Analysis Report https://www.bredlifeof.info/

Overview

General Information

Sample URL:	https://www.bredlifeof.info/
Analysis ID:	412529
Infos:
Most interesting Screenshot:

Detection

HTMLPhisher

Score:	72
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for URL or domain

Phishing site detected (based on favicon image match)

Yara detected HtmlPhish10

Phishing site detected (based on image similarity)

Phishing site detected (based on logo template match)

HTML body contains low number of good links

HTML title does not match URL

Invalid 'forgot password' link found

Classification

Signatures

AV Detection:

Antivirus detection for URL or domain

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

Phishing site detected (based on favicon image match)

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

Matcher: Template: microsoft matched with high similarity

Yara detected HtmlPhish10

Source: Yara match

File source: 25037.pages.csv, type: HTML

Phishing site detected (based on image similarity)

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

Matcher: Found strong image similarity, brand: Microsoft image: 25037.img.2.gfk.csv EE5C8D9FB6248C938FD0DC19370E90BD

Phishing site detected (based on logo template match)

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

Matcher: Template: microsoft matched

HTML body contains low number of good links

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Number of links: 0
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Number of links: 0

HTML title does not match URL

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Title: Sign in to Outlook does not match URL
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Title: Sign in to Outlook does not match URL

Invalid 'forgot password' link found

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Invalid link: Forgot my password
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Invalid link: Forgot my password

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="author".. found
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="author".. found

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="copyright".. found
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49776 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49777 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49780 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49796 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49805 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49895 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49898 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49914 version: TLS 1.2

Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: de Facebook](https://www.facebook.com/privacy/explanation) sont applicables. Si vous utilisez le G equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: dell'utente e secondo le [Condizioni di Facebook Business](https://www.facebook.com/legal/technology_terms) e la [Dichiarazione sulla privacy di Facebook](https://www.facebook.com/privacy/explanation). Se usi il Generatore di testi legali, cos equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: et aux risques de l'utilisateur. [Les conditions d'utilisation de Facebook Business](https://www.facebook.com/legal/technology_terms) et la [Politique de confidentialit equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: Let op: Jimdo levert alleen de technische middelen om de [Facebook Business Extension (FBE)](https://developers.facebook.com/docs/marketing-api/fbe/) met je webshop te verbinden. Het activeren en gebruiken van de FBE en andere Facebook-tools vindt volledig plaats op verantwoordelijkheid en risico van de gebruiker en de [Facebook Business voorwaarden](https://www.facebook.com/legal/technology_terms) en de [Privacyverklaring van Facebook](https://www.facebook.com/privacy/explanation) zijn van toepassing. Als je de Juridische Tekstgenerator gebruikt, raden we je aan, net als bij alle andere tools, de betreffende voorwaarden van Trusted Shops te raadplegen voordat je de FBE activeert. equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: Please note that Jimdo only provides the technical means to integrate the [Facebook Business Extension (FBE)](https://developers.facebook.com/docs/marketing-api/fbe/) with your Jimdo store. The activation and use of the FBE and associated Facebook tools occurs entirely at the User's own responsibility and risk and the [Facebook Business Terms](https://www.facebook.com/legal/technology_terms) and the [Facebook Privacy Policy](https://www.facebook.com/privacy/explanation) apply. If you use the Legal Text Generator, as with all additional tools, it is recommended that you consult the relevant Trusted Shops Terms, before activating the FBE. equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: +#https://www.facebook.com/policy.php equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: <https://www.youtube.com/watch?v=pB-003Fu6AI&feature=youtu.be equals www.youtube.com (Youtube)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: g)https://www.facebook.com/policies/cookies equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: gung stellt, um Facebook for Business [FacebookBusinessExtension(FBE)](https://developers.facebook.com/docs/marketing-api/fbe/) mit deinem Jimdo Onlineshop zu verbinden. Die Aktivierung und Nutzung von Facebook for Business und aller damit verbundenen Tools liegt in der Verantwortung des Nutzers und geschieht auf eigene Gefahr. Es gelten die [Facebook Datenverarbeitungsbedingungen] (https://www.facebook.com/legal/technology_terms) sowie die [Facebook Datenschutzerkl equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.facebook.com/policies/cookies equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.facebook.com/policy.php equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.youtube.com/watch?v=pB-003Fu6AI&feature=youtu.be equals www.youtube.com (Youtube)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: n las [Condiciones de Facebook para empresas](https://www.facebook.com/legal/technology_terms) y la [Pol equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: rung] (https://www.facebook.com/privacy/explanation). Wenn du den Rechtstexte-Manager verwendest, empfiehlt es sich, wie bei allen zus equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: tica de privacidad de Facebook](https://www.facebook.com/privacy/explanation). Si utilizas el Generador de textos legales de Jimdo, as equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: www.bredlifeof.info

Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://codepen.io/dimsemenov/pen/yyBWoR
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/draft-06/schema#
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/draft-07/schema
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/draft-07/schema#
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/schema
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://tools.google.com/dlpage/gaoptout
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_de.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_en.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_es.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_fr.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_it.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_nl.pdf
Source: 0d4dbbbfb0e94616_0.0.dr, Network Action Predictor.0.dr	String found in binary or memory: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/
Source: Current Session.0.dr	String found in binary or memory: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html
Source: History-journal.0.dr	String found in binary or memory: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.htmlSign
Source: Reporting and NEL.1.dr	String found in binary or memory: https://a.nel.cloudflare.com/report?s=ueZAu6LShp056D%2FI6xUclwMHrfVHq394v5EyoaPxrD1tLwMQpYAbcL%2BnCG
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://account.e.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://account.e.jimdo.com/
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://ajax.aspnetcdn.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://ayuda.jimdo.com/facturaci%C3%B3n/cancelaciones/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://bit.do/eMmpK
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://blog.keanulee.com/2014/10/20/the-tale-of-three-spinners.html
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://business-profile-service.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://business-profile-service.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://calendly.com/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://calendly.com/jimdo-support/video-support-a
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://catamphetamine.gitlab.io/country-flag-icons/3x2/
Source: Network Action Predictor.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://chatbot.e.jimdo-stable-staging.com
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://chatbot.e.jimdo.com
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://checkout.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://checkout.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms-backend.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms-backend.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/facebook_set_token.html
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/account/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/billing/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/business-profile-service/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/cms-backend/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/cms-frontend-api/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/legal-text-generator/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-bp/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-cs-kt/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-tts/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-wsvar/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/storage/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/store/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/upgrade-frontend-api/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/facebook_set_token.html
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/account/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/billing/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/business-profile-service/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/cms-backend/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/cms-frontend-api/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/legal-text-generator/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-bp-prod/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-cs-kt-prod/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-tts/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-wsvar/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/storage/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/store/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/upgrade-frontend-api/
Source: 0d4dbbbfb0e94616_0.0.dr	String found in binary or memory: https://code.jquery.com/jquery-3.1.1.min.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://content-storage-stage.freetls.fastly.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo-stable-staging.com/websites/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo.com/websites/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/agb-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/agb/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/datenschutzerklaerung/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/datenschutzerklaerung/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/impressum/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/widerrufsbelehrung-und-formular/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-feature-flags-proxy-prod.jimdo-platform.net/ld_proxy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-feature-flags-proxy-stage.jimdo-platform.net/ld_proxy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-legal-text-generator-prod.jimdo-platform.net/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-legal-text-generator-stage.jimdo-platform.net/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-unsplash-tracking-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://domainsbackend-prod-alti.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://domainsbackend-stable-alti.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://domainsfrontend-stable.jimdo-platform.net
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/condiciones-generales-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/condiciones-generales/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/politica-de-privacidad/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/politica-de-privacidad/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/politica-de-privacidad/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://flipper-backend-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://flipper-backend-stage.jimdo-platform.net/
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://fonts.jimstatic.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Abril
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Ek
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Fredoka
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Martel:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Merriweather:700
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Montserrat:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Open
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Oxygen:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=PT
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Patua
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Playfair
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Poppins:600
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Raleway:300
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Roboto:300
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Roboto:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Rubik:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Rubik:500
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Varela
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/charte-de-confidentialite/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/conditions-d-utilisation-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/conditions-d-utilisation/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/droit-de-r%C3%A9tractation/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/mentions-legales/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/politique-de-confidentialite/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/politique-de-confidentialite/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de/articles/115005738383-Wie-verbinde-ich-meine-G-Suite-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de/articles/115005745466-Wie-richte-ich-eine-E-Mail-Weiterleitung-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/115005738383-How-do-I-connect-my-G-Suite
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/115005745466-How-do-I-setup-Email-Forwarding
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/360022894071-How-do-I-get-my-Dolphin-store-ready-fo
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/115005738383--C%C3%B3mo-configuro-Google-G-Suite-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/115005745466--C%C3%B3mo-redirecciono-mis-emails-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/360022894071--C%C3%B3mo-termino-de-montar-mi-tienda-on
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/115005738383-Comment-connecter-un-compte-G-Suite
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/115005745466-Param%C3%A9trer-un-transfert-d-email
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/360022894071-Quelles-sont-les-%C3%A9tapes-%C3%A0-suivr
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/115005738383-Come-faccio-a-collegare-il-mio-account-G-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/115005745466-Come-si-imposta-un-alias-per-l-email-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/360022894071-Come-faccio-a-vendere-attraverso-il-mio-s
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/115005738383
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/115005745466
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/360000905146?utm_source=upgradescreen)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/115005738383-Hoe-verbind-ik-mijn-G-Suite-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/115005745466-Hoe-stel-ik-het-doorsturen-van-e-mails-in
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/360022894071-Wanneer-is-mijn-Dolphin-webshop-klaar-voo
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://hilfe.jimdo.com/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://insitez.blob.core.windows.net/site/1a3716e7-3ff8-4b86-8954-e4db849c96f9.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://insitez.blob.core.windows.net/site/789f34d6-6efe-4b09-9261-a05c9888d85c.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://insitez.blob.core.windows.net/site/8e23be8a-0ea6-4f4a-9af9-a79cd0f49856.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/condizioni-generali-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/condizioni-generali/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/regolamento-sulla-privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/regolamento-sulla-privacy/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/regolamento-sulla-privacy/).
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/cms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/ceb721f3140266a92265.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/ceb721f3140266a92265.jsa
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-stage.freetls.fastly.net/cms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-stage.freetls.fastly.net/renderer/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-stage.freetls.fastly.net/renderer/static/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-storage.freetls.fastly.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo.com)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo.com).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo.com/fr/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jp.jimdo.com/info/%E7%89%B9%E5%AE%9A%E5%95%86%E5%8F%96%E5%BC%95%E6%B3%95%E3%81%AB%E5%9F%BA%E
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jp.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jp.jimdo.com/info/term-of-use/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://logo.e.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://logo.e.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://lp.shore.com/en/jimdo/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-bp-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-bp-stage.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-category-prediction-prod.jimdo-platform.net
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-category-prediction-stage.jimdo-platform.net
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-cs-kt-prod.jimdo-platform.net/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-cs-kt-stage.jimdo-platform.net/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-tts-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-tts-stage.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-wsvar-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-wsvar-stage.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/algemene-voorwaarden-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/algemene-voorwaarden/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/herroepingsrecht-en-formulier/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/impressum/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/privacy/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/privacy/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://op-image-super-resolution.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=de
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=en
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=en).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=es
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=es).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=fr
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=fr).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=it
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=it).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=ja
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=nl
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=nl).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/technologies/cookies
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://statics-marketingsites-wcus-ms-com.akamaized.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://storage.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://storage.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://store.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://store.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://stripe.com/cookies-policy/legal
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://stripe.com/privacy
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://t.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=de).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=en)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=es).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=fr).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=it).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=nl).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://vimeo.com/cookie_policy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://vimeo.com/privacy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/de/legal/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/de-ww/cookies/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/en-ww/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/es/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/fr-ww/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/it/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/jp/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/nl/
Source: 000003.log3.0.dr	String found in binary or memory: https://www.bredlifeof.info
Source: Network Action Predictor-journal.0.dr, Current Session.0.dr, History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/
Source: History Provider Cache.0.dr	String found in binary or memory: https://www.bredlifeof.info/2
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/Home
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/O
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/;Kh
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/Cookie
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/ifl
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/f
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/imprint/
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/imprint/?E
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/imprint/Imprint
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/Privacy
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/Q
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/Yj#
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/de.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/es.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/it.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/nl.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/intl/de/policies/privacy/index.html#Datenschutzerkl%C3%A4rung).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/webmasters/tools/home)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/webmasters/tools/home).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.de/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.es/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.fr/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.fr/analytics/terms/fr.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.it/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.jp/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.nl/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo-status.com/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo-status.com/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/about
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/blog/corona-business-checklist/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/hilfspaket-onlineshop-fuer-unternehmen/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/info/agb/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/info/jimdo-online-videoberatung-nutzungsbedingungen/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/magazin/corona-krise/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/preise/onlineshop/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/2020/03/23/qu%C3%A9-hacer-si-el-coronavirus-afecta-tu-peque%C3%B1o-negocio/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/ayuda-tienda-online-empresas)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/info/politica-de-privacidad/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/2020/03/23/que-faire-si-l-%C3%A9pid%C3%A9mie-du-coronavirus-affecte-votre-a
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/aide-eboutique-PME)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/info/politique-de-confidentialite/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/cancellation/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/jimdo-video-consultation-terms-of-service/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/terms-of-service-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/terms-of-service/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/2020/03/23/coronavirus-consigli-per-imprese-e-professionisti/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/info/regolamento-sulla-privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/supporto-shop-online-pmi)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/news/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/blog/ondernemen/corona-checklist-ondernemers/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/noodhulp-webshop-ondernemers)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/relief-onlineshop-businesses/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.help/hc/it/articles/212083686-Come-disdire-l-abbonamento
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.kddi-webcommunications.co.jp/security/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/cookie-full
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/privacy-full
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.paypal.com/sdk/js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.privacyshield.gov/welcome)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/de/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/es/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/fr/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/it/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/jp/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/legal/cookies-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/nl/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/us/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.youtube.com/watch?v=pB-003Fu6AI&feature=youtu.be

