50BB887B24604B8BAB2F50A696E1AADF72F5E884BC7075A7A93A123B910F7CDA815DA2C9D02481F98F15671528FE1FCC638AEEB9
Malicious:	false
Reputation:	low
IE Cache URL:	https://static.parastorage.com/services/wix-bolt/1.7107.0/node_modules/wix-santa/dist/packages-bin/warmupUtils/warmupUtils.min.js
Preview:	define("warmupUtils",["lodash","zepto","experiment","warmupUtilsLib","image-client-api","wix-ui-santa/dataRefs.bundle.min"],(function(e,t,n,i,r,a){return function(e){var t={};function n(i){if(t[i])return t[i].exports;var r=t[i]={i:i,l:!1,exports:{}};return e[i].call(r.exports,r,r.exports,n),r.l=!0,r.exports}return n.m=e,n.c=t,n.d=function(e,t,i){n.o(e,t)\|\|Object.defineProperty(e,t,{enumerable:!0,get:i})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var i=Object.create(null);if(n.r(i),Object.defineProperty(i,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var r in e)n.d(i,r,function(t){return e[t]}.bind(null,r));return i},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,"a",t),t},n.o=function(e

C:\Users\user\AppData\Local\Temp\~DF38F4F2C1B2A4D400.TMP Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	data
Category:	dropped
Size (bytes):	25441
Entropy (8bit):	0.5670671895331796
Encrypted:	false
SSDEEP:	24:c9lLh9lLh9lIn9lIn9lRx/9lRJ9lTb9lTb9lSSU9lSSU9laAa/9laAZcK0G+9qHZ:kBqoxxJhHWSVSEabzB
MD5:	CA956326045FF1DA9063EF8D1940EDEE
SHA1:	5C29AD571FFD504B9F328E677C8015E988982665
SHA-256:	0CC40AA25A3D2687C16D4DB0653BC33018BBB761C94E1E70570AB1354CC5BC56
SHA-512:	FE33F104571D13BFDB95E34A3BAC1DB8727529EF8C922025D2F46768AE4743EFAA3B5147EB621194E0953B676AC2B2916FAD11130B90C574110570C6A4BF05EE
Malicious:	false
Reputation:	low
Preview:	.............................%..H..M..{y..+.0...(................... ...............................................%..H..M..{y..+.0...(................... ..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\~DF53B51CBC940AA236.TMP Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	data
Category:	dropped
Size (bytes):	13461
Entropy (8bit):	0.7439399667317035
Encrypted:	false
SSDEEP:	24:c9lLh9lLh9lIn9lIn9loqF9lom9lWH0PQKXKmum1KmuNKmu99:kBqoIx3H0PQ+um1uNu99
MD5:	845A2218373459C38966AFB3AA3830D9
SHA1:	C4627E4CD30DAF44050DDEF162F69EE496DA806D
SHA-256:	F3B4E3B11FFB67F98A449E1C5AC4B548E3214A017108A6433350A7E20B23EB11
SHA-512:	6BA998A015B8A3ECF0DBE354B0FB577AA3580B5A10065DE083CF60A3C0C41C4A9BDC1BDF059639B7DD966C893F167EC7AA52BE46E103505D8A50B650B6E059E9
Malicious:	false
Reputation:	low
Preview:	.............................%..H..M..{y..+.0...(................... ...............................................%..H..M..{y..+.0...(................... ..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\~DF5CEF97DB930C79F0.TMP Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	data
Category:	dropped
Size (bytes):	29745
Entropy (8bit):	0.3422745319565165
Encrypted:	false
SSDEEP:	24:c9lLh9lLh9lIn9lIn9lRx/9lRJ9lTb9lTb9lSSU9lSSU9laAa/9laApDUfi4c9lU:kBqoxxJhHWSVSEabpDUL8Q2y
MD5:	8FACF84E051D9F09F6269CDED1F995DF
SHA1:	927B3311790F9B7905C7E304E32B49DFA8248BD9
SHA-256:	FB84F60ADFB822DBCF9C489C891E14A46E20E475558F1DF8245564A3787DB238
SHA-512:	6B6E2EE7684301C51D1D5AA6968F02DB645D5E6367527A4A1AE9388378B8EC518A948A0842081C1B41805132E09B0C8486DDB77D650F4977AB48AD975F330E88
Malicious:	false
Reputation:	low
Preview:	.............................%..H..M..{y..+.0...(................... ...............................................%..H..M..{y..+.0...(................... ..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\~DF8500B3B48B442132.TMP Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	data
Category:	dropped
Size (bytes):	42687
Entropy (8bit):	0.43786729627295257
Encrypted:	false
SSDEEP:	48:kBqoxKAuvScS+V8VaVAVhVNIVNYmHN5lYsmX85lY3DULQmi5lY3DUL:kBqoxKAuvScS+S0e3EHxAX44DUfm4DU
MD5:	4C194A6A5C5AA006EF64C086E747E0FB
SHA1:	CD852029154E124F919C954FB1CC573CA13AD307
SHA-256:	06D4C210CE2B020F379C154260BCE368DA4E21D63E088200075F7AB279DE64D1
SHA-512:	1F8EF0F6BABC1401A962AAEC7705F4A7845C97AC5745DA1D9720DF1573CACE62DC4DE4F6E9E4CC2F080468A1778CE0A81D6DA69E39D7F6A9F114DFAD4AE089BC
Malicious:	false
Reputation:	low
Preview:	.............................%..H..M..{y..+.0...(................... ...............................................%..H..M..{y..+.0...(................... ..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\~DFF1E8BD5DBDDFE99F.TMP Download File
Process:	C:\Program Files\internet explorer\iexplore.exe
File Type:	data
Category:	dropped
Size (bytes):	66390
Entropy (8bit):	2.207875566676874
Encrypted:	false
SSDEEP:	192:kBqoxKAuqR+FrJ4bXfq66sGcGmX6sGcGax7F1dm6sGcGnx7F1FEzxYzFez0m6sGD:kBqoxKAuqR+FrJ4bXH+a+5+2+8+C+K+
MD5:	B79BDA84011CDCEA57574A929A3A262B
SHA1:	E5885AB99ED6C14171F2803EB13E20AEE9FB893A
SHA-256:	83FB4C4CD1088AD646CFBF804A9BDE51B48E6FA1D80722FCF993DF063DF595E2
SHA-512:	1235A28EB84EAB35ED614CBB6D7F86DE385AECC1C3099600B0B0D15EBC652BB3D144C53D1761A45BE65E2C4F9D97838C0736D6185130D7BA73929D433FD7CF8C
Malicious:	false
Reputation:	low
Preview:	.............................%..H..M..{y..+.0...(................... ...............................................%..H..M..{y..+.0...(................... ..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