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822

Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49776 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49777 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49780 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49796 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49805 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49895 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49898 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49914 version: TLS 1.2

Source: classification engine

Classification label: mal72.phis.win@37/193@17/10

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-609C8689-17F0.pma

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user~1\AppData\Local\Temp\cdcecb74-35f2-4b7c-af73-59c0b0a0f709.tmp

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.bredlifeof.info/'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,19381948695824494,2468386753968997499,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1772 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,19381948695824494,2468386753968997499,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1772 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
52.49.20.157	dolphin-render-ce5083-1529577379-1289163597.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
216.58.212.129	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
104.16.18.94	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
52.95.155.72	s3-r-w.eu-west-3.amazonaws.com	United States	16509	AMAZON-02US	false
52.16.206.246	unknown	United States	16509	AMAZON-02US	false
151.101.2.79	jimdo-dolphin-static-assets-prod.freetls.fastly.net	United States	54113	FASTLYUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
152.199.23.37	cs1100.wpc.omegacdn.net	United States	15133	EDGECASTUS	false

Private

IP
192.168.2.1
127.0.0.1

Contacted Domains

Name	IP	Active
jimdo-dolphin-static-assets-prod.freetls.fastly.net	151.101.2.79	true
cs1100.wpc.omegacdn.net	152.199.23.37	true
s3-r-w.eu-west-3.amazonaws.com	52.95.155.72	true
cdnjs.cloudflare.com	104.16.18.94	true
jimdo-storage.freetls.fastly.net	151.101.2.79	true
dolphin-render-ce5083-1529577379-1289163597.eu-west-1.elb.amazonaws.com	52.49.20.157	true
googlehosted.l.googleusercontent.com	216.58.212.129	true
clients2.googleusercontent.com	unknown	unknown
code.jquery.com	unknown	unknown
fonts.jimstatic.com	unknown	unknown
aadcdn.msftauth.net	unknown	unknown
www.bredlifeof.info	unknown	unknown
assets.onestore.ms	unknown	unknown
4dfffgghmhkh.s3.eu-west-3.amazonaws.com	unknown	unknown
ajax.aspnetcdn.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.bredlifeof.info/cookie-settings/	true		unknown
https://www.bredlifeof.info/privacy-policy/	true		unknown

AV Detection:

Antivirus detection for URL or domain

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

Phishing site detected (based on favicon image match)

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

Matcher: Template: microsoft matched with high similarity

Yara detected HtmlPhish10

Source: Yara match

File source: 25037.pages.csv, type: HTML

Phishing site detected (based on image similarity)

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

Matcher: Found strong image similarity, brand: Microsoft image: 25037.img.2.gfk.csv EE5C8D9FB6248C938FD0DC19370E90BD

Phishing site detected (based on logo template match)

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html

Matcher: Template: microsoft matched

HTML body contains low number of good links

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Number of links: 0
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Number of links: 0

HTML title does not match URL

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Title: Sign in to Outlook does not match URL
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Title: Sign in to Outlook does not match URL

Invalid 'forgot password' link found

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Invalid link: Forgot my password
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: Invalid link: Forgot my password

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="author".. found
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="author".. found

Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="copyright".. found
Source: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49776 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49777 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49780 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49796 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49805 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49895 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49898 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49914 version: TLS 1.2

Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: de Facebook](https://www.facebook.com/privacy/explanation) sont applicables. Si vous utilisez le G equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: dell'utente e secondo le [Condizioni di Facebook Business](https://www.facebook.com/legal/technology_terms) e la [Dichiarazione sulla privacy di Facebook](https://www.facebook.com/privacy/explanation). Se usi il Generatore di testi legali, cos equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: et aux risques de l'utilisateur. [Les conditions d'utilisation de Facebook Business](https://www.facebook.com/legal/technology_terms) et la [Politique de confidentialit equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: Let op: Jimdo levert alleen de technische middelen om de [Facebook Business Extension (FBE)](https://developers.facebook.com/docs/marketing-api/fbe/) met je webshop te verbinden. Het activeren en gebruiken van de FBE en andere Facebook-tools vindt volledig plaats op verantwoordelijkheid en risico van de gebruiker en de [Facebook Business voorwaarden](https://www.facebook.com/legal/technology_terms) en de [Privacyverklaring van Facebook](https://www.facebook.com/privacy/explanation) zijn van toepassing. Als je de Juridische Tekstgenerator gebruikt, raden we je aan, net als bij alle andere tools, de betreffende voorwaarden van Trusted Shops te raadplegen voordat je de FBE activeert. equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: Please note that Jimdo only provides the technical means to integrate the [Facebook Business Extension (FBE)](https://developers.facebook.com/docs/marketing-api/fbe/) with your Jimdo store. The activation and use of the FBE and associated Facebook tools occurs entirely at the User's own responsibility and risk and the [Facebook Business Terms](https://www.facebook.com/legal/technology_terms) and the [Facebook Privacy Policy](https://www.facebook.com/privacy/explanation) apply. If you use the Legal Text Generator, as with all additional tools, it is recommended that you consult the relevant Trusted Shops Terms, before activating the FBE. equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: +#https://www.facebook.com/policy.php equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: <https://www.youtube.com/watch?v=pB-003Fu6AI&feature=youtu.be equals www.youtube.com (Youtube)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: g)https://www.facebook.com/policies/cookies equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: gung stellt, um Facebook for Business [FacebookBusinessExtension(FBE)](https://developers.facebook.com/docs/marketing-api/fbe/) mit deinem Jimdo Onlineshop zu verbinden. Die Aktivierung und Nutzung von Facebook for Business und aller damit verbundenen Tools liegt in der Verantwortung des Nutzers und geschieht auf eigene Gefahr. Es gelten die [Facebook Datenverarbeitungsbedingungen] (https://www.facebook.com/legal/technology_terms) sowie die [Facebook Datenschutzerkl equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.facebook.com/policies/cookies equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.facebook.com/policy.php equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.youtube.com/watch?v=pB-003Fu6AI&feature=youtu.be equals www.youtube.com (Youtube)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: n las [Condiciones de Facebook para empresas](https://www.facebook.com/legal/technology_terms) y la [Pol equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: rung] (https://www.facebook.com/privacy/explanation). Wenn du den Rechtstexte-Manager verwendest, empfiehlt es sich, wie bei allen zus equals www.facebook.com (Facebook)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: tica de privacidad de Facebook](https://www.facebook.com/privacy/explanation). Si utilizas el Generador de textos legales de Jimdo, as equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: www.bredlifeof.info

Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://codepen.io/dimsemenov/pen/yyBWoR
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/draft-06/schema#
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/draft-07/schema
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/draft-07/schema#
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://json-schema.org/schema
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://tools.google.com/dlpage/gaoptout
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_de.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_en.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_es.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_fr.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_it.pdf
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: http://www.trustedshops.com/tsdocument/WIZARD_TERMS_nl.pdf
Source: 0d4dbbbfb0e94616_0.0.dr, Network Action Predictor.0.dr	String found in binary or memory: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/
Source: Current Session.0.dr	String found in binary or memory: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.html
Source: History-journal.0.dr	String found in binary or memory: https://4dfffgghmhkh.s3.eu-west-3.amazonaws.com/gdfhfgkhkhjkhf/saue8.htmlSign
Source: Reporting and NEL.1.dr	String found in binary or memory: https://a.nel.cloudflare.com/report?s=ueZAu6LShp056D%2FI6xUclwMHrfVHq394v5EyoaPxrD1tLwMQpYAbcL%2BnCG
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://account.e.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://account.e.jimdo.com/
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://ajax.aspnetcdn.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://ayuda.jimdo.com/facturaci%C3%B3n/cancelaciones/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://bit.do/eMmpK
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://blog.keanulee.com/2014/10/20/the-tale-of-three-spinners.html
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://business-profile-service.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://business-profile-service.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://calendly.com/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://calendly.com/jimdo-support/video-support-a
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://catamphetamine.gitlab.io/country-flag-icons/3x2/
Source: Network Action Predictor.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://chatbot.e.jimdo-stable-staging.com
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://chatbot.e.jimdo.com
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://checkout.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://checkout.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms-backend.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms-backend.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/facebook_set_token.html
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/account/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/billing/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/business-profile-service/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/cms-backend/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/cms-frontend-api/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/legal-text-generator/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-bp/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-cs-kt/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-tts/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/nemo-wsvar/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/storage/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/store/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo-stable-staging.com/s/upgrade-frontend-api/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/facebook_set_token.html
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/account/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/billing/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/business-profile-service/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/cms-backend/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/cms-frontend-api/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/legal-text-generator/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-bp-prod/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-cs-kt-prod/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-tts/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/nemo-wsvar/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/storage/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/store/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://cms.jimdo.com/s/upgrade-frontend-api/
Source: 0d4dbbbfb0e94616_0.0.dr	String found in binary or memory: https://code.jquery.com/jquery-3.1.1.min.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://content-storage-stage.freetls.fastly.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo-stable-staging.com/websites/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dash.e.jimdo.com/websites/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/agb-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/agb/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/datenschutzerklaerung/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/datenschutzerklaerung/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/impressum/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://de.jimdo.com/info/widerrufsbelehrung-und-formular/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-feature-flags-proxy-prod.jimdo-platform.net/ld_proxy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-feature-flags-proxy-stage.jimdo-platform.net/ld_proxy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-legal-text-generator-prod.jimdo-platform.net/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-legal-text-generator-stage.jimdo-platform.net/api/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://dolphin-unsplash-tracking-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://domainsbackend-prod-alti.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://domainsbackend-stable-alti.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://domainsfrontend-stable.jimdo-platform.net
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/condiciones-generales-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/condiciones-generales/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/politica-de-privacidad/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/politica-de-privacidad/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://es.jimdo.com/info/politica-de-privacidad/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://flipper-backend-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://flipper-backend-stage.jimdo-platform.net/
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://fonts.jimstatic.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Abril
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Ek
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Fredoka
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Martel:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Merriweather:700
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Montserrat:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Open
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Oxygen:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=PT
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Patua
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Playfair
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Poppins:600
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Raleway:300
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Roboto:300
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Roboto:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Rubik:400
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Rubik:500
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Varela
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/charte-de-confidentialite/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/conditions-d-utilisation-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/conditions-d-utilisation/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/droit-de-r%C3%A9tractation/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/mentions-legales/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/politique-de-confidentialite/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://fr.jimdo.com/info/politique-de-confidentialite/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de/articles/115005738383-Wie-verbinde-ich-meine-G-Suite-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de/articles/115005745466-Wie-richte-ich-eine-E-Mail-Weiterleitung-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/de/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/115005738383-How-do-I-connect-my-G-Suite
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/115005745466-How-do-I-setup-Email-Forwarding
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/360022894071-How-do-I-get-my-Dolphin-store-ready-fo
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/en-us/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/115005738383--C%C3%B3mo-configuro-Google-G-Suite-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/115005745466--C%C3%B3mo-redirecciono-mis-emails-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/360022894071--C%C3%B3mo-termino-de-montar-mi-tienda-on
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/es/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/115005738383-Comment-connecter-un-compte-G-Suite
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/115005745466-Param%C3%A9trer-un-transfert-d-email
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/360022894071-Quelles-sont-les-%C3%A9tapes-%C3%A0-suivr
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/fr/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/115005738383-Come-faccio-a-collegare-il-mio-account-G-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/115005745466-Come-si-imposta-un-alias-per-l-email-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/360022894071-Come-faccio-a-vendere-attraverso-il-mio-s
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/it/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/115005738383
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/115005745466
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/360000905146?utm_source=upgradescreen)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/ja/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/115005738383-Hoe-verbind-ik-mijn-G-Suite-
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/115005745466-Hoe-stel-ik-het-doorsturen-van-e-mails-in
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/360022894071-Wanneer-is-mijn-Dolphin-webshop-klaar-voo
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://help.jimdo-dolphin.com/hc/nl/articles/360058420551/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://hilfe.jimdo.com/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://insitez.blob.core.windows.net/site/1a3716e7-3ff8-4b86-8954-e4db849c96f9.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://insitez.blob.core.windows.net/site/789f34d6-6efe-4b09-9261-a05c9888d85c.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://insitez.blob.core.windows.net/site/8e23be8a-0ea6-4f4a-9af9-a79cd0f49856.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/condizioni-generali-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/condizioni-generali/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/regolamento-sulla-privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/regolamento-sulla-privacy/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://it.jimdo.com/info/regolamento-sulla-privacy/).
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/cms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/ceb721f3140266a92265.js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/ceb721f3140266a92265.jsa
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-stage.freetls.fastly.net/cms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-stage.freetls.fastly.net/renderer/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-stage.freetls.fastly.net/renderer/static/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo-storage.freetls.fastly.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo.com)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo.com).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jimdo.com/fr/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jp.jimdo.com/info/%E7%89%B9%E5%AE%9A%E5%95%86%E5%8F%96%E5%BC%95%E6%B3%95%E3%81%AB%E5%9F%BA%E
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jp.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://jp.jimdo.com/info/term-of-use/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://logo.e.jimdo-stable-staging.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://logo.e.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://lp.shore.com/en/jimdo/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-bp-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-bp-stage.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-category-prediction-prod.jimdo-platform.net
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-category-prediction-stage.jimdo-platform.net
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-cs-kt-prod.jimdo-platform.net/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-cs-kt-stage.jimdo-platform.net/v1/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-tts-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-tts-stage.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-wsvar-prod.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nemo-wsvar-stage.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/algemene-voorwaarden-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/algemene-voorwaarden/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/herroepingsrecht-en-formulier/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/impressum/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/privacy/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://nl.jimdo.com/info/privacy/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://op-image-super-resolution.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=de
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=en
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=en).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=es
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=es).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=fr
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=fr).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=it
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=it).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=ja
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=nl
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/privacy?hl=nl).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://policies.google.com/technologies/cookies
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://statics-marketingsites-wcus-ms-com.akamaized.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://storage.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://storage.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://store.jimdosite-stage.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://store.jimdosite.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://stripe.com/cookies-policy/legal
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://stripe.com/privacy
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://t.jimdo-platform.net/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=de).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=en)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=es).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=fr).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=it).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout?hl=nl).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://vimeo.com/cookie_policy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://vimeo.com/privacy
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/de/legal/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/de-ww/cookies/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/en-ww/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/es/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/fr-ww/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/it/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/jp/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.apple.com/legal/privacy/nl/
Source: 000003.log3.0.dr	String found in binary or memory: https://www.bredlifeof.info
Source: Network Action Predictor-journal.0.dr, Current Session.0.dr, History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/
Source: History Provider Cache.0.dr	String found in binary or memory: https://www.bredlifeof.info/2
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/Home
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/O
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/;Kh
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/Cookie
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/cookie-settings/ifl
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/f
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/imprint/
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/imprint/?E
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/imprint/Imprint
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/
Source: History-journal.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/Privacy
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/Q
Source: Current Session.0.dr	String found in binary or memory: https://www.bredlifeof.info/privacy-policy/Yj#
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/de.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/es.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/it.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/analytics/terms/nl.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/intl/de/policies/privacy/index.html#Datenschutzerkl%C3%A4rung).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/webmasters/tools/home)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.com/webmasters/tools/home).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.de/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.es/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.fr/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.fr/analytics/terms/fr.html)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.it/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.jp/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.google.nl/adwords/express/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo-status.com/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo-status.com/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/about
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/blog/corona-business-checklist/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/hilfspaket-onlineshop-fuer-unternehmen/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/info/agb/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/info/jimdo-online-videoberatung-nutzungsbedingungen/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/magazin/corona-krise/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/de/preise/onlineshop/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/2020/03/23/qu%C3%A9-hacer-si-el-coronavirus-afecta-tu-peque%C3%B1o-negocio/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/ayuda-tienda-online-empresas)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/es/info/politica-de-privacidad/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/2020/03/23/que-faire-si-l-%C3%A9pid%C3%A9mie-du-coronavirus-affecte-votre-a
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/aide-eboutique-PME)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/fr/info/politique-de-confidentialite/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/about/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/business-listings-terms/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/cancellation/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/jimdo-video-consultation-terms-of-service/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/).
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/terms-of-service-2017/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/info/terms-of-service/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/2020/03/23/coronavirus-consigli-per-imprese-e-professionisti/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/info/regolamento-sulla-privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/it/supporto-shop-online-pmi)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/jp/news/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/blog/ondernemen/corona-checklist-ondernemers/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/info/cookies/policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/info/privacy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/nl/noodhulp-webshop-ondernemers)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.com/relief-onlineshop-businesses/)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.jimdo.help/hc/it/articles/212083686-Come-disdire-l-abbonamento
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.kddi-webcommunications.co.jp/security/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/cookie-full
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/privacy-full
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.paypal.com/sdk/js
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.privacyshield.gov/welcome)
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/de/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/es/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/fr/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/it/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/jp/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/legal/cookies-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/nl/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.spotify.com/us/legal/privacy-policy/
Source: 5014fd48897e10fa_0.0.dr	String found in binary or memory: https://www.youtube.com/watch?v=pB-003Fu6AI&feature=youtu.be