Static File Info

No static file info

Network Behavior

Network Port Distribution

TCP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Mar 31, 2021 20:51:17.028155088 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.028997898 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.088849068 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.088974953 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.091392040 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.091519117 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.096075058 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.097394943 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.155714989 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.159394026 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.159419060 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.159430981 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.159446955 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.159457922 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.159593105 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.159631968 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.159959078 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.163860083 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.163882971 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.163899899 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.163917065 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.163932085 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.163964987 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.164014101 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.210325956 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.214524984 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.218280077 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.218530893 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.218905926 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.271806002 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.272026062 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.272119045 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.272192001 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.272708893 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.272854090 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.272892952 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.273123980 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.273197889 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.273526907 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.276797056 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.276814938 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.277493000 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.280186892 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.280369043 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.374672890 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.375423908 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.531604052 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.531625986 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.531693935 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.531729937 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.539225101 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539252996 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539268970 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539283037 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539302111 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539321899 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539340019 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539355993 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.539375067 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.539443970 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.590392113 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.590424061 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.590440989 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.590457916 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.590542078 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.590593100 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.597955942 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.597990036 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598006964 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598023891 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598076105 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598094940 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598112106 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598114967 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.598129988 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598148108 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598160982 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.598166943 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598186016 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598197937 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.598201036 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598218918 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598226070 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.598237038 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598253012 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598256111 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.598268986 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.598297119 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.598336935 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.648680925 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648708105 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648720026 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648737907 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648753881 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648771048 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648787022 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648802042 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.648857117 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.648904085 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.656238079 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.656259060 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.656395912 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.686014891 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.686774969 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.728441954 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.728539944 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.729931116 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.753190994 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.753294945 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.754667997 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.771536112 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.773514032 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.773545027 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.773564100 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.773658037 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.773696899 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.779469967 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779494047 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779514074 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779531956 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779548883 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779571056 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779588938 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779606104 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779608011 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779623985 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779639959 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779656887 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779673100 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779678106 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779690027 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779709101 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779726982 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779728889 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779745102 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779761076 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779776096 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779777050 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779792070 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779808044 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779808044 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779824018 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779843092 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779849052 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779858112 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.779877901 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.779906988 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786134958 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786156893 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786173105 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786189079 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786204100 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786209106 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786225080 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786231995 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786245108 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786262035 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786274910 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786279917 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786297083 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786303043 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786314011 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786328077 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786333084 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786348104 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786366940 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786367893 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786386967 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786402941 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786410093 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786422014 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786436081 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:17.786447048 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786469936 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.786520004 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:17.822652102 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.823683977 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.823705912 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.823719978 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.823774099 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.823805094 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.833031893 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.833580017 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.833743095 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.839013100 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.839963913 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.879622936 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.879709005 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.880320072 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.880403996 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.899565935 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.899832010 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.899909973 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.899956942 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.899996042 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.905154943 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905175924 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905193090 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905210018 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905225992 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905245066 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.905246973 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905263901 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:17.905301094 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.905354977 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.912236929 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:17.918212891 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:51:18.005578041 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:18.017844915 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:51:18.270409107 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.328419924 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343698025 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343729019 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343749046 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343775034 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343797922 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343813896 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343828917 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.343841076 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.343883991 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.343910933 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.450104952 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.473524094 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.475235939 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.516639948 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.516830921 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519685984 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519711971 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519731045 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519747972 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519763947 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519781113 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519783974 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519802094 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519824028 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519825935 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519840956 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519859076 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519875050 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519879103 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519891977 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519906998 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519912958 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519923925 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519942999 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519946098 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519965887 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.519973993 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.519984961 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520001888 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520006895 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520020962 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520036936 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520040035 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520055056 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520071983 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520091057 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520092010 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520112991 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520128965 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520138979 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520178080 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520462990 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520482063 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520513058 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520519018 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520531893 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520549059 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520550013 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520579100 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520617962 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520622969 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520636082 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520653009 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520663977 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520669937 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520688057 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520709038 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520709991 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520729065 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520741940 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520754099 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520760059 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520777941 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520793915 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520796061 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520812035 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520827055 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520831108 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520853996 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520865917 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520872116 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520889997 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520905972 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520917892 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520921946 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520940065 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520956039 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.520965099 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.520973921 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.521018982 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.521047115 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576579094 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576625109 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576642990 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576658010 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576674938 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576680899 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576694012 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576711893 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576715946 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576730013 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576745987 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576765060 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576781988 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576785088 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576800108 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576813936 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576816082 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576829910 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576845884 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576862097 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576864004 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576879025 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576900005 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576916933 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576932907 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576941013 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576946020 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576951027 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576963902 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.576970100 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.576987028 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577003956 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577006102 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.577020884 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577042103 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577055931 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577058077 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.577073097 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577089071 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577100039 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.577105045 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577121019 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.577121973 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.577153921 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.577174902 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.579909086 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.579927921 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.579945087 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.579965115 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.579977036 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.579982996 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580001116 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580017090 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580018044 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580035925 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580051899 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580066919 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580070972 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580089092 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580106020 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580108881 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580127954 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580143929 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580157995 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580171108 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580173016 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580188990 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580190897 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580207109 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580216885 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580221891 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:18.580251932 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.580276966 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:18.597604990 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.597704887 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.598840952 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.598995924 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.722750902 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.723532915 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.848123074 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.848928928 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.849360943 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.849448919 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.849476099 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.849507093 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.849514008 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.849564075 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.849605083 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.849613905 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.849654913 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.849728107 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.850795031 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.850857019 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.850889921 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.850914001 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.850953102 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.850960970 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.850972891 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.851020098 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.851026058 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.851080894 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.865499020 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.865876913 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.866099119 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.989557981 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.989583015 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.989598989 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.989660025 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.989707947 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.990375042 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.990400076 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:18.990444899 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.990490913 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:18.990832090 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.029865980 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.030476093 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.156300068 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:19.156325102 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:19.156394005 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.156423092 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.156521082 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:19.156565905 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.157306910 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:19.159346104 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:19.323497057 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:20.621145964 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:20.745081902 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:20.745518923 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:20.745533943 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:20.745651960 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:20.745670080 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:20.935875893 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:20.936444998 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:20.995080948 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:20.995249987 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:20.996834040 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:20.996952057 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.024734974 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.024905920 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.084903002 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087341070 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087399006 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087426901 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087454081 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087480068 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087503910 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.087644100 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.090035915 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.090096951 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.090126991 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.090153933 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.090163946 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.090179920 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.090200901 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.090240002 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.124876976 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.125350952 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.125597000 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.126183987 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.126627922 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.184588909 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.184688091 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.184710026 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.184772968 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.185156107 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.185237885 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.185537100 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.185837030 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.185935020 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.186193943 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.186300039 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.186378002 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.186688900 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.221616030 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.221826077 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:21.284400940 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.287853003 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:21.343211889 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.344755888 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.544454098 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.544611931 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.545250893 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.546057940 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.546142101 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.546952963 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.746320009 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.747206926 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.747272015 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.747292995 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.747293949 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.747311115 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.747324944 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.747342110 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.747396946 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.748275042 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.749301910 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.749363899 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.749372005 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.749399900 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.749422073 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.749422073 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.749438047 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.749443054 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.749465942 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.749484062 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.761293888 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.761337996 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.761749029 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.761959076 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.762061119 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.962430954 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.962846994 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.962904930 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.962950945 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963149071 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963207960 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963255882 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.963264942 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963289022 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.963311911 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963347912 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.963361025 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963368893 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.963407993 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963409901 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.963535070 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:21.963588953 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.964240074 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:21.964353085 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.003520966 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.003586054 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.003647089 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.003689051 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.004697084 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.004724979 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.004771948 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.004789114 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.004806042 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.004817009 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.004827976 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.004857063 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.004861116 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.004901886 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005007029 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005047083 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005053997 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005084991 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005089998 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005124092 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005126953 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005157948 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005163908 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005202055 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005207062 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005242109 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005253077 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005283117 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.005947113 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.005997896 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006016016 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006040096 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006042957 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006079912 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006082058 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006119013 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006129980 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006158113 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006164074 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006186962 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006198883 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006232977 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006313086 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006344080 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.006360054 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.006381989 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.164969921 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.165150881 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.165436983 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.165457964 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.206090927 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.206234932 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.206485033 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.206504107 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.206543922 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.206568956 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.207695961 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207719088 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207735062 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207756042 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207773924 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207791090 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207807064 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207823038 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207830906 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.207837105 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207854033 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207869053 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207885027 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.207887888 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207907915 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207911015 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.207926989 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207935095 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.207947016 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207959890 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207963943 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.207978010 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207993031 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.207999945 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.208029032 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209038973 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209064960 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209080935 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209100962 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209108114 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209120035 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209130049 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209136009 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209152937 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209168911 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209170103 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209186077 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209189892 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209198952 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209211111 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209244967 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209378958 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209419966 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209440947 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.209446907 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.209489107 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.233258009 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.248202085 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.316847086 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.358758926 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.358782053 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.359000921 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.366528988 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.366698027 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.374897957 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.374914885 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.375087976 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.375123024 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.407547951 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407588959 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407664061 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.407687902 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.407819033 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407861948 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407876968 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.407901049 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407908916 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.407939911 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.407941103 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407968044 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.407982111 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.408010960 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.409317970 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.409409046 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.464875937 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.467459917 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.484707117 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.495583057 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.495971918 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.504185915 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.504338980 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.505424023 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.505526066 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.505661011 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.509466887 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.519845009 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.536802053 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.536837101 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.536917925 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.536967993 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.545881033 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.549021959 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.549182892 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.551285028 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.551305056 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.551320076 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.551449060 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.551493883 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.555649996 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.555670023 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.555685043 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.555715084 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.555742025 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.563281059 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.563884020 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.564117908 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.568002939 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.568119049 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.568146944 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.568178892 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.568212986 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.568213940 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.568233013 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.568254948 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.568257093 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:22.568308115 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:22.568423986 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.583995104 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.592993975 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.593060970 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.593082905 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.593099117 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.593149900 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.593185902 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.602617025 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.603595972 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.603744984 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.604249954 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.604358912 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.604379892 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.604398012 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.604485989 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.604526997 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.605324030 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.605850935 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.605931044 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.608366013 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.608391047 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.609036922 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.609067917 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.609128952 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.609163046 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.610460997 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.610501051 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.610549927 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.610585928 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.610703945 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.625703096 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.626113892 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.626132011 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.626142025 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.626178026 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.626209974 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.630491018 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.630886078 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.639997005 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.640079021 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:51:22.643521070 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.644412041 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644474983 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644510984 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.644553900 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.644815922 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644840002 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644860029 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644880056 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.644885063 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644907951 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644927979 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644929886 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.644948959 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644961119 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.644969940 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.644996881 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.645028114 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.645603895 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.645651102 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.645773888 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.647224903 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.647250891 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.647284985 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.647326946 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.647932053 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.648894072 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:51:22.648925066 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.648943901 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.648986101 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.649005890 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.650917053 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.650937080 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.651017904 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.652785063 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.652803898 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.652842045 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.652872086 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.671786070 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.671813965 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.671920061 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.671952009 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.673768044 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:51:22.730593920 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.758088112 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:51:22.764355898 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.774354935 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.890886068 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.890918016 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.891060114 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.891120911 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.903927088 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.903958082 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:22.904031992 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:22.904057980 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:23.070816994 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:23.078063965 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:23.195116997 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:23.195141077 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:23.195231915 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:23.202544928 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:23.202560902 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:23.202747107 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:24.717228889 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:24.719997883 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:24.843897104 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:24.843935013 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:24.843950987 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:24.844109058 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:24.844806910 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:24.844835997 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:24.844893932 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:24.844913960 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:25.301521063 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:25.301583052 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:25.427494049 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:25.428098917 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:25.428112984 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:25.428154945 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:25.428195000 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:27.085755110 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.087979078 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.124111891 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.124217033 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.125045061 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.126183033 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.126290083 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.126802921 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.163372993 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.164457083 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.164488077 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.164505005 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.164520979 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.164535046 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.164558887 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.164592028 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.164608002 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.167222023 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.168370008 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.168394089 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.168407917 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.168422937 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.168436050 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.168458939 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.168500900 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.168507099 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.175786018 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.176162004 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.176412106 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.176748991 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.177113056 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.214386940 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.214428902 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.214458942 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.214500904 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.214519978 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.215120077 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.215234041 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.215264082 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.215305090 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.215332031 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.215399027 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.215425014 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.215466022 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.215481997 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.215497971 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.215532064 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.216147900 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.216702938 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.216774940 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.216795921 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.216830015 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.216998100 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:51:27.256038904 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.260890961 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:51:27.638797045 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:27.840328932 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:27.889575005 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:27.889625072 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:27.889678955 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:51:27.889717102 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:27.889769077 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:51:28.590614080 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:28.600759029 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:28.624612093 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:28.724589109 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:28.724611044 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:28.724705935 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:28.725142956 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:28.725213051 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:28.725218058 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:28.725271940 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:28.795432091 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:29.749309063 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:29.875219107 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:29.875499010 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:29.875545979 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:29.875607014 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:29.875633001 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:29.978928089 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:30.106081009 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:30.106132030 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:30.106276989 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:30.176023006 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:30.300393105 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:30.300415039 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:30.300630093 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:30.300673008 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:30.448098898 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.455476046 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.491235018 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.491336107 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.493575096 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.501219988 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.501349926 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.518454075 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.536776066 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.542681932 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:30.544287920 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:30.549365997 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.549418926 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.549436092 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.549443960 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.549514055 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.564363956 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.576141119 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.576155901 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.576169968 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:30.576291084 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:30.589204073 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:30.589374065 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:30.592272043 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:30.592412949 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.077925920 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.078321934 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.110033989 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.110532045 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.111067057 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.115900040 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.116247892 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.120779991 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.120810986 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.120826960 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.120842934 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.120903015 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.120982885 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.122417927 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.123979092 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.124008894 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.124073982 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.124108076 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.125278950 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.125348091 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.129918098 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.130686045 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.134139061 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.137916088 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.138279915 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.153403997 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.153418064 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.153573036 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.156357050 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.157294989 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.157427073 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.159461021 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.159488916 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.159501076 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.159512997 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.159588099 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.159631014 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.171030998 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.171089888 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.172228098 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.172312021 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.181087017 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181114912 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181128025 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181147099 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181163073 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181179047 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181194067 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181206942 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.181210041 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181227922 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181226969 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.181246996 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181255102 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.181265116 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.181278944 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.181308985 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.183887959 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.183917999 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.184056997 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.185262918 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.185278893 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.185333967 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.185398102 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.185796022 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.191842079 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.191858053 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.191874981 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.191890955 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.191977024 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.191984892 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.195380926 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.196645975 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.205007076 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.205034971 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.205050945 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.205071926 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.205091953 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.213327885 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.213346004 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.213380098 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.213413000 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.225364923 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.225374937 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.225491047 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.225493908 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.229365110 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.234726906 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.234865904 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.237206936 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.237373114 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.327960968 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.329134941 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.334064007 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.335304022 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:51:31.338932037 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.339255095 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.339981079 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:31.361356974 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.361401081 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.361555099 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.365273952 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.371349096 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.371582031 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.376919031 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.377151966 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.377430916 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.377454042 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.377464056 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.377511024 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.377542019 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.381337881 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.381371021 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.381381035 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.381486893 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.381547928 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.384520054 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:51:31.403757095 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.403954983 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.404360056 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:31.405491114 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.405515909 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.405600071 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.405607939 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.405626059 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.405678034 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.405710936 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.407850027 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.408000946 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.408140898 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.408227921 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.418884993 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.420130014 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.420810938 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.421160936 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.424942017 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.425414085 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.427743912 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:31.428178072 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.454164982 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.454330921 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.454343081 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.454406977 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.458319902 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.458431005 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.458530903 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.458547115 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.458569050 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.458581924 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.467303991 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.467336893 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.467468023 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.467592001 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.487911940 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.496874094 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.496911049 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.497014999 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.499269962 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.499306917 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.499403954 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.501543999 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.501574993 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.501673937 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.503891945 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.503926992 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.504023075 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.506190062 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.506228924 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.506340027 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.508568048 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.508599997 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.508686066 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.510888100 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.510921001 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.511008024 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.513223886 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.513346910 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.529184103 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.529221058 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.529341936 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.531564951 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.531596899 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.531637907 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.531665087 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.531760931 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.532202005 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.533165932 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.533229113 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.533346891 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.533797979 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.533821106 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.533874989 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.533895969 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.533998966 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.536170959 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.536273956 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:51:31.569645882 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.569681883 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.569834948 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.570530891 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.570657015 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.570872068 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.570893049 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.570909977 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.570939064 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.570952892 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.570998907 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.571388006 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:31.571571112 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.571595907 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.571614981 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.571671009 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.571762085 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.571835995 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.571969986 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.571983099 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.571990013 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.572021008 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.572050095 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.572312117 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.572335958 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.572387934 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.572410107 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.573319912 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.573349953 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.573410034 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.573440075 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.573837042 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.573863029 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.573914051 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.573937893 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.574635029 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.574661016 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.574713945 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.574743986 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.575398922 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.575457096 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.575478077 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.575511932 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.576076984 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.576100111 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.576169014 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.576184034 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.576766014 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.576786041 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:31.576848030 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:31.608795881 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:31.608828068 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:51:32.342736959 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:32.342907906 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:32.585215092 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:32.640888929 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:32.663784027 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:32.680200100 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:33.127563953 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.127710104 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.178610086 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.178730011 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.179060936 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.179147959 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.179748058 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.180624008 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.213576078 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.213735104 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.230581045 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.230899096 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.230917931 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.230973005 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.230973005 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.231029034 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.231065989 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.231137037 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.231584072 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.231602907 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.231620073 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.231671095 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.231700897 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.248445034 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.249377012 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.249653101 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.254127979 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.254633904 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.265633106 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.265734911 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.266179085 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.266253948 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.267138958 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.267441988 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.297446012 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.297471046 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.297527075 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.297553062 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.298058033 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.298110008 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.298329115 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.301481962 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.301506996 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.301520109 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.301533937 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.301547050 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.301563978 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.301594019 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.301960945 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.303044081 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.303114891 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.303177118 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.303221941 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.303529024 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.303577900 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.303721905 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:51:33.317301035 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.317794085 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.330378056 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.330404043 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.330416918 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.330444098 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.330477953 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.330995083 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.331016064 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.331028938 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.331070900 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.331094027 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.338098049 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.338474035 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.338829041 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.341084957 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.341448069 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.348292112 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.350982904 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.357714891 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:51:33.389605999 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.389627934 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.389766932 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.390285969 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.390357971 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.391621113 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.391644955 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.391721964 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.391834974 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.391885042 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.396632910 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.397094011 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.403882027 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.448093891 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.452388048 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.458836079 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.458863020 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.458875895 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.458930016 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.458967924 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.459566116 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.459650993 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.459702969 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.459749937 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.465362072 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.472131014 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.472199917 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.472202063 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.472248077 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.473994970 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.474066973 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.495110035 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.496061087 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.520850897 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.533247948 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.533360958 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.536144972 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.536258936 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.536767960 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.536861897 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.538757086 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.538817883 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.581974030 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.582556963 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.582921028 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.582942009 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.582957029 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.583013058 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.583051920 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.583724022 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.583744049 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.583758116 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.583816051 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.583848000 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.595333099 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.595700979 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.595913887 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.596652985 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.597001076 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.639317036 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.639439106 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.639468908 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.639513016 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.639552116 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.640885115 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.641002893 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.641031981 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.641088963 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.641129971 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.642278910 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.642344952 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.643444061 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:33.643508911 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:33.682394981 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.686299086 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.699487925 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.699589968 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.700170040 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.700242043 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.700804949 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.701826096 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.711093903 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.711113930 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.711169004 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.711194992 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:51:33.729280949 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:51:33.837639093 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.856332064 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:33.865062952 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.866333008 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.866355896 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.866369009 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.866441011 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.866486073 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.866715908 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.867376089 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:33.868200064 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.868221998 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.868235111 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:33.868324995 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.868352890 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.875358105 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.886136055 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.887027025 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.887182951 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.887255907 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:33.891098022 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.902858973 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:33.902992964 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:33.906246901 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:33.907362938 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:33.956737041 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:33.956865072 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:33.957772970 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:33.957870007 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:33.958187103 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:33.959176064 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:33.963979006 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.964097977 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.964436054 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.964518070 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.964540958 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:33.964595079 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.968699932 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:33.981609106 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:33.981626987 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:33.981957912 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:33.982021093 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:33.982059002 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:33.982101917 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.000015974 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.008687019 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.009566069 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.019361973 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.021591902 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.021615028 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.021660089 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.021672010 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.021677017 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.021691084 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.021714926 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.021735907 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.028176069 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.028198957 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.028296947 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.028341055 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.030158997 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.030288935 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.030611992 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.030822039 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.031131029 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.031246901 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.035331964 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.039943933 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.039961100 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.039969921 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.040028095 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.040050030 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.045756102 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.046133041 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.047312021 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.051505089 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.051522970 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.051534891 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.051605940 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.051620960 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.051672935 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.052124977 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.052164078 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.053503036 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.063272953 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.065176964 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.065287113 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.081209898 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.081254005 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.081293106 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.081325054 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.081342936 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.081588984 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.090348005 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.096535921 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.096556902 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.096673965 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.096785069 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.097480059 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.098524094 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.101599932 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.101622105 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.101742983 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.101803064 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.101820946 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.102416039 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.102426052 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.103118896 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.103133917 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.103384972 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.103425026 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.105449915 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.123732090 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.124294996 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.124309063 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.124427080 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.137794971 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.145445108 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.152893066 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.154194117 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.154820919 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.155256033 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.157633066 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.157655001 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.157666922 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.157744884 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.157754898 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.157955885 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.157974005 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.157984972 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.158051968 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.158062935 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.173058033 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.173085928 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.173208952 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.176722050 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.177094936 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.188111067 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.208784103 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.208827019 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.208873987 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.208981991 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.209013939 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.209100008 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.209342957 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.209769964 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.250629902 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.265479088 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.267491102 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.297662020 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.297698021 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.297732115 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.297821045 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.297833920 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.297873020 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.297907114 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.298137903 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.298376083 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.298417091 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.300247908 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.301305056 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.301325083 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.301466942 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.301479101 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.301485062 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.301547050 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.301554918 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.302721024 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.308126926 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.308151960 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.308523893 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.349560976 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.363954067 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.397845984 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.401887894 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.404983997 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.417069912 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.429920912 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.439861059 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.439976931 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.440506935 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.440547943 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.440625906 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.440653086 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.440939903 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.441310883 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.441534996 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.441550016 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.441579103 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.441620111 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.441627026 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.442841053 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.443048000 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.443134069 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.444297075 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.444319963 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.444415092 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.444426060 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.444726944 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.444746017 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.445487022 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.445507050 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.445533991 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.445915937 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.446243048 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.446263075 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.446350098 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.447047949 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.447072983 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.447097063 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.447151899 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.447165012 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.447712898 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.447753906 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.448527098 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.448550940 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.448575020 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.448702097 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.449261904 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.449282885 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.449374914 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.449400902 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.450051069 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.450073957 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.450731039 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.451215029 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.451263905 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.451375961 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.451486111 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.451531887 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.452286005 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.452307940 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.452331066 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.452979088 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.453057051 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.453149080 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.453188896 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.453404903 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.453768969 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.453789949 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.453902960 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.454575062 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.454596996 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.454767942 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.455271959 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.455291033 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.455384970 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.455399036 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.456161022 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.456182003 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.456749916 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.456769943 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.456794977 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.457578897 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.457590103 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.457609892 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.458254099 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.458272934 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.458302021 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.459007978 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.459028006 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.459048986 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.459588051 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.459762096 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.459780931 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.459903955 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.460531950 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.460553885 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.460634947 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.460659981 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.464720011 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.468686104 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.474668026 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.476833105 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.476851940 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:34.477077007 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:34.481127024 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.481154919 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.481359005 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.481450081 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.481483936 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.481583118 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.482161045 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.482180119 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.482264996 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.482273102 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.482978106 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.483000994 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.483095884 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.483647108 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.483711958 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.483725071 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:51:34.483804941 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.483815908 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:51:34.521712065 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.521732092 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.522205114 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.522219896 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.522267103 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.523050070 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:51:34.591341972 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:51:34.596570015 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.610460043 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:51:34.610605001 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:51:34.672955990 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.715408087 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.715411901 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.723820925 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.753457069 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.753477097 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.753621101 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.753624916 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.755558014 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.755558014 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.762417078 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.777497053 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.777626038 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.777827978 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.779087067 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.779294968 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.779762030 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.782167912 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.785062075 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.793528080 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.793556929 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794030905 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794053078 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794065952 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794079065 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794095039 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794107914 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.794241905 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.794244051 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.805114031 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.805118084 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.805660009 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.806039095 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.807204008 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.813220024 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.832830906 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.835489988 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.843063116 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843089104 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843276978 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843359947 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.843445063 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843457937 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843468904 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843477964 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843517065 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.843565941 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.843570948 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.843605995 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.843826056 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.844269991 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.844460964 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.844513893 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.845069885 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.845103979 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.845117092 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.845196962 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.845196962 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.846398115 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:34.855534077 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.855591059 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.855665922 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.855701923 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.855742931 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.855839968 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.858807087 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:34.883825064 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.901123047 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.901315928 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.901339054 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.901417017 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.901484013 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.901492119 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.901546955 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.901626110 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.901793957 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:51:34.916551113 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:34.925360918 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:34.952723026 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:51:34.975733042 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:34.976147890 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:34.977838993 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:35.023000956 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.023051023 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.023156881 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.023164034 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.024267912 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.025583982 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.028480053 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:35.051094055 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:35.051115990 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:35.051160097 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:35.051175117 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:35.051207066 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:35.051248074 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:35.051250935 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:35.052445889 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:51:35.071317911 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.071845055 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.071870089 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.071885109 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.071923018 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.071943998 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.072642088 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.072879076 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.072899103 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.072910070 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.072942972 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.072968006 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.081948996 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.082047939 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.082823038 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.082977057 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.083055973 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.108473063 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:51:35.130284071 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.130306959 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.130386114 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.130453110 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.130465031 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.130505085 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.130523920 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.130959988 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.131016970 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.131076097 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.131124020 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.131226063 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.131474018 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.132504940 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.132575989 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:35.161923885 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:35.202056885 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:35.202552080 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:35.202620029 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:35.203130007 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:51:35.203190088 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:51:35.219381094 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.220827103 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:35.272464991 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.272623062 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.312304020 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.312376976 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.312378883 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.312447071 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.313837051 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.314105034 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.353677034 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.354327917 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.355181932 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.355205059 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.355220079 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.355257034 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.355285883 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.356089115 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.356110096 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.356122971 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.356157064 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.356179953 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.365166903 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.365545988 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.365767002 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.366041899 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.366364956 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.405184984 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405205965 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405374050 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405478954 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.405503035 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405519009 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405550003 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.405582905 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.405643940 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405726910 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405761003 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.405847073 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.406136990 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.406203985 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.406261921 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.406275034 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.406286001 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.406308889 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.406342030 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.406812906 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.406955957 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.425972939 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:35.426203012 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:35.426469088 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:35.436402082 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.436419964 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.436427116 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.436522961 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:51:35.444739103 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.444858074 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:51:35.550772905 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:35.551136017 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:35.551201105 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:35.553102970 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:35.553174973 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:36.252031088 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:36.252141953 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:36.290997982 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:36.291109085 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:37.336592913 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:37.336843967 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:37.337023973 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:37.461476088 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:37.461610079 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:37.461623907 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:37.461685896 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:37.461728096 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:37.463726044 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:37.463820934 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:37.953844070 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:38.000904083 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:38.001782894 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:38.001874924 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:39.349436045 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:39.367094994 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:39.367319107 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:39.493244886 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:39.493264914 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:39.493432045 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:39.495085001 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:39.495256901 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:43.963916063 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:44.012008905 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:44.012134075 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:44.337656975 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:44.337832928 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:44.338079929 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:44.462703943 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:44.463560104 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:44.463650942 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:44.465266943 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:44.465342045 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:47.407144070 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:47.407253027 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:48.811803102 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:48.811980009 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:49.479675055 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:49.479846001 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:49.479935884 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:49.604696035 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:49.604742050 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:49.604814053 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:49.622766018 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:51:49.622891903 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:51:51.356090069 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:51.359137058 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:51.515321970 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:51:51.515399933 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:51:55.996124983 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:51:56.047111988 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:51:56.047308922 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:52:01.162368059 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:52:01.201030016 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:52:01.201232910 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:52:01.201318026 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:52:02.470712900 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:02.470890999 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:03.915858984 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:03.915930033 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:04.415122986 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:04.415399075 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:04.415576935 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:04.515645027 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.515660048 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.541404009 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:04.541601896 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:04.541615009 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:04.541672945 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:04.541707993 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:04.543416023 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:04.543494940 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:04.565125942 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.565223932 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.565295935 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.565368891 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.573432922 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.574500084 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.624273062 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.624644995 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.624672890 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.624691963 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.624703884 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.624741077 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.625761986 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.626169920 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.626200914 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.626219034 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.626243114 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.626286983 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.626292944 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.641247034 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.642003059 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.642337084 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.642904043 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.643060923 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.643126011 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.692742109 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.692796946 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.692888021 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.692934036 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.693510056 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.693536043 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.693584919 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.693615913 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.693727970 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.693783998 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.694282055 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695172071 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695204020 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695225954 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.695247889 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.695266962 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695291042 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695312977 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695327997 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.695358992 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.695375919 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.695426941 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.707472086 CEST	49821	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.707551956 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.707607985 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:04.758430958 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:04.764105082 CEST	443	49821	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:06.463886023 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:06.464030981 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:06.619142056 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:06.619360924 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:16.470772028 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.487040043 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.492739916 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:16.513581991 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.513768911 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.529783010 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.529997110 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.543006897 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:16.543021917 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:16.543093920 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:16.543131113 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:16.543169022 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:16.563827038 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.606657028 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.606714010 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.608695984 CEST	49822	443	192.168.2.3	108.177.15.154
Mar 31, 2021 20:52:16.619558096 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.619580030 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.619590998 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.619652987 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.619715929 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.649480104 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.650342941 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.650957108 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.651062012 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.662046909 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.662074089 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.662086964 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.662133932 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.662151098 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.663073063 CEST	443	49822	108.177.15.154	192.168.2.3
Mar 31, 2021 20:52:16.666663885 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.667155981 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.693315983 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.693348885 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.693403959 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.693424940 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.693660975 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.693726063 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.694385052 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.699170113 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.709585905 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.709611893 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.709665060 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.709692955 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.709773064 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.709825993 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.710659027 CEST	49827	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.737478018 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.758675098 CEST	443	49827	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.775902987 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.775932074 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.775945902 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.775968075 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:16.776057959 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.776081085 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.776587963 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:16.824259043 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:17.567051888 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:17.569417000 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:19.019819975 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:19.020071983 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:20.030977964 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:52:20.078779936 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:52:20.078953981 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:52:21.563890934 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:21.564086914 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:21.727030993 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:21.727153063 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:31.401421070 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:52:31.401443958 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:52:31.401453018 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:52:31.401567936 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:52:31.401608944 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:52:31.403528929 CEST	49761	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:52:31.435674906 CEST	443	49761	89.187.165.193	192.168.2.3
Mar 31, 2021 20:52:32.670933008 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:32.671052933 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:34.123662949 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:34.124952078 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:34.545114994 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:34.545312881 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:34.545456886 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:34.672969103 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:34.673008919 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:34.673125029 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:34.677473068 CEST	443	49770	54.83.110.109	192.168.2.3
Mar 31, 2021 20:52:34.677556038 CEST	49770	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:52:35.130335093 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:52:35.130373001 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:52:35.130399942 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:52:35.130424023 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:52:35.130445004 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:52:35.130882025 CEST	49789	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:52:35.179446936 CEST	443	49789	141.226.228.48	192.168.2.3
Mar 31, 2021 20:52:35.812469006 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:35.855770111 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:35.996717930 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:35.996738911 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:35.997272015 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:35.997306108 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:35.997332096 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:35.999238014 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:36.018873930 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:36.061954975 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:36.668018103 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:36.668155909 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:36.827009916 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:36.827182055 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:37.686983109 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:37.687058926 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:37.687110901 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:37.687144041 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:37.687155008 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:37.687225103 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:37.687767982 CEST	49758	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:37.728141069 CEST	443	49758	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:39.446268082 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:39.446288109 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:39.446295977 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:39.446403980 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:39.446494102 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:39.472390890 CEST	49759	443	192.168.2.3	185.60.216.19
Mar 31, 2021 20:52:39.510353088 CEST	443	49759	185.60.216.19	192.168.2.3
Mar 31, 2021 20:52:39.892157078 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:52:39.892205954 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:52:39.892232895 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:52:39.892349958 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:52:39.893256903 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:52:39.998147964 CEST	49786	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:52:40.038198948 CEST	443	49786	185.60.216.35	192.168.2.3
Mar 31, 2021 20:52:40.445733070 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.445768118 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.445795059 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.445929050 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:52:40.445960999 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:52:40.452336073 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.452382088 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.452406883 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.452481985 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:52:40.452500105 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:52:40.572019100 CEST	49793	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:52:40.572217941 CEST	49792	443	192.168.2.3	185.60.216.6
Mar 31, 2021 20:52:40.614732027 CEST	443	49793	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:40.614789009 CEST	443	49792	185.60.216.6	192.168.2.3
Mar 31, 2021 20:52:47.774858952 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:47.775182009 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:49.231811047 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:49.231928110 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:51.771933079 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:51.772090912 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:51.931361914 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:52:51.931550980 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:52:55.191869020 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:55.237137079 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:55.374767065 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:55.374842882 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:55.374881029 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:55.374911070 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:55.375150919 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:55.375216961 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:55.375312090 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:55.375370026 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:55.381305933 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.382787943 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.433022022 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.433201075 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.433263063 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.433394909 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.443285942 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:52:55.445079088 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.445606947 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.487582922 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:52:55.496845007 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.496927977 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.510061979 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.510157108 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.510190010 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.510231972 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.510312080 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.510370970 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.510957003 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.511009932 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.511065006 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.511075020 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.511135101 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.520160913 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.520617962 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.520858049 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.521076918 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.521583080 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.571300983 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.571391106 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.571425915 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.571491003 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.571631908 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.571703911 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.572016954 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.572053909 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.572108984 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.572148085 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.572227955 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.572299004 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.572388887 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.572918892 CEST	49839	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.576736927 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.622813940 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.628657103 CEST	443	49839	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.651938915 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.651979923 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.652019978 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.652059078 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.652195930 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.652260065 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.652272940 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.652318954 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.652610064 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:52:55.709785938 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:52:55.812202930 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.812416077 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.864262104 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.864398956 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.865438938 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.867134094 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.867295027 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.870389938 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.916125059 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.923907995 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.929068089 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.929136038 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.929199934 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.929248095 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.936084032 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.936229944 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.936304092 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.936348915 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.948508978 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.948973894 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.949239016 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.952873945 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.953254938 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.999691963 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.999777079 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.999814034 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.999836922 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:55.999855995 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:55.999903917 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.000849962 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.004411936 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.007143021 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.007219076 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.007272005 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.007313967 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.007868052 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.007944107 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.008131981 CEST	49843	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.020181894 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.020226002 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.020289898 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.020329952 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.020381927 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.020481110 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.020562887 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.021136045 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:52:56.056488991 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.066994905 CEST	443	49843	172.217.168.67	192.168.2.3
Mar 31, 2021 20:52:56.072405100 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:02.878941059 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:02.879146099 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:04.335771084 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:04.335999012 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.225331068 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:53:06.225399017 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:53:06.225469112 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:53:06.225711107 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:53:06.226380110 CEST	49787	443	192.168.2.3	185.60.216.35
Mar 31, 2021 20:53:06.264343977 CEST	443	49787	185.60.216.35	192.168.2.3
Mar 31, 2021 20:53:06.402976990 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:06.403172016 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:06.404269934 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:53:06.404500008 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:53:06.404870987 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:53:06.405107021 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.405251980 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.405430079 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:06.405648947 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:06.405802011 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:53:06.406012058 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:53:06.406176090 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:53:06.412465096 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.412568092 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.413433075 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:06.413563967 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:06.414589882 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:53:06.415076017 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:53:06.415214062 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:53:06.415607929 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:53:06.415991068 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:53:06.416352987 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:53:06.416412115 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:53:06.416621923 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:53:06.416893005 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.417138100 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.417306900 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:53:06.417470932 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:53:06.417598963 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:53:06.417721033 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:53:06.417865038 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.417972088 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.439644098 CEST	443	49760	89.187.165.193	192.168.2.3
Mar 31, 2021 20:53:06.439730883 CEST	49760	443	192.168.2.3	89.187.165.193
Mar 31, 2021 20:53:06.446995974 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.447014093 CEST	443	49766	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.447164059 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.447226048 CEST	49766	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.454317093 CEST	443	49739	34.102.176.152	192.168.2.3
Mar 31, 2021 20:53:06.454397917 CEST	49739	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:53:06.454555035 CEST	443	49773	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:06.454632998 CEST	49773	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:06.454797029 CEST	443	49731	104.17.70.188	192.168.2.3
Mar 31, 2021 20:53:06.454884052 CEST	49731	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:53:06.455111980 CEST	443	49772	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:06.455183029 CEST	49772	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:06.455965042 CEST	443	49740	34.102.176.152	192.168.2.3
Mar 31, 2021 20:53:06.456002951 CEST	443	49732	104.17.70.188	192.168.2.3
Mar 31, 2021 20:53:06.456049919 CEST	49740	443	192.168.2.3	34.102.176.152
Mar 31, 2021 20:53:06.456077099 CEST	49732	443	192.168.2.3	104.17.70.188
Mar 31, 2021 20:53:06.456121922 CEST	443	49763	108.177.15.155	192.168.2.3
Mar 31, 2021 20:53:06.456204891 CEST	49763	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:53:06.456886053 CEST	443	49762	108.177.15.155	192.168.2.3
Mar 31, 2021 20:53:06.456971884 CEST	49762	443	192.168.2.3	108.177.15.155
Mar 31, 2021 20:53:06.457055092 CEST	443	49764	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:06.457125902 CEST	49764	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:06.457206964 CEST	443	49748	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:06.457288027 CEST	49748	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:06.457607031 CEST	443	49765	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:06.457684040 CEST	49765	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:06.458146095 CEST	443	49749	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:06.458234072 CEST	49749	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:06.458681107 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.458717108 CEST	443	49752	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.458761930 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:53:06.458796024 CEST	443	49733	151.101.194.217	192.168.2.3
Mar 31, 2021 20:53:06.458822012 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.458831072 CEST	49752	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.458842039 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:53:06.458899975 CEST	49733	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:53:06.459362984 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:53:06.459392071 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:53:06.459428072 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:53:06.459440947 CEST	443	49719	151.101.130.109	192.168.2.3
Mar 31, 2021 20:53:06.459481955 CEST	443	49734	151.101.194.217	192.168.2.3
Mar 31, 2021 20:53:06.459498882 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:53:06.459510088 CEST	49719	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:53:06.459558010 CEST	49734	443	192.168.2.3	151.101.194.217
Mar 31, 2021 20:53:06.459727049 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.459758043 CEST	443	49767	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.460413933 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.460428953 CEST	49767	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.465682983 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.465727091 CEST	443	49753	151.101.1.44	192.168.2.3
Mar 31, 2021 20:53:06.465893030 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.465977907 CEST	49753	443	192.168.2.3	151.101.1.44
Mar 31, 2021 20:53:06.476732969 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.476772070 CEST	443	49727	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.476834059 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.476893902 CEST	49727	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.477648973 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.477689981 CEST	443	49714	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.477757931 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.477844000 CEST	49714	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.479207993 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.479301929 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.479327917 CEST	443	49726	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.479428053 CEST	49726	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.480288029 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.480418921 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.480454922 CEST	443	49713	35.246.6.109	192.168.2.3
Mar 31, 2021 20:53:06.480544090 CEST	49713	443	192.168.2.3	35.246.6.109
Mar 31, 2021 20:53:06.501739025 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:53:06.501800060 CEST	443	49718	151.101.130.109	192.168.2.3
Mar 31, 2021 20:53:06.501991987 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:53:06.502027988 CEST	49718	443	192.168.2.3	151.101.130.109
Mar 31, 2021 20:53:06.530783892 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:53:06.530838966 CEST	443	49771	54.83.110.109	192.168.2.3
Mar 31, 2021 20:53:06.531060934 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:53:06.531512976 CEST	49771	443	192.168.2.3	54.83.110.109
Mar 31, 2021 20:53:06.542716980 CEST	443	49725	34.202.131.150	192.168.2.3
Mar 31, 2021 20:53:06.542902946 CEST	443	49724	34.202.131.150	192.168.2.3
Mar 31, 2021 20:53:06.542920113 CEST	49725	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:53:06.543077946 CEST	49724	443	192.168.2.3	34.202.131.150
Mar 31, 2021 20:53:06.570199966 CEST	443	49769	108.174.11.69	192.168.2.3
Mar 31, 2021 20:53:06.570373058 CEST	49769	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:53:06.571373940 CEST	443	49768	108.174.11.69	192.168.2.3
Mar 31, 2021 20:53:06.571537971 CEST	49768	443	192.168.2.3	108.174.11.69
Mar 31, 2021 20:53:06.620584011 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:53:06.620604992 CEST	443	49728	185.230.61.179	192.168.2.3
Mar 31, 2021 20:53:06.620613098 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:53:06.620630980 CEST	443	49729	185.230.61.179	192.168.2.3
Mar 31, 2021 20:53:06.620768070 CEST	49728	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:53:06.620857000 CEST	49729	443	192.168.2.3	185.230.61.179
Mar 31, 2021 20:53:08.075088024 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:53:08.125504971 CEST	443	49790	141.226.228.48	192.168.2.3
Mar 31, 2021 20:53:08.125600100 CEST	49790	443	192.168.2.3	141.226.228.48
Mar 31, 2021 20:53:14.496259928 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:14.539413929 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:14.574659109 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:14.574711084 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:14.574800968 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:14.574822903 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:14.575320959 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:14.575376987 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:14.575393915 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:14.575442076 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:14.576739073 CEST	49828	443	192.168.2.3	216.58.215.230
Mar 31, 2021 20:53:14.624252081 CEST	443	49828	216.58.215.230	192.168.2.3
Mar 31, 2021 20:53:15.030670881 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:15.081248999 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:15.164515018 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:15.164577961 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:15.165000916 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:15.165057898 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:15.165092945 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:15.165142059 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:15.165157080 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:15.165199041 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:15.167064905 CEST	49838	443	192.168.2.3	172.217.168.66
Mar 31, 2021 20:53:15.218589067 CEST	443	49838	172.217.168.66	192.168.2.3
Mar 31, 2021 20:53:15.242135048 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:15.294147015 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:15.315298080 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:15.315371037 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:15.315418959 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:15.315466881 CEST	443	49842	172.217.168.67	192.168.2.3
Mar 31, 2021 20:53:15.315491915 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:15.315536022 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:15.315560102 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:15.812342882 CEST	49842	443	192.168.2.3	172.217.168.67
Mar 31, 2021 20:53:15.868480921 CEST	443	49842	172.217.168.67	192.168.2.3