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822

Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49734 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.95.155.72:443 -> 192.168.2.7:49743 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49772 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49776 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49777 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 152.199.23.37:443 -> 192.168.2.7:49780 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49796 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49805 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.206.246:443 -> 192.168.2.7:49822 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49895 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49898 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49910 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49912 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.2.79:443 -> 192.168.2.7:49914 version: TLS 1.2

Source: classification engine

Classification label: mal72.phis.win@37/193@17/10

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-609C8689-17F0.pma

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user~1\AppData\Local\Temp\cdcecb74-35f2-4b7c-af73-59c0b0a0f709.tmp

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.bredlifeof.info/'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,19381948695824494,2468386753968997499,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1772 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1576,19381948695824494,2468386753968997499,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1772 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

ID:	412529
Product:	CloudBasic
Start time:	18:52:23
Start date:	12.05.2021
Cookbook:	browseurl.jbs
System description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Architecture:	WINDOWS

Name	Type	MD5	SHA1	SHA256
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	A78AD14E77147E7DE3647E61964C0335	CECC3DD41F4CEA0192B24300C71E1911BD4FCE45	0D6803758FF8F87081FAFD62E90F0950DFB2DD7991E9607FE76A8F92D0E893FA
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, 59863 bytes, 1 file	BD3E93AD23BB0CA00C44D8774C63E84F	03FB85A6B46615FAEB2D3E29FBC399593D7B5D15	3526E251E631B67BC547442F85BFE5DD97A109CBC0189F04E1BD40D988EE18B5
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	B1A85393F4AE84616C0C64EE3D42D071	5A1AD580DC46C88F0231190C188C0A70D35F6565	2470A6F11094B1DAF508E86C71B6199E240A05128A884F7D639960C0921017B4
C:\Users\user\AppData\Local\Google\Chrome\User Data\2f46a0a8-13c9-40f4-ac08-d0a19d91fb38.tmp	data	093AA7E9A53EE9B34F9D0470D89F34F7	8235D7EC1F9D0B7D4E9E3FB958165FAB2FBCCB35	6A04060306A840FE6AD9C4081282F6778F30E8561AA91B8FF2326228191E5FE7
C:\Users\user\AppData\Local\Google\Chrome\User Data\3bdc1bd8-7801-4ffe-b8c2-a8d534673511.tmp	ASCII text, with very long lines, with no line terminators	B76266412D2ED4AE140269F4226D0BB3	34610AE5E59682CE4AE5569EF27D9FC821BC2C32	858210624D1E9BE690F20CD4FB8FA25840E8A02EFFBADEAC925DCC7B164EF2F3
C:\Users\user\AppData\Local\Google\Chrome\User Data\7d7ea40d-b2be-47e9-bcb1-4699a8aa695b.tmp	ASCII text, with very long lines, with no line terminators	38144475B9D98C97D182D09603A8DD5A	97D80F7D399C267BEAC58EEFC412BA01C930B375	9BABB896D2EE24D86315F4A3CD79C4525324EF5D0FD661B93AA46B5545B2BE2F
C:\Users\user\AppData\Local\Google\Chrome\User Data\8009cf7f-7af9-4b01-94ca-a16c4c171f76.tmp	ASCII text, with very long lines, with no line terminators	E81B6219A80E966516442406493D6161	C67E2418F8091260FABBF45FE875AEAB5BAC6C57	0C98021FDD5930349F29D925C898F13363A7ECB544F8DCE40E9296DC03DB407C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	E4C3A0CCEDB71D53052C719DE30FD750	C89D101217D4AA05AD9C6FB24DB2037B3BCC630E	B9ABED457F567199890198C9CE3B20954C73C458014CEB77C5E4514B1A8D8BF9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\24f229c6-4e51-46d0-9fba-b39ff9c4f997.tmp	ASCII text, with very long lines, with no line terminators	0FB5FB7806322424C89831B2D5BA9F09	F652BC29F352D23852FD83E21680C71CA5554C96	123F49338D55EC80C39744B7B5A281D627C8E6B6BAA68FD69FAC8A5B7BC7B4ED
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3235b847-119b-4a8d-9a57-865166d176c7.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	9D79DEE4F04099F56A011A9DE01718D7	6402BE272BA8F649831E187DA8D18E30797757A1	ECE88B4994BF25DB49AD4E951A8EE596131033D90C15132A45DCD8F67DE129A6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3a80123a-bfb8-4150-b848-e0c6c263503e.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3bd1e7c2-c21a-4898-a18a-00bbd6808fd7.tmp	ASCII text, with very long lines, with no line terminators	A738ECD4BBE7C432EB062E1EF721BCE3	1C95A57A444375A9A341C9C11D9EF5BF2EA4D34C	404561430710614D1511607C17AA2DA03C27FCFE86A56664434A8500C361ED86
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3c03f67d-e221-412f-911b-4e33fb95eade.tmp	ASCII text, with very long lines, with no line terminators	2705B82373CA09A628BE823E7D5BEEA4	AD855A6C5F454399AF48114493ABE7ED397D8371	FAE6301728E47112E2973DF9155D76385F0B0E4F8E568B1D062BC9980DDEDCC6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3c4d20c7-7910-4ef9-a9d6-6c1bd2132032.tmp	ASCII text, with very long lines, with no line terminators	9E0C31BCE1C83C78981EB86A29E2879B	3973E5D4DA1BC0BB99B78D1DFA7BEA045C85E173	3D1BDA968D1CFF79DBD0C4B9D2A22367E9D9B8374622CD4263BD39137D8FE584
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5ed51093-3e3c-45b4-ae88-2ea3cc0dd293.tmp	ASCII text, with very long lines, with no line terminators	1785C85A706E353C7E291D6DD24DDA78	702C5CEE9B58AC1A22F66C14743FC15CF98775F4	38E7D9E561DA23FE6929AB98167DFC9BBE6105AAD405519E79E26DD7603C2228
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\77d23cd9-e180-43b5-bc28-ab53c37e485e.tmp	ASCII text, with very long lines, with no line terminators	4169D136C424151B09580AA3F3052508	A60FA4332D884C36FBAE89A8452097B828CBA482	43B77E66EE7CC9894D21C91E7EF15FA07BDEC4B924B253905814C7A5A3F57EC0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7d212659-315d-4afe-84f8-2f479041344f.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	B0804F1E0AB6E0B70291177CA84FB146	86AD94E09CFB1A9542040EBEEF38747AC14EE0AF	66898C80618B8C44E1E2D7DA87CBE2906BCF277477E7C53557E68E577F78532F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\872a72db-ddfe-467b-bda7-514307da2b94.tmp	ASCII text, with very long lines, with no line terminators	40B9F62D03E1309F1FC835C7F64BCB5C	7A5640C84DA7356D4E7A76C3F4E75003B3A1888C	57736C8AFF1D74D474069B15A33303C4D28F1E0F292EE4F8A164BA2484FDD8F3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	0878979224DCC77A63FF73537EF7EE67	B76B327E30B12DF96BF17F68A10F412357D995AE	B9ECE0603E3591FC1BD759273DFEE537F0A95C618A95389A85FC532C3B7FA221
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	76A663C12CDA5E6DD50DA7DFD265CC1E	79216C09B5B997D76A6A258C1B4781330D7ADF90	E9C0F0968B51D216E27D06F98AF1EDC7F46CFA45A73C9A870D1A17D158CAAB8B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\094e2d6bf2abec98_0	data	2D34F2D6A4CDF72704521A479312A5B1	6319FA21C9E41174384637E558459FEA22015B5F	0BDAD790859A4B25439D4AE9C2B44D0EEF78FAE6CD0ADB7D15705472B034A239
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0d4dbbbfb0e94616_0	data	EDCCBFB2EA1F3630F18870744A78CFD7	AF0ECEE229B1ADBF62AE54121E6EE53D9EA33FB1	B07CF7F15472C5CB50E5D326FA345867D8FCD808B07BEB811469A099978A5AB8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0df9317af40b3bb3_0	data	78021E3EFDA3805BA66B7A8B74660756	8A9BDED5A8552F56021B2C0445900B5F97FC0000	FA04CA8C84E52063E0656F330B16D2B2E1B91F1B9A7D0DAE3F4D6F7D2EAC8A7D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\14c06f6781117c4a_0	data	D2BA2358DB99D0717707E8E3AE7DD45F	FA9DEAD877EA1BB664D2E3CA0EF0BB9D085AFC23	207BB9A315921ABDECE3E8451F7A6C4C5AA96C1FD78995FFD810349B35C46D51
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\328b75cf02d95d5e_0	data	83E6687B1A8353FF1FB417C229D28E96	E27A830743EA0386D6EBA90528A4E0F1BD97EAD7	5775CB8A639B8C9AEAF3FEE175ECB31A8C956A0263BF2E158A41FA3BA56A7E80