UDP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Mar 31, 2021 20:51:08.657546043 CEST	50620	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:08.714842081 CEST	53	50620	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:08.844675064 CEST	64938	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:08.893254995 CEST	53	64938	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:09.975414038 CEST	60152	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:10.021522045 CEST	53	60152	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:10.728665113 CEST	57544	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:10.774629116 CEST	53	57544	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:11.515619993 CEST	55984	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:11.564688921 CEST	53	55984	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:12.521249056 CEST	64185	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:12.568609953 CEST	53	64185	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:13.337366104 CEST	65110	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:13.385243893 CEST	53	65110	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:14.838440895 CEST	58361	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:14.887031078 CEST	53	58361	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:15.731678963 CEST	63492	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:15.789653063 CEST	53	63492	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:15.997243881 CEST	60831	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:16.061563015 CEST	53	60831	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:16.943938017 CEST	60100	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:17.018285990 CEST	53	60100	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:17.201951981 CEST	53195	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:17.259357929 CEST	53	53195	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:17.614217043 CEST	50141	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:17.632236958 CEST	53023	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:17.671493053 CEST	53	50141	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:17.680982113 CEST	53	53023	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:18.425321102 CEST	49563	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:18.471260071 CEST	53	49563	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:20.861649990 CEST	51352	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:20.933553934 CEST	53	51352	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:21.256818056 CEST	59349	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:21.320404053 CEST	53	59349	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:21.610842943 CEST	57084	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:21.662157059 CEST	53	57084	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:22.401583910 CEST	58823	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:22.444768906 CEST	57568	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:22.462054968 CEST	53	58823	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:22.493501902 CEST	53	57568	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:22.784935951 CEST	50540	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:22.831439972 CEST	53	50540	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:23.019530058 CEST	54366	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:23.090606928 CEST	53	54366	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:26.953408003 CEST	53034	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:27.000489950 CEST	53	53034	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:27.027640104 CEST	57762	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:27.083897114 CEST	53	57762	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:28.652971983 CEST	55435	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:28.708580971 CEST	53	55435	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:28.919217110 CEST	50713	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:28.965559959 CEST	53	50713	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.351587057 CEST	56132	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.364800930 CEST	58987	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.377557039 CEST	56579	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.388154030 CEST	60633	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.406838894 CEST	53	56132	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.423383951 CEST	53	56579	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.427361965 CEST	53	58987	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.452819109 CEST	53	60633	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.469827890 CEST	61292	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.492784977 CEST	63619	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.523822069 CEST	64938	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:30.530145884 CEST	53	61292	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.540040970 CEST	53	63619	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:30.584112883 CEST	53	64938	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:31.133421898 CEST	61946	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:31.185112953 CEST	64910	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:31.193300009 CEST	53	61946	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:31.245342970 CEST	53	64910	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.068571091 CEST	52123	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.125242949 CEST	53	52123	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.135236025 CEST	56130	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.202090979 CEST	53	56130	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.417886972 CEST	56338	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.428091049 CEST	59420	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.464857101 CEST	53	56338	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.496385098 CEST	53	59420	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.838910103 CEST	58784	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.845408916 CEST	63978	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.849868059 CEST	62938	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.900602102 CEST	53	58784	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.904436111 CEST	53	62938	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.904814005 CEST	53	63978	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:33.962333918 CEST	55708	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:33.983583927 CEST	56803	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:34.016674995 CEST	53	55708	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:34.046838045 CEST	53	56803	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:34.089498997 CEST	57145	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:34.135597944 CEST	53	57145	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:34.404982090 CEST	55359	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:34.484647989 CEST	53	55359	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:34.655558109 CEST	58306	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:34.712714911 CEST	53	58306	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:34.835005045 CEST	64124	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:34.885004997 CEST	53	64124	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:34.908627033 CEST	49361	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:34.968578100 CEST	53	49361	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:35.162910938 CEST	63150	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:35.213906050 CEST	53279	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:35.221936941 CEST	53	63150	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:35.270142078 CEST	53	53279	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:35.600112915 CEST	56881	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:35.648838043 CEST	53	56881	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:36.441538095 CEST	53642	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:36.487483978 CEST	53	53642	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:37.702764034 CEST	55667	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:37.752866030 CEST	53	55667	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:43.596988916 CEST	54833	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:43.644684076 CEST	53	54833	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:45.769751072 CEST	62476	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:45.816149950 CEST	53	62476	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:46.385698080 CEST	49705	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:46.448173046 CEST	53	49705	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:46.901540041 CEST	62476	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:46.963745117 CEST	53	62476	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:47.181586027 CEST	61477	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:47.253992081 CEST	53	61477	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:47.397869110 CEST	49705	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:47.452394009 CEST	53	49705	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:47.899952888 CEST	62476	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:47.950927019 CEST	53	62476	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:48.413372040 CEST	49705	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:48.460226059 CEST	53	49705	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:49.898367882 CEST	62476	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:49.944962025 CEST	53	62476	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:50.413913012 CEST	49705	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:50.470839977 CEST	53	49705	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:53.910523891 CEST	62476	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:53.956559896 CEST	53	62476	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:54.426182985 CEST	49705	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:54.481187105 CEST	53	49705	8.8.8.8	192.168.2.3
Mar 31, 2021 20:51:59.382438898 CEST	61633	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:51:59.439214945 CEST	53	61633	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:02.732532024 CEST	55949	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:02.800316095 CEST	53	55949	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:03.087088108 CEST	57601	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:03.123452902 CEST	49342	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:03.129937887 CEST	56253	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:03.147192001 CEST	49667	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:03.149554968 CEST	53	57601	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:03.175296068 CEST	55439	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:03.180140972 CEST	53	56253	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:03.192837954 CEST	53	49342	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:03.203757048 CEST	53	49667	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:03.222490072 CEST	53	55439	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:03.432455063 CEST	57069	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:03.493473053 CEST	53	57069	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:04.076479912 CEST	57659	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:04.126140118 CEST	53	57659	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:04.442135096 CEST	54717	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:04.506119013 CEST	53	54717	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:04.550143003 CEST	63975	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:04.615253925 CEST	53	63975	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:04.893630028 CEST	56639	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:04.940596104 CEST	53	56639	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:05.622042894 CEST	63975	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:05.683562040 CEST	53	63975	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:06.693169117 CEST	63975	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:06.747278929 CEST	53	63975	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:08.708560944 CEST	63975	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:08.754580021 CEST	53	63975	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:12.724536896 CEST	63975	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:12.788995981 CEST	53	63975	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:16.352564096 CEST	51856	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:16.403296947 CEST	56546	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:16.417663097 CEST	53	51856	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:16.467612982 CEST	53	56546	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:18.114768028 CEST	62152	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:18.176908016 CEST	53	62152	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:24.928836107 CEST	53470	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:24.974698067 CEST	53	53470	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:27.866569042 CEST	56446	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:27.924967051 CEST	53	56446	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:55.302460909 CEST	59631	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:55.378180981 CEST	53	59631	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:55.506390095 CEST	55515	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:55.568317890 CEST	53	55515	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:55.745435953 CEST	64547	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:55.809951067 CEST	53	64547	8.8.8.8	192.168.2.3
Mar 31, 2021 20:52:58.558541059 CEST	51759	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:52:58.614609003 CEST	53	51759	8.8.8.8	192.168.2.3
Mar 31, 2021 20:53:00.919732094 CEST	59207	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:53:00.977323055 CEST	53	59207	8.8.8.8	192.168.2.3
Mar 31, 2021 20:53:03.188898087 CEST	54269	53	192.168.2.3	8.8.8.8
Mar 31, 2021 20:53:03.259339094 CEST	53	54269	8.8.8.8	192.168.2.3

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class
Mar 31, 2021 20:51:16.943938017 CEST	192.168.2.3	8.8.8.8	0xeb39	Standard query (0)	www.foothillsvaccineclinic.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:17.614217043 CEST	192.168.2.3	8.8.8.8	0xca0f	Standard query (0)	static.parastorage.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:17.632236958 CEST	192.168.2.3	8.8.8.8	0x2a67	Standard query (0)	polyfill.io	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.425321102 CEST	192.168.2.3	8.8.8.8	0x8f20	Standard query (0)	frog.wix.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:20.861649990 CEST	192.168.2.3	8.8.8.8	0x29e3	Standard query (0)	en.wix.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:21.256818056 CEST	192.168.2.3	8.8.8.8	0x3ed7	Standard query (0)	www.wix.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.401583910 CEST	192.168.2.3	8.8.8.8	0x40d1	Standard query (0)	fast.fonts.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.444768906 CEST	192.168.2.3	8.8.8.8	0x9485	Standard query (0)	browser.sentry-cdn.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:23.019530058 CEST	192.168.2.3	8.8.8.8	0xd3ea	Standard query (0)	siteassets.parastorage.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:27.027640104 CEST	192.168.2.3	8.8.8.8	0x5c01	Standard query (0)	static.wixstatic.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.364800930 CEST	192.168.2.3	8.8.8.8	0xd66c	Standard query (0)	4382365.fls.doubleclick.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.469827890 CEST	192.168.2.3	8.8.8.8	0xce50	Standard query (0)	s.pinimg.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.492784977 CEST	192.168.2.3	8.8.8.8	0xb973	Standard query (0)	cdn.taboola.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.523822069 CEST	192.168.2.3	8.8.8.8	0x14c5	Standard query (0)	snap.licdn.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:31.133421898 CEST	192.168.2.3	8.8.8.8	0x4293	Standard query (0)	connect.facebook.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:31.185112953 CEST	192.168.2.3	8.8.8.8	0xf303	Standard query (0)	ob.cheqzone.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.068571091 CEST	192.168.2.3	8.8.8.8	0x77cd	Standard query (0)	stats.g.doubleclick.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.135236025 CEST	192.168.2.3	8.8.8.8	0x9217	Standard query (0)	googleads.g.doubleclick.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.417886972 CEST	192.168.2.3	8.8.8.8	0x6051	Standard query (0)	trc.taboola.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.428091049 CEST	192.168.2.3	8.8.8.8	0x2a85	Standard query (0)	px.ads.linkedin.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.838910103 CEST	192.168.2.3	8.8.8.8	0x5f90	Standard query (0)	obs.cheqzone.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.849868059 CEST	192.168.2.3	8.8.8.8	0xcaf7	Standard query (0)	www.google.ch	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.983583927 CEST	192.168.2.3	8.8.8.8	0xa2c0	Standard query (0)	www.google.co.uk	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.089498997 CEST	192.168.2.3	8.8.8.8	0xec4a	Standard query (0)	www.linkedin.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.404982090 CEST	192.168.2.3	8.8.8.8	0xb044	Standard query (0)	adservice.google.ch	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.655558109 CEST	192.168.2.3	8.8.8.8	0xa01	Standard query (0)	www.facebook.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.908627033 CEST	192.168.2.3	8.8.8.8	0x7793	Standard query (0)	trc-events.taboola.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:35.162910938 CEST	192.168.2.3	8.8.8.8	0xecca	Standard query (0)	static.parastorage.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:35.213906050 CEST	192.168.2.3	8.8.8.8	0x9b23	Standard query (0)	cx.atdmt.com	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.442135096 CEST	192.168.2.3	8.8.8.8	0x8f0f	Standard query (0)	stats.g.doubleclick.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.893630028 CEST	192.168.2.3	8.8.8.8	0x2e7b	Standard query (0)	www.google.co.uk	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:16.403296947 CEST	192.168.2.3	8.8.8.8	0x482	Standard query (0)	2542116.fls.doubleclick.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:55.302460909 CEST	192.168.2.3	8.8.8.8	0xc6fe	Standard query (0)	googleads.g.doubleclick.net	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:55.745435953 CEST	192.168.2.3	8.8.8.8	0x91d1	Standard query (0)	www.google.ch	A (IP address)	IN (0x0001)