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4a7b0a16eebe4c59_0	data	B4EF8529AF85D7086D32DBF49A566097	BB7C6C1B9D2DE094D718F7C5977D27F266D37BA0	8AFB3656C5FF74E9878AE04A742F115F77BF355CC9A94B288D534650D8851CFF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5014fd48897e10fa_0	data	6FB81B5CB1FB94C26E529359811B196F	55A6AD1477B58B1BC3DFA713390DA7749ECA6F93	1EE9B374F553883A29E0CDE0B58BAD70EE0C7B9D90431E8C60B130A63DFC700F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\781980b07f1bb38f_0	data	01C095B28501B93D7FB158A3DBBE81A7	6A83CE16445D1411C6653131B97C7DE2E7B56735	243AC3760CB1F7FEC93B2930C9B445ED8564C57E9D1494C2EF6643BE5EBBBC5C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8f3c2e2c260a7099_0	data	7D3E685E84F7651748948B1F3070E45F	D6E66B06CC1CFEF3A92A644C2A64943617FF8C30	3E96CF87261E8A1CD9762D73086D761A458CE9CFEC41041CC5F5687F62509A2C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f46ad1d2652b0b43_0	data	1E0FDD0F74E8D7D0AF3A96B253CA0277	32B748D5DA9AB4EE2C87DB84AEEB7E0469750417	92587F54EE868FB4E272EC4890BED30F0F1B87EE84603883C45C0F09BD1F59A0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ff3254c380ce1732_0	data	78DE891DFC00D0BD4E25C8104CA5C944	C70180ACEC40BED072D1284E1505D5C27D828176	DDEC4107C97E09EDD4A680A0B3B15B77B69F8A831DD0274D980042EDD7023CD1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	1C0EAEEE6463CAE33B7A7CD9D9DF4DA5	FBC6A28A1501E40154FDC0A9D0C2F34A5F88AA65	ED8AE7C5E6885874A39F4E86258F552670352A18D29BE1FF4D372A2F4CD06C8A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	5D391F388A820E316FC653196AC89A56	DAEB7DBB45814020E7E5F8E2354AC3A0F739FA27	66BF3A741DD67462D7E3F007EB0134B890025FF51564BA74CCEED3070CE77BBE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	E3AB1E616A83C7D9C12559701B563FFB	4948BA9409A4728DD92A8C37F618541BB8E965AE	BEF1998F3A850B2AC4BF5A50714B1AD7F9C1806FAE9CFE1A68BC3F5E05F07A6D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	0686D6159557E1162D04C44240103333	053E9DB58E20A67D1E158E407094359BF61D0639	3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	0A906A9A542CDF08FF50DAAF1D1E596E	B97D6274196F40874A368C265799F5FA78C52893	EB9CABBF5FDA1AD535300B0110EAA4068A083248BA928A631C9278545935426D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	E42DFDC337EC0683A620FBEE3B98428E	E8F2482A9FD52467FE370D6774217F12B8DAB994	D7C40DDAC7F098248A05BD938D46A65733B183690AF0BE6CA52C8EBA2197DF9C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	D4BA0AE0BB0B9FAFF3DA6F35FDBC3C8A	FB3E9DEC7F35A9B1D94E54A5659DD0DE484055E7	99DEF1B557F19F04C1AFFC6F247D0451F33FC10EC42E73792223C3215AC98BE6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	E5E5B96839F1083818EC118D7A051870	5AC62384A9A16A366D1249446C276CA0AD8A6D15	A573E7FDE264BF3BE908183DE28CEB6124385FD122A926A36C970948E9E7B0FE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	90F880064A42B29CCFF51FE5425BF1A3	6A3CAE3996E9FFF653A1DDF731CED32B2BE2ACBF	965203D541E442C107DBC6D5B395168123D0397559774BEAE4E5B9ABC44EF268
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	6AE2135EA4583C2F06CDEBEA4AE70FA4	DCEB26C7F02D53B5F214305F4C75B4A33A79CDC2	03AA1944CB3C4F39E20B6361571BC45DFBEBD3FFDA3D8F148CC6ECB29958F903
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	8F299C0466039CA4712B0D44715A2916	4BF5B74B4F5D78ABAA495C5359F678E3B36A7FC5	F77B6A6D84324D78ADAEFA1AD190456347C61D84EA2907587729A6B8C4F998B7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	4D21E8AA5AA5753BACC11076BA716ECA	EEF68506605A4497A405510B6D125B3CA3B7D2F2	E40EF6755EC3930311B036E0C3C31D4AD226A90B6C743594DFCB9517E8BEB90C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	0407B455F23E3655661BA46A574CFCA4	855CB7CC8EAC30458B4207614D046CB09EE3A591	AB5C71347D95F319781DF230012713C7819AC0D69373E8C9A7302CAE3F9A04B7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	33F2AC85207EBF42C844189B7A097581	F86E3A55AD0171B4A9D5488E3084630EE6375A56	00D20DE72019B7FCDAB103169AA0210B3167BD01A1E8522982E9ABB2774150FF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	7DC2E126B6B2235B02CB394C209FA4C6	79A1A89F549A4A156448E32E03F25B68F39FD62A	670A60850FBABE69F18CEC05708DADC84F1353F156A250699C5828BCAFCF358B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	16CB9BA2064E42B4621C1805B1F9E4C1	1F07E7050A88A01A9E21BBD57D017F439086412C	5C1D24E25A5A158D800E353CA682847FF6D75AAE204B12CE906806E8B502B896
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	68B31D008ADE792342E29D8189ACBE1F	574824BB5A2A76BC4AAD6686DD02357447DAFCC7	DD56F36EABC985A239632C0A81EAA4B872A857E40CB603DD48B59A9BD1E17D8D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	A4855F8E2B87EF711E5825346D2A0267	3751C61AEF0D4396219CBF9DFBE5750C6B3F4181	004F9CC94E28293B623A40EAA59F5327AA77B089DDD7876733175FCA8B69BBA9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	17D4D6A6DAA9783C543064A3C72E6047	B73C9B3623669D9E27D4316B5C2B6C76ACA8B670	BC1AF75B1CD46540B080C302BD00D732E845E6C8E217BFC6A40C0E5E47D56294
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	DE536815556473FF8F9843CEBDC9017D	0A13A7C5E0C25A651B5419163DD45331A78C9427	62688B574F78609796EF7470A668ED6037C2CAD4AF0192039D24AB0FCB75D741
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	7CE1DDC8827CF78EF098233EA8D475DF	C37CB1B17EE0DC09556207FABF9B456D11AC5171	D3237D0444696F9973B3C2A0C0E425E7758D9D858E82A0A266A6D5951251C562
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	BF75C0BDFC052A2B5DB837DAF1E427B4	5EFD551072F84D487B5EADBF5BFACDBAD7DD8828	6E028FC67A8ECA8847DCD4803519EF77B4DDBF78CA662ED018C863CBF30BD883
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	E0A00CF5BE7C5ADF2C7A0A46BA755D7A	C4305D96B0AD471CFFE4B3C117C3217651D54122	8DAA55B672B5DA6AF5CBB384931FCE72D4D1396FFFCE5D157C6EB961E648CBB0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	97016AF6DC24F305BC4FED771B9354A3	D2BD21F60AD47455DCCA6AB24C1DF0192C66E8D8	E6E84CF6B85E86BEAD64B3854501DBBCE80E7B5E0D41F0163730622D9A4C801E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3032001	CE3B119D32B38366CAFB5BB21699C9DD	D263330CC7C7298A6E79FD0BDA7E5AE7BA3EDD54	EA49C6A3B82B39A643FF9C681BCC44917075F2B4DE39ED3703091994A82CFF83
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal	data	671D39C04C8E3A129B94CF4022AE220C	3D9B448EB2050E8FEACE748B1D4F98B342E0144C	46EBBCC8A5FE01FF721939A5450875A4593AC5E5B44778FE3E6A262A34D77173
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	181ED05FAE6D31CDBFC2680CB632F859	B6391180B7167969686A3986E06D975F4CE67FAD	62150C5EA1D8CFDE4916440F9662C32F3DCC1207BBC5441536D121EC683607E4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	4E93FBE35E21A3B913A26E47B0679CC1	FF63F454E8F4161A49F34415688C171A876148FF	C177059DD3C754E5298BE1D538133B2D92AC7E21D45E0CB73A30CAE2A2400891
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	941FC7F1B198CF05BF71386AD5C9F8D3	49B11CAC916E6165B26474DE70E9A4A8776A0C5C	78CF2BD9292240FE016BA40D273A6F97BF6FA1E4D7E033B0E1DF055BBBAB66F3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	65577D1DA207A11F72B03ECB5860B7A9	4E37933DD54E7E8E566DE16492FC9F14A673E785	A3C8B3C7562B4D0DD2BE5D9A564F15E329E01512BC4B258E123ED3E6F50FF4B9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	354295B23E81B84E9FA6599C01AE3D2E	DBF7A3CCDC724A069723B31E667ED90CAB7248F0	5C62D4E8845CB3662AF033B3A63906E8C6AD9225E86C8310D66890946F7E8476
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	4CAA93B33E8783E36B41FB8B05B05BBF	20511673772448C272CA2AC8414DA6B77C946092	AB194437F5E5EB23A83FB9991A3C3AA5B41F6E45E8A6B0BC9BBA9B779CC1A8AB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\abd2dcd5-17ca-4b4a-8b6d-f696cf779a5f.tmp	ASCII text, with very long lines, with no line terminators	363D9EBEDB5030036B53B6B28E8A8EA5	1C7C9012156AC8295EB465BC774430A866096832	466FE09323B709A587648157D77298132B29F7CD916CD68EF6B28A0FC5EE355B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	FB3064A454962B764ED61DA1F9ACCADA	613C9BBD80FF2BB99F13CBF29823A87DFA5DE171	33F771F17029188816D417F72887E371C0554816432533BEFEF03DA4F947D98F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	E74DED88F10E4B234995BBA9D66BFD08	CD2E0B7D8FB63A394AB5C5507100D08842538E93	80FE06145EFFB62AD4496E2273DDA1879F441EB41FA77EB6AF74CCE06B93BA17
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	7BE1BCAD038073A5E6B221C377BB6DB1	7D456D5E15937105B699D674870A8B3F8C9AC55F	158F2E4F7F4EB03618F0A2C7390110ADBCCCFDF808EBCAD81576C04B54DCE6BC