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class
Mar 31, 2021 20:51:17.018285990 CEST	8.8.8.8	192.168.2.3	0xeb39	No error (0)	www.foothillsvaccineclinic.com	www218.wixdns.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:17.018285990 CEST	8.8.8.8	192.168.2.3	0xeb39	No error (0)	www218.wixdns.net	balancer.wixdns.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:17.018285990 CEST	8.8.8.8	192.168.2.3	0xeb39	No error (0)	balancer.wixdns.net	5f36b111-balancer.wixdns.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:17.018285990 CEST	8.8.8.8	192.168.2.3	0xeb39	No error (0)	5f36b111-balancer.wixdns.net	td-balancer-euw2-6-109.wixdns.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:17.018285990 CEST	8.8.8.8	192.168.2.3	0xeb39	No error (0)	td-balancer-euw2-6-109.wixdns.net		35.246.6.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:17.671493053 CEST	8.8.8.8	192.168.2.3	0xca0f	No error (0)	static.parastorage.com	n2.shared.global.fastly.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:17.680982113 CEST	8.8.8.8	192.168.2.3	0x2a67	No error (0)	polyfill.io		151.101.130.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:17.680982113 CEST	8.8.8.8	192.168.2.3	0x2a67	No error (0)	polyfill.io		151.101.2.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:17.680982113 CEST	8.8.8.8	192.168.2.3	0x2a67	No error (0)	polyfill.io		151.101.194.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:17.680982113 CEST	8.8.8.8	192.168.2.3	0x2a67	No error (0)	polyfill.io		151.101.66.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	frog.wix.com	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		34.202.131.150	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		34.199.153.199	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		34.235.49.255	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		54.84.69.181	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		34.227.36.18	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		3.212.73.210	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		3.94.177.97	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:18.471260071 CEST	8.8.8.8	192.168.2.3	0x8f20	No error (0)	bi-flogger-alb-ext-343643057.us-east-1.elb.amazonaws.com		54.236.107.104	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:20.933553934 CEST	8.8.8.8	192.168.2.3	0x29e3	No error (0)	en.wix.com	username.wix.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:20.933553934 CEST	8.8.8.8	192.168.2.3	0x29e3	No error (0)	username.wix.com	5f36b111-username.wix.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:20.933553934 CEST	8.8.8.8	192.168.2.3	0x29e3	No error (0)	5f36b111-username.wix.com	td-username-euw2-6-109.wix.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:20.933553934 CEST	8.8.8.8	192.168.2.3	0x29e3	No error (0)	td-username-euw2-6-109.wix.com		35.246.6.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:21.320404053 CEST	8.8.8.8	192.168.2.3	0x3ed7	No error (0)	www.wix.com	wwworigin.wix.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:21.320404053 CEST	8.8.8.8	192.168.2.3	0x3ed7	No error (0)	wwworigin.wix.com	179.www.sv5.wix.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:21.320404053 CEST	8.8.8.8	192.168.2.3	0x3ed7	No error (0)	179.www.sv5.wix.com		185.230.61.179	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.462054968 CEST	8.8.8.8	192.168.2.3	0x40d1	No error (0)	fast.fonts.com		104.17.70.188	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.462054968 CEST	8.8.8.8	192.168.2.3	0x40d1	No error (0)	fast.fonts.com		104.17.71.188	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.493501902 CEST	8.8.8.8	192.168.2.3	0x9485	No error (0)	browser.sentry-cdn.com		151.101.194.217	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.493501902 CEST	8.8.8.8	192.168.2.3	0x9485	No error (0)	browser.sentry-cdn.com		151.101.66.217	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.493501902 CEST	8.8.8.8	192.168.2.3	0x9485	No error (0)	browser.sentry-cdn.com		151.101.2.217	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:22.493501902 CEST	8.8.8.8	192.168.2.3	0x9485	No error (0)	browser.sentry-cdn.com		151.101.130.217	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:23.090606928 CEST	8.8.8.8	192.168.2.3	0xd3ea	No error (0)	siteassets.parastorage.com	static.parastorage.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:23.090606928 CEST	8.8.8.8	192.168.2.3	0xd3ea	No error (0)	static.parastorage.com	n2.shared.global.fastly.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:27.083897114 CEST	8.8.8.8	192.168.2.3	0x5c01	No error (0)	static.wixstatic.com	gcp.media-router.wixstatic.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:27.083897114 CEST	8.8.8.8	192.168.2.3	0x5c01	No error (0)	gcp.media-router.wixstatic.com		34.102.176.152	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.427361965 CEST	8.8.8.8	192.168.2.3	0xd66c	No error (0)	4382365.fls.doubleclick.net	dart.l.doubleclick.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:30.427361965 CEST	8.8.8.8	192.168.2.3	0xd66c	No error (0)	dart.l.doubleclick.net		216.58.215.230	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.530145884 CEST	8.8.8.8	192.168.2.3	0xce50	No error (0)	s.pinimg.com	s-pinimg-com.gslb.pinterest.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:30.530145884 CEST	8.8.8.8	192.168.2.3	0xce50	No error (0)	s-pinimg-com.gslb.pinterest.com	2-01-37d2-0006.cdx.cedexis.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:30.540040970 CEST	8.8.8.8	192.168.2.3	0xb973	No error (0)	cdn.taboola.com	tls13.taboola.map.fastly.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:30.540040970 CEST	8.8.8.8	192.168.2.3	0xb973	No error (0)	tls13.taboola.map.fastly.net		151.101.1.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.540040970 CEST	8.8.8.8	192.168.2.3	0xb973	No error (0)	tls13.taboola.map.fastly.net		151.101.65.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.540040970 CEST	8.8.8.8	192.168.2.3	0xb973	No error (0)	tls13.taboola.map.fastly.net		151.101.129.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.540040970 CEST	8.8.8.8	192.168.2.3	0xb973	No error (0)	tls13.taboola.map.fastly.net		151.101.193.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:30.584112883 CEST	8.8.8.8	192.168.2.3	0x14c5	No error (0)	snap.licdn.com	wildcard.licdn.com.edgekey.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:31.193300009 CEST	8.8.8.8	192.168.2.3	0x4293	No error (0)	connect.facebook.net	scontent.xx.fbcdn.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:31.193300009 CEST	8.8.8.8	192.168.2.3	0x4293	No error (0)	scontent.xx.fbcdn.net		185.60.216.19	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:31.245342970 CEST	8.8.8.8	192.168.2.3	0xf303	No error (0)	ob.cheqzone.com	cheqzone2.b-cdn.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:31.245342970 CEST	8.8.8.8	192.168.2.3	0xf303	No error (0)	cheqzone2.b-cdn.net		89.187.165.193	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.125242949 CEST	8.8.8.8	192.168.2.3	0x77cd	No error (0)	stats.g.doubleclick.net	stats.l.doubleclick.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:33.125242949 CEST	8.8.8.8	192.168.2.3	0x77cd	No error (0)	stats.l.doubleclick.net		108.177.15.155	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.125242949 CEST	8.8.8.8	192.168.2.3	0x77cd	No error (0)	stats.l.doubleclick.net		108.177.15.156	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.125242949 CEST	8.8.8.8	192.168.2.3	0x77cd	No error (0)	stats.l.doubleclick.net		108.177.15.154	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.125242949 CEST	8.8.8.8	192.168.2.3	0x77cd	No error (0)	stats.l.doubleclick.net		108.177.15.157	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.202090979 CEST	8.8.8.8	192.168.2.3	0x9217	No error (0)	googleads.g.doubleclick.net		172.217.168.66	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.464857101 CEST	8.8.8.8	192.168.2.3	0x6051	No error (0)	trc.taboola.com	tls13.taboola.map.fastly.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:33.464857101 CEST	8.8.8.8	192.168.2.3	0x6051	No error (0)	tls13.taboola.map.fastly.net		151.101.1.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.464857101 CEST	8.8.8.8	192.168.2.3	0x6051	No error (0)	tls13.taboola.map.fastly.net		151.101.65.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.464857101 CEST	8.8.8.8	192.168.2.3	0x6051	No error (0)	tls13.taboola.map.fastly.net		151.101.129.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.464857101 CEST	8.8.8.8	192.168.2.3	0x6051	No error (0)	tls13.taboola.map.fastly.net		151.101.193.44	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.496385098 CEST	8.8.8.8	192.168.2.3	0x2a85	No error (0)	px.ads.linkedin.com	mix.linkedin.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:33.496385098 CEST	8.8.8.8	192.168.2.3	0x2a85	No error (0)	mix.linkedin.com	glb-na.mix.linkedin.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:33.496385098 CEST	8.8.8.8	192.168.2.3	0x2a85	No error (0)	glb-na.mix.linkedin.com	pop-eda6.mix.linkedin.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:33.496385098 CEST	8.8.8.8	192.168.2.3	0x2a85	No error (0)	pop-eda6.mix.linkedin.com		108.174.11.69	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.900602102 CEST	8.8.8.8	192.168.2.3	0x5f90	No error (0)	obs.cheqzone.com		54.83.110.109	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.900602102 CEST	8.8.8.8	192.168.2.3	0x5f90	No error (0)	obs.cheqzone.com		34.199.234.25	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.900602102 CEST	8.8.8.8	192.168.2.3	0x5f90	No error (0)	obs.cheqzone.com		35.172.245.152	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.900602102 CEST	8.8.8.8	192.168.2.3	0x5f90	No error (0)	obs.cheqzone.com		52.45.196.192	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.900602102 CEST	8.8.8.8	192.168.2.3	0x5f90	No error (0)	obs.cheqzone.com		50.16.211.97	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.900602102 CEST	8.8.8.8	192.168.2.3	0x5f90	No error (0)	obs.cheqzone.com		3.227.190.204	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:33.904436111 CEST	8.8.8.8	192.168.2.3	0xcaf7	No error (0)	www.google.ch		172.217.168.67	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.046838045 CEST	8.8.8.8	192.168.2.3	0xa2c0	No error (0)	www.google.co.uk		216.58.215.227	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.135597944 CEST	8.8.8.8	192.168.2.3	0xec4a	No error (0)	www.linkedin.com	www-linkedin-com.l-0005.l-msedge.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:34.484647989 CEST	8.8.8.8	192.168.2.3	0xb044	No error (0)	adservice.google.ch	pagead46.l.doubleclick.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:34.484647989 CEST	8.8.8.8	192.168.2.3	0xb044	No error (0)	pagead46.l.doubleclick.net		172.217.168.34	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.712714911 CEST	8.8.8.8	192.168.2.3	0xa01	No error (0)	www.facebook.com	star-mini.c10r.facebook.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:34.712714911 CEST	8.8.8.8	192.168.2.3	0xa01	No error (0)	star-mini.c10r.facebook.com		185.60.216.35	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:34.968578100 CEST	8.8.8.8	192.168.2.3	0x7793	No error (0)	trc-events.taboola.com	am-trc-events.taboola.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:34.968578100 CEST	8.8.8.8	192.168.2.3	0x7793	No error (0)	am-trc-events.taboola.com	am-vip001.taboola.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:34.968578100 CEST	8.8.8.8	192.168.2.3	0x7793	No error (0)	am-vip001.taboola.com		141.226.228.48	A (IP address)	IN (0x0001)
Mar 31, 2021 20:51:35.221936941 CEST	8.8.8.8	192.168.2.3	0xecca	No error (0)	static.parastorage.com	n2.shared.global.fastly.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:35.270142078 CEST	8.8.8.8	192.168.2.3	0x9b23	No error (0)	cx.atdmt.com	atlas.c10r.facebook.com		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:51:35.270142078 CEST	8.8.8.8	192.168.2.3	0x9b23	No error (0)	atlas.c10r.facebook.com		185.60.216.6	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.506119013 CEST	8.8.8.8	192.168.2.3	0x8f0f	No error (0)	stats.g.doubleclick.net	stats.l.doubleclick.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:52:04.506119013 CEST	8.8.8.8	192.168.2.3	0x8f0f	No error (0)	stats.l.doubleclick.net		108.177.15.154	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.506119013 CEST	8.8.8.8	192.168.2.3	0x8f0f	No error (0)	stats.l.doubleclick.net		108.177.15.157	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.506119013 CEST	8.8.8.8	192.168.2.3	0x8f0f	No error (0)	stats.l.doubleclick.net		108.177.15.155	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.506119013 CEST	8.8.8.8	192.168.2.3	0x8f0f	No error (0)	stats.l.doubleclick.net		108.177.15.156	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:04.940596104 CEST	8.8.8.8	192.168.2.3	0x2e7b	No error (0)	www.google.co.uk		216.58.215.227	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:16.467612982 CEST	8.8.8.8	192.168.2.3	0x482	No error (0)	2542116.fls.doubleclick.net	dart.l.doubleclick.net		CNAME (Canonical name)	IN (0x0001)
Mar 31, 2021 20:52:16.467612982 CEST	8.8.8.8	192.168.2.3	0x482	No error (0)	dart.l.doubleclick.net		216.58.215.230	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:55.378180981 CEST	8.8.8.8	192.168.2.3	0xc6fe	No error (0)	googleads.g.doubleclick.net		172.217.168.66	A (IP address)	IN (0x0001)
Mar 31, 2021 20:52:55.809951067 CEST	8.8.8.8	192.168.2.3	0x91d1	No error (0)	www.google.ch		172.217.168.67	A (IP address)	IN (0x0001)

HTTPS Packets

Timestamp	Source IP	Source Port	Dest IP	Dest Port	Subject	Issuer	Not Before	Not After	JA3 SSL Client Fingerprint	JA3 SSL Client Digest
Mar 31, 2021 20:51:17.159457922 CEST	35.246.6.109	443	192.168.2.3	49714	CN=foothillsvaccineclinic.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Sat Mar 13 01:00:00 CET 2021 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Sat Jun 12 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:17.163932085 CEST	35.246.6.109	443	192.168.2.3	49713	CN=foothillsvaccineclinic.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Sat Mar 13 01:00:00 CET 2021 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Sat Jun 12 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:17.773564100 CEST	151.101.130.109	443	192.168.2.3	49719	CN=f3.shared.global.fastly.net, O="Fastly, Inc.", L=San Francisco, ST=California, C=US CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE	CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE	Thu Mar 25 16:40:23 CET 2021 Wed Aug 19 02:00:00 CEST 2015	Sat Mar 26 14:08:54 CET 2022 Tue Aug 19 02:00:00 CEST 2025	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:17.773564100 CEST	151.101.130.109	443	192.168.2.3	49719	CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE	CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE	Wed Aug 19 02:00:00 CEST 2015	Tue Aug 19 02:00:00 CEST 2025		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:17.823719978 CEST	151.101.130.109	443	192.168.2.3	49718	CN=f3.shared.global.fastly.net, O="Fastly, Inc.", L=San Francisco, ST=California, C=US CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE	CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE	Thu Mar 25 16:40:23 CET 2021 Wed Aug 19 02:00:00 CEST 2015	Sat Mar 26 14:08:54 CET 2022 Tue Aug 19 02:00:00 CEST 2025	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:17.823719978 CEST	151.101.130.109	443	192.168.2.3	49718	CN=GlobalSign CloudSSL CA - SHA256 - G3, O=GlobalSign nv-sa, C=BE	CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE	Wed Aug 19 02:00:00 CEST 2015	Tue Aug 19 02:00:00 CEST 2025		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:18.849613905 CEST	34.202.131.150	443	192.168.2.3	49724	CN=*.wix.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Thu Dec 17 01:00:00 CET 2020 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Wed Jun 16 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:18.851020098 CEST	34.202.131.150	443	192.168.2.3	49725	CN=*.wix.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Thu Dec 17 01:00:00 CET 2020 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Wed Jun 16 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:21.087480068 CEST	35.246.6.109	443	192.168.2.3	49727	CN=*.wix.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Thu Dec 17 01:00:00 CET 2020 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Wed Jun 16 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:21.090179920 CEST	35.246.6.109	443	192.168.2.3	49726	CN=*.wix.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Thu Dec 17 01:00:00 CET 2020 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Wed Jun 16 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:21.747324944 CEST	185.230.61.179	443	192.168.2.3	49728	CN=*.wix.com CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Dec 17 01:00:00 CET 2020 Fri Nov 02 01:00:00 CET 2018 Tue Mar 12 01:00:00 CET 2019 Thu Jan 01 01:00:00 CET 2004	Wed Jun 16 01:59:59 CEST 2021 Wed Jan 01 00:59:59 CET 2031 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
Mar 31, 2021 20:51:21.749438047 CEST	185.230.61.179	443	192.168.2.3	49729	CN=*.wix.com CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Dec 17 01:00:00 CET 2020 Fri Nov 02 01:00:00 CET 2018 Tue Mar 12 01:00:00 CET 2019 Thu Jan 01 01:00:00 CET 2004	Wed Jun 16 01:59:59 CEST 2021 Wed Jan 01 00:59:59 CET 2031 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
Mar 31, 2021 20:51:22.551320076 CEST	104.17.70.188	443	192.168.2.3	49731	CN=*.fonts.com, O=Monotype Imaging Inc., L=Woburn, ST=Massachusetts, C=US CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Mon Nov 02 01:00:00 CET 2020 Fri Mar 08 13:00:00 CET 2013	Wed Nov 17 00:59:59 CET 2021 Wed Mar 08 13:00:00 CET 2023	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.551320076 CEST	104.17.70.188	443	192.168.2.3	49731	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Fri Mar 08 13:00:00 CET 2013	Wed Mar 08 13:00:00 CET 2023		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.555685043 CEST	104.17.70.188	443	192.168.2.3	49732	CN=*.fonts.com, O=Monotype Imaging Inc., L=Woburn, ST=Massachusetts, C=US CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Mon Nov 02 01:00:00 CET 2020 Fri Mar 08 13:00:00 CET 2013	Wed Nov 17 00:59:59 CET 2021 Wed Mar 08 13:00:00 CET 2023	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.555685043 CEST	104.17.70.188	443	192.168.2.3	49732	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Fri Mar 08 13:00:00 CET 2013	Wed Mar 08 13:00:00 CET 2023		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.593099117 CEST	151.101.194.217	443	192.168.2.3	49734	CN=*.sentry-cdn.com CN=GlobalSign Atlas R3 DV TLS CA 2020, O=GlobalSign nv-sa, C=BE	CN=GlobalSign Atlas R3 DV TLS CA 2020, O=GlobalSign nv-sa, C=BE CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3	Mon Feb 22 20:39:57 CET 2021 Tue Jul 28 02:00:00 CEST 2020	Sat Mar 26 20:39:57 CET 2022 Sun Mar 18 01:00:00 CET 2029	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.593099117 CEST	151.101.194.217	443	192.168.2.3	49734	CN=GlobalSign Atlas R3 DV TLS CA 2020, O=GlobalSign nv-sa, C=BE	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3	Tue Jul 28 02:00:00 CEST 2020	Sun Mar 18 01:00:00 CET 2029		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.626142025 CEST	151.101.194.217	443	192.168.2.3	49733	CN=*.sentry-cdn.com CN=GlobalSign Atlas R3 DV TLS CA 2020, O=GlobalSign nv-sa, C=BE	CN=GlobalSign Atlas R3 DV TLS CA 2020, O=GlobalSign nv-sa, C=BE CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3	Mon Feb 22 20:39:57 CET 2021 Tue Jul 28 02:00:00 CEST 2020	Sat Mar 26 20:39:57 CET 2022 Sun Mar 18 01:00:00 CET 2029	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:22.626142025 CEST	151.101.194.217	443	192.168.2.3	49733	CN=GlobalSign Atlas R3 DV TLS CA 2020, O=GlobalSign nv-sa, C=BE	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3	Tue Jul 28 02:00:00 CEST 2020	Sun Mar 18 01:00:00 CET 2029		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:27.164535046 CEST	34.102.176.152	443	192.168.2.3	49739	CN=*.wixstatic.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Feb 05 01:00:00 CET 2021 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Thu Aug 05 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:27.168436050 CEST	34.102.176.152	443	192.168.2.3	49740	CN=*.wixstatic.com CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Feb 05 01:00:00 CET 2021 Thu Jan 01 01:00:00 CET 2004 Tue Mar 12 01:00:00 CET 2019 Fri Nov 02 01:00:00 CET 2018	Thu Aug 05 01:59:59 CEST 2021 Mon Jan 01 00:59:59 CET 2029 Mon Jan 01 00:59:59 CET 2029 Wed Jan 01 00:59:59 CET 2031	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Thu Jan 01 01:00:00 CET 2004	Mon Jan 01 00:59:59 CET 2029
					CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB	Tue Mar 12 01:00:00 CET 2019	Mon Jan 01 00:59:59 CET 2029
					CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, ST=Greater Manchester, C=GB	CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, C=US	Fri Nov 02 01:00:00 CET 2018	Wed Jan 01 00:59:59 CET 2031
Mar 31, 2021 20:51:30.549418926 CEST	216.58.215.230	443	192.168.2.3	49748	CN=*.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Tue Mar 16 20:28:03 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Tue Jun 08 21:28:02 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:30.549418926 CEST	216.58.215.230	443	192.168.2.3	49748	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:30.576155901 CEST	216.58.215.230	443	192.168.2.3	49749	CN=*.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Tue Mar 16 20:28:03 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Tue Jun 08 21:28:02 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:30.576155901 CEST	216.58.215.230	443	192.168.2.3	49749	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.120842934 CEST	151.101.1.44	443	192.168.2.3	49752	CN=*.taboola.com, O="Taboola, Inc", L=New York, ST=New York, C=US CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Nov 25 01:00:00 CET 2020 Thu Sep 24 02:00:00 CEST 2020	Mon Dec 27 00:59:59 CET 2021 Tue Sep 24 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.120842934 CEST	151.101.1.44	443	192.168.2.3	49752	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Thu Sep 24 02:00:00 CEST 2020	Tue Sep 24 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.125278950 CEST	151.101.1.44	443	192.168.2.3	49753	CN=*.taboola.com, O="Taboola, Inc", L=New York, ST=New York, C=US CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Nov 25 01:00:00 CET 2020 Thu Sep 24 02:00:00 CEST 2020	Mon Dec 27 00:59:59 CET 2021 Tue Sep 24 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.125278950 CEST	151.101.1.44	443	192.168.2.3	49753	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Thu Sep 24 02:00:00 CEST 2020	Tue Sep 24 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.377464056 CEST	185.60.216.19	443	192.168.2.3	49758	CN=*.facebook.com, O="Facebook, Inc.", L=Menlo Park, ST=California, C=US CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Feb 10 01:00:00 CET 2021 Tue Oct 22 14:00:00 CEST 2013	Tue May 11 01:59:59 CEST 2021 Sun Oct 22 14:00:00 CEST 2028	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.377464056 CEST	185.60.216.19	443	192.168.2.3	49758	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Tue Oct 22 14:00:00 CEST 2013	Sun Oct 22 14:00:00 CEST 2028		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.381381035 CEST	185.60.216.19	443	192.168.2.3	49759	CN=*.facebook.com, O="Facebook, Inc.", L=Menlo Park, ST=California, C=US CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Feb 10 01:00:00 CET 2021 Tue Oct 22 14:00:00 CEST 2013	Tue May 11 01:59:59 CEST 2021 Sun Oct 22 14:00:00 CEST 2028	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.381381035 CEST	185.60.216.19	443	192.168.2.3	49759	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Tue Oct 22 14:00:00 CEST 2013	Sun Oct 22 14:00:00 CEST 2028		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:31.407850027 CEST	89.187.165.193	443	192.168.2.3	49760	CN=ob.cheqzone.com CN=R3, O=Let's Encrypt, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.	CN=R3, O=Let's Encrypt, C=US CN=DST Root CA X3, O=Digital Signature Trust Co. CN=DST Root CA X3, O=Digital Signature Trust Co.	Wed Mar 10 09:08:35 CET 2021 Wed Oct 07 21:21:40 CEST 2020 Sat Sep 30 23:12:19 CEST 2000	Tue Jun 08 10:08:35 CEST 2021 Wed Sep 29 21:21:40 CEST 2021 Thu Sep 30 16:01:15 CEST 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=R3, O=Let's Encrypt, C=US	CN=DST Root CA X3, O=Digital Signature Trust Co.	Wed Oct 07 21:21:40 CEST 2020	Wed Sep 29 21:21:40 CEST 2021
					CN=DST Root CA X3, O=Digital Signature Trust Co.	CN=DST Root CA X3, O=Digital Signature Trust Co.	Sat Sep 30 23:12:19 CEST 2000	Thu Sep 30 16:01:15 CEST 2021
Mar 31, 2021 20:51:31.408140898 CEST	89.187.165.193	443	192.168.2.3	49761	CN=ob.cheqzone.com CN=R3, O=Let's Encrypt, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.	CN=R3, O=Let's Encrypt, C=US CN=DST Root CA X3, O=Digital Signature Trust Co. CN=DST Root CA X3, O=Digital Signature Trust Co.	Wed Mar 10 09:08:35 CET 2021 Wed Oct 07 21:21:40 CEST 2020 Sat Sep 30 23:12:19 CEST 2000	Tue Jun 08 10:08:35 CEST 2021 Wed Sep 29 21:21:40 CEST 2021 Thu Sep 30 16:01:15 CEST 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
					CN=R3, O=Let's Encrypt, C=US	CN=DST Root CA X3, O=Digital Signature Trust Co.	Wed Oct 07 21:21:40 CEST 2020	Wed Sep 29 21:21:40 CEST 2021
					CN=DST Root CA X3, O=Digital Signature Trust Co.	CN=DST Root CA X3, O=Digital Signature Trust Co.	Sat Sep 30 23:12:19 CEST 2000	Thu Sep 30 16:01:15 CEST 2021
Mar 31, 2021 20:51:33.230917931 CEST	108.177.15.155	443	192.168.2.3	49763	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.230917931 CEST	108.177.15.155	443	192.168.2.3	49763	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.231602907 CEST	108.177.15.155	443	192.168.2.3	49762	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.231602907 CEST	108.177.15.155	443	192.168.2.3	49762	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.330404043 CEST	172.217.168.66	443	192.168.2.3	49764	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.330404043 CEST	172.217.168.66	443	192.168.2.3	49764	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.331016064 CEST	172.217.168.66	443	192.168.2.3	49765	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.331016064 CEST	172.217.168.66	443	192.168.2.3	49765	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.582957029 CEST	151.101.1.44	443	192.168.2.3	49767	CN=*.taboola.com, O="Taboola, Inc", L=New York, ST=New York, C=US CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Nov 25 01:00:00 CET 2020 Thu Sep 24 02:00:00 CEST 2020	Mon Dec 27 00:59:59 CET 2021 Tue Sep 24 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.582957029 CEST	151.101.1.44	443	192.168.2.3	49767	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Thu Sep 24 02:00:00 CEST 2020	Tue Sep 24 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.583758116 CEST	151.101.1.44	443	192.168.2.3	49766	CN=*.taboola.com, O="Taboola, Inc", L=New York, ST=New York, C=US CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Nov 25 01:00:00 CET 2020 Thu Sep 24 02:00:00 CEST 2020	Mon Dec 27 00:59:59 CET 2021 Tue Sep 24 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.583758116 CEST	151.101.1.44	443	192.168.2.3	49766	CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Thu Sep 24 02:00:00 CEST 2020	Tue Sep 24 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.866369009 CEST	108.174.11.69	443	192.168.2.3	49769	CN=px.ads.linkedin.com, O=LinkedIn Corporation, L=Sunnyvale, ST=California, C=US CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Jan 06 01:00:00 CET 2021 Wed Sep 23 02:00:00 CEST 2020	Tue Jul 06 01:59:59 CEST 2021 Mon Sep 23 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.866369009 CEST	108.174.11.69	443	192.168.2.3	49769	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Sep 23 02:00:00 CEST 2020	Mon Sep 23 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.868235111 CEST	108.174.11.69	443	192.168.2.3	49768	CN=px.ads.linkedin.com, O=LinkedIn Corporation, L=Sunnyvale, ST=California, C=US CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Jan 06 01:00:00 CET 2021 Wed Sep 23 02:00:00 CEST 2020	Tue Jul 06 01:59:59 CEST 2021 Mon Sep 23 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:33.868235111 CEST	108.174.11.69	443	192.168.2.3	49768	CN=DigiCert SHA2 Secure Server CA, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Sep 23 02:00:00 CEST 2020	Mon Sep 23 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.021615028 CEST	172.217.168.67	443	192.168.2.3	49772	CN=*.google.ch, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 16:02:00 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 17:01:59 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.021615028 CEST	172.217.168.67	443	192.168.2.3	49772	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.021677017 CEST	172.217.168.67	443	192.168.2.3	49773	CN=*.google.ch, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 16:02:00 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 17:01:59 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.021677017 CEST	172.217.168.67	443	192.168.2.3	49773	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.157655001 CEST	54.83.110.109	443	192.168.2.3	49770	CN=obs.cheqzone.com CN=R3, O=Let's Encrypt, C=US	CN=R3, O=Let's Encrypt, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.	Sun Feb 14 10:28:10 CET 2021 Wed Oct 07 21:21:40 CEST 2020	Sat May 15 11:28:10 CEST 2021 Wed Sep 29 21:21:40 CEST 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.157655001 CEST	54.83.110.109	443	192.168.2.3	49770	CN=R3, O=Let's Encrypt, C=US	CN=DST Root CA X3, O=Digital Signature Trust Co.	Wed Oct 07 21:21:40 CEST 2020	Wed Sep 29 21:21:40 CEST 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.157974005 CEST	54.83.110.109	443	192.168.2.3	49771	CN=obs.cheqzone.com CN=R3, O=Let's Encrypt, C=US	CN=R3, O=Let's Encrypt, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.	Sun Feb 14 10:28:10 CET 2021 Wed Oct 07 21:21:40 CEST 2020	Sat May 15 11:28:10 CEST 2021 Wed Sep 29 21:21:40 CEST 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.157974005 CEST	54.83.110.109	443	192.168.2.3	49771	CN=R3, O=Let's Encrypt, C=US	CN=DST Root CA X3, O=Digital Signature Trust Co.	Wed Oct 07 21:21:40 CEST 2020	Wed Sep 29 21:21:40 CEST 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.794065952 CEST	185.60.216.35	443	192.168.2.3	49787	CN=*.facebook.com, O="Facebook, Inc.", L=Menlo Park, ST=California, C=US CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Feb 10 01:00:00 CET 2021 Tue Oct 22 14:00:00 CEST 2013	Tue May 11 01:59:59 CEST 2021 Sun Oct 22 14:00:00 CEST 2028	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.794065952 CEST	185.60.216.35	443	192.168.2.3	49787	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Tue Oct 22 14:00:00 CEST 2013	Sun Oct 22 14:00:00 CEST 2028		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.794107914 CEST	185.60.216.35	443	192.168.2.3	49786	CN=*.facebook.com, O="Facebook, Inc.", L=Menlo Park, ST=California, C=US CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Feb 10 01:00:00 CET 2021 Tue Oct 22 14:00:00 CEST 2013	Tue May 11 01:59:59 CEST 2021 Sun Oct 22 14:00:00 CEST 2028	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:34.794107914 CEST	185.60.216.35	443	192.168.2.3	49786	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Tue Oct 22 14:00:00 CEST 2013	Sun Oct 22 14:00:00 CEST 2028		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.071870089 CEST	141.226.228.48	443	192.168.2.3	49789	CN=*.taboola.com, O="Taboola, Inc", L=New York, ST=New York, C=US CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Nov 25 01:00:00 CET 2020 Wed Sep 23 02:00:00 CEST 2020	Mon Dec 27 00:59:59 CET 2021 Mon Sep 23 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.071870089 CEST	141.226.228.48	443	192.168.2.3	49789	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Sep 23 02:00:00 CEST 2020	Mon Sep 23 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.072899103 CEST	141.226.228.48	443	192.168.2.3	49790	CN=*.taboola.com, O="Taboola, Inc", L=New York, ST=New York, C=US CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Nov 25 01:00:00 CET 2020 Wed Sep 23 02:00:00 CEST 2020	Mon Dec 27 00:59:59 CET 2021 Mon Sep 23 01:59:59 CEST 2030	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.072899103 CEST	141.226.228.48	443	192.168.2.3	49790	CN=DigiCert TLS Hybrid ECC SHA384 2020 CA1, O=DigiCert Inc, C=US	CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Wed Sep 23 02:00:00 CEST 2020	Mon Sep 23 01:59:59 CEST 2030		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.355220079 CEST	185.60.216.6	443	192.168.2.3	49792	CN=*.atlassolutions.com, O="Facebook, Inc.", L=Menlo Park, ST=California, C=US CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Fri Jan 29 01:00:00 CET 2021 Tue Oct 22 14:00:00 CEST 2013	Thu Apr 29 01:59:59 CEST 2021 Sun Oct 22 14:00:00 CEST 2028	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.355220079 CEST	185.60.216.6	443	192.168.2.3	49792	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Tue Oct 22 14:00:00 CEST 2013	Sun Oct 22 14:00:00 CEST 2028		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.356122971 CEST	185.60.216.6	443	192.168.2.3	49793	CN=*.atlassolutions.com, O="Facebook, Inc.", L=Menlo Park, ST=California, C=US CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Fri Jan 29 01:00:00 CET 2021 Tue Oct 22 14:00:00 CEST 2013	Thu Apr 29 01:59:59 CEST 2021 Sun Oct 22 14:00:00 CEST 2028	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:51:35.356122971 CEST	185.60.216.6	443	192.168.2.3	49793	CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US	CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US	Tue Oct 22 14:00:00 CEST 2013	Sun Oct 22 14:00:00 CEST 2028		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:04.624672890 CEST	108.177.15.154	443	192.168.2.3	49822	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:04.624672890 CEST	108.177.15.154	443	192.168.2.3	49822	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:04.626200914 CEST	108.177.15.154	443	192.168.2.3	49821	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:04.626200914 CEST	108.177.15.154	443	192.168.2.3	49821	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:16.619580030 CEST	216.58.215.230	443	192.168.2.3	49828	CN=*.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Tue Mar 16 20:28:03 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Tue Jun 08 21:28:02 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:16.619580030 CEST	216.58.215.230	443	192.168.2.3	49828	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:16.662074089 CEST	216.58.215.230	443	192.168.2.3	49827	CN=*.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Tue Mar 16 20:28:03 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Tue Jun 08 21:28:02 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:16.662074089 CEST	216.58.215.230	443	192.168.2.3	49827	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.510157108 CEST	172.217.168.66	443	192.168.2.3	49838	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.510157108 CEST	172.217.168.66	443	192.168.2.3	49838	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.511009932 CEST	172.217.168.66	443	192.168.2.3	49839	CN=*.g.doubleclick.net, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 15:54:02 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 16:54:01 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.511009932 CEST	172.217.168.66	443	192.168.2.3	49839	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.929136038 CEST	172.217.168.67	443	192.168.2.3	49842	CN=*.google.ch, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 16:02:00 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 17:01:59 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.929136038 CEST	172.217.168.67	443	192.168.2.3	49842	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.936229944 CEST	172.217.168.67	443	192.168.2.3	49843	CN=*.google.ch, O=Google LLC, L=Mountain View, ST=California, C=US CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GTS CA 1O1, O=Google Trust Services, C=US CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Mar 11 16:02:00 CET 2021 Thu Jun 15 02:00:42 CEST 2017	Thu Jun 03 17:01:59 CEST 2021 Wed Dec 15 01:00:42 CET 2021	771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-16-23-24-65281,29-23-24,0	9e10692f1b7f78228b2d4e424db3a98c
Mar 31, 2021 20:52:55.936229944 CEST	172.217.168.67	443	192.168.2.3	49843	CN=GTS CA 1O1, O=Google Trust Services, C=US	CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2	Thu Jun 15 02:00:42 CEST 2017	Wed Dec 15 01:00:42 CET 2021		9e10692f1b7f78228b2d4e424db3a98c

Code Manipulations

Statistics

CPU Usage

Click to jump to process

Memory Usage

Click to jump to process

Behavior

Click to jump to process

System Behavior

Analysis Process: iexplore.exe PID: 5620 Parent PID: 792

General

Start time:	20:51:14
Start date:	31/03/2021
Path:	C:\Program Files\internet explorer\iexplore.exe
Wow64 process (32bit):	false
Commandline:	'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
Imagebase:	0x7ff672360000
File size:	823560 bytes
MD5 hash:	6465CB92B25A7BC1DF8E01D8AC5E7596
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low

Chronological Activities

Analysis Process: iexplore.exe PID: 5556 Parent PID: 5620

General

Start time:	20:51:15
Start date:	31/03/2021
Path:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Wow64 process (32bit):	true
Commandline:	'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:17410 /prefetch:2
Imagebase:	0x3d0000
File size:	822536 bytes
MD5 hash:	071277CC2E3DF41EEEA8013E2AB58D5A
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low

Chronological Activities

Analysis Process: iexplore.exe PID: 6664 Parent PID: 5620

General

Start time:	20:52:00
Start date:	31/03/2021
Path:	C:\Program Files (x86)\Internet Explorer\iexplore.exe
Wow64 process (32bit):	true
Commandline:	'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5620 CREDAT:82966 /prefetch:2
Imagebase:	0x3d0000
File size:	822536 bytes
MD5 hash:	071277CC2E3DF41EEEA8013E2AB58D5A
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low

Chronological Activities

Disassembly

Reset < >

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	API monitoring, DLL monitoring, File monitoring, Named Pipes, Process monitoring
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Binary file metadata, File monitoring, Process command-line parameters, Process monitoring
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Adversaries may use the information from File and Directory Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	File monitoring, Process command-line parameters, Process monitoring
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Malware reverse engineering, Netflow/Enclave netflow, Packet capture, Process monitoring, Process use of network, SSL/TLS inspection
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use a non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Host network interface, Netflow/Enclave netflow, Network intrusion detection system, Network protocol analysis, Packet capture, Process use of network
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	DNS records, Netflow/Enclave netflow, Network protocol analysis, Packet capture, Process monitoring, Process use of network
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading ...

Warning!

Analysis Report https://www.foothillsvaccineclinic.com/covid-registration-form

Overview

General Information

Detection

Signatures

Classification

Startup

Malware Configuration

Yara Overview

Sigma Overview

Signature Overview

Compliance:

Networking:

System Summary:

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

Contacted IPs

Public

General Information

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASN

JA3 Fingerprints

Dropped Files

Created / dropped Files

Static File Info

No static file info

Network Behavior

Network Port Distribution

TCP Packets

UDP Packets

DNS Queries

DNS Answers

HTTPS Packets

Code Manipulations

Statistics

CPU Usage

Memory Usage

Behavior

System Behavior

Analysis Process: iexplore.exe PID: 5620 Parent PID: 792

General

Chronological Activities

Analysis Process: iexplore.exe PID: 5556 Parent PID: 5620

General

Chronological Activities

Analysis Process: iexplore.exe PID: 6664 Parent PID: 5620

General

Chronological Activities

Disassembly