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\a89915ff-cacb-48a9-96ae-3c2ace19d5ad.tmp	ASCII text, with very long lines, with no line terminators	1FE877DDE8B96DED122AC08BB07A83C5	5BEA5FFAF686474CE8ACA1D95500C29D65007745	3AD373EB6FF8EA394964EDA2A9E53ADD8DBA11DC9716ED3CA672F10DF369BA4D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	45A8ECA4E5C4A6B1395080C1B728B6C9	8A97BB0E599775D9A10C0FC53C4EDB29AA4CEB4E	DB320AB28DFF27CDA0A7F87B82F2F8E61B3178A6DE8503753D76F1172D32E08E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	33922B54E5B2DA3A0F286E636EDF523F	EE9047D70AC0F8171EECB2ADCC000DAB9CB71B24	AC1E3B82E27B7C1F879C7998554FC8B4F5A237211AABC7FE82029F5B2CCD8721
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	4CF964197DD2D26608AA8E929BDA1FA0	1E8DB4753DA9CD518225C040963E9842C4BEAC13	FC87C876E1BB2C86D92230736C2475DFEF24F41D9097EEE478904976E88B0211
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	B75ED224F0D100AB8341296B044E1C22	C0D197CB565B765B8C879FDD7A7EF0E4F59DC819	26A3B1FD0687E9EC0956F2C847F91EB8870BE0FC218F1761772B3CB27AC85957
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bb3d3b44-00f5-4c44-8a70-3893966c8164.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	F546EC45BCC69C37307EB9C819A5114B	081649322AFFF99D1920FAF3DA84CDF287C8BFCC	96CC62B32965E2F9E5E13A0A6AE2230CAC122FB35FCA55A3A78E044BE5BE35FC
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bdbe1232-1289-4776-9e62-d5b97fc29e10.tmp	ASCII text, with very long lines, with no line terminators	4F0E2CE5AB6F91FDD98DDE04DDD79249	2AA45C58AB659E2C1C06A6B2AAC7936751B99111	BEDFFD969501B5BCCABD5E13DA33E614235C1995183BFBF1C7D27449910075EF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c5e69d7c-330b-44b3-980e-a55c57a6f44e.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	3CF6F1A034F3AAB6F8B8143D217E3F49	85F3438018A43C0EFDEF4587FAB79711F3C0F04E	A28326FA28646124735A7E351627CBA46FC6B79D794594EE85BB434D0878AEFE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d30a0184-0f95-43c5-9818-a0fc24cf7416.tmp	ASCII text, with very long lines, with no line terminators	F15011B638D9BB16E46F6F030A50F632	530FF4C521DC5D9BC5380476F59AADEAF3CE3582	B5489E2C9D41260B3D527E86CA066860D0AB6AD5C649BE37C632B764B1461F80
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	6752A1D65B201C13B62EA44016EB221F	58ECF154D01A62233ED7FB494ACE3C3D4FFCE08B	0861415CADA612EA5834D56E2CF1055D3E63979B69EB71D32AE9AE394D8306CD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	15C5E758E3AE0252A68E45D8660712F3	713517CDE5E215684BD4BD7F0E8C3E4556D403E1	8B3D709C0D7B4D8D1DC555DDE0EE4852C995FE159B7229941BA83489FCA203D1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	031D6D1E28FE41A9BDCBD8A21DA92DF1	38CEE81CB035A60A23D6E045E5D72116F2A58683	B51BC53F3C43A5B800A723623C4E56A836367D6E2787C57D71184DF5D24151DA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dc9139bb-3de3-4c9e-b75f-6afe2dfa69ba.tmp	ASCII text, with very long lines, with no line terminators	F07521DB36CD38675B36967597C2DA21	5BE8ECCB63F6B9EDF4D1A8428D59440517C54F78	6AD64C159DB42AE927D81C57C5D28F6680DE666A454DCAA8AE9B2C3BB3EB8790
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\de064d0f-dc33-47f2-9cc2-fb890febd9ba.tmp	ASCII text, with very long lines, with no line terminators	3FBF3C49EEDC5FDF0AFA322C98FD9461	127DAD1535D7AC8BA39D512934B1463DB911F250	27B856F6D6659779D42F4A930CC2DDD0B8F593C2F3988A0AF4B6895AC242E915
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	0B4FD8BD1EF1A483A5BB6035715A0EEA	525AE80C218E0C79A4AF47F204FD679AC14364CC	0C86F3E9B617B7F9D2FED0E0B9D4692A5657B9DA3E48A10921036DCEB1768D3C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	DE9EF0C5BCC012A3A1131988DEE272D8	FA9CCBDC969AC9E1474FCE773234B28D50951CD8	3615498FBEF408A96BF30E01C318DAC2D5451B054998119080E7FAAC5995F590
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	C422F72BA41F662A919ED0B70E5C3289	AAD27C14B27F56B6E7C744A8EC5B1A7D767D7632	02E71EB4C587FEB7EE00CE8600F97411C2774C2FC34CB95B92D5538E7F30DA59
C:\Users\user\AppData\Local\Google\Chrome\User Data\b8dab316-e31d-451c-881f-3fffd91cfec2.tmp	SysEx File -	2F8F45A6D36F365231B387886F7794C1	6FAA0F27521056C65E589DFFA45E193CD04A4279	6B8D493EB385D7BEFC7914CC16E3618D5B48E5FE95BEEA7488220FE662DE37F9
C:\Users\user\AppData\Local\Google\Chrome\User Data\c2113ef5-7069-4cf5-9b0f-9d49eb0d981b.tmp	data	D7F191174BF1ADA5331F9EC7B0E936D8	A9BDC9838BFD587084EE9C377279CD5D6FB2EB2F	53656738832D6230E5CD8EB54ECB095F332664FF64C6C8BE7A8BC13A1BAFCAF8
C:\Users\user\AppData\Local\Google\Chrome\User Data\d028659d-ed6c-4205-b933-02e5be6a2232.tmp	ASCII text, with very long lines, with no line terminators	E741BE1DF2E8BD663F2651EDE0938821	B4E4AEC7E2A1757504E1A39A11AEDD4A69D8BCDB	56D38A7BDE0E4DDC6847FB26EC3D3DE35E2BD578653D7E1D8438B342A07EA89C
C:\Users\user\AppData\Local\Google\Chrome\User Data\de23baa0-d7e1-449f-be06-e1b8c6cf7746.tmp	ASCII text, with very long lines, with no line terminators	240725213CA5E73D2962247D80A16B93	F37BB5C0C6C755F9C0289875DD38D54506995A07	55840A8114BD4EDEFF9A1B4D20ED4C92577CDA957B7E0919476EAFF593F94876
C:\Users\user\AppData\Local\Google\Chrome\User Data\fbdf428a-6c36-45c0-bd0f-110fbd0ca4c8.tmp	ASCII text, with very long lines, with no line terminators	A8A7438F293E740E090FE239A34BFCB4	7BC7439BDA0C6CB62B26985934FEBBBB0ECABD0E	262377893B36EA6C902E9B0923548A1ADB3867E06EFBFFE0DFE9783A5C745D1F
C:\Users\user\AppData\Local\Temp\074a9540-96f8-4196-9d68-c6d1eb3e8847.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\1a5e0603-3c9e-490b-a20f-df9da55775df.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\a5183b88-3250-4c2e-8c73-d675bc9df0ae.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log	ASCII text	58CA6BF02E3EB6FCBCD922261FDF2BA7	FC912B6E328718B0400FB837E8AEBF2DF7D91CBB	0A4ABA3CF8049883E2A0F7CB057774D651DA0129653044D5DBEA6ADC882B028E
C:\Users\user\AppData\Local\Temp\cdcecb74-35f2-4b7c-af73-59c0b0a0f709.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\1a5e0603-3c9e-490b-a20f-df9da55775df.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\am\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	26330929DF0ED4E86F06C00C03F07CE3	478F3B7E7A7E007BEE182B89C2EF6FFE6045E92C	621B5139ED199022BB6529AF18ED4DC312AE9F3E90ECAF3B2C9E1D12114F5B22
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ar\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	44325A88063573A4C77F6EF943B0FC3E	78908D766F3E7A0E4545E7BD823C8ED47C7164EB	67A439A08804EF4BEF261BDBADD8F0FEFD51729167D01EDCA99DD4AF57D6108B
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6911CE87E8C47223F33BEF9488272E40	980398F076BB7D451B18D7FDE2DE09041B1F55AD	273DEF0F67F0FA080802B85EF6F334DE50A19408F46BDF41F0F099B1F5501EEA
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\bn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F9DDF525C07251282A3BFFCEE9A09ABB	A343A078E804AF400A8F3E1891E3390DA754A5CD	C69C6C90F7EB8F10685CD815AF1F6F1B87CF30C4E8D95DF1D577DE1105AAD227
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A90CF7930E7C3BEC61EE252DEFAD574A	F630CA01114A7BDD39607CB84B8280CCE218A5C6	A533740E17559E2ADF40B4555C60F21EEC84E92C09CDBC19EED033A0B4DD2474
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	17E753EE877FDED25886D5F7925CA652	8E4EC969777CC0CEB7C12D0C1B9D87EBBB9C4678	C562FCCFCE374D446BFAC30AC9B18FF17E7A3EF101C919FF857104917F300382
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F08A313C78454109B629B37521959B33	3D585D52EC8B4399F66D4BE88CED10F4A034FCCC	23BF7E5EDF70291CA6D8F4A64788C5B86379EECB628E3DFA7DD83344612F7564
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	980FB419ED6ED94AD75686AFFB4E4C2E	871BFBCA6BCBA9197811883A93C50C0716562D57	585C7814AFD2453232BC940252D4AE821D6E6CBCFD74A793F78E5DB8BA5342F1
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	40EB778339005A24FF9DA775D56E02B7	B00561CC7020F7FE717B5F692884253C689A7C61	F56BF7C171AA20038EE30B754478B69A98F3014C89362779B0A8788C7B9BEEE1
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\en\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8351AF4EA9BDD9C09019BC85D25B0016	F6EC1FFD291C8632758E01C9EE837B1AD18D4DCF	F41C82D8A4F0E9B645656D630C882BE94A0FB7F8CEC0FE864B57298F0312B212
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8A70C18BB1090AA4D500DE9E8E4A00EF	8AFC097FA956C1317DB0835348B2DA19F0789669	FF173D1CEF665B1234E02F11070ABD2B65230318150734579A03C7F31B4AE3F4
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A62F12BCBA6D2C579212CA2FF90F8266	F7E964A2D9BBDA364252BCE5CFBA3FD34FDD825E	3EB3EB0B3B4A8E5A477D1B3C3A3891CCC7DC6B8879ECE243A7BD7C478068273D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\fa\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	852BD3CFF960F1BC3A2AAB3CB3874EF9	C9F6F3C776542889FE3B67971D65ACFE048A3A0A	D87597B6C10364501B98AA42524843F109009CCEF022D8E0170440D7F144F4C6
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3902581B6170D0CEA9B1ECF6CC82D669	C8208AC2B1DD6D4F8BDAAE01C8BD71FFFA5A732B	D2A8180225A83A423BB6E17343DFA8F636D517154944002ED9240411B8C0C5E1
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\fil\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	59483AD798347B291363327D446FA107	C069F29BB68FA7BA2631B0BF5BBF313346AC6736	DD47530EAE96346CD4DC3267A0BB1091BB17B704803A93CDA2E3E81551B94F12
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9B416146FE4F1403C2AACAC4DCF1A5C3	616F055C9FAD4CE972DF82EC8A9B2F4EDA3E7FAD	7C7F5758F54008190ACCDDBD1761CBD980FB5FE0847E992874498228D2571DBC
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\gu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	68B03519786F71A426BAC24DECA2DD52	B8E6608932EC5CEC4BC3C5475BFC3E312D2E2E7D	C77A4D27E9E6CA25B9290056D93A656E3EBE975957E4C2EE9F0FB11B133D5CD4
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	20C86E04B1833EA7F21C07361061420A	617C0D70E162CF380005E9780B61F650B7A39F9B	C2C27CA242DBDE600BA3AA7782156BC2B190A64D8A1B51EDC8007BDECA139553
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3ED90E66789927D80B42346BB431431E	2B061E3271DF4255B1FFC47BDB207CDEC0D9724F	0B41E3C42414F72C9A12C05F8772597F9685115366A774C66018467AD4B71A74
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8E9FF7E49473C5734A2F6F0812E12EB3	A4F10DDD1580582533D5EB59EDF6D8048F887C81	6CDD2FB39ADECE00E88B989E464B05ED1414092D0492F6D0AE58D549BFD1A46A
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\id\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	7ADF9F2048944821F93879336EB61A78	C3DA74FB544684D5B250767BB0CB66FFB7C58963	3630947E1075E3663AD3E4824D0BE42CB47C0D615D8053E83B9595047C8BA9BE
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	BB3041A2B485B900F623E57459AE698A	502F5EA89F9FB0287E864B240EA39889D72053A4	025737EF8FA06706B3F26D0F52B4844244A6D33DAE1D82FEF2931A14C003D57E
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6F2CC1A6B258DF45F519BA24149FABDC	8A58C7880C6D22765DCBB6BCE22A192C1B109AE1	42ECFEE727CFC4F2845FEFDACE5EDC2E0A40AFAD69973A3B950CE653A7633342
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\kn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2E3239FC277287810BC88D93A6691B09	FC5D585DA00ADC90BF79109C7377BD55E6653569	5FC705AD19761204D8604EA069936A23731B055D51E7836CAAF16AC7719FBEEA
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	E303CD63AD00EB3154431DED78E871C4	3B1E5B8E2CF5EBDF5D33656EF80A46563F751783	FDE602BFDB1AFD282682DA5338C4F91D8A2F6CB5411DB8F62F4583D629CE67A6
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	93BBBE82F024FBCB7FB18E203F253429	83F4D80F64FA2ADCE6C515C5F663BD38A76C51DB	E7A8570922CCC4F2CA3721C4E61F426158C4E7BC90274FBC8BE4040FF8B6CA9B
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	388590CE5E144AE5467FD6585073BD11	61228673A400A98D5834389C06127589F19D3A30	05CA14196CA5D90B228C0F03684E03EBE403A3E7B513AE0A059244AE12B51164
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ml\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2AF93901DE80CA49DA869188BCDA9495	E60DF4F2FB12BD3F1CA869DAD9F6BDE0C17CEB11	329E80AEE1212F634E180DEF7E16D6E38D9C9FDA9AC9DB1D99B8AE1626EF304E
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\mr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	659F5B4ACA112D3ECBB6EC1613DDE824	5DEE35FCD260554999F8DDEC489FBA9F81FA8EEE	C8B765E7A07578BC078A952E151E3B866506959E15E79E9E5E1DBB98F9C4008F
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ms\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	09D75141E0D80FBD3E9E92CE843DA986	B24EAB4B1242C31B69514D77BC1DB36A3F648F40	8F1DBDEFD910AD88BEEC7956619CDB34391D6E69254C3A7497E8F87134AE8B5C
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	ED99169537909291BCC1ED1EA7BB63F0	5F72D51B6DBE8C622EF33D2B2AEBD7E9E20DAFB3	65B6598225ADA1E14EE9CB76CA863708E8F9EE0724B4EDC8F9508532BD631BAB
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\nl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	E9236F0B36764D22EEC86B717602241E	DE82B804B18933907095DEF3F2EF164C1BB5F9B6	300F4F7C45EBE39EAAF40776C28D0A399A710699AAB58E9A8D43A6FD2DD00376
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8254020C39A5F6C1716639CC530BB0D6	A97A70427581ADA902CA73C898825F7B4B4FAC8F	2F4E4FC6AEB4A8E7F0E0DCE220D66E763F4EBF1FA79985834D636C6692FEA3E8
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\pt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FABD5D64267F0E6D7BE6983AB8704F8C	D4DAAD0FF5C461C51E6C1FD22B86AFC5B13E123F	D82DCA262FF005668B252B478DEDAAC4A5C1E417AF9DE57C22F169A6680183AE
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	75E16A8FB75A9A168CFF86388F190C99	C27CE4C1DB3DF2D232925C73DC9AC1FA24DAD396	9C4716FF42A730F1E7725F0D9E703F311E79FDA31F85B4BB0B8863FC3C27AB9D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8EF94823972EA8D2FC9BB7EC09AB1846	4171DC9CE9D82FDA5A280517A1FE58C907D75CE3	1009DB9FFA64E411B31E0780EBA43B9C9F8B05B5AC8CCA9A38514650261ABB0A
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C314FAC15AFF6A2EE9C732C64AB5A66D	D51F3362B5FDD2F3756DE42D7D6227DC818C6344	8EE2A25A09D6D0F89063FAA34BA2BC4DB505DD31FE6D5064C5D6E1E153721484
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F60AB4E9A79FD6F32909AFAC226446B3	07C9E383D4488BEBE316CA86966FC728F55A2E32	CDE581E6E7CF0136B003B45549E3BBEE7B67B74ADD786A8D5607BFDAD1DE7B87
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	4E233461D805CA7E54B0B394FFF42CAB	77F30833FC73A4C02C652C9E5A6EAFE9C3988A30	E1E1C64213EBF2CFEB7BA83E51B697CEA449B3A8B279B1024B859228DE869879
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	897DAE6B0CF0FDE42648F0B47CB26E06	E1F5F5F65AF34FF9484AB2B01E571EAF19BA23D0	52656C24F6F6D0F3B3FC01E9504C4D5CEB85624F1B22E974CA675DD0E94EB82D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\sw\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	EC233129047C1202D87DC140F7BA266D	537E4C887428081365D028F32C53E3C92F29AAA6	28EDBC5C4858217811D45CAA215710E452C8926E4DE99F810001AD664D08BE0D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\ta\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C50C5D2EDFC79DBDCBD5A58A027A3231	14314D760A18C39F06CD072CF5843832AFB86689	EEB0E89D5AD92B80FF08F88533A111DB3416D7C3860C64227D1CC8B7C2B58298
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\te\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F740F25488BE253FCF5355D5A7022CEE	203A8DF19BA5A602A43DE18E99A6615D950C450E	5B9C96CB5D62510836B321EB9CEEF23865BB9D4DC4DE7716E90A858E00701FDF
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9F926FCB8BAEA23453B99EA162CCDEA1	04D1E45591C0435A39DCA00A81E83E68585E8B64	100463C587F549C964A4EB21EA38EA1B4ADEF11E927FAC8FF884623B77202C02
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	B0420F071E7C6C2DE11715A0BF026C63	F41CC696786B18805DB8DC9E1E476146C0D6BE90	309F946F753DF6AF5C255D772EA0D429462152F78ABA4A96A2E369707A2C6B67
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FF06E78C06E8DFF4A422EA24F0AB3760	A434D1CE22DE0D2FD1842E94F5815F7B1972D1EE	E209FDEF12CCEC03B4E0D5B9464F90D527E62C5BC4DD565C680661D7F282AB02
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C3A40E8433D96D7E766C011D9EC7502B	EAB7BFAE48B1D29B95A8AE040DE94D3500824EE3	BD3D0F8CF100C96415B224011F550082D4516593CBD3631347748B7D6AD5B85A
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\zh\messages.json	UTF-8 Unicode text, with CRLF line terminators	D4513639FFC58664556B4607BF8A3F19	65629BC4CBBACA498F4082DD5884C8D3D7DDDC8A	C6D49997A9B4FF7FE701EC3644B1A523679A27778FB4BD39B7DBCA9F1ACCE595
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	494CE2ACB21A426E051C146E600E7564	D045ECC2A69C963D5D34A148FE4A7939DE6A1322	A1053F9496ED7FA3C625C94347F07A5E760F514FD8EE142EC9EE64E86B9C063D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_1573894603\CRX_INSTALL\manifest.json	ASCII text, with very long lines, with CRLF line terminators	F76238944C3D189174DD74989CF1C0C6	85CE141EC8867B699668A5F5A48F404C84FCEB04	2EF48A1CF322DE356E8844DD2FD3431E8E7ACD04770649B6507EACA5ABDB53A7
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	6F8E288A9AD5B1ED8633B430E2B4D4CA	F671D3D4BEFA431D1946D706F4192D44E29B6F08	A114E2783D0E9B12155017323BA70838F0F82A71C7EE8DC1F115AE36991241F8
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	1FDAFC926391BD580B655FBAF46ED260	C95743C3F43B2B099FEBEBC5BD850F0C20E820AC	C67898B67F9C9209EAFDA6532B62D5789863CFB855998DD6A70E7775316CEC20
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	76DEC64ED1556180B452A13C83171883	CFB1E56FD587BCDC459C1D9A683B71F9849058F9	32290D69A90E6BAAC428B10382C99221B12773BB9A184F3B93DFB48A4F6D7A40
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	238B97A36E411E42FF37CEFAF2927ED1	4E47AC90BA24C8F4724D9293FA40CFD4ADA66FE0	4977D4A053542FF66967FAED6B06585DD70E68E20BFEB533B66FE3287F9655D9
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B3E916E8C1991AA0453CBA00FEDCAAA	D6366D15912E40CA107FD42BFE9579C3336A51F9	A62FFAB910E31531758EEE48B2CC71A8857BEC3021DEAD50B668CBA3C8667053
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	05C437A322C1148B5F78B2F341339147	AB53003A678E44A170E73711FBD9949833BBF3AA	A052C32B4FCAC61152EB0ADB2C260FB6A8256AD104AA0013DB93E9798D41A070
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\en_GB\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	82719BD3999AD66193A9B0BB525F97CD	41194D511F1ACC16C1CA828AC81C18C8C6B47287	4DB9B2721E625C18B9E05C04B31AF5D9694712F1CAAF6219ABE34BB08E5DB1C7
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B2583D8D1C147E36A69A88009CBEBC7	4D4DEEB4BE6AA0181825F3371A761ABC5B4D5937	6659BC3705311D7641A73995DCFEA80C7734F2F4EBBC3787B3892A240348324F
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	CFF6CB76EC724B17C1BC920726CB35A7	14ED068251D65A840F00C05409D705259D329FFC	C85800BF45942FCC7FD6B1DF929C25F9CC2A977A6678966BD03D4B6B69889AFD
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	3A01FEE829445C482D1721FF63153D16	F3EAAADDC03F943FC88B30B67F534AA13E3336DD	0BDE54B20845124113383B6EB81E43A0F05E4EB0C44BEE3C1DFAC4CC5FEC2836
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	57AF5B654270A945BDA8053A83353A06	EEEF7A4F869F97CF471A05D345E74F982D15E167	EC002ED92359F67818B49455DFC579E140368E6A004080AF022FD4F57F6B03F2
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8D11C90F44A6585B57B933AB38D1FFF8	3F9D44EA8807069A32AACA2AAAD02FD892E6CC90	599491F8C52B945C16C441ADF45BFD45AFAE046DA07757D97C56AF4DE75ED3B5
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	E376D757C8FD66AC70A7D2D49760B94E	1525C5B1312D409604F097768503298EC440CC4D	8106D98C4F8DA16DB698444409558E29CC96735E188BFA303C333A5D99231C1D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8185D0490C86363602A137F9A261CC50	5BD933B874441CEACB9201CCC941FF67BAED6DC0	A2B2EC359A9DD9DCCCE02859CE1E738BD30FAA4A05F1DC522893FFDF722BBC15
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	85609CF8623582A8376C206556ED2131	1E16EB70DB5E59BB684866FF3E3925C2DEF25A12	32A249749F12ADB6A220BF9ADC272C7E5D9AD5497A38B0086D961E3ABA17FBC6
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	EAB2B946D1232AB98137E760954003AA	60BDC2937905B311D2C9844DF2D639D7AC9F7F67	C6E8800450602DE0F39FE9F6854472383813FB454B08ABAE7E25A9167CE004C3
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	A328EEF5E841E0C72D3CD7366899C5C8	2851ED658385804E87911643F5A4200B1FB26E13	CD891C45F7586FB4A2514205A11F260E4A6D4482FA03D901909DD9F57BE0536D
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	9B3A5D473C3F2BBFAEECE94A07A940B8	61BACA342CF766BBA15C7B4D892A0E7DAC9405AA	706312A4A2AEF3317223F141EB2B82685345B7EED444F16BB4DF3A272716DA1F
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	9F6B4D82A70C74CA751E2EAE70FAB5CF	0534F125FFCE8222277CF2BE3401C59DAF9217F8	D1467B8D037114403E8F4EFC52E88C4A7FEB96126BE4CFF883FEFF1084EF7E68
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	4CA644F875606986A9898D04BDAE3EA5	722A10569E93975129D67FBDB75B537D9D622AD1	7C311AB751D840D750C11553C083785813E079C1D464FE568A98C9E3EF3DB96C
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF line terminators	C5CE2C51391EAFD3DA9E4C71549A3C28	1F67FF6EF6E90C0CE3AAF56ED543A3EFD381574D	1FA1DF2CA8516DEF490FB8484E9AA498ACFF80EEF5C9258FFE42D3678E6C7DED
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with CRLF line terminators	93C459A23BC6953FF744C35920CD2AF9	162F884972103A08ADB616A7EB3598431A2924C5	2CD700AEB57D89C2E73333D0702556EE3FF3863516170F85669BC680FCBDC4E0
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	7A8F9D0249C680F64DEC7650A432BD57	53477198AEE389F6580921B4876719B400A23CA1	92BE7C2DC9CFBE5A65E9CE6488D364C8D7EC19E7B67A31E4D43C1CB2B169671C
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	0E6194126AFCCD1E3098D276A7400175	E8127B905A640B1C46362FA6E1127BE172F4A40F	E2699F98C511B18A2AFB82EAE9A4804B646C4FF1077D80E77C17A3943A6373C2
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	86A2B91FA18B867209024C522ED665D5	63DEC245637818C76655E01FCB6D59784BC7184E	6374880FDD1F8AF1EE8AEA6A06B73BE0AB265AFCEB4FE6F08BDE3B3989264B21
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	750A4800EDB93FBE56495963F9FB3B94	8BFB915488A4EB3CB33D68E2E59F1F8447DB7D61	C1C94F65FABAF17DEF98A8587711A56D61B1E5607500E9B01F2824DB109F9E83
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	98D43E4B1054A65DF3FA3CC40AB6FB6D	46E0A21C4DA2BB5D4D8F837AE211C1B6FA26E7E2	113A13900CBA62FE8AED06751971C23A80A99B47F9BE219CF884D57DB19611D9
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	DB2EDF1465946C06BD95C71A1E13AE64	FB4F3ECE9ECECEBBC6CA2A592A15FB9C1FDFB811	FBAF22CE6E16DE174CED8CB5EA3098CCA1C3426A2111FF33BD3E64DA64ED67AB
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF215D1EFBDABB175CCDD68ED8DCB0A	2B374462137A38589A73FDD00A84CBDC7E50F9F4	7FA16AF97E6CFC52EC6008EB679D3F30E7E0C24F9EF2D18A9228EAF4DED9D63B
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	3943FA2A647AECEDFD685408B27139EE	0129DD19D28373359530B3B477FE8A9279DABB7D	18AFF072EE0DF7C3495045435C752A805606E6D5D462EF2321C443F1773F4B3A
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	D485DF17F085B6A37125694F85646FD0	24D51D8642CDC6EFD5D8D7A4430232D8CDE25108	7FFDE34C58E7C376C042DE64DEF6481DAE32BE8B70F0B18EDF536290CBE0C818
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	D372B8204EB743E16F45C7CBD3CAAF37	C96C57219D292B01016B37DCF82E7C79AD0DD1E8	B8BA77E0089B0676545EC16D32468B727812B444F90B33A7A5B748E6C36C4388
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	83E2D1E97791A4B2C5C69926EFB629C9	429600425CB0F196DDD717F940E94DBD8BFF2837	2FECA577F43D97BAEEA464741D585892103585208FD0A935B810A03BDCE83C88
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	2CEAE0567B6BB1D240BBAD690A98CA3B	5944346FBD4A0797B13223895995CAB58E9ECD23	A7CB86F30C9C31FE5540282C308BA96ADB4EC16EF98C87129EB88105E5BEF5FC
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	AB0B56120E6B38C42CC3612BE948EF50	8B3F520E5713D9F116D68E71DAEED1F6E8D74629	68ABA284751EB9C856032062EF9B1651E2A1E5CE5FDA0977FFC97D63BA7BED9E
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	7EBB677FEAD8557D3676505225A7249A	F161B4B6001AEAEAB246FF8987F4D992B48D47BE	051F96ED874C11C4A13589B5F68964E4F5B03B52DDA223D56524F2CA23760C04
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	BB73BF561BB79F89D9BF7C67C5AE5C65	2FADD3A1959B29C44830033A35C637D0311A8C9C	D804F2A040D21D7511EFD5213D8E1721D64964A1A0DBB48E21622CEEDC9D967E
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FF50C673CC0C661D615F0CFD0E6DCA0	60DFF98DEAB9C4746B288BDD9C94B3BCAE5EAA85	C6F8C640F3353A7B9B1432A0C139C1AEEC40133800E6C9B467B63991AD660308
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	01334FB9D092AF2AA46C4185E405C627	47AD3C0E82362FFE5B881DF8D71D6F79AB7F5796	F52714812D68C577A445169D11E84DF6751C2D6886BC429643072BB5D61C6C27
C:\Users\user\AppData\Local\Temp\scoped_dir6128_329257241\cdcecb74-35f2-4b7c-af73-59c0b0a0f709.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82

Analysis Report https://www.bredlifeof.info/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection:

Phishing:

Compliance:

Networking:

System Summary:

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs