Joe Sandbox Cloud Basic Analysis Report

Loading ...

Play interactive tourEdit tour

Windows Analysis Report https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1

Overview

General Information

Sample URL:https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1
Analysis ID:452723
Infos:

Most interesting Screenshot:

Detection

HTMLPhisher
Score:72
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain
Yara detected HtmlPhish10
Phishing site detected (based on image similarity)
Phishing site detected (based on logo template match)
Found iframes
HTML body contains low number of good links
HTML title does not match URL
Submit button contains javascript call
Suspicious form URL found

Classification

Process Tree

  • System is w10x64
  • chrome.exe (PID: 3500 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1' MD5: C139654B5C1438A95B321BB01AD63EF6)
    • chrome.exe (PID: 4588 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1708 /prefetch:8 MD5: C139654B5C1438A95B321BB01AD63EF6)
    • chrome.exe (PID: 6532 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4612 /prefetch:8 MD5: C139654B5C1438A95B321BB01AD63EF6)
    • chrome.exe (PID: 3708 cmdline: 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=3848 /prefetch:8 MD5: C139654B5C1438A95B321BB01AD63EF6)
  • cleanup

Malware Configuration

No configs have been found

Yara Overview

No yara matches

Sigma Overview

No Sigma rule has matched

Jbx Signature Overview

Click to jump to signature section

Show All Signature Results

AV Detection:

barindex
Antivirus / Scanner detection for submitted sampleShow sources
Source: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1SlashNext: detection malicious, Label: Fake Login Page type: Phishing & Social Engineering
Antivirus detection for URL or domainShow sources
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

barindex
Yara detected HtmlPhish10Show sources
Source: Yara matchFile source: 60060.pages.csv, type: HTML
Phishing site detected (based on image similarity)Show sources
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=Matcher: Found strong image similarity, brand: Microsoft image: 60060.img.1.gfk.csv EF884BDEDEF280DF97A4C5604058D8DB
Phishing site detected (based on logo template match)Show sources
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=Matcher: Template: microsoft matched
Source: https://www.paperturn.com/flipbookHTTP Parser: Iframe src: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: https://www.paperturn.com/flipbookHTTP Parser: Iframe src: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: https://www.paperturn.com/flipbookHTTP Parser: Iframe src: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: https://www.paperturn.com/flipbookHTTP Parser: Iframe src: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: https://www.paperturn.com/loginHTTP Parser: Iframe src: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: https://www.paperturn.com/loginHTTP Parser: Iframe src: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: Number of links: 0
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: Number of links: 0
Source: https://www.paperturn.com/flipbookHTTP Parser: Title: Flipbook: 10 reasons to convert your PDF into a flipbook does not match URL
Source: https://www.paperturn.com/flipbookHTTP Parser: Title: Flipbook: 10 reasons to convert your PDF into a flipbook does not match URL
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: Title: Sharing Link Validation does not match URL
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: Title: Sharing Link Validation does not match URL
Source: https://www.paperturn.com/flipbookHTTP Parser: Title: Flipbook: 10 reasons to convert your PDF into a flipbook does not match URL
Source: https://www.paperturn.com/flipbookHTTP Parser: Title: Flipbook: 10 reasons to convert your PDF into a flipbook does not match URL
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: On click: javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("btnSubmitEmail", "", true, "", "", false, true))
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: On click: javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("btnSubmitEmail", "", true, "", "", false, true))
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: Form action: securepassword.php?4K5CL816269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: Form action: securepassword.php?4K5CL816269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="author".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="author".. found
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: No <meta name="author".. found
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: No <meta name="author".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="author".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="author".. found
Source: https://www.paperturn.com/loginHTTP Parser: No <meta name="author".. found
Source: https://www.paperturn.com/loginHTTP Parser: No <meta name="author".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="copyright".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="copyright".. found
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: No <meta name="copyright".. found
Source: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=HTTP Parser: No <meta name="copyright".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="copyright".. found
Source: https://www.paperturn.com/flipbookHTTP Parser: No <meta name="copyright".. found
Source: https://www.paperturn.com/loginHTTP Parser: No <meta name="copyright".. found
Source: https://www.paperturn.com/loginHTTP Parser: No <meta name="copyright".. found
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\DictionariesJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdicJump to behavior
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49726 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 143.204.225.123:443 -> 192.168.2.5:49748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 143.204.225.93:443 -> 192.168.2.5:49750 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49757 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49760 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.16.106.139:443 -> 192.168.2.5:49823 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49842 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49841 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.16.106.139:443 -> 192.168.2.5:49863 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.91.89.225:443 -> 192.168.2.5:49865 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.91.89.225:443 -> 192.168.2.5:49864 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:49871 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.18.204.90:443 -> 192.168.2.5:49872 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49922 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49922 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:49983 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49995 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49998 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:50029 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:50056 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:50078 version: TLS 1.2
Source: 000003.log4.0.drString found in binary or memory: -_https://www.youtube.com equals www.youtube.com (Youtube)
Source: 000003.log4.0.drString found in binary or memory: ._https://www.youtube.com equals www.youtube.com (Youtube)
Source: 000003.log4.0.drString found in binary or memory: 0_https://www.youtube.com equals www.youtube.com (Youtube)
Source: 000003.log4.0.drString found in binary or memory: 5_https://www.youtube.com equals www.youtube.com (Youtube)
Source: 000003.log0.0.drString found in binary or memory: Gnamespace-79d3313a_90a9_4eca_bc4a_615fe95f4398-https://www.youtube.com/ equals www.youtube.com (Youtube)
Source: 000003.log4.0.drString found in binary or memory: META:https://www.youtube.com equals www.youtube.com (Youtube)
Source: 75c880fe196c95da_0.0.drString found in binary or memory: T2_keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/embed.js equals www.youtube.com (Youtube)
Source: Current Session.0.drString found in binary or memory: X(https://www.facebook.com/tr/ [id ev ] #0 equals www.facebook.com (Facebook)
Source: 000003.log4.0.drString found in binary or memory: _https://www.youtube.com equals www.youtube.com (Youtube)
Source: d2b8a8d9a2d95859_0.0.drString found in binary or memory: _keyhttps://www.youtube.com/s/player/3804dce2/fetch-polyfill.vflset/fetch-polyfill.js equals www.youtube.com (Youtube)
Source: 95fee99bab72dc0f_0.0.drString found in binary or memory: _keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/base.js equals www.youtube.com (Youtube)
Source: 75c880fe196c95da_0.0.drString found in binary or memory: _keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/embed.js equals www.youtube.com (Youtube)
Source: 3ee3277df70d5d32_0.0.drString found in binary or memory: _keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/remote.js equals www.youtube.com (Youtube)
Source: 4a93ae2abbf51303_0.0.drString found in binary or memory: _keyhttps://www.youtube.com/s/player/3804dce2/www-embed-player.vflset/www-embed-player.js equals www.youtube.com (Youtube)
Source: Reporting and NEL.1.drString found in binary or memory: coop_reporthttps://www.facebook.com/browser_reporting/ equals www.facebook.com (Facebook)
Source: Current Session.0.drString found in binary or memory: f/https://www.youtube.com/embed/q0nkrcMDCmc?rel=0 equals www.youtube.com (Youtube)
Source: Current Session.0.drString found in binary or memory: https://www.facebook.com/tr/ equals www.facebook.com (Facebook)
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: {"net":{"http_server_properties":{"servers":[{"isolation":[],"server":"https://ssl.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://www.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://apis.google.com","supports_spdy":true},{"isolation":[],"server":"https://ogs.google.com","supports_spdy":true},{"isolation":[],"server":"https://dns.google","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232260245","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://redirector.gvt1.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232279667","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://accounts.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232549869","port":443,"protocol_str":"quic"},{"advertised_versions":[50],"expiration":"13274071232549872","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://r2---sn-h0jeener.gvt1.com"},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232987782","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.googletagmanager.com","supports_spdy":true},{"isolation":[],"server":"https://d3euuwqpqlzvic.cloudfront.net","supports_spdy":true},{"isolation":[],"server":"https://assets.paperturn-view.com","supports_spdy":true},{"isolation":[],"server":"https://translations.paperturn.com","supports_spdy":true},{"isolation":[],"server":"https://www.paperturn-view.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071235537569","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://fonts.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://assets.calendly.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071239711465","port":443,"protocol_str":"quic"}],"isolation":[],"network_stats":{"srtt":69227},"server":"https://fonts.googleapis.com","supports_spdy":true},{"isolation":[],"server":"https://use.fontawesome.com","supports_spdy":true},{"isolation":[],"server":"https://consentcdn.cookiebot.com","supports_spdy":true},{"isolation":[],"server":"https://acsbapp.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071271542770","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.google-analytics.com","supports_spdy":true},{"isolation":[],"server":"https://connect.facebook.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071272739807","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://stats.g.doubleclick.net","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071274233590","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://www.google.com","supports_spdy":tr
Source: Current Session.0.drString found in binary or memory: {"og:site_name":"Paperturn","og:url":"https://www.paperturn.com/online-pdf-flip-book-features","og:title":"15 interactive features to supercharge your flipbooks","og:image":"https://images.paperturn.com/g/share-paperturn-en.jpg","og:image:width":"1176","og:image:height":"630","og:type":"website","og:description":"Unlike a normal PDF your online brochure can be easily shared on Facebook and be more dynamic using YouTube videos.\nAlso it can be inserted in your email signature and you can even integrate it with Google analytics and see advanced statistics."} equals www.facebook.com (Facebook)
Source: Current Session.0.drString found in binary or memory: {"og:site_name":"Paperturn","og:url":"https://www.paperturn.com/online-pdf-flip-book-features","og:title":"15 interactive features to supercharge your flipbooks","og:image":"https://images.paperturn.com/g/share-paperturn-en.jpg","og:image:width":"1176","og:image:height":"630","og:type":"website","og:description":"Unlike a normal PDF your online brochure can be easily shared on Facebook and be more dynamic using YouTube videos.\nAlso it can be inserted in your email signature and you can even integrate it with Google analytics and see advanced statistics."} equals www.youtube.com (Youtube)
Source: unknownDNS traffic detected: queries for: clients2.google.com
Source: 77EC63BDA74BD0D0E0426DC8F8008506.1.drString found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
Source: EDC238BFF48A31D55A97E1E93892934B_33E8F98A524575FDD27708D6D61F97ED.1.drString found in binary or memory: http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTfqhLjKLEJQZPin0KCzkdAQpVYowQUsT7DaQP4v0cB1Jg
Source: Current Session.0.drString found in binary or memory: http://schema.org/AggregateRating
Source: Current Session.0.drString found in binary or memory: http://schema.org/WebPage
Source: Reporting and NEL.1.drString found in binary or memory: https://a.nel.cloudflare.com/report/v3?s=o1Y%2BBXwLiarvZW4%2FqS8c07Jm73mY8vPzze7jVSiGCG93tDB3p4BX3mR
Source: manifest.json0.0.dr, 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://accounts.google.com
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://acsbapp.com
Source: 8140b5c475fbdf1c_0.0.drString found in binary or memory: https://acsbapp.com/apps/app/dist/js/app.js
Source: manifest.json0.0.dr, 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://apis.google.com
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://assets.calendly.com
Source: c693e56ec7dc32cf_0.0.drString found in binary or memory: https://assets.calendly.com/assets/external/widget.js
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://assets.paperturn-view.com
Source: 78ec281d449072c9_0.0.drString found in binary or memory: https://assets.paperturn-view.com/12.dc063ac5.js
Source: 878756e158c08974_0.0.drString found in binary or memory: https://assets.paperturn-view.com/12.dc063ac5.jsa
Source: 878756e158c08974_0.0.drString found in binary or memory: https://assets.paperturn-view.com/12.dc063ac5.jsaD
Source: f5e415729b027894_0.0.drString found in binary or memory: https://assets.paperturn-view.com/13.9cb813a3.js
Source: c7dbfff3f5d11b28_0.0.drString found in binary or memory: https://assets.paperturn-view.com/6.f4dbef67.js
Source: a07811dab2c1a983_0.0.drString found in binary or memory: https://assets.paperturn-view.com/7.0f628dc6.js
Source: 505f12502b0e1e8f_0.0.drString found in binary or memory: https://assets.paperturn-view.com/8.e31fc8b3.js
Source: 8d4436abab9cbffc_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Alert.22553599.js
Source: f99d6da11388c29b_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-BottomBar.9060c6c1.js
Source: a6de80f86bf10fb4_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-EmbedFullscreenSwitch.b1cc3074.js
Source: 8421b1b3082ac36c_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-ErrorBoundary.3ef6552e.js
Source: 57849aa2afcf52a8_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Newsflash.389922b8.js
Source: 9bec16c4529e250a_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Pages.5c372095.js
Source: a3b9cf33e4506e9e_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-PoweredBy.81832c27.js
Source: ab2e7647897bb5a2_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Preload.8e1d07ba.js
Source: e7eeab8bd5560049_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-SnackbarProvider.b1a734fc.js
Source: 859d57729f30e053_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Styles.e7b2b5dd.js
Source: 5ae823d24fa20467_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Toolbar.0413dfe3.js
Source: ab9b9b92e56d5efe_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-ToolbarButton.4ce3af8a.js
Source: 8936c0436506fed9_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-ToolbarIcon.687326a7.js
Source: 78971c5f3b10669d_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Tooltip.d369b3de.js
Source: 236c9a70f6d402a3_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-TopBar.54d5964a.js
Source: bf709059c5fc7310_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-Viewer.775a1c39.js
Source: ed55c9f01fcca8ed_0.0.drString found in binary or memory: https://assets.paperturn-view.com/components-ViewerContainer.a8be06bc.js
Source: 75180a52d49873b5_0.0.drString found in binary or memory: https://assets.paperturn-view.com/index.js?20210723020032
Source: e41c3bf86352e7cd_0.0.drString found in binary or memory: https://assets.paperturn-view.com/index.js?20210723020133
Source: c968078420fe3f97_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~
Source: 5c8938a5f2f8b277_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-Alert~components-BuyBasket~components-Dialog~co
Source: a2df7e764a389255_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-BottomBar.e724eb41.js
Source: b4191926631e1e0f_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-BuyBasket~components-SendBasket~components-Snac
Source: 3f84843334707219_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-Newsflash.b7b94969.js
Source: 98f7ac3352864cdd_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-Pages~components-Search.4fcb49bb.js
Source: 402f710388ce73f0_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-ToolbarButton.aafd698b.js
Source: 4b4ae9e2956257f4_0.0.drString found in binary or memory: https://assets.paperturn-view.com/vendors~components-Tooltip~components-TopBar.09a36c1b.js
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://clients2.google.com
Source: manifest.json0.0.drString found in binary or memory: https://clients2.google.com/service/update2/crx
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.drString found in binary or memory: https://clients2.googleusercontent.com
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://connect.facebook.net
Source: f7733717fc9a9560_0.0.drString found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: cb14d97ede8b4cfb_0.0.drString found in binary or memory: https://connect.facebook.net/signals/config/808672289198286?v=2.9.43&r=stable
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://consent.cookiebot.com
Source: 16d9c28137016842_0.0.drString found in binary or memory: https://consent.cookiebot.com/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/cc.js?renew=false&referer=www.pap
Source: 0ae6b52f6e424e4e_0.0.drString found in binary or memory: https://consent.cookiebot.com/uc.js
Source: 000003.log4.0.drString found in binary or memory: https://consentcdn.cookiebot.com
Source: 000003.log4.0.drString found in binary or memory: https://consentcdn.cookiebot.com&_https://consentcdn.cookiebot.com
Source: 000003.log0.0.drString found in binary or memory: https://consentcdn.cookiebot.com/
Source: 8959e7f160a77ede_0.0.drString found in binary or memory: https://consentcdn.cookiebot.com/consentconfig/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/paperturn.com/co
Source: Current Session.0.drString found in binary or memory: https://consentcdn.cookiebot.com/sdk/bc-v3.min.html
Source: manifest.json0.0.drString found in binary or memory: https://content.googleapis.com
Source: Reporting and NEL.1.drString found in binary or memory: https://csp.withgoogle.com/csp/report-to/downloads-lorry
Source: Reporting and NEL.1.drString found in binary or memory: https://csp.withgoogle.com/csp/report-to/downloads-lorryY
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://d3euuwqpqlzvic.cloudfront.net
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 6a3aeedd-434b-43b2-b003-feca369dd65f.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.dr, b25feb06-4ffa-4707-a885-6016f837f55d.tmp.1.drString found in binary or memory: https://dns.google
Source: manifest.json0.0.drString found in binary or memory: https://feedback.googleusercontent.com
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://fonts.googleapis.com
Source: Network Action Predictor-journal.0.drString found in binary or memory: https://fonts.googleapis.com/
Source: manifest.json0.0.drString found in binary or memory: https://fonts.googleapis.com;
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://fonts.gstatic.com
Source: Network Action Predictor-journal.0.drString found in binary or memory: https://fonts.gstatic.com/
Source: manifest.json0.0.drString found in binary or memory: https://fonts.gstatic.com;
Source: manifest.json0.0.drString found in binary or memory: https://hangouts.google.com/
Source: 878756e158c08974_0.0.drString found in binary or memory: https://i1.ytimg.com/vi/
Source: Network Action Predictor-journal.0.drString found in binary or memory: https://images.paperturn.com/
Source: Favicons-journal.0.drString found in binary or memory: https://images.paperturn.com/g/favicon-new/favicon.ico
Source: Current Session.0.drString found in binary or memory: https://images.paperturn.com/g/share-paperturn-en.jpg
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://ogs.google.com
Source: 8936c0436506fed9_0.0.dr, 98f7ac3352864cdd_0.0.dr, 7a24f279f3c8e97a_0.0.dr, 859d57729f30e053_0.0.dr, ab2e7647897bb5a2_0.0.dr, 78ec281d449072c9_0.0.dr, 57849aa2afcf52a8_0.0.drString found in binary or memory: https://paperturn-view.com/
Source: f99d6da11388c29b_0.0.drString found in binary or memory: https://paperturn-view.com/$Mt
Source: 505f12502b0e1e8f_0.0.drString found in binary or memory: https://paperturn-view.com/(
Source: d5ef84d81abcea8d_0.0.drString found in binary or memory: https://paperturn-view.com/.
Source: d5ef84d81abcea8d_0.0.drString found in binary or memory: https://paperturn-view.com/.?
Source: f4692d38da8f7d92_0.0.drString found in binary or memory: https://paperturn-view.com/8Xn
Source: 505f12502b0e1e8f_0.0.drString found in binary or memory: https://paperturn-view.com/9
Source: bf709059c5fc7310_0.0.drString found in binary or memory: https://paperturn-view.com/9r
Source: e7eeab8bd5560049_0.0.drString found in binary or memory: https://paperturn-view.com/A)
Source: c968078420fe3f97_0.0.drString found in binary or memory: https://paperturn-view.com/DWn
Source: c7dbfff3f5d11b28_0.0.drString found in binary or memory: https://paperturn-view.com/G
Source: 98f7ac3352864cdd_0.0.drString found in binary or memory: https://paperturn-view.com/OA
Source: 9bec16c4529e250a_0.0.drString found in binary or memory: https://paperturn-view.com/P
Source: a2df7e764a389255_0.0.drString found in binary or memory: https://paperturn-view.com/PEt
Source: 859d57729f30e053_0.0.drString found in binary or memory: https://paperturn-view.com/U
Source: 4b4ae9e2956257f4_0.0.drString found in binary or memory: https://paperturn-view.com/XAt
Source: 75180a52d49873b5_0.0.drString found in binary or memory: https://paperturn-view.com/coY
Source: e41c3bf86352e7cd_0.0.drString found in binary or memory: https://paperturn-view.com/d
Source: a3b9cf33e4506e9e_0.0.drString found in binary or memory: https://paperturn-view.com/uVn
Source: 16d9c28137016842_0.0.dr, 641fb3ab98d94d28_0.0.dr, c693e56ec7dc32cf_0.0.dr, e78a65cbed4dea02_0.0.drString found in binary or memory: https://paperturn.com/
Source: 16d9c28137016842_0.0.drString found in binary or memory: https://paperturn.com/8
Source: ddf29fd5d7ab777f_0.0.drString found in binary or memory: https://paperturn.com/9v
Source: 16d9c28137016842_0.0.drString found in binary or memory: https://paperturn.com/C#=
Source: f7733717fc9a9560_0.0.drString found in binary or memory: https://paperturn.com/HL
Source: 8959e7f160a77ede_0.0.drString found in binary or memory: https://paperturn.com/M&
Source: 8959e7f160a77ede_0.0.drString found in binary or memory: https://paperturn.com/O
Source: ca3cacf61e20435d_0.0.drString found in binary or memory: https://paperturn.com/U
Source: 8e8595a5d4720c28_0.0.drString found in binary or memory: https://paperturn.com/d3
Source: 8959e7f160a77ede_0.0.drString found in binary or memory: https://paperturn.com/e
Source: c693e56ec7dc32cf_0.0.drString found in binary or memory: https://paperturn.com/i2
Source: 8959e7f160a77ede_0.0.drString found in binary or memory: https://paperturn.com/id
Source: 0ae6b52f6e424e4e_0.0.drString found in binary or memory: https://paperturn.com/l
Source: 80d379f7f5b93e31_0.0.drString found in binary or memory: https://paperturn.com/s
Source: cb14d97ede8b4cfb_0.0.drString found in binary or memory: https://paperturn.com/u8
Source: manifest.json.0.drString found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://r2---sn-h0jeener.gvt1.com
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://redirector.gvt1.com
Source: manifest.json.0.drString found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: Network Action Predictor-journal.0.drString found in binary or memory: https://spoprod-a.akamaihd.net/
Source: a2a9870c369aa42b_0.0.drString found in binary or memory: https://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/require-a19851d1.js
Source: bbfcd0a0712d3aa4_0.0.drString found in binary or memory: https://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/spoguestaccess-f1ac8
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://ssl.gstatic.com
Source: 80d379f7f5b93e31_0.0.drString found in binary or memory: https://static.zdassets.com/ekr/asset_composer.js
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://stats.g.doubleclick.net
Source: messages.json41.0.drString found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.drString found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://translations.paperturn.com
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://use.fontawesome.com
Source: Network Action Predictor-journal.0.drString found in binary or memory: https://use.fontawesome.com/
Source: e65797cd70a56c3a_0.0.drString found in binary or memory: https://v2.zopim.com/bin/v/widget_v2.329.js
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://www.google-analytics.com
Source: ddf7e8582ef3dff7_0.0.drString found in binary or memory: https://www.google-analytics.com/analytics.js
Source: manifest.json0.0.dr, 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://www.google.com
Source: manifest.json.0.drString found in binary or memory: https://www.google.com/
Source: 105618d59203ef9a_0.0.drString found in binary or memory: https://www.google.com/js/th/rri_UWQ0J4KTeoiEc0uqeM0aau5ykYMkDZQXo2HoPhc.js
Source: manifest.json0.0.drString found in binary or memory: https://www.google.com;
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://www.google.de
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.drString found in binary or memory: https://www.googleapis.com
Source: manifest.json.0.drString found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json.0.drString found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json.0.drString found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json.0.drString found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json.0.drString found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.0.drString found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://www.googletagmanager.com
Source: d5ef84d81abcea8d_0.0.drString found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-47719712-4
Source: 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://www.gstatic.com
Source: 335e69ddec2b9ac6_0.0.drString found in binary or memory: https://www.gstatic.com/cv/js/sender/v1/cast_sender.js
Source: manifest.json0.0.drString found in binary or memory: https://www.gstatic.com;
Source: Current Session.0.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drString found in binary or memory: https://www.paperturn-view.com
Source: Current Session.0.drString found in binary or memory: https://www.paperturn-view.com&
Source: Current Session.0.drString found in binary or memory: https://www.paperturn-view.com/paperturn-marketing/embed-features-page-country-heritage?pid=MzE31606
Source: Current Session.0.dr, History-journal.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1
Source: Current Session.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1#Sharepoint
Source: History Provider Cache.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.12#Sharepoint
Source: Current Session.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.15-N
Source: History-journal.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1Sharepoint
Source: History-journal.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1e
Source: History-journal.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1j
Source: Current Session.0.drString found in binary or memory: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1m
Source: Current Session.0.drString found in binary or memory: https://www.paperturn-view.comh
Source: 000003.log4.0.drString found in binary or memory: https://www.paperturn.com
Source: 000003.log0.0.drString found in binary or memory: https://www.paperturn.com/
Source: History-journal.0.drString found in binary or memory: https://www.paperturn.com/Convert
Source: ddf29fd5d7ab777f_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.js
Source: 3aa07428c0e4d4b1_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.jsa
Source: 3aa07428c0e4d4b1_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.jsaD
Source: 823f8fc18e89de25_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-5a97efeeff018a0419f17b6689972674.js
Source: 641fb3ab98d94d28_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-8e659b93bd027876d82817aa95060866.js
Source: 8e8595a5d4720c28_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-af8546ccbc09deec7e6b7a04c8502a92.js
Source: 5e756fb02c040fa1_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.js
Source: 9aeca2548873487f_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsa
Source: 9aeca2548873487f_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsaD
Source: e78a65cbed4dea02_0.0.drString found in binary or memory: https://www.paperturn.com/cache/v2.3.12/mini-d0f4fc79d4063f6d5171f399465f6cb6.js
Source: Current Session.0.dr, Favicons-journal.0.drString found in binary or memory: https://www.paperturn.com/flipbook
Source: History Provider Cache.0.drString found in binary or memory: https://www.paperturn.com/flipbook28Flipbook:
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.com/flipbook8Flipbook:
Source: History-journal.0.drString found in binary or memory: https://www.paperturn.com/flipbookFlipbook:
Source: Current Session.0.dr, Favicons-journal.0.drString found in binary or memory: https://www.paperturn.com/login
Source: History-journal.0.drString found in binary or memory: https://www.paperturn.com/loginLogin
Source: d1d96ac840cd7ef0_0.0.dr, 91b9b5ff6833c0d7_0.0.drString found in binary or memory: https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.js
Source: 91b9b5ff6833c0d7_0.0.drString found in binary or memory: https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.jsaD
Source: Current Session.0.dr, History.0.drString found in binary or memory: https://www.paperturn.com/online-pdf-flip-book-features
Source: Favicons.0.drString found in binary or memory: https://www.paperturn.com/online-pdf-flip-book-features$
Source: History.0.drString found in binary or memory: https://www.paperturn.com/online-pdf-flip-book-features15
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.com/online-pdf-flip-book-features515
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.com/prices
Source: Favicons.0.drString found in binary or memory: https://www.paperturn.com/prices#
Source: History-journal.0.drString found in binary or memory: https://www.paperturn.com/prices/&W
Source: History.0.drString found in binary or memory: https://www.paperturn.com/pricesCheap
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.com/pricesI
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.com/pricesICheap
Source: Current Session.0.dr, Favicons-journal.0.drString found in binary or memory: https://www.paperturn.com/uk/
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.com/uk/8Convert
Source: History-journal.0.drString found in binary or memory: https://www.paperturn.com/uk/Convert
Source: Current Session.0.drString found in binary or memory: https://www.paperturn.comh
Source: 000003.log4.0.drString found in binary or memory: https://www.youtube.com
Source: 000003.log0.0.drString found in binary or memory: https://www.youtube.com/
Source: Current Session.0.drString found in binary or memory: https://www.youtube.com/embed/q0nkrcMDCmc?rel=0
Source: d2b8a8d9a2d95859_0.0.drString found in binary or memory: https://www.youtube.com/s/player/3804dce2/fetch-polyfill.vflset/fetch-polyfill.js
Source: 95fee99bab72dc0f_0.0.drString found in binary or memory: https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/base.js
Source: 75c880fe196c95da_0.0.drString found in binary or memory: https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/embed.js
Source: 3ee3277df70d5d32_0.0.drString found in binary or memory: https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/remote.js
Source: 4a93ae2abbf51303_0.0.drString found in binary or memory: https://www.youtube.com/s/player/3804dce2/www-embed-player.vflset/www-embed-player.js
Source: Network Action Predictor-journal.0.dr, b868e2287919f738_0.0.drString found in binary or memory: https://xpans.in/
Source: fd410d0fcd87a62a_0.0.drString found in binary or memory: https://xpans.in/5
Source: d80a1cc1e7bfcfc1_0.0.drString found in binary or memory: https://xpans.in/F
Source: Current Session.0.drString found in binary or memory: https://xpans.in/document/Drive/
Source: History-journal.0.drString found in binary or memory: https://xpans.in/document/Drive/Sharing
Source: Current Session.0.drString found in binary or memory: https://xpans.in/document/Drive/_-
Source: e8a9b928233b277a_0.0.drString found in binary or memory: https://xpans.in/document/Drive/asd/ScriptResource.axd?d=KozZrTVT8ndoIojtkc7ps-zrkEG427bomy-mzEko1Qr
Source: b868e2287919f738_0.0.drString found in binary or memory: https://xpans.in/document/Drive/asd/ScriptResource.axd?d=P9Sp2kK_d4BNWXJEemNdILK9AkaZTG86MaHXVWE9ulL
Source: fd410d0fcd87a62a_0.0.drString found in binary or memory: https://xpans.in/document/Drive/asd/ScriptResource.axd?d=YfbPqEYj0W31Qd6b83PGlWON7nZi7y2471DNsdTWssE
Source: d80a1cc1e7bfcfc1_0.0.drString found in binary or memory: https://xpans.in/document/Drive/asd/WebResource.axd?d=Vseh0_O29CS6SASZGjJ5B50eCxofIEK9mDd5NZNa5k8Kti
Source: Favicons.0.drString found in binary or memory: https://xpans.in/document/Drive/images/favicon.ico?rev=45
Source: Favicons.0.drString found in binary or memory: https://xpans.in/document/Drive/images/favicon.ico?rev=45:
Source: Current Session.0.drString found in binary or memory: https://xpans.in/document/Drive/securepassword.php
Source: History-journal.0.drString found in binary or memory: https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a
Source: 95fee99bab72dc0f_0.0.drString found in binary or memory: https://youtube.com/
Source: d2b8a8d9a2d95859_0.0.drString found in binary or memory: https://youtube.com/H&
Source: 3ee3277df70d5d32_0.0.drString found in binary or memory: https://youtube.com/L
Source: 335e69ddec2b9ac6_0.0.drString found in binary or memory: https://youtube.com/wJ
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49865
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49864
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49863
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49741
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49983
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49740
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50056
Source: unknownNetwork traffic detected: HTTP traffic on port 49766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49769 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49852 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49935 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49738
Source: unknownNetwork traffic detected: HTTP traffic on port 49717 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49737
Source: unknownNetwork traffic detected: HTTP traffic on port 49849 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49736
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49735
Source: unknownNetwork traffic detected: HTTP traffic on port 49841 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49732
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49852
Source: unknownNetwork traffic detected: HTTP traffic on port 49732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49851
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49850
Source: unknownNetwork traffic detected: HTTP traffic on port 49872 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50056 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49728 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49763 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49823 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49729
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49728
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49849
Source: unknownNetwork traffic detected: HTTP traffic on port 49714 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49848
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49726
Source: unknownNetwork traffic detected: HTTP traffic on port 49735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49725
Source: unknownNetwork traffic detected: HTTP traffic on port 49999 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49724
Source: unknownNetwork traffic detected: HTTP traffic on port 49869 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49723
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49842
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49841
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50078
Source: unknownNetwork traffic detected: HTTP traffic on port 49729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49748 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49760 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49850 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49718
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49717
Source: unknownNetwork traffic detected: HTTP traffic on port 49715 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49715
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49714
Source: unknownNetwork traffic detected: HTTP traffic on port 49757 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49782 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49799
Source: unknownNetwork traffic detected: HTTP traffic on port 49864 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49726 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49870 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49740 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49765 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49768 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49723 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49983 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49737 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49823
Source: unknownNetwork traffic detected: HTTP traffic on port 49771 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49865 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49788
Source: unknownNetwork traffic detected: HTTP traffic on port 49842 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49779 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49922 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49782
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49780
Source: unknownNetwork traffic detected: HTTP traffic on port 49871 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49762 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50078 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49799 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49937
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49936
Source: unknownNetwork traffic detected: HTTP traffic on port 49736 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49935
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49934
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49779
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50029
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49771
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49770
Source: unknownNetwork traffic detected: HTTP traffic on port 49788 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49724 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49780 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49936 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49851 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49848 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50029 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49718 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49769
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49923
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49768
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49922
Source: unknownNetwork traffic detected: HTTP traffic on port 49739 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49766
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49765
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49764
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49763
Source: unknownNetwork traffic detected: HTTP traffic on port 49863 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49995 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50038 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49762
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49761
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49760
Source: unknownNetwork traffic detected: HTTP traffic on port 49725 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49741 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50038
Source: unknownNetwork traffic detected: HTTP traffic on port 49764 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49770 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49937 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49757
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49999
Source: unknownNetwork traffic detected: HTTP traffic on port 49738 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49998
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49995
Source: unknownNetwork traffic detected: HTTP traffic on port 49998 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49923 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49872
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49750
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49871
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49870
Source: unknownNetwork traffic detected: HTTP traffic on port 49761 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49934 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49750 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49869
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49726 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49740 version: TLS 1.2
Source: unknownHTTPS traffic detected: 143.204.225.123:443 -> 192.168.2.5:49748 version: TLS 1.2
Source: unknownHTTPS traffic detected: 143.204.225.93:443 -> 192.168.2.5:49750 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49757 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49760 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.16.106.139:443 -> 192.168.2.5:49823 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49842 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49841 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.16.106.139:443 -> 192.168.2.5:49863 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.91.89.225:443 -> 192.168.2.5:49865 version: TLS 1.2
Source: unknownHTTPS traffic detected: 144.91.89.225:443 -> 192.168.2.5:49864 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:49871 version: TLS 1.2
Source: unknownHTTPS traffic detected: 104.18.204.90:443 -> 192.168.2.5:49872 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49922 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49923 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49922 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:49983 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49995 version: TLS 1.2
Source: unknownHTTPS traffic detected: 148.251.96.155:443 -> 192.168.2.5:49998 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:50029 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:50056 version: TLS 1.2
Source: unknownHTTPS traffic detected: 52.29.88.9:443 -> 192.168.2.5:50078 version: TLS 1.2
Source: classification engineClassification label: mal72.phis.win@45/253@49/34
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\Google\Chrome\Application\DictionariesJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-60FA22BB-DAC.pmaJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Local\Temp\8c1e99c0-df59-4ed3-b323-36c067026dd9.tmpJump to behavior
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1'
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1708 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4612 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=3848 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1708 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4612 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=3848 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknown
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\DictionariesJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdicJump to behavior

Mitre Att&ck Matrix

Initial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionExfiltrationCommand and ControlNetwork EffectsRemote Service EffectsImpact
Drive-by Compromise1Scripting1Path InterceptionProcess Injection1Masquerading3OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local SystemExfiltration Over Other Network MediumEncrypted Channel2Eavesdrop on Insecure Network CommunicationRemotely Track Device Without AuthorizationModify System Partition
Default AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization ScriptsProcess Injection1LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable MediaExfiltration Over BluetoothNon-Application Layer Protocol1Exploit SS7 to Redirect Phone Calls/SMSRemotely Wipe Data Without AuthorizationDevice Lockout
Domain AccountsAt (Linux)Logon Script (Windows)Logon Script (Windows)Scripting1Security Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared DriveAutomated ExfiltrationApplication Layer Protocol2Exploit SS7 to Track Device LocationObtain Device Cloud BackupsDelete Device Data
Local AccountsAt (Windows)Logon Script (Mac)Logon Script (Mac)Obfuscated Files or Information1NTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput CaptureScheduled TransferProtocol ImpersonationSIM Card SwapCarrier Billing Fraud

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.10%Avira URL Cloudsafe
https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1100%SlashNextFake Login Page type: Phishing & Social Engineering

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

SourceDetectionScannerLabelLink
https://xpans.in/document/Drive/vynii1ggv7u34dlblu2qibdn.php?89bi9G16269732590bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc8510bcc1ac9819c9793d16548a8c40cc851&email=&error=100%SlashNextFake Login Page type: Phishing & Social Engineering
https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsaD0%Avira URL Cloudsafe
https://paperturn.com/id0%Avira URL Cloudsafe
https://www.paperturn.com/prices#0%Avira URL Cloudsafe
https://paperturn.com/s0%Avira URL Cloudsafe
https://paperturn.com/l0%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-d0f4fc79d4063f6d5171f399465f6cb6.js0%Avira URL Cloudsafe
https://www.paperturn.com/flipbook8Flipbook:0%Avira URL Cloudsafe
https://paperturn.com/e0%Avira URL Cloudsafe
https://www.paperturn-view.com&0%Avira URL Cloudsafe
https://www.paperturn.com/loginLogin0%Avira URL Cloudsafe
https://www.paperturn.com/uk/Convert0%Avira URL Cloudsafe
https://paperturn.com/HL0%Avira URL Cloudsafe
https://www.paperturn.com/pricesCheap0%Avira URL Cloudsafe
https://www.paperturn.com/prices/&W0%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsa0%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-af8546ccbc09deec7e6b7a04c8502a92.js0%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-8e659b93bd027876d82817aa95060866.js0%Avira URL Cloudsafe
https://www.paperturn.com/online-pdf-flip-book-features5150%Avira URL Cloudsafe
https://paperturn.com/i20%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.js0%Avira URL Cloudsafe
https://csp.withgoogle.com/csp/report-to/downloads-lorry0%URL Reputationsafe
https://csp.withgoogle.com/csp/report-to/downloads-lorry0%URL Reputationsafe
https://csp.withgoogle.com/csp/report-to/downloads-lorry0%URL Reputationsafe
https://www.paperturn.com/online-pdf-flip-book-features150%Avira URL Cloudsafe
https://dns.google0%URL Reputationsafe
https://dns.google0%URL Reputationsafe
https://dns.google0%URL Reputationsafe
https://images.paperturn.com/g/favicon-new/favicon.ico0%Avira URL Cloudsafe
https://www.paperturn.com/Convert0%Avira URL Cloudsafe
https://paperturn.com/9v0%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.js0%Avira URL Cloudsafe
https://paperturn.com/d30%Avira URL Cloudsafe
https://www.paperturn.com/pricesICheap0%Avira URL Cloudsafe
https://www.google.com;0%Avira URL Cloudsafe
https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.jsaD0%Avira URL Cloudsafe
https://www.paperturn.com/0%Avira URL Cloudsafe
https://www.paperturn-view.comh0%Avira URL Cloudsafe
https://www.paperturn.com/cache/v2.3.12/mini-5a97efeeff018a0419f17b6689972674.js0%Avira URL Cloudsafe
https://www.paperturn.com/flipbookFlipbook:0%Avira URL Cloudsafe
https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.js0%Avira URL Cloudsafe
https://www.paperturn.com/pricesI0%Avira URL Cloudsafe
https://www.paperturn.com/uk/8Convert0%Avira URL Cloudsafe
https://www.paperturn.com0%Avira URL Cloudsafe

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
gstaticadssl.l.google.com
172.217.168.3
truefalse
    		high
    i.ytimg.com
    		216.58.215.246
    		truefalse
      		high
      d2mvl3dkxvehny.cloudfront.net
      		143.204.225.47
      		truefalse
        		high
        d3euuwqpqlzvic.cloudfront.net
        		13.225.29.76
        		truefalse
          		high
          scontent.xx.fbcdn.net
          		157.240.17.15
          		truefalse
            		high
            static.zdassets.com
            		104.18.70.113
            		truefalse
              		high
              www.paperturn-view.com
              		143.204.225.123
              		truefalse
                		high
                photos-ugc.l.googleusercontent.com
                		172.217.168.1
                		truefalse
                  		high
                  ekr.zdassets.com
                  		104.18.70.113
                  		truefalse
                    		high
                    www.google.com
                    		172.217.168.68
                    		truefalse
                      		high
                      v2.zopim.com
                      		104.16.106.139
                      		truefalse
                        		high
                        www.google.de
                        		172.217.168.3
                        		truefalse
                          		high
                          star-mini.c10r.facebook.com
                          		157.240.16.35
                          		truefalse
                            		high
                            v2assets.zopim.io
                            		104.18.204.90
                            		truefalse
                              		high
                              accounts.google.com
                              		172.217.168.45
                              		truefalse
                                		high
                                www-google-analytics.l.google.com
                                		216.58.215.238
                                		truefalse
                                  		high
                                  stats.l.doubleclick.net
                                  		64.233.167.157
                                  		truefalse
                                    		high
                                    www-googletagmanager.l.google.com
                                    		172.217.168.8
                                    		truefalse
                                      		high
                                      www.paperturn.com
                                      		148.251.96.155
                                      		truefalse
                                        		unknown
                                        static-doubleclick-net.l.google.com
                                        		172.217.168.70
                                        		truefalse
                                          		high
                                          youtube-ui.l.google.com
                                          		172.217.168.14
                                          		truefalse
                                            		high
                                            assets.paperturn-view.com
                                            		143.204.225.93
                                            		truefalse
                                              		high
                                              googleads.g.doubleclick.net
                                              		172.217.168.2
                                              		truefalse
                                                		high
                                                xpans.in
                                                		144.91.89.225
                                                		truefalse
                                                  		unknown
                                                  widget-mediator.zopim.com
                                                  		52.29.88.9
                                                  		truefalse
                                                    		high
                                                    acsbapp.com
                                                    		206.189.187.108
                                                    		truefalse
                                                      		unknown
                                                      clients.l.google.com
                                                      		142.250.203.110
                                                      		truefalse
                                                        		high
                                                        translations.paperturn.com
                                                        		143.204.225.69
                                                        		truefalse
                                                          		unknown
                                                          d3jodor2jgify2.cloudfront.net
                                                          		143.204.225.4
                                                          		truefalse
                                                            		high
                                                            googlehosted.l.googleusercontent.com
                                                            		142.250.203.97
                                                            		truefalse
                                                              		high
                                                              yt3.ggpht.com
                                                              		unknown
                                                              		unknownfalse
                                                                		high
                                                                stats.g.doubleclick.net
                                                                		unknown
                                                                		unknownfalse
                                                                  		high
                                                                  static.sharepointonline.com
                                                                  		unknown
                                                                  		unknownfalse
                                                                    		unknown
                                                                    use.fontawesome.com
                                                                    		unknown
                                                                    		unknownfalse
                                                                      		high
                                                                      clients2.googleusercontent.com
                                                                      		unknown
                                                                      		unknownfalse
                                                                        		high
                                                                        clients2.google.com
                                                                        		unknown
                                                                        		unknownfalse
                                                                          		high
                                                                          www.youtube.com
                                                                          		unknown
                                                                          		unknownfalse
                                                                            		high
                                                                            consentcdn.cookiebot.com
                                                                            		unknown
                                                                            		unknownfalse
                                                                              		high
                                                                              www.facebook.com
                                                                              		unknown
                                                                              		unknownfalse
                                                                                		high
                                                                                assets.calendly.com
                                                                                		unknown
                                                                                		unknownfalse
                                                                                  		high
                                                                                  consent.cookiebot.com
                                                                                  		unknown
                                                                                  		unknownfalse
                                                                                    		high
                                                                                    connect.facebook.net
                                                                                    		unknown
                                                                                    		unknownfalse
                                                                                      		high
                                                                                      static.doubleclick.net
                                                                                      		unknown
                                                                                      		unknownfalse
                                                                                        		high
                                                                                        cdn.acsbapp.com
                                                                                        		unknown
                                                                                        		unknownfalse
                                                                                          		unknown
                                                                                          images.paperturn.com
                                                                                          		unknown
                                                                                          		unknownfalse
                                                                                            		unknown
                                                                                            d8n9fts9ic943.cloudfront.net
                                                                                            		unknown
                                                                                            		unknownfalse
                                                                                              		high
                                                                                              spoprod-a.akamaihd.net
                                                                                              		unknown
                                                                                              		unknownfalse
                                                                                                		high

                                                                                                Contacted URLs

                                                                                                NameMaliciousAntivirus DetectionReputation
                                                                                                https://www.paperturn.com/pricestrue
                                                                                                  		unknown
                                                                                                  https://www.paperturn.com/flipbooktrue
                                                                                                    		unknown

                                                                                                    URLs from Memory and Binaries

                                                                                                    NameSourceMaliciousAntivirus DetectionReputation
                                                                                                    https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsaD9aeca2548873487f_0.0.drfalse
                                                                                                    • Avira URL Cloud: safe
                                                                                                    		unknown
                                                                                                    https://paperturn.com/id8959e7f160a77ede_0.0.drfalse
                                                                                                    • Avira URL Cloud: safe
                                                                                                    		unknown
                                                                                                    https://stats.g.doubleclick.net75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drfalse
                                                                                                      		high
                                                                                                      https://www.paperturn.com/prices#Favicons.0.drfalse
                                                                                                      • Avira URL Cloud: safe
                                                                                                      		unknown
                                                                                                      https://assets.paperturn-view.com/index.js?20210723020133e41c3bf86352e7cd_0.0.drfalse
                                                                                                        		high
                                                                                                        https://consent.cookiebot.com/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/cc.js?renew=false&referer=www.pap16d9c28137016842_0.0.drfalse
                                                                                                          		high
                                                                                                          https://paperturn.com/s80d379f7f5b93e31_0.0.drfalse
                                                                                                          • Avira URL Cloud: safe
                                                                                                          		unknown
                                                                                                          https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.12#SharepointHistory Provider Cache.0.drfalse
                                                                                                            		high
                                                                                                            https://paperturn-view.com/PEta2df7e764a389255_0.0.drfalse
                                                                                                              		high
                                                                                                              https://paperturn.com/l0ae6b52f6e424e4e_0.0.drfalse
                                                                                                              • Avira URL Cloud: safe
                                                                                                              		unknown
                                                                                                              https://assets.paperturn-view.com/vendors~components-Alert~components-BuyBasket~components-Dialog~co5c8938a5f2f8b277_0.0.drfalse
                                                                                                                		high
                                                                                                                https://www.paperturn.com/cache/v2.3.12/mini-d0f4fc79d4063f6d5171f399465f6cb6.jse78a65cbed4dea02_0.0.drfalse
                                                                                                                • Avira URL Cloud: safe
                                                                                                                		unknown
                                                                                                                https://assets.paperturn-view.com/vendors~components-Tooltip~components-TopBar.09a36c1b.js4b4ae9e2956257f4_0.0.drfalse
                                                                                                                  		high
                                                                                                                  https://www.paperturn.com/flipbook8Flipbook:Current Session.0.drfalse
                                                                                                                  • Avira URL Cloud: safe
                                                                                                                  		unknown
                                                                                                                  https://paperturn.com/e8959e7f160a77ede_0.0.drfalse
                                                                                                                  • Avira URL Cloud: safe
                                                                                                                  		unknown
                                                                                                                  https://www.paperturn-view.com&Current Session.0.drfalse
                                                                                                                  • Avira URL Cloud: safe
                                                                                                                  		low
                                                                                                                  https://www.paperturn.com/loginLoginHistory-journal.0.drfalse
                                                                                                                  • Avira URL Cloud: safe
                                                                                                                  		unknown
                                                                                                                  https://www.paperturn.com/uk/ConvertHistory-journal.0.drfalse
                                                                                                                  • Avira URL Cloud: safe
                                                                                                                  		unknown
                                                                                                                  https://assets.paperturn-view.com/vendors~components-BottomBar.e724eb41.jsa2df7e764a389255_0.0.drfalse
                                                                                                                    		high
                                                                                                                    https://paperturn-view.com/uVna3b9cf33e4506e9e_0.0.drfalse
                                                                                                                      		high
                                                                                                                      https://paperturn.com/HLf7733717fc9a9560_0.0.drfalse
                                                                                                                      • Avira URL Cloud: safe
                                                                                                                      		unknown
                                                                                                                      https://www.youtube.com000003.log4.0.drfalse
                                                                                                                        		high
                                                                                                                        https://www.paperturn.com/pricesCheapHistory.0.drfalse
                                                                                                                        • Avira URL Cloud: safe
                                                                                                                        		unknown
                                                                                                                        https://www.paperturn.com/uk/Current Session.0.dr, Favicons-journal.0.drfalse
                                                                                                                          		unknown
                                                                                                                          https://assets.paperturn-view.com/13.9cb813a3.jsf5e415729b027894_0.0.drfalse
                                                                                                                            		high
                                                                                                                            https://www.google.commanifest.json0.0.dr, 7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drfalse
                                                                                                                              		high
                                                                                                                              https://www.paperturn.com/pricesCurrent Session.0.drfalse
                                                                                                                                		unknown
                                                                                                                                https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/embed.js75c880fe196c95da_0.0.drfalse
                                                                                                                                  		high
                                                                                                                                  https://paperturn-view.com/DWnc968078420fe3f97_0.0.drfalse
                                                                                                                                    		high
                                                                                                                                    https://www.paperturn.com/prices/&WHistory-journal.0.drfalse
                                                                                                                                    • Avira URL Cloud: safe
                                                                                                                                    		unknown
                                                                                                                                    https://assets.paperturn-view.com/components-BottomBar.9060c6c1.jsf99d6da11388c29b_0.0.drfalse
                                                                                                                                      		high
                                                                                                                                      https://www.paperturn-view.com/paperturn-marketing/embed-features-page-country-heritage?pid=MzE31606Current Session.0.drfalse
                                                                                                                                        		high
                                                                                                                                        https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsa9aeca2548873487f_0.0.drfalse
                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                        		unknown
                                                                                                                                        https://spoprod-a.akamaihd.net/Network Action Predictor-journal.0.drfalse
                                                                                                                                          		high
                                                                                                                                          https://www.paperturn.com/cache/v2.3.12/mini-af8546ccbc09deec7e6b7a04c8502a92.js8e8595a5d4720c28_0.0.drfalse
                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                          		unknown
                                                                                                                                          https://www.paperturn.com/cache/v2.3.12/mini-8e659b93bd027876d82817aa95060866.js641fb3ab98d94d28_0.0.drfalse
                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                          		unknown
                                                                                                                                          https://www.paperturn.com/online-pdf-flip-book-features515Current Session.0.drfalse
                                                                                                                                          • Avira URL Cloud: safe
                                                                                                                                          		unknown
                                                                                                                                          https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/remote.js3ee3277df70d5d32_0.0.drfalse
                                                                                                                                            		high
                                                                                                                                            https://connect.facebook.net/en_US/fbevents.jsf7733717fc9a9560_0.0.drfalse
                                                                                                                                              		high
                                                                                                                                              https://assets.paperturn-view.com/components-Alert.22553599.js8d4436abab9cbffc_0.0.drfalse
                                                                                                                                                		high
                                                                                                                                                https://paperturn.com/i2c693e56ec7dc32cf_0.0.drfalse
                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                		unknown
                                                                                                                                                https://assets.paperturn-view.com/components-Preload.8e1d07ba.jsab2e7647897bb5a2_0.0.drfalse
                                                                                                                                                  		high
                                                                                                                                                  https://assets.paperturn-view.com/components-Toolbar.0413dfe3.js5ae823d24fa20467_0.0.drfalse
                                                                                                                                                    		high
                                                                                                                                                    https://assets.paperturn-view.com/components-ErrorBoundary.3ef6552e.js8421b1b3082ac36c_0.0.drfalse
                                                                                                                                                      		high
                                                                                                                                                      https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.jsddf29fd5d7ab777f_0.0.drfalse
                                                                                                                                                      • Avira URL Cloud: safe
                                                                                                                                                      		unknown
                                                                                                                                                      https://youtube.com/95fee99bab72dc0f_0.0.drfalse
                                                                                                                                                        		high
                                                                                                                                                        https://csp.withgoogle.com/csp/report-to/downloads-lorryReporting and NEL.1.drfalse
                                                                                                                                                        • URL Reputation: safe
                                                                                                                                                        • URL Reputation: safe
                                                                                                                                                        • URL Reputation: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://www.paperturn.com/online-pdf-flip-book-features15History.0.drfalse
                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                        		unknown
                                                                                                                                                        https://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~c968078420fe3f97_0.0.drfalse
                                                                                                                                                          		high
                                                                                                                                                          https://assets.paperturn-view.com/components-SnackbarProvider.b1a734fc.jse7eeab8bd5560049_0.0.drfalse
                                                                                                                                                            		high
                                                                                                                                                            https://dns.google7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp.1.dr, 6a3aeedd-434b-43b2-b003-feca369dd65f.tmp.1.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.dr, b25feb06-4ffa-4707-a885-6016f837f55d.tmp.1.drfalse
                                                                                                                                                            • URL Reputation: safe
                                                                                                                                                            • URL Reputation: safe
                                                                                                                                                            • URL Reputation: safe
                                                                                                                                                            		unknown
                                                                                                                                                            https://images.paperturn.com/g/favicon-new/favicon.icoFavicons-journal.0.drfalse
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            https://www.paperturn.com/ConvertHistory-journal.0.drfalse
                                                                                                                                                            • Avira URL Cloud: safe
                                                                                                                                                            		unknown
                                                                                                                                                            https://support.google.com/chromecast/troubleshooter/2995236messages.json41.0.drfalse
                                                                                                                                                              		high
                                                                                                                                                              https://paperturn.com/9vddf29fd5d7ab777f_0.0.drfalse
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.js5e756fb02c040fa1_0.0.drfalse
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              https://paperturn.com/d38e8595a5d4720c28_0.0.drfalse
                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                              		unknown
                                                                                                                                                              https://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/spoguestaccess-f1ac8bbfcd0a0712d3aa4_0.0.drfalse
                                                                                                                                                                		high
                                                                                                                                                                https://assets.paperturn-view.com/index.js?2021072302003275180a52d49873b5_0.0.drfalse
                                                                                                                                                                  		high
                                                                                                                                                                  https://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/require-a19851d1.jsa2a9870c369aa42b_0.0.drfalse
                                                                                                                                                                    		high
                                                                                                                                                                    https://payments.google.com/payments/v4/js/integrator.jsmanifest.json.0.drfalse
                                                                                                                                                                      		high
                                                                                                                                                                      https://www.paperturn.com/pricesICheapCurrent Session.0.drfalse
                                                                                                                                                                      • Avira URL Cloud: safe
                                                                                                                                                                      		unknown
                                                                                                                                                                      https://www.google.com;manifest.json0.0.drfalse
                                                                                                                                                                      • Avira URL Cloud: safe
                                                                                                                                                                      		low
                                                                                                                                                                      https://www.paperturn.com/loginCurrent Session.0.dr, Favicons-journal.0.drfalse
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.jsaD91b9b5ff6833c0d7_0.0.drfalse
                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                        		unknown
                                                                                                                                                                        https://youtube.com/L3ee3277df70d5d32_0.0.drfalse
                                                                                                                                                                          		high
                                                                                                                                                                          https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1#SharepointCurrent Session.0.drfalse
                                                                                                                                                                            		high
                                                                                                                                                                            https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.15-NCurrent Session.0.drfalse
                                                                                                                                                                              		high
                                                                                                                                                                              https://www.paperturn.com/000003.log0.0.drfalse
                                                                                                                                                                              • Avira URL Cloud: safe
                                                                                                                                                                              		unknown
                                                                                                                                                                              https://www.youtube.com/000003.log0.0.drfalse
                                                                                                                                                                                		high
                                                                                                                                                                                https://www.paperturn-view.comhCurrent Session.0.drfalse
                                                                                                                                                                                • Avira URL Cloud: safe
                                                                                                                                                                                		unknown
                                                                                                                                                                                https://paperturn-view.com/8Xnf4692d38da8f7d92_0.0.drfalse
                                                                                                                                                                                  		high
                                                                                                                                                                                  https://www.paperturn.com/cache/v2.3.12/mini-5a97efeeff018a0419f17b6689972674.js823f8fc18e89de25_0.0.drfalse
                                                                                                                                                                                  • Avira URL Cloud: safe
                                                                                                                                                                                  		unknown
                                                                                                                                                                                  https://www.paperturn.com/flipbookFlipbook:History-journal.0.drfalse
                                                                                                                                                                                  • Avira URL Cloud: safe
                                                                                                                                                                                  		unknown
                                                                                                                                                                                  https://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.jsd1d96ac840cd7ef0_0.0.dr, 91b9b5ff6833c0d7_0.0.drfalse
                                                                                                                                                                                  • Avira URL Cloud: safe
                                                                                                                                                                                  		unknown
                                                                                                                                                                                  https://v2.zopim.com/bin/v/widget_v2.329.jse65797cd70a56c3a_0.0.drfalse
                                                                                                                                                                                    		high
                                                                                                                                                                                    https://www.paperturn-view.comCurrent Session.0.dr, 75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drfalse
                                                                                                                                                                                      		high
                                                                                                                                                                                      https://www.paperturn.com/pricesICurrent Session.0.drfalse
                                                                                                                                                                                      • Avira URL Cloud: safe
                                                                                                                                                                                      		unknown
                                                                                                                                                                                      https://paperturn-view.com/8936c0436506fed9_0.0.dr, 98f7ac3352864cdd_0.0.dr, 7a24f279f3c8e97a_0.0.dr, 859d57729f30e053_0.0.dr, ab2e7647897bb5a2_0.0.dr, 78ec281d449072c9_0.0.dr, 57849aa2afcf52a8_0.0.drfalse
                                                                                                                                                                                        		high
                                                                                                                                                                                        https://www.paperturn.com/uk/8ConvertCurrent Session.0.drfalse
                                                                                                                                                                                        • Avira URL Cloud: safe
                                                                                                                                                                                        		unknown
                                                                                                                                                                                        https://assets.paperturn-view.com/components-PoweredBy.81832c27.jsa3b9cf33e4506e9e_0.0.drfalse
                                                                                                                                                                                          		high
                                                                                                                                                                                          https://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/base.js95fee99bab72dc0f_0.0.drfalse
                                                                                                                                                                                            		high
                                                                                                                                                                                            https://a.nel.cloudflare.com/report/v3?s=o1Y%2BBXwLiarvZW4%2FqS8c07Jm73mY8vPzze7jVSiGCG93tDB3p4BX3mRReporting and NEL.1.drfalse
                                                                                                                                                                                              		high
                                                                                                                                                                                              https://assets.paperturn-view.com/components-ViewerContainer.a8be06bc.jsed55c9f01fcca8ed_0.0.drfalse
                                                                                                                                                                                                		high
                                                                                                                                                                                                https://assets.paperturn-view.com/vendors~components-Newsflash.b7b94969.js3f84843334707219_0.0.drfalse
                                                                                                                                                                                                  		high
                                                                                                                                                                                                  https://assets.paperturn-view.com/7.0f628dc6.jsa07811dab2c1a983_0.0.drfalse
                                                                                                                                                                                                    		high
                                                                                                                                                                                                    https://use.fontawesome.com/Network Action Predictor-journal.0.drfalse
                                                                                                                                                                                                      		high
                                                                                                                                                                                                      https://www.paperturn.com000003.log4.0.drfalse
                                                                                                                                                                                                      • Avira URL Cloud: safe
                                                                                                                                                                                                      		unknown
                                                                                                                                                                                                      https://www.google.com/manifest.json.0.drfalse
                                                                                                                                                                                                        		high
                                                                                                                                                                                                        https://www.google.com/js/th/rri_UWQ0J4KTeoiEc0uqeM0aau5ykYMkDZQXo2HoPhc.js105618d59203ef9a_0.0.drfalse
                                                                                                                                                                                                          		high
                                                                                                                                                                                                          https://feedback.googleusercontent.commanifest.json0.0.drfalse
                                                                                                                                                                                                            		high
                                                                                                                                                                                                            https://paperturn-view.com/OA98f7ac3352864cdd_0.0.drfalse
                                                                                                                                                                                                              		high
                                                                                                                                                                                                              https://paperturn-view.com/coY75180a52d49873b5_0.0.drfalse
                                                                                                                                                                                                                		high
                                                                                                                                                                                                                https://assets.calendly.com75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp.1.drfalse
                                                                                                                                                                                                                  		high
                                                                                                                                                                                                                  https://paperturn-view.com/.?d5ef84d81abcea8d_0.0.drfalse
                                                                                                                                                                                                                    		high
                                                                                                                                                                                                                    https://assets.paperturn-view.com/12.dc063ac5.jsaD878756e158c08974_0.0.drfalse
                                                                                                                                                                                                                      		high
                                                                                                                                                                                                                      https://assets.paperturn-view.com/components-Tooltip.d369b3de.js78971c5f3b10669d_0.0.drfalse
                                                                                                                                                                                                                        		high
                                                                                                                                                                                                                        https://assets.paperturn-view.com/12.dc063ac5.js78ec281d449072c9_0.0.drfalse
                                                                                                                                                                                                                          		high

                                                                                                                                                                                                                          Contacted IPs

                                                                                                                                                                                                                          • No. of IPs < 25%
                                                                                                                                                                                                                          • 25% < No. of IPs < 50%
                                                                                                                                                                                                                          • 50% < No. of IPs < 75%
                                                                                                                                                                                                                          • 75% < No. of IPs

                                                                                                                                                                                                                          Public

                                                                                                                                                                                                                          IPDomainCountryFlagASNASN NameMalicious
                                                                                                                                                                                                                          216.58.215.238
                                                                                                                                                                                                                          		www-google-analytics.l.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          206.189.187.108
                                                                                                                                                                                                                          		acsbapp.comUnited States
                                                                                                                                                                                                                          		14061DIGITALOCEAN-ASNUSfalse
                                                                                                                                                                                                                          172.217.168.45
                                                                                                                                                                                                                          		accounts.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          143.204.225.47
                                                                                                                                                                                                                          		d2mvl3dkxvehny.cloudfront.netUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          142.250.203.97
                                                                                                                                                                                                                          		googlehosted.l.googleusercontent.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          66.102.1.156
                                                                                                                                                                                                                          		unknownUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          104.16.106.139
                                                                                                                                                                                                                          		v2.zopim.comUnited States
                                                                                                                                                                                                                          		13335CLOUDFLARENETUSfalse
                                                                                                                                                                                                                          52.29.88.9
                                                                                                                                                                                                                          		widget-mediator.zopim.comUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          143.204.225.93
                                                                                                                                                                                                                          		assets.paperturn-view.comUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          143.204.225.123
                                                                                                                                                                                                                          		www.paperturn-view.comUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          148.251.96.155
                                                                                                                                                                                                                          		www.paperturn.comGermany
                                                                                                                                                                                                                          		24940HETZNER-ASDEfalse
                                                                                                                                                                                                                          172.217.168.1
                                                                                                                                                                                                                          		photos-ugc.l.googleusercontent.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          172.217.168.2
                                                                                                                                                                                                                          		googleads.g.doubleclick.netUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          144.91.89.225
                                                                                                                                                                                                                          		xpans.inGermany
                                                                                                                                                                                                                          		51167CONTABODEfalse
                                                                                                                                                                                                                          157.240.16.35
                                                                                                                                                                                                                          		star-mini.c10r.facebook.comUnited States
                                                                                                                                                                                                                          		32934FACEBOOKUSfalse
                                                                                                                                                                                                                          239.255.255.250
                                                                                                                                                                                                                          		unknownReserved
                                                                                                                                                                                                                          		unknownunknownfalse
                                                                                                                                                                                                                          104.18.70.113
                                                                                                                                                                                                                          		static.zdassets.comUnited States
                                                                                                                                                                                                                          		13335CLOUDFLARENETUSfalse
                                                                                                                                                                                                                          13.225.29.13
                                                                                                                                                                                                                          		unknownUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          64.233.167.157
                                                                                                                                                                                                                          		stats.l.doubleclick.netUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          142.250.203.110
                                                                                                                                                                                                                          		clients.l.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          172.217.168.68
                                                                                                                                                                                                                          		www.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          157.240.17.15
                                                                                                                                                                                                                          		scontent.xx.fbcdn.netUnited States
                                                                                                                                                                                                                          		32934FACEBOOKUSfalse
                                                                                                                                                                                                                          172.217.168.8
                                                                                                                                                                                                                          		www-googletagmanager.l.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          143.204.225.69
                                                                                                                                                                                                                          		translations.paperturn.comUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          172.217.168.3
                                                                                                                                                                                                                          		gstaticadssl.l.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          143.204.225.4
                                                                                                                                                                                                                          		d3jodor2jgify2.cloudfront.netUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse
                                                                                                                                                                                                                          216.58.215.246
                                                                                                                                                                                                                          		i.ytimg.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          172.217.168.70
                                                                                                                                                                                                                          		static-doubleclick-net.l.google.comUnited States
                                                                                                                                                                                                                          		15169GOOGLEUSfalse
                                                                                                                                                                                                                          104.18.204.90
                                                                                                                                                                                                                          		v2assets.zopim.ioUnited States
                                                                                                                                                                                                                          		13335CLOUDFLARENETUSfalse
                                                                                                                                                                                                                          206.189.191.180
                                                                                                                                                                                                                          		unknownUnited States
                                                                                                                                                                                                                          		14061DIGITALOCEAN-ASNUSfalse
                                                                                                                                                                                                                          13.225.29.76
                                                                                                                                                                                                                          		d3euuwqpqlzvic.cloudfront.netUnited States
                                                                                                                                                                                                                          		16509AMAZON-02USfalse

                                                                                                                                                                                                                          Private

                                                                                                                                                                                                                          IP
                                                                                                                                                                                                                          192.168.2.1
                                                                                                                                                                                                                          127.0.0.1
                                                                                                                                                                                                                          192.168.2.255

                                                                                                                                                                                                                          General Information

                                                                                                                                                                                                                          Joe Sandbox Version:33.0.0 White Diamond
                                                                                                                                                                                                                          Analysis ID:452723
                                                                                                                                                                                                                          Start date:22.07.2021
                                                                                                                                                                                                                          Start time:18:59:34
                                                                                                                                                                                                                          Joe Sandbox Product:CloudBasic
                                                                                                                                                                                                                          Overall analysis duration:0h 8m 16s
                                                                                                                                                                                                                          Hypervisor based Inspection enabled:false
                                                                                                                                                                                                                          Report type:light
                                                                                                                                                                                                                          Cookbook file name:browseurl.jbs
                                                                                                                                                                                                                          Sample URL:https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1
                                                                                                                                                                                                                          Analysis system description:Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
                                                                                                                                                                                                                          Number of analysed new started processes analysed:22
                                                                                                                                                                                                                          Number of new started drivers analysed:0
                                                                                                                                                                                                                          Number of existing processes analysed:0
                                                                                                                                                                                                                          Number of existing drivers analysed:0
                                                                                                                                                                                                                          Number of injected processes analysed:0
                                                                                                                                                                                                                          Technologies:
                                                                                                                                                                                                                          • HCA enabled
                                                                                                                                                                                                                          • EGA enabled
                                                                                                                                                                                                                          • HDC enabled
                                                                                                                                                                                                                          • AMSI enabled
                                                                                                                                                                                                                          Analysis Mode:default
                                                                                                                                                                                                                          Analysis stop reason:Timeout
                                                                                                                                                                                                                          Detection:MAL
                                                                                                                                                                                                                          Classification:mal72.phis.win@45/253@49/34
                                                                                                                                                                                                                          Cookbook Comments:
                                                                                                                                                                                                                          • Adjust boot time
                                                                                                                                                                                                                          • Enable AMSI
                                                                                                                                                                                                                          • Browse: https://www.paperturn.com/flipbook
                                                                                                                                                                                                                          • Browse: https://www.paperturn.com/flipbook
                                                                                                                                                                                                                          • Browse: https://xpans.in/document/Drive/
                                                                                                                                                                                                                          • Browse: https://www.paperturn.com/
                                                                                                                                                                                                                          • Browse: https://www.paperturn.com/login
                                                                                                                                                                                                                          • Browse: https://www.paperturn.com/prices
                                                                                                                                                                                                                          • Browse: https://www.paperturn.com/online-pdf-flip-book-features
                                                                                                                                                                                                                          Warnings:
                                                                                                                                                                                                                          Show All
                                                                                                                                                                                                                          • Exclude process from analysis (whitelisted): MpCmdRun.exe, audiodg.exe, BackgroundTransferHost.exe, backgroundTaskHost.exe, SgrmBroker.exe, conhost.exe, svchost.exe
                                                                                                                                                                                                                          • TCP Packets have been reduced to 100
                                                                                                                                                                                                                          • Created / dropped Files have been reduced to 100
                                                                                                                                                                                                                          • Excluded IPs from analysis (whitelisted): 104.42.151.234, 92.122.145.220, 52.255.188.83, 172.217.168.14, 172.217.133.103, 34.104.35.123, 142.250.203.106, 172.217.168.67, 104.21.78.7, 172.67.214.69, 80.67.82.9, 80.67.82.17, 93.184.220.29, 23.205.179.154, 23.35.236.56, 23.216.77.132, 23.216.77.146, 216.58.215.234, 172.217.168.10, 172.217.168.42, 172.217.168.74, 20.82.210.154, 2.18.213.40, 2.18.213.75, 23.203.67.190, 23.213.161.20, 23.213.161.29, 51.103.5.186, 20.50.102.62, 142.250.203.99, 80.67.82.235, 80.67.82.211, 40.112.88.60
                                                                                                                                                                                                                          • Excluded domains from analysis (whitelisted): consent.cookiebot.com.edgekey.net, cs9.wac.phicdn.net, clientservices.googleapis.com, iris-de-prod-azsc-neu-b.northeurope.cloudapp.azure.com, use.fontawesome.com.cdn.cloudflare.net, fs-wildcard.microsoft.com.edgekey.net, ocsp.digicert.com, audownload.windowsupdate.nsatc.net, update.googleapis.com, watson.telemetry.microsoft.com, www.gstatic.com, au-bg-shim.trafficmanager.net, www.google-analytics.com, fonts.googleapis.com, fs.microsoft.com, content-autofill.googleapis.com, ris-prod.trafficmanager.net, r2---sn-h0jeener.gvt1.com, statica.akamai.odsp.cdn.office.net-c.edgesuite.net, www.googleapis.com, e34372.dsca.akamaiedge.net, ris.api.iris.microsoft.com, edgedl.me.gvt1.com, store-images.s-microsoft.com, blobcollector.events.data.trafficmanager.net, a1531.g2.akamai.net, spoprod-a.akamaihd.net.edgesuite.net, e1780.dspg.akamaiedge.net, au.download.windowsupdate.com.edgesuite.net, store-images.s-microsoft.com-c.edgekey.net, fs-wildcard.microsoft.com.edgekey.net.globalredir.akadns.net, a1449.dscg2.akamai.net, arc.msn.com, statica.akamai.odsp.cdn.office.net, e12564.dspb.akamaiedge.net, wns.notify.trafficmanager.net, redirector.gvt1.com, www.googletagmanager.com, arc.trafficmanager.net, r2.sn-h0jeener.gvt1.com, img-prod-cms-rt-microsoft-com.akamaized.net, prod.fs.microsoft.com.akadns.net, static.sharepointonline.com-c.edgekey.net, consentcdn.cookiebot.com-v1.edgekey.net, client.wns.windows.com, e3849.dsca.akamaiedge.net, fonts.gstatic.com, statica.akamai.odsp.cdn.office.net-c.edgesuite.net.globalredir.akadns.net, asf-ris-prod-neu.northeurope.cloudapp.azure.com, e1723.g.akamaiedge.net, ctldl.windowsupdate.com, a767.dscg3.akamai.net, iris-de-prod-azsc-uks.uksouth.cloudapp.azure.com, skypedataprdcoleus17.cloudapp.net, skypedataprdcolwus16.cloudapp.net, a1813.dscd.akamai.net
                                                                                                                                                                                                                          • Not all processes where analyzed, report is missing behavior information
                                                                                                                                                                                                                          • Report size exceeded maximum capacity and may have missing behavior information.
                                                                                                                                                                                                                          • Report size exceeded maximum capacity and may have missing network information.
                                                                                                                                                                                                                          • Report size getting too big, too many NtCreateFile calls found.
                                                                                                                                                                                                                          • Report size getting too big, too many NtOpenFile calls found.
                                                                                                                                                                                                                          • Report size getting too big, too many NtQueryVolumeInformationFile calls found.
                                                                                                                                                                                                                          • Report size getting too big, too many NtWriteFile calls found.
                                                                                                                                                                                                                          • Report size getting too big, too many NtWriteVirtualMemory calls found.
                                                                                                                                                                                                                          • VT rate limit hit for: https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1

                                                                                                                                                                                                                          Simulations

                                                                                                                                                                                                                          Behavior and APIs

                                                                                                                                                                                                                          TimeTypeDescription
                                                                                                                                                                                                                          19:00:40API Interceptor2x Sleep call for process: chrome.exe modified

                                                                                                                                                                                                                          Joe Sandbox View / Context

                                                                                                                                                                                                                          IPs

                                                                                                                                                                                                                          No context

                                                                                                                                                                                                                          Domains

                                                                                                                                                                                                                          No context

                                                                                                                                                                                                                          ASN

                                                                                                                                                                                                                          No context

                                                                                                                                                                                                                          JA3 Fingerprints

                                                                                                                                                                                                                          No context

                                                                                                                                                                                                                          Dropped Files

                                                                                                                                                                                                                          No context

                                                                                                                                                                                                                          Created / dropped Files

                                                                                                                                                                                                                          C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):451603
                                                                                                                                                                                                                          Entropy (8bit):5.009711072558331
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12288:ZHfRTyGZ6lup8Cfrvq4JBPKh+FBlESBw4p6:NfOCzvRKhGvwJ
                                                                                                                                                                                                                          MD5:A78AD14E77147E7DE3647E61964C0335
                                                                                                                                                                                                                          SHA1:CECC3DD41F4CEA0192B24300C71E1911BD4FCE45
                                                                                                                                                                                                                          SHA-256:0D6803758FF8F87081FAFD62E90F0950DFB2DD7991E9607FE76A8F92D0E893FA
                                                                                                                                                                                                                          SHA-512:DDE24D5AD50D68FC91E9E325D31E66EF8F624B6BB3A07D14FFED1104D3AB5F4EF1D7969A5CDE0DFBB19CB31C506F7DE97AF67C2F244F7E7E8E10648EA8321101
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: BDic.... ....6...."..Z..4g....6.2...{/...3...5....AF 1363.AF nm.AF pt.AF n1.AF p.AF tc.AF SM.AF M.AF S.AF MS.AF MNR.AF GDS.AF MNT.AF MH.AF MR.AF SZMR.AF MJ.AF MT.AF MY.AF MRZ.AF MN.AF MG.AF RM.AF N.AF MV.AF XM.AF DSM.AF SD.AF G.AF R.AF MNX.AF MRS.AF MD.AF MNRB.AF B.AF ZSMR.AF PM.AF SMNGJ.AF SMN.AF ZMR.AF SMGB.AF MZR.AF GM.AF SMR.AF SMDG.AF RMZ.AF ZM.AF MDG.AF MDT.AF SMNXT.AF SDY.AF LSDG.AF LGDS.AF GLDS.AF UY.AF U.AF DSGNX.AF GNDSX.AF DSG.AF Y.AF GS.AF IEMS.AF YP.AF ZGDRS.AF XGNVDS.AF UT.AF GNDS.AF GVDS.AF MYPS.AF XGNDS.AF TPRY.AF MDSG.AF ZGSDR.AF DYSG.AF PMYTNS.AF AGDS.AF DRZGS.AF PY.AF GSPMDY.AF EGVDS.AF SL.AF GNXDS.AF DSBG.AF IM.AF I.AF MDGS.AF SMY.AF DSGN.AF DSLG.AF GMDS.AF MDSBG.AF SGD.AF IY.AF P.AF DSMG.AF BLZGDRS.AF TR.AF AGSD.AF ZGBDRSL.AF PTRY.AF ASDGV.AF ASM.AF ICANGSD.AF ICAM.AF IKY.AF AMS.AF PMYTRS.AF BZGVDRS.AF SDRBZG.AF GVMDS.AF PSM.AF DGLS.AF GNVXDS.AF AGDSL.AF DGS.AF XDSGNV.AF BZGDRS.AF AM.AF AS.AF A.AF LDSG.AF AGVDS.AF SDG.AF LDSMG.AF EDSMG.AF EY.AF DRSMZG.AF PRYT.AF LZ
                                                                                                                                                                                                                          C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:Microsoft Cabinet archive data, 61020 bytes, 1 file
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):61020
                                                                                                                                                                                                                          Entropy (8bit):7.994886945086499
                                                                                                                                                                                                                          Encrypted:true
                                                                                                                                                                                                                          SSDEEP:1536:IZ/FdeYPeFusuQszEfL0/NfXfdl5lNQbGxO4EBJE:0tdeYPiuWAVtlLBGm
                                                                                                                                                                                                                          MD5:2902DE11E30DCC620B184E3BB0F0C1CB
                                                                                                                                                                                                                          SHA1:5D11D14A2558801A2688DC2D6DFAD39AC294F222
                                                                                                                                                                                                                          SHA-256:E6A7F1F8810E46A736E80EE5AC6187690F28F4D5D35D130D410E20084B2C1544
                                                                                                                                                                                                                          SHA-512:EFD415CDE25B827AC2A7CA4D6486CE3A43CDCC1C31D3A94FD7944681AA3E83A4966625BF2E6770581C4B59D05E35FF9318D9ADADDADE9070F131076892AF2FA0
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: MSCF....\.......,...................I........l.........R.q .authroot.stl.N....5..CK..8T....c_.d....A.K....=.D.eWI..r."Y...."i..,.=.l.D.....3...3WW.......y...9..w..D.yM10....`.0.e.._.'..a0xN....)F.C..t.z.,.O20.1``L.....m?H..C..X>Oc..q.....%.!^v%<...O...-..@/.......H.J.W...... T...Fp..2.|$....._Y..Y`&..s.1........s.{..,.":o}9.......%._.xW*S.K..4"9......q.G:.........a.H.y.. ..r...q./6.p.;.`=*.Dwj......!......s).B..y.......A.!W.........D!s0..!"X...l.....D0...........Ba...Z.0.o..l.3.v..W1F hSp.S)@.....'Z..QW...G...G.G.y+.x...aa`.3..X&4E..N...._O..<X.......K...xm..+M...O.H...)..........*..o..~4.6.......p.`Bt.(..*V.N.!.p.C>..%.ySXY.>.`..f|.*...'^K`\..e......j/..|..)..&i...wEj.w...o..r<.$.....C.....}.x...L..&..).r..\...>....v........7...^..L!.$..'m...*,*.....7F$..~..S.6$S.-y....|.!.....x...~k...Q/.w.e...h.[...9<x...Q.x.][}*_%Z..K.).3..'....M.6QkJ.N........Y..Q.n.[.(.... ...Bg..33..[...S..[... .Z..<i.-.]...po.k.,...X6......y3^.t[.Dw.]ts. R..L..`..ut_F....
                                                                                                                                                                                                                          C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_33E8F98A524575FDD27708D6D61F97ED
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):471
                                                                                                                                                                                                                          Entropy (8bit):7.165262112463007
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:JY0Exc5FZp3TxYu16IDDpbMQwpntPN2BWNoczW14cb:JY0Exc3ZpxYu166btQ+4cb
                                                                                                                                                                                                                          MD5:51F89A3EAD171C099581D6FA7FC20050
                                                                                                                                                                                                                          SHA1:39C9F05034A23680E7572FD19F4166EAFDD13E50
                                                                                                                                                                                                                          SHA-256:49ABDFD49D478D1EB231199F88AC7FD8476F71F4977A6530B48B2EDA95810642
                                                                                                                                                                                                                          SHA-512:F6296033604BCEACBEB7A53D808464217A51FD0A0BE8813E0D98F993F4A9CF3E536A84B770ECFE0FB06CF6DFAC17E1E41B54BE9FEDD10682AE2F5E1DF387C35C
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0..........0.....+.....0......0...0.......>.i...G..&....cd+...20210721222013Z0s0q0I0...+...........(..A..B..G@B.X....>.i...G..&....cd+......V....r........20210721222013Z....20210728222013Z0...*.H.............I&L.n{....@..fG.\M\...\..<..$s"....i1.....\&pj.".....r...;*Zb..x?.}....b...L.&..aj......&#...fM...V..~...Y...~.g....%.:..]oR./cN......=.]A.8...X...irU..i.X.`...D...=|v.#$X....A.t.4...|..!.s..Z........E..@.%#.(.J.f.......%.....K.3../..d....
                                                                                                                                                                                                                          C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):326
                                                                                                                                                                                                                          Entropy (8bit):3.1392054451166236
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:kKffqdoW+N+SkQlPlEGYRMY9z+4KlDA3RUeIlD1Ut:3fG5kPlE99SNxAhUe0et
                                                                                                                                                                                                                          MD5:5F7022610D28099D8053D3DD4220766B
                                                                                                                                                                                                                          SHA1:20BAFB97B231372268C6345738C3FC552B897176
                                                                                                                                                                                                                          SHA-256:8C3ED4CD9BB870B757446DA39001AF76FEA41FAF0E97379AA180C337A8665FEE
                                                                                                                                                                                                                          SHA-512:971B4F95C7927ECD9E578743402E49EEAC4B98E07A8CF2195D13EB384288B77FBA623F952E7AEB49242F70A3E5C82BD8AF672C0390E1954B447831996EEDDEA8
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: p...... ............f...(....................................................... .........T'._......$...........\...h.t.t.p.:././.c.t.l.d.l...w.i.n.d.o.w.s.u.p.d.a.t.e...c.o.m./.m.s.d.o.w.n.l.o.a.d./.u.p.d.a.t.e./.v.3./.s.t.a.t.i.c./.t.r.u.s.t.e.d.r./.e.n./.a.u.t.h.r.o.o.t.s.t.l...c.a.b...".0.d.6.5.4.2.7.7.5.f.d.7.1.:.0."...
                                                                                                                                                                                                                          C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_33E8F98A524575FDD27708D6D61F97ED
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):860
                                                                                                                                                                                                                          Entropy (8bit):3.844855388633013
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:IXmxxvnFqYwJNEMtsq4nmxxvnFqYwJNEM6:IXODkqosq4nODkqH
                                                                                                                                                                                                                          MD5:8D16F2BE30A07A55563325EADA586AD0
                                                                                                                                                                                                                          SHA1:05ECD7358FE5D1FA4F43E116CAC068662531CAEF
                                                                                                                                                                                                                          SHA-256:36EB42CF57E349ACB9017B22F1FE565146B4FA01ABFE036522801BE47DC1F556
                                                                                                                                                                                                                          SHA-512:C556272F03A0C8A6AFF72563FDC80AC6CD591DE05CF4D55BFD39560EDE14EF55F9CA541C1AB5DB0C26B6908EA3E2D1C963D53049DA0225F98A5B8256CFC27508
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: p...... .........th.f...(....................................................... .........o..~..?8..................h.t.t.p.:././.o.c.s.p...d.i.g.i.c.e.r.t...c.o.m./.M.F.E.w.T.z.B.N.M.E.s.w.S.T.A.J.B.g.U.r.D.g.M.C.G.g.U.A.B.B.T.f.q.h.L.j.K.L.E.J.Q.Z.P.i.n.0.K.C.z.k.d.A.Q.p.V.Y.o.w.Q.U.s.T.7.D.a.Q.P.4.v.0.c.B.1.J.g.m.G.g.g.C.7.2.N.k.K.8.M.C.E.A.K.X.B.1.Y.M.1.K.n.r.v.%.2.B.J.y.8.e.C.W.2.I.I.%.3.D...".6.0.f.9.2.c.c.4.-.1.d.7."...p...... .........th.f...(................L..~~.................................. .........o..~..?8..................h.t.t.p.:././.o.c.s.p...d.i.g.i.c.e.r.t...c.o.m./.M.F.E.w.T.z.B.N.M.E.s.w.S.T.A.J.B.g.U.r.D.g.M.C.G.g.U.A.B.B.T.f.q.h.L.j.K.L.E.J.Q.Z.P.i.n.0.K.C.z.k.d.A.Q.p.V.Y.o.w.Q.U.s.T.7.D.a.Q.P.4.v.0.c.B.1.J.g.m.G.g.g.C.7.2.N.k.K.8.M.C.E.A.K.X.B.1.Y.M.1.K.n.r.v.%.2.B.J.y.8.e.C.W.2.I.I.%.3.D...".6.0.f.9.2.c.c.4.-.1.d.7."...
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\0079b35c-f8fa-45a7-a8b7-bdf8eba80ff1.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):368958
                                                                                                                                                                                                                          Entropy (8bit):6.027723401716834
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6144:6euVhcD1QqqO9y+9pjtKb8Acx6ZaurE5/EDnJpAl9SeefNqWF4iVx/9LPeq/1LHL:SV21H99ttxzurRDn9nfNxF4ijZVtilB0
                                                                                                                                                                                                                          MD5:DDC37B1394D8170271B8E953B9E44550
                                                                                                                                                                                                                          SHA1:CF8A54F5434FA2A5496C7897C45725C88755B6BD
                                                                                                                                                                                                                          SHA-256:A4694446CF4B822446D23BF233671874009B460C4791C909A0DE1101DDD513B1
                                                                                                                                                                                                                          SHA-512:68D3236E5875B408556F8CB676DEB62AC33D7E3A3031A5465EA8A8A395D2D1E718AF75757F77C14BB685AB40677136BC3CC4DC82E3FC7AFE62E2961924AAD7A5
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"browser":{"last_redirect_origin":"","shortcut_migration_version":"85.0.4183.121"},"data_use_measurement":{"data_used":{"services":{"background":{},"foreground":{}},"user":{"background":{},"foreground":{}}}},"hardware_acceleration_mode_previous":true,"intl":{"app_locale":"en"},"legacy":{"profile":{"name":{"migrated":true}}},"network_time":{"network_time_mapping":{"local":1.62700563214231e+12,"network":1.626973234e+12,"ticks":4358913301.0,"uncertainty":4536820.0}},"os_crypt":{"encrypted_key":"RFBBUEkBAAAA0Iyd3wEV0RGMegDAT8KX6wEAAABUPWY4cSyAQZRX3j8/SLmMAAAAAAIAAAAAABBmAAAAAQAAIAAAACC7lwCjByxIY/Ds1S6cdCxJW6iSr1QfjoKlVKoVEQ4EAAAAAA6AAAAAAgAAIAAAAD9PMfiGkWkdrfU+zeMpOLPS1eDxLpcgjYP2R/ndeCNxMAAAAK+RpovfP61NtB5nOpQgPMjPTyt2T1WPeru9i3yP05zNVEj0uCRDWfONruG9ricX1kAAAADB9KtQ9KY2z38GdfaF7dW2ZLcAMHOX2oEKBg8ZJG9lsuMexxChB4M8HFpyb0Bpr6axpi+zmMIXt76noTOxFzKN"},"password_manager":{"os_password_blank":true,"os_password_last_changed":"13245950075900350"},"plugins":{"metadata":{"adobe-flash-player":{"disp
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\0ef446f5-5daa-4ac3-b591-1c4784fc95ce.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):365377
                                                                                                                                                                                                                          Entropy (8bit):6.01522968420814
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6144:xeuVhcD1QqqO9y+9pjtKb8Acx6ZaurE5/EDnJpAl9SeefNqWF4iVx/9LPeq/1LHL:BV21H99ttxzurRDn9nfNxF4ijZVtilB0
                                                                                                                                                                                                                          MD5:8DA00429ECCA7B8F115ADBC40CF22513
                                                                                                                                                                                                                          SHA1:9CB88E3508E59C79972823E9FB3D767802F97DC6
                                                                                                                                                                                                                          SHA-256:A0B107246388F873DDA12C41CF0BEB2D40968455C26A9E2301D4AB1C342B4BCB
                                                                                                                                                                                                                          SHA-512:D6261342670151AAC3D3CC011F6C715A33B175B7A976268F3FBD3054CA328046DBB8AB2A4B54D59CA695046BFA6D8018B63E0DCC979BB7E51CF1D27D58D74CDB
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"browser":{"last_redirect_origin":"","shortcut_migration_version":"85.0.4183.121"},"data_use_measurement":{"data_used":{"services":{"background":{},"foreground":{}},"user":{"background":{},"foreground":{}}}},"hardware_acceleration_mode_previous":true,"intl":{"app_locale":"en"},"legacy":{"profile":{"name":{"migrated":true}}},"network_time":{"network_time_mapping":{"local":1.62700563214231e+12,"network":1.626973234e+12,"ticks":4358913301.0,"uncertainty":4536820.0}},"os_crypt":{"encrypted_key":"RFBBUEkBAAAA0Iyd3wEV0RGMegDAT8KX6wEAAABUPWY4cSyAQZRX3j8/SLmMAAAAAAIAAAAAABBmAAAAAQAAIAAAACC7lwCjByxIY/Ds1S6cdCxJW6iSr1QfjoKlVKoVEQ4EAAAAAA6AAAAAAgAAIAAAAD9PMfiGkWkdrfU+zeMpOLPS1eDxLpcgjYP2R/ndeCNxMAAAAK+RpovfP61NtB5nOpQgPMjPTyt2T1WPeru9i3yP05zNVEj0uCRDWfONruG9ricX1kAAAADB9KtQ9KY2z38GdfaF7dW2ZLcAMHOX2oEKBg8ZJG9lsuMexxChB4M8HFpyb0Bpr6axpi+zmMIXt76noTOxFzKN"},"password_manager":{"os_password_blank":true,"os_password_last_changed":"13245950075900350"},"policy":{"last_statistics_update":"13271479227799
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\50907df1-3712-418e-9e91-0ec9028aa3d5.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):92724
                                                                                                                                                                                                                          Entropy (8bit):3.7515847627811647
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:384:HDadlbAODHABMNxr6vVv3ex7OHfGGClrQTV1xuvbrar4pmwrQvRFpqO7LdNA1ZAs:qKtFufqGQebpLHEnrCzKpPlFM
                                                                                                                                                                                                                          MD5:D534EA9DA5F31B5222BFE87AF2A87B6A
                                                                                                                                                                                                                          SHA1:BF08A3A545ED125BB19B16CFF22C72340AAABE70
                                                                                                                                                                                                                          SHA-256:E92694DA6082826279A9336607F81EB3FFA6362B81A911065C71AF4C8A902B37
                                                                                                                                                                                                                          SHA-512:2264D8F1ADAF9C070488889AA5FFB1D09F5EE59EBCE1830A21CF6D73192B166495DE615B735459E4F2BBBFBA83884E6C13B96C67473F3F1292970AB09E5A851B
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0j..............*...C.:.\.P.R.O.G.R.A.~.1.\.M.I.C.R.O.S.~.1.\.O.f.f.i.c.e.1.6.\.G.R.O.O.V.E.E.X...D.L.L..P!...[)...%.p.r.o.g.r.a.m.f.i.l.e.s.%.\.m.i.c.r.o.s.o.f.t. .o.f.f.i.c.e.\.o.f.f.i.c.e.1.6.\.......g.r.o.o.v.e.e.x...d.l.l.....M.i.c.r.o.s.o.f.t. .O.f.f.i.c.e. .2.0.1.6...*...M.i.c.r.o.s.o.f.t. .O.n.e.D.r.i.v.e. .f.o.r. .B.u.s.i.n.e.s.s. .E.x.t.e.n.s.i.o.n.s.....1.6...0...4.7.1.1...1.0.0.0.....*...C.:.\.P.R.O.G.R.A.~.1.\.M.I.C.R.O.S.~.1.\.O.f.f.i.c.e.1.6.\.G.R.O.O.V.E.E.X...D.L.L.....M.i.c.r.o.s.o.f.t. .C.o.r.p.o.r.a.t.i.o.n...z@8.D...C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.C.o.m.m.o.n. .F.i.l.e.s.\.M.i.c.r.o.s.o.f.t. .S.h.a.r.e.d.\.O.F.F.I.C.E.1.6.\.m.s.o.s.h.e.x.t...d.l.l..@.....U/...%.c.o.m.m.o.n.p.r.o.g.r.a.m.f.i.l.e.s.%.\.m.i.c.r.o.s.o.f.t. .s.h.a.r.e.d.\.o.f.f.i.c.e.1.6.\.......m.s.o.s.h.e.x.t...d.l.l.....M.i.c.r.o.s.o.f.t. .O.f.f.i.c.e.)...M.i.c.r.o.s.o.f.t. .O.f.f.i.c.e. .S.h.e.l.l. .E.x.t.e.n.s.i.o.n. .H.a.n.d.l.e.r.s.......1.6...0...4.2.6.6...1.0.0.1.....D...C.:.\.P.r.o.g.r.a.m.
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\72446f73-412e-4b09-a7fe-857f99e52227.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):365376
                                                                                                                                                                                                                          Entropy (8bit):6.015229686192827
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6144:IeuVhcD1QqqO9y+9pjtKb8Acx6ZaurE5/EDnJpAl9SeefNqWF4iVx/9LPeq/1LHL:QV21H99ttxzurRDn9nfNxF4ijZVtilB0
                                                                                                                                                                                                                          MD5:A434BAE75CDAC9A45FEB9C8490ADAAAD
                                                                                                                                                                                                                          SHA1:D274178754FEC25B3F87AA24ADC98521940CB638
                                                                                                                                                                                                                          SHA-256:F769CF63C0BB78A7EC4A57BFEB0131434D6FB157AB571215860E6973710A5ED2
                                                                                                                                                                                                                          SHA-512:5552F236DDEB3711B6FDCE73E74B849AB9472989B689671F809AC4867025401488171A2DB6103E8BC7B426BE4D6DFC8198340771095259D792149EB2669383B2
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"browser":{"last_redirect_origin":"","shortcut_migration_version":"85.0.4183.121"},"data_use_measurement":{"data_used":{"services":{"background":{},"foreground":{}},"user":{"background":{},"foreground":{}}}},"hardware_acceleration_mode_previous":true,"intl":{"app_locale":"en"},"legacy":{"profile":{"name":{"migrated":true}}},"network_time":{"network_time_mapping":{"local":1.62700563214231e+12,"network":1.626973234e+12,"ticks":4358913301.0,"uncertainty":4536820.0}},"os_crypt":{"encrypted_key":"RFBBUEkBAAAA0Iyd3wEV0RGMegDAT8KX6wEAAABUPWY4cSyAQZRX3j8/SLmMAAAAAAIAAAAAABBmAAAAAQAAIAAAACC7lwCjByxIY/Ds1S6cdCxJW6iSr1QfjoKlVKoVEQ4EAAAAAA6AAAAAAgAAIAAAAD9PMfiGkWkdrfU+zeMpOLPS1eDxLpcgjYP2R/ndeCNxMAAAAK+RpovfP61NtB5nOpQgPMjPTyt2T1WPeru9i3yP05zNVEj0uCRDWfONruG9ricX1kAAAADB9KtQ9KY2z38GdfaF7dW2ZLcAMHOX2oEKBg8ZJG9lsuMexxChB4M8HFpyb0Bpr6axpi+zmMIXt76noTOxFzKN"},"password_manager":{"os_password_blank":true,"os_password_last_changed":"13245950075265799"},"policy":{"last_statistics_update":"13271479227799
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):120
                                                                                                                                                                                                                          Entropy (8bit):3.3041625260016576
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3:FkXYDu6cR9iTXYDu6cR9iTXYDu6cR9n:+Y66cR4TXY66cR4TXY66cR9
                                                                                                                                                                                                                          MD5:569FA64ACAA310B1DE1A6250CC7356B0
                                                                                                                                                                                                                          SHA1:14251450C245F8612958BF94779E8B72AE6D6213
                                                                                                                                                                                                                          SHA-256:AEE20ADEBF2D35EB8A39BE2DC391B0E5966EFCB4AFDC971BB3A18115C929F563
                                                                                                                                                                                                                          SHA-512:850914A053EF541046B29260266C17FEFF2466A87784394F9AB3B565D2EA1E656F61F02BDB78F9F9676E90365F837F3709BCC0856B3B844256848F477250E0C7
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: sdPC.....................8...?E."..N_.sdPC.....................8...?E."..N_.sdPC.....................8...?E."..N_.
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\09e8ef0e-a23e-42cb-a038-ed5f9c541cbc.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1373
                                                                                                                                                                                                                          Entropy (8bit):5.592535852544843
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:YEyKeUutoO9RAeUupQx6H0UhHbrfwUut1UyG1KUfcmNaUeCis7wUfQRUeIQ:YOeUpCieUWO6UUhAUF9KUkmwUeCi6wUM
                                                                                                                                                                                                                          MD5:7D901AB2096BE1C7F4F6B7C3140D2C2A
                                                                                                                                                                                                                          SHA1:A00C5C4B729A02FD744F9C9185B450DC5C2AA486
                                                                                                                                                                                                                          SHA-256:890840039E3D503906BD00AC4AF49F724BCE2A3F481B336AA9444A13E817438A
                                                                                                                                                                                                                          SHA-512:5E34F86FBAF83CB82FFBF3F1CB89B56CDED1E6A4FE25AB62CCFC02781D60CDFBAD1DBACA60BFDD254D73D02E17D002874D3B72AE3958DAF96748BCB9BDDE0E0D
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"expect_ct":[],"sts":[{"expiry":1637892033.911582,"host":"LAZkYS46RVRcFiZAzmUJrz6TJHBd4nwE6VxPWfPLYHs=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005633.911589},{"expiry":1658541632.988816,"host":"M4bfUnCmQAi4PNb3B8aI/2+SVJhHKsMfMMT7fzi6ij4=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005632.988822},{"expiry":1633013028.822833,"host":"OuKlWsMW1dkkbI1X/oi6o0Y95ZNSWnSoeaIXAEYPlv4=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1601477028.822838},{"expiry":1637892033.322103,"host":"fJjUrPqhktMfiTHJX3Q0pJi/P12Q72DBgzzJqjlNC4o=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005633.32211},{"expiry":1658541639.72814,"host":"nAuqgR4iEWti7SOdT3UHPl6rmZU/DeaIm38P2O2OkgA=","mode":"force-https","sts_include_subdomains":false,"sts_observed":1627005639.728145},{"expiry":1633013040.850112,"host":"5EdUoB7YUY9zZV+2DkgVXgho8WUvp+D+6KpeUOhNQIM=","mode":"force-https","sts_include_subdomains":false,"sts_obse
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\466b524a-38ad-4c10-8896-c1e117ba52a5.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):5706
                                                                                                                                                                                                                          Entropy (8bit):5.184610668893168
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:96:n3rssHMXiSKIiIk0JCKL8hkX116AbOTQVuwn:n3rBMXiSAC4KikXb
                                                                                                                                                                                                                          MD5:8EBCD08D073C42600AE6B7D561C58779
                                                                                                                                                                                                                          SHA1:8F0B80B1860A766DD88409F24A0B909EFB0DF57B
                                                                                                                                                                                                                          SHA-256:014EE7C8AAFF7E1C2FC77081566CEDA0C9A4A8BE5902EED58C5656CFE8BF3F51
                                                                                                                                                                                                                          SHA-512:5CEF899757E8423129087D1D5AA1E939A2B41A2A08EA08C7A863045FD522E41AE1D06BC80B9C93FFFB8E83BE881A6B259FE0B3099DB149A90254754DDF32A863
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"account_id_migration_state":2,"account_tracker_service_last_update":"13271479228160554","alternate_error_pages":{"backup":true},"announcement_notification_service_first_run_time":"13245950583260338","autocomplete":{"retention_policy_last_version":85},"autofill":{"orphan_rows_removed":true},"browser":{"default_browser_infobar_last_declined":"13245950640095768","has_seen_welcome_page":true,"navi_onboard_group":"","should_reset_check_default_browser":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"countryid_at_install":21843,"data_reduction":{"daily_original_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","1538886"],"daily_received_length":["0","0","0","0","0","0","0","
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\59cd6bc6-4b72-4141-b0b2-a8c22489f2da.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):5110
                                                                                                                                                                                                                          Entropy (8bit):4.971344108304558
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:96:n3r1AHMpSKIYIk0JCKL8hkX116AbOTQVuwn:n3rIMpSKC4KikXb
                                                                                                                                                                                                                          MD5:698CB4E50535DD8678081FC41A6BE9A9
                                                                                                                                                                                                                          SHA1:3B9540B2BD7A7A416558EC004C932A879F1A27B6
                                                                                                                                                                                                                          SHA-256:3B4485B2D521CF88E64938476573E77203E5C587CCF5D5A5DD00718A815E844B
                                                                                                                                                                                                                          SHA-512:FD911C1EA1AA3713A752296F08565FB3F93F22C8FCEF06A0153B9BA13BDC5916182179BD49601EF37CFC3CF1C9669B0D639F3E016DD53F3484560201D7A785B5
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"account_id_migration_state":2,"account_tracker_service_last_update":"13271479228160554","alternate_error_pages":{"backup":true},"announcement_notification_service_first_run_time":"13245950583260338","autocomplete":{"retention_policy_last_version":85},"autofill":{"orphan_rows_removed":true},"browser":{"default_browser_infobar_last_declined":"13245950640095768","has_seen_welcome_page":true,"navi_onboard_group":"","should_reset_check_default_browser":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"countryid_at_install":21843,"data_reduction":{"daily_original_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","1538886"],"daily_received_length":["0","0","0","0","0","0","0","
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6ee6eeaa-d560-48b5-a23e-bac9f35a5672.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):5062
                                                                                                                                                                                                                          Entropy (8bit):4.969698035661608
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:96:n3rmoGMpSKIiIk0JCKL8hkX116AbOTQVuwn:n3rSMpSUC4KikXb
                                                                                                                                                                                                                          MD5:8568C403C8B51136BDD84B3742BE37DC
                                                                                                                                                                                                                          SHA1:9154FAA2DD22FED96B9ABD9C99AC1DC54BF7FE37
                                                                                                                                                                                                                          SHA-256:3F6C1AC8C16C56F0498D0466F9A981A4530A9B45A6C3F4A86F16824BFF3822DD
                                                                                                                                                                                                                          SHA-512:6C0DD433AF838E84E4B92B40F00D89B2248A4926BBEB091769AD279B6EF2A7B77435990C5AA55F4F680942B3A0CA0AC076AF5F4C1E8DEAE1587B464858CC7C21
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"account_id_migration_state":2,"account_tracker_service_last_update":"13271479228160554","alternate_error_pages":{"backup":true},"announcement_notification_service_first_run_time":"13245950583260338","autocomplete":{"retention_policy_last_version":85},"autofill":{"orphan_rows_removed":true},"browser":{"default_browser_infobar_last_declined":"13245950640095768","has_seen_welcome_page":true,"navi_onboard_group":"","should_reset_check_default_browser":false,"window_placement":{"bottom":974,"left":10,"maximized":true,"right":1060,"top":10,"work_area_bottom":984,"work_area_left":0,"work_area_right":1280,"work_area_top":0}},"countryid_at_install":21843,"data_reduction":{"daily_original_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","1538886"],"daily_received_length":["0","0","0","0","0","0","0","
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7335de3b-b54e-4977-89ad-d14efc34c441.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1873
                                                                                                                                                                                                                          Entropy (8bit):5.610036575334854
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:48:YBUreUlCieUWO6UUho3EU7PzUF9KUkmwUeCi6wU8UefUJ:IUreUlCieU8UU+0U7PzUTKUvwUHinU8M
                                                                                                                                                                                                                          MD5:8C104952DA1160691A043D1246052937
                                                                                                                                                                                                                          SHA1:5829B51BF755783F9E456108B5B5471B8B215F14
                                                                                                                                                                                                                          SHA-256:D848A345A3539DE5C29EC806D0155DBEC59256083626108D8E72AC4BC6414BB9
                                                                                                                                                                                                                          SHA-512:D19E37C1A933DA83A0B27A8B9A229FF69AC95153D7F2EBCA8F435520FCE600053E1763CF664F224C16F6EF6DE897E91938F948622342F16FCE5DB69CFA8D5BBA
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"expect_ct":[],"sts":[{"expiry":1658541670.084798,"host":"G/V3uixztGHu+2fvaqnJLF/c1aJxL5xnhSMrB3NclMw=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005670.084806},{"expiry":1637892072.741579,"host":"LAZkYS46RVRcFiZAzmUJrz6TJHBd4nwE6VxPWfPLYHs=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005672.74159},{"expiry":1658541632.988816,"host":"M4bfUnCmQAi4PNb3B8aI/2+SVJhHKsMfMMT7fzi6ij4=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005632.988822},{"expiry":1633013028.822833,"host":"OuKlWsMW1dkkbI1X/oi6o0Y95ZNSWnSoeaIXAEYPlv4=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1601477028.822838},{"expiry":1658541675.120899,"host":"TZmujbl93Yt3JI8wZ4X/zjkA0WFNGNW44A+o7h4YyHw=","mode":"force-https","sts_include_subdomains":true,"sts_observed":1627005675.120903},{"expiry":1637892033.322103,"host":"fJjUrPqhktMfiTHJX3Q0pJi/P12Q72DBgzzJqjlNC4o=","mode":"force-https","sts_include_subdomains":true,"sts_obser
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\75de2cc4-3143-4e6f-a0b4-1887dc1313b3.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:modified
                                                                                                                                                                                                                          Size (bytes):4487
                                                                                                                                                                                                                          Entropy (8bit):4.867794318031356
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:96:JOTXDHzDrp+cz0GzRbgxCRG9ojVKlj6Vdl6MXT6UW6RJlG1hVD:JOTXDHzDrpT0GzRbgxCRYojVej6Vdl6V
                                                                                                                                                                                                                          MD5:CBED3F4E24B00D6FDEF5CFFD535ACF81
                                                                                                                                                                                                                          SHA1:3FC617EC7787D659E3128CC68A6174DF8C2495F9
                                                                                                                                                                                                                          SHA-256:2618E87FC45AC78A90197AB5771F6F26D98DB98FE8F6434C68A9A0D5DD2E5225
                                                                                                                                                                                                                          SHA-512:86483A21D0875E2367CADDD18E72F0055AFEA149DB9BFC535A6A311C72A29A191249D6057C1E2B9282CE3A75DA3A908FCF68927F8F0A67B12B2B12633CE4EF7F
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"net":{"http_server_properties":{"servers":[{"isolation":[],"server":"https://ssl.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://www.gstatic.com","supports_spdy":true},{"isolation":[],"server":"https://apis.google.com","supports_spdy":true},{"isolation":[],"server":"https://ogs.google.com","supports_spdy":true},{"isolation":[],"server":"https://dns.google","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232260245","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://redirector.gvt1.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232279667","port":443,"protocol_str":"quic"}],"isolation":[],"server":"https://accounts.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[50],"expiration":"13274071232549869","port":443,"protocol_str":"quic"},{"advertised_versions":[50],"expiration":"13274071232549872","port":443,"protocol_str
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7a0401b1-ba1d-4486-bd77-cf1fa87cf2d8.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):2693
                                                                                                                                                                                                                          Entropy (8bit):4.871599185186076
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:48:YXs2MHRzsoMHT5s0MHyKsTMHksrDys4Csb7synWsQItFsym6zs6zMHWLsZMH5YhV:+GDGTHGmGHDW1/nOIbmOGlGGhVD
                                                                                                                                                                                                                          MD5:829D5654ADF098AD43036E24C47F2A94
                                                                                                                                                                                                                          SHA1:506C8BA397509BA0357787950C538C1879047DF3
                                                                                                                                                                                                                          SHA-256:4D0B852D18FCA5C1A712904CF6DB3811FB905E86D8A7508A2D42F9C8D68E2211
                                                                                                                                                                                                                          SHA-512:D9B18E6B0AD1E8E4BECF9E84BBE30D64730CFEC2CBEAF96D5DF52E28B907B03EADF22F020FBE0A56D137A52F4F09798031BC6CA026CFA8A979A608B3445DBCAA
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"net":{"http_server_properties":{"servers":[{"alternative_service":[{"advertised_versions":[],"expiration":"13248542600883925","port":443,"protocol_str":"quic"}],"isolation":[],"network_stats":{"srtt":40156},"server":"https://www.googleapis.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[],"expiration":"13248542628822803","port":443,"protocol_str":"quic"}],"isolation":[],"network_stats":{"srtt":30856},"server":"https://dns.google","supports_spdy":true},{"alternative_service":[{"advertised_versions":[],"expiration":"13248542600893104","port":443,"protocol_str":"quic"}],"isolation":[],"network_stats":{"srtt":25300},"server":"https://clients2.googleusercontent.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[],"expiration":"13248542600872791","port":443,"protocol_str":"quic"}],"isolation":[],"network_stats":{"srtt":34789},"server":"https://clients2.google.com","supports_spdy":true},{"alternative_service":[{"advertised_versions":[],"exp
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\907f1a37-8d8c-4587-acfa-f9d67eb86453.tmp
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:very short file (no magic)
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1
                                                                                                                                                                                                                          Entropy (8bit):0.0
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3:L:L
                                                                                                                                                                                                                          MD5:5058F1AF8388633F609CADB75A75DC9D
                                                                                                                                                                                                                          SHA1:3A52CE780950D4D969792A2559CD519D7EE8C727
                                                                                                                                                                                                                          SHA-256:CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
                                                                                                                                                                                                                          SHA-512:0B61241D7C17BCBB1BAEE7094D14B7C451EFECC7FFCBD92598A0F13D313CC9EBC2A07E61F007BAF58FBF94FF9A8695BDD5CAE7CE03BBF1E94E93613A00F25F21
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: .
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):336
                                                                                                                                                                                                                          Entropy (8bit):5.173287362129446
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mfRSLSueN+q2P923iKKdK9RXXTZIFUtpURSLSkZmwPURSLSEVkwO923iKKdK9RX3:YSmuXv45Kk7XT2FUtpISmk/PISmE5L51
                                                                                                                                                                                                                          MD5:F0AD8EE11238B60B963C5FF7023B3D5F
                                                                                                                                                                                                                          SHA1:CCB95F6D57271A55D61A68AA4732FE7DBE06FE70
                                                                                                                                                                                                                          SHA-256:21F50DE6A6019DD3C37719CE64A09D1DA28FA066DC35429FD898C7456E6967DB
                                                                                                                                                                                                                          SHA-512:2F630F1F7960F475925EFCD4DEA0F315843D4D70DBA7228FAD4CC026771C14139C42AB5EF88C19E4E770995DB0553F09EA32C3AC462B35ED6E61716784B2B606
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 2021/07/22-19:00:47.749 1aa8 Reusing MANIFEST C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase/MANIFEST-000001.2021/07/22-19:00:47.757 1aa8 Recovering log #3.2021/07/22-19:00:47.757 1aa8 Reusing old log C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase/000003.log .
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):320
                                                                                                                                                                                                                          Entropy (8bit):5.142157628015787
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mfRSLSQ+q2P923iKKdKyDZIFUtpURSLSOdFZZmwPURSLSOdFNVkwO923iKKdKyJd:YSmVv45Kk02FUtpISmOdX/PISmOdF5L2
                                                                                                                                                                                                                          MD5:3A8B2989AA6780AB15B5CF6543E664F5
                                                                                                                                                                                                                          SHA1:E6E7AC06EEDD9CD0ED7DB2379321C05A6920D8DE
                                                                                                                                                                                                                          SHA-256:BF603A382C98906F17C7E8AB6D53EBC63E8F0EA19A6E0543833D99DB1D2C54B7
                                                                                                                                                                                                                          SHA-512:582B0255CB554BD4386799A527C916FDF831E62384ED48342896D43307C18351A1AE99EB315531CA06ACF15508C8C86448727214A710F642EDE45CEFED4E6E12
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 2021/07/22-19:00:47.717 1aa8 Reusing MANIFEST C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase/MANIFEST-000001.2021/07/22-19:00:47.719 1aa8 Recovering log #3.2021/07/22-19:00:47.719 1aa8 Reusing old log C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase/000003.log .
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ae6b52f6e424e4e_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1170
                                                                                                                                                                                                                          Entropy (8bit):5.416534278704916
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:i7xfo1o7WfDo7FvfJo7rfNo7Axft3o7f4fG:yxMYWbYpRYrlYAxF3YQe
                                                                                                                                                                                                                          MD5:AAF47CAAA2B306A88CD470B43EBAA058
                                                                                                                                                                                                                          SHA1:6D4B8274C6EE8C6A8B8E130F3DFCF02A2339BA55
                                                                                                                                                                                                                          SHA-256:A420DE67B54E7F92E448F87B00E64A3189772A1DB3F35279A509C070D6B1C556
                                                                                                                                                                                                                          SHA-512:D66E3E20D077CC92D10DFC36A8D57243A1B0C22BAADFDBC088B4173E7AB2169663B91341D5F28C45267A9BDD688D3BD26B789BB8EE1A21A9AF2025F98F86C25A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......?....p......_keyhttps://consent.cookiebot.com/uc.js .https://paperturn.com/l...W&/.......................b._y.i...|y...v*.OG7z...y..O.A..Eo.......=.1.........A..Eo..................0\r..m......?....p......_keyhttps://consent.cookiebot.com/uc.js .https://paperturn.com/..<.W&/......................b._y.i...|y...v*.OG7z...y..O.A..Eo...................A..Eo..................0\r..m......?....p......_keyhttps://consent.cookiebot.com/uc.js .https://paperturn.com/...W&/.............<m........b._y.i...|y...v*.OG7z...y..O.A..Eo.......N,..........A..Eo..................0\r..m......?....p......_keyhttps://consent.cookiebot.com/uc.js .https://paperturn.com/.=..W&/.......................b._y.i...|y...v*.OG7z...y..O.A..Eo......DW...........A..Eo..................0\r..m......?....p......_keyhttps://consent.cookiebot.com/uc.js .https://paperturn.com/..).W&/.............:.........b._y.i...|y...v*.OG7z...y..O.A..Eo.......2c..........A..Eo..................0\r..m......?....p......_
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\105618d59203ef9a_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):233
                                                                                                                                                                                                                          Entropy (8bit):5.645904494553558
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3:m+l3+ldA8RzYrSLIpRKsWXWb6u1NRPguGTKg4R2QKt/lHCNNEm9x744m2/pK5kt:mm+9YGLIGg1NpguG3c2ntgNNlx88K6t
                                                                                                                                                                                                                          MD5:09C63BB72E759C8D4A35862A4FC035D3
                                                                                                                                                                                                                          SHA1:0649193A1CADA600EF6995CA52359C0CEA390CD1
                                                                                                                                                                                                                          SHA-256:35A3D9F2EDB4E62D47B062483B48634559B8645C75879CAB182472195C8ABE86
                                                                                                                                                                                                                          SHA-512:023EECAC334CC134D7759828594416E472D58373ED9E83ECB39B56A4648C284673777EBA00F5350F6A5F8367117423EEF93B2948D4D6411940D588C0A362055C
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......e....65M...._keyhttps://www.google.com/js/th/rri_UWQ0J4KTeoiEc0uqeM0aau5ykYMkDZQXo2HoPhc.js .https://youtube.com/....W&/..............s......VV.:..GYc...P.....fw.OT..O..Hi.A..Eo......_E[..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\16d9c28137016842_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):2268
                                                                                                                                                                                                                          Entropy (8bit):5.71434316734612
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:48:1M9ZU9ehDrM9ZU9eh6rM9ZU9ehxrM9ZU9ehtmNrM9ZU9ehNrM9ZU9eh7c:Y2Z8AAA
                                                                                                                                                                                                                          MD5:248E43BEA24A2BB21795FCE131C7F521
                                                                                                                                                                                                                          SHA1:5C7009B9DF3D30E5679F773DE91A6AC01084C343
                                                                                                                                                                                                                          SHA-256:A8D78843C2F0565313C2CA016EB2371224761FAE1631B49374FEF1B2FBD84A96
                                                                                                                                                                                                                          SHA-512:78CDE3A4B9C13EA014D94E467EF6AF73A0CC1354B0C2F64825A5AB210FFF1B397B5C9921F79D987731FC997A01EA5DC37D1E8DB9C11B1D5502E85B5C6990B9A2
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m............)....._keyhttps://consent.cookiebot.com/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/cc.js?renew=false&referer=www.paperturn.com&culture=en&dnt=false&forceshow=false&cbid=15dac99d-cb99-4df3-83c0-6e8c10ac66d8&brandid=Cookiebot&framework= .https://paperturn.com/'V..W&/......................cy.P`...bbv.&....,!...y?......A..Eo.......<...........A..Eo..................0\r..m............)....._keyhttps://consent.cookiebot.com/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/cc.js?renew=false&referer=www.paperturn.com&culture=en&dnt=false&forceshow=false&cbid=15dac99d-cb99-4df3-83c0-6e8c10ac66d8&brandid=Cookiebot&framework= .https://paperturn.com/8.U.W&/......................cy.P`...bbv.&....,!...y?......A..Eo......e.0..........A..Eo..................0\r..m............)....._keyhttps://consent.cookiebot.com/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/cc.js?renew=false&referer=www.paperturn.com&culture=en&dnt=false&forceshow=false&cbid=15dac99d-cb99-4df3-83c0-6e8c10ac66d8&brandid=Cookiebot&framewor
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\236c9a70f6d402a3_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):228
                                                                                                                                                                                                                          Entropy (8bit):5.530424800010962
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:ma//XYcvhAbuB4XEbsvNRs2buBaontgwMll3yvCfK4LpnK6t:HXJuUIz0AonBk5fD
                                                                                                                                                                                                                          MD5:AFF349F40939C94E43ADAC122961CBF4
                                                                                                                                                                                                                          SHA1:44C47EF1C5445C67976539F64B9E77D6532AC589
                                                                                                                                                                                                                          SHA-256:0642415E6436A120C0772A201EFEC0EF1F31188F567FE89ED4BCBA01B84B1CCB
                                                                                                                                                                                                                          SHA-512:AB0E1426F466C990B07D0541617B8087D738D9A1A890DFC2EA14A5F5E9DFF00C31E0B740C0B0D49D888D6A00D82AF8D415631E045B381FC0BFCD5E42D76AFC96
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......`...4N.D...._keyhttps://assets.paperturn-view.com/components-TopBar.54d5964a.js .https://paperturn-view.com/.At.W&/..............................T.g`Rg...I1y. 0.?.@..d..A..Eo......C............A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):212
                                                                                                                                                                                                                          Entropy (8bit):5.32763920704684
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m9XYGLKd0Kc5noguGFYgPUodQSQCw5r10/hK6t:9WPoguG2ooO
                                                                                                                                                                                                                          MD5:27DC5F0D3B49BC5198BF9B1A3AEA7612
                                                                                                                                                                                                                          SHA1:A8CFC60C8B7B4AB3098DDAC5E389C8470B701EE0
                                                                                                                                                                                                                          SHA-256:6B5F11C606B548E5AB411B9B4F21FC922996A4F59B6B2F798AB6D9BB3C69E071
                                                                                                                                                                                                                          SHA-512:2E152CBF483021A5C8E1E3368391FCDD73EF44F684BF8F8424335E20B38D99FE3C0E38954D2C7B561B1303C85E316BF1543EDA8185E6E6D0F24B44263260500F
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......P...E@S....._keyhttps://www.gstatic.com/cv/js/sender/v1/cast_sender.js .https://youtube.com/wJ..W&/.............Tt......1@dbM..w./.61...wt...R..u.AU...A..Eo......2.p..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3aa07428c0e4d4b1_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):159032
                                                                                                                                                                                                                          Entropy (8bit):4.544605782778889
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3072:queY/O6AUnY/75bg6xCbsd/fuBT5chElus/di1wuNjkGsR7JhH43AsCvvVOzsuJH:qqO6wPwb4wMahY3AVvv87F
                                                                                                                                                                                                                          MD5:64E167F2235FB642CE28B83B60D556FD
                                                                                                                                                                                                                          SHA1:A9A20993A0DE130D0DFE1E8948CB167928F8DF83
                                                                                                                                                                                                                          SHA-256:F6137E70C63FCB4BAFA95C77058F19396D87DF364FE19CACEE4CCBBC94D31411
                                                                                                                                                                                                                          SHA-512:1E3C027B71C4D8904308237057F4643DE8327E19F25451EFCDE8B433CF4D8F9D1514AEDA1B879CB07F7D711CEB00B672119C0222186E053C50494C98BE894A21
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......@......i....A46A4BACBDA6493C18D52D950BA55B74358D15D3599484FFCE96C2C2F844F3B3..............'.......O....@l..H8<&............D...`.......d....................(S....`..... L`........(S....`.....8L`.....@Rc..................Qb&T.f....d.....Qb.......e......M.b....d.......I`....Da.........(S...`......L`....I..Qc.R......parseInt.q...Qd.'......fromCharCode.....K`....D{ ...............i..........&....&...7..&.]...&.]...&...8..&..#j.......&.(...&.%.@..&.Y......(...&..$&.Y....4.....,Rc...................`.....aJ...............e..................G......@.-....\P.a.....P...https://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.jsa........D`....D`$...D`.........`....&...&..!.&..!.&.(S.,..`....]..K`....De................&.%.*....,Rc...............I`......Qbb.2D....k...a............b..............1.d....................&.(S.(.`......L`......Qb~..Q....\w+...K`....Dd.....................,Rc...................`.....a................d....................`....DI]d...
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3ee3277df70d5d32_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):233
                                                                                                                                                                                                                          Entropy (8bit):5.5409136631190705
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mmnnYGLUxGBznGKT2buGguGpKtgnaGF6P4bUK6t:gGBR6buGguGpN6P5
                                                                                                                                                                                                                          MD5:489FF5F6404E029694DEB0C4D201ABAE
                                                                                                                                                                                                                          SHA1:BEF14BF06EC79021FE7EB8236EE9AC5501FF46C8
                                                                                                                                                                                                                          SHA-256:23837E3E8312DC2D5218BDA0BB9A558E5D587980A96BAA9CB223C62ABA71103C
                                                                                                                                                                                                                          SHA-512:DC1D0544699D2D092DFBD409FB32A61846636C0DF792FAB407EBDD977558A1296F2191F92816EE28FBF6987CB9A54AACB55A6840CA6F4CF988F6CE0964FD256E
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......e...$......_keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/remote.js .https://youtube.com/L...W&/..............s........T.U.>...i]"..u<)..h*.T%,Du.m.A..Eo...................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3f84843334707219_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):239
                                                                                                                                                                                                                          Entropy (8bit):5.571933396919997
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mUNU/PYcvhAbuB/KSbJESO6os2buBADug9bdvKekAxhK6t:pN0XJNK6JESOZ0Snb4Tq7
                                                                                                                                                                                                                          MD5:E5C3561CC34FBF79A910519D73D18F91
                                                                                                                                                                                                                          SHA1:6E99B0E050FF0899159B40AFE8E87D050B05AF79
                                                                                                                                                                                                                          SHA-256:7EE1599F2A68D2CCF98A033C57645804000BA9BC6FF63597958F389B3BE9C8B5
                                                                                                                                                                                                                          SHA-512:D8A3DB4E7381D3A75350AF745A244BB956D843A1C3B226F43E104723D84C02EB62E439D70FCBB0267BD8A7789C5825499A4CFBCA6F1603ED666A0D2F019DC532
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......k....\......_keyhttps://assets.paperturn-view.com/vendors~components-Newsflash.b7b94969.js .https://paperturn-view.com/.7..W&/.....................S.M......yz.G.]...&tO/X...M.....A..Eo.........).........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\402f710388ce73f0_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):243
                                                                                                                                                                                                                          Entropy (8bit):5.517101235613113
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mKYcvhAbuB/KSDTLzs2buBTgol/MxBy4mJ/ZK6t:DJNKe0DCyRJr
                                                                                                                                                                                                                          MD5:556008CF93B693F15A74A009C84D7497
                                                                                                                                                                                                                          SHA1:3876183B13DFF6B4A8B5137EF3443434B9A48919
                                                                                                                                                                                                                          SHA-256:8DE27A1DEB0488437870E7C632C66122C35745C7EFCCF34B2EC33C557CE014F5
                                                                                                                                                                                                                          SHA-512:EEACDDDFCCAA62ED3D4FD37A70083A65C3C96124AEAF8788C4764DA5A051B48DC5CBFB21C576C38E1CFBBF3305BB2DD7D367A1E22570C51DC88700C5AC14725B
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......o...*.R~...._keyhttps://assets.paperturn-view.com/vendors~components-ToolbarButton.aafd698b.js .https://paperturn-view.com/..x.W&/.....................x.m.-..g....'.JT..b.^...%J.h]..A..Eo......T}j..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4a93ae2abbf51303_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):243
                                                                                                                                                                                                                          Entropy (8bit):5.492178418923658
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:moYGLUxGBzn871j4PY0c71j4GguG6tg1AilThXO0/40DK6t:eGBU1sPjcRsGguG6oA8V1
                                                                                                                                                                                                                          MD5:516DEB4E5859928C602AE6CCE2B1431F
                                                                                                                                                                                                                          SHA1:BF5229E9B3F7F52AFBA7EC14EF2BA14AC2E92835
                                                                                                                                                                                                                          SHA-256:2A06EBC089F6275A11906D838A3ED911EAF9E138A7F5DBDF92E23BC5D2CF6F67
                                                                                                                                                                                                                          SHA-512:89FDEBE09DED5DF2D7AF50435938E1AE861E0F1FD5DFDBB77CF8C38A0667B038AE26C697365967C4CBE2C80A9258958D8EC60954E99CDAD819B9499572DAC49A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......o........._keyhttps://www.youtube.com/s/player/3804dce2/www-embed-player.vflset/www-embed-player.js .https://youtube.com/.%..W&/.............eo..........?....C/a...+i..d...B......A..Eo...................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4b4ae9e2956257f4_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):255
                                                                                                                                                                                                                          Entropy (8bit):5.54224819164011
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m6YcvhAbuB/KShXEbjfs2buBIvtgD/Pc1nC/bK6t:3JNKpX0OvNU/N
                                                                                                                                                                                                                          MD5:0098A805BE93A3DD27B322A8B825C3F8
                                                                                                                                                                                                                          SHA1:3835D397C3D573EF6D10E9DFE41FDEA2D1A3B8F7
                                                                                                                                                                                                                          SHA-256:C6905CF1B75684E45FFC2693A2A0CF8BB61D69AE95552029F2A4D13870E45E87
                                                                                                                                                                                                                          SHA-512:A8EB2C0D757A43745CD26BB27BAC9522F15EB4667288658D45ADC85585D36B36748A3F645A9653340922C37E7278206BD82688E8AA28F8E01D63DD1CB104F001
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......{...!I.1...._keyhttps://assets.paperturn-view.com/vendors~components-Tooltip~components-TopBar.09a36c1b.js .https://paperturn-view.com/XAt.W&/....................]s..Y..J..........)X..S......1C.A..Eo......v.S..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\505f12502b0e1e8f_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):424
                                                                                                                                                                                                                          Entropy (8bit):5.491594431666653
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m1PYcvhAbuBM27sRs2buBVtgflQilpBY0RK6tW1PYcvhAbuBM27sRs2buB3ygP2l:4XJ80jAlJNrSXJ80l1+
                                                                                                                                                                                                                          MD5:9507CCEC2048B94ACA593FC74FBE0389
                                                                                                                                                                                                                          SHA1:37A1B3DDFD1CC61222E9BA805D3E922E777EDA65
                                                                                                                                                                                                                          SHA-256:4B56766F12A36DCFD5C3B2667D4A4861AC57A560DEEF8BDF66FF58EE769E6B4A
                                                                                                                                                                                                                          SHA-512:D203ECB99998588C2857ACD4DA7B4A11DA836AC9805B146836D7C378345E4317EFA07C4E63521D2C8615F781909FBE2DAF688B7C05374FE9228187720B3EFA57
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......P...-d.E...._keyhttps://assets.paperturn-view.com/8.e31fc8b3.js .https://paperturn-view.com/9.\.W&/.............n.......9.u~....&........Y+:..n ..."..A..Eo......t%"..........A..Eo..................0\r..m......P...-d.E...._keyhttps://assets.paperturn-view.com/8.e31fc8b3.js .https://paperturn-view.com/(..W&/....................9.u~....&........Y+:..n ..."..A..Eo......7J.f.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\57849aa2afcf52a8_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):231
                                                                                                                                                                                                                          Entropy (8bit):5.573012435911901
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m3tVYcvhAbuB4bJEnnAVRs2buBSHgBqjzr5hnd6hK6t:2VJubJEnWR0MmYzrDda
                                                                                                                                                                                                                          MD5:9765D9A91E589048FA49E9203F3CEC44
                                                                                                                                                                                                                          SHA1:547DADDE8FB8DE0CE4C1C846F50EFF9A54669169
                                                                                                                                                                                                                          SHA-256:6D4825A8F8BD57E928947D147FAAB6ADA32D3061221827BDABE5176462289570
                                                                                                                                                                                                                          SHA-512:1D90009DCA39159BBBECCE4C0950C670FB38F29FDC3DFC3948BB3FDCF5E320ABE0457B3CF0ABFB14FAF5FB2A50E6051DDD6E9ACBB3095BC9F07B97B1806986EC
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......c....:......_keyhttps://assets.paperturn-view.com/components-Newsflash.389922b8.js .https://paperturn-view.com/>=..W&/......................P...>...aO.i&..j.>..Rc...z..M.A..Eo......1............A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5ae823d24fa20467_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):229
                                                                                                                                                                                                                          Entropy (8bit):5.469641644901993
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mQAsPYcvhAbuB4nxwRs2buBoofvtg1EtsE6CSp2+K6t:KQJunK07essld
                                                                                                                                                                                                                          MD5:5CE9304E6DFC12322B89F45EF2174246
                                                                                                                                                                                                                          SHA1:D914B3CBE643715A65DFEBD66E879B30CAFBC0E8
                                                                                                                                                                                                                          SHA-256:4776E13DB1E6E7B14013569BD7D4E1627951BF56CE683B6F76924C00BECF4638
                                                                                                                                                                                                                          SHA-512:78A322E18B32CF9CA0C0F17F0B9174AC35E508E0D1EE6D0B05AF2BAAA05EF1A8062FC9F2DB3B5756D369CCD861BAA566B142A7C00E85AAAA88ABB50FBB7F666F
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......a....,ei...._keyhttps://assets.paperturn-view.com/components-Toolbar.0413dfe3.js .https://paperturn-view.com/.ev.W&/..........................8Svn.]...a...x.|)......].A..Eo......v!...........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5c8938a5f2f8b277_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):320
                                                                                                                                                                                                                          Entropy (8bit):5.646374113787241
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mayEYcvhAbuB/KSc/QOly7ryIObb8XcrvNRs2buBjFgnlfvTr4p/bK6t:Py0JNK/oOErR5Xcrz0uZHs1
                                                                                                                                                                                                                          MD5:6C52963A967576B7FFD290386D6298FE
                                                                                                                                                                                                                          SHA1:245D41CDFDC5DA1A99C5C9BB2C55B1554D968E97
                                                                                                                                                                                                                          SHA-256:7892142AE215555D84059CC6203E2C0A601473D1E7C091DA8D6CD295C4DFC0D6
                                                                                                                                                                                                                          SHA-512:2AEBA0B05CC71203248B78E29D643143E461CCDD7D8A72315976273546107E84AC1F8D7D1A1A38E9EC3326E5E4A51E635F7240AC4C397177550DEA0B92F5F4AC
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m.................._keyhttps://assets.paperturn-view.com/vendors~components-Alert~components-BuyBasket~components-Dialog~components-FirstCustomization~compon~3fad5945.d972b361.js .https://paperturn-view.com/.Yn.W&/.....................6..9VbG.S.j>.[@.<Z..LS./.../.A..Eo......F+.&.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5e756fb02c040fa1_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):372
                                                                                                                                                                                                                          Entropy (8bit):5.937518762158875
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mqOYGLibtGqlbcYFos2bt40tgOVCD6rdK6tkDKaE4UVtpPVCD6rXI:oqSYCk0n8mTDaEZ3pP8mz
                                                                                                                                                                                                                          MD5:9E08DC60334946906534D2E9AE10A408
                                                                                                                                                                                                                          SHA1:02EC03425529664305D5B3BB604730F8FCD7514C
                                                                                                                                                                                                                          SHA-256:BB9F12B43F7A3076D923F11FF45BADC74F5D6B1DFC042F48FD842D8512709238
                                                                                                                                                                                                                          SHA-512:EE370B190793C3055D4AE8771131C7F4F62CDB2F426E86836C96187A94B422E8AA2066589B8A0FA53F137264E03EB63AD347E71E83B7117BEF7457B44A21D1CC
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......l...t..'...._keyhttps://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.js .https://paperturn.com/....W&/..........................;.....DOXj.K.....x>.0....A..Eo......_.aT.........A..Eo......................W&/..f..8E88A35BD36F53D98288D14D5E501E2F584B9B2AF358BA6A88F63A1F7303D98B......;.....DOXj.K.....x>.0....A..Eo......xj._L.......
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\641fb3ab98d94d28_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):240
                                                                                                                                                                                                                          Entropy (8bit):5.6101694919205425
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m3YGLibtGqaDeSLTOFzs2btmpugVuDtwByp9K6t:OqaDNOR2fuq4X
                                                                                                                                                                                                                          MD5:3816E65F2DBD6765C641BF712A6F827B
                                                                                                                                                                                                                          SHA1:575CC4A7EE2E62019B4120CE7E8A251790825BE1
                                                                                                                                                                                                                          SHA-256:8825C41D44CAF08790BD161EF28E4828113BCED426AA2F5A3AF6515ADF014866
                                                                                                                                                                                                                          SHA-512:6E0FAABB66A7C54BFFE822312E3E3C914C79921C664B2AC13D7421619C25C47EC18DEF57744C8908B4B5CF054DC17D306D7F81745C94240C62B8BB2C0D77443A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......l..........._keyhttps://www.paperturn.com/cache/v2.3.12/mini-8e659b93bd027876d82817aa95060866.js .https://paperturn.com/|...W&/.......................2....i....P.d.....|..5d..u+..A..Eo.................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75180a52d49873b5_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):222
                                                                                                                                                                                                                          Entropy (8bit):5.4229210743168155
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mZBXYcvhAbuBKB/2uns2buBhugIEVd8iKdhK6t:i/Jsou0eMw
                                                                                                                                                                                                                          MD5:85E57A4ED2D9953690DA1F134836F48E
                                                                                                                                                                                                                          SHA1:2FAC72AA8EC9E441252276919A8D58E5A9722E7A
                                                                                                                                                                                                                          SHA-256:1DFAB13BFD533275B6F82950D9134B32108EBDBAFC0CA0ED2424D541690126CC
                                                                                                                                                                                                                          SHA-512:C2DDC61A7963620C7839C89CB2C7229F4BCA8784ADB82DED15292267C2A75D2133852BDD6AD3504377715822AC7E8A1AF4F47901AC32309734B35F2CA79B5031
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......Z...'r-....._keyhttps://assets.paperturn-view.com/index.js?20210723020032 .https://paperturn-view.com/coY.W&/.......................n.mU.mluW..33..<?rbE;..C0...e.A..Eo......2|...........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75c880fe196c95da_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):232
                                                                                                                                                                                                                          Entropy (8bit):5.578332801734761
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mE2VYGLUxGBznGKT2mABSguGsvtgmXll3A6a4r/6DK6t:z2aGBR6mkSguGOvxZr+
                                                                                                                                                                                                                          MD5:73AF076A872457C99407FB96D1C1A69A
                                                                                                                                                                                                                          SHA1:0F386D137233C42F4E144C535431C5B6BCDF7B49
                                                                                                                                                                                                                          SHA-256:B1C868ACE553F3FA087D7142754E7ED30FD4185E13D77D96A52C397DA390F4E3
                                                                                                                                                                                                                          SHA-512:98E5B1FDAEC6B96A2F29A11B2082C9051153F7843BA69FA6F134C68980E341C498AE94456751D7AEE565ACD031BD3C86142FE1D64F1ED5A04461DF65258BD8D5
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......d.....T2...._keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/embed.js .https://youtube.com/.%..W&/..............s......z....._nq..+.#~.%..c..........A..Eo...................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78971c5f3b10669d_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):229
                                                                                                                                                                                                                          Entropy (8bit):5.4978824196153955
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mJ1/VYcvhAbuB4h4uKzs2buBSgw1LYt8bF5PbK6t:+9VJuauo0s51
                                                                                                                                                                                                                          MD5:8A23AA6577A31C363ECDFB690D348194
                                                                                                                                                                                                                          SHA1:8236E2B3D727BCE880167344024AE0028DF188FF
                                                                                                                                                                                                                          SHA-256:7437D0000AE1F3B2B4494E0AB47822E8B4C657E9BFEDF643F377AD7C1639C856
                                                                                                                                                                                                                          SHA-512:EB789E74158ADF8C3D3C3FE075E5ACAF4D9C0B84C92C8F9733FB81D57B0F28A38BAE71A7BE6AAAA16310076D25B14198741690316DB6A3E09E45FEDD5645E1A3
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......a.....ea...._keyhttps://assets.paperturn-view.com/components-Tooltip.d369b3de.js .https://paperturn-view.com/..{.W&/......................gO..g.m. ..q.]....CF.`=..*.6....A..Eo.......6...........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78ec281d449072c9_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):345
                                                                                                                                                                                                                          Entropy (8bit):5.8792102489469125
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mUYYcvhAbuBfm8s2buB9Ktgil5g7DVyAgK6tWo/82emkzLsc0KMYiCStHg7DVyAR:EJN0LK5EHVy1wo/83BPD0KMYnHVye
                                                                                                                                                                                                                          MD5:84C6F5CB554F45C2B637BB615E2994CA
                                                                                                                                                                                                                          SHA1:04009A702317C4242E0DE20757A9F38327FBCB47
                                                                                                                                                                                                                          SHA-256:C7C6337393325C2CDFE0DA4E5E33F3AB7FF0C261F643CFA57F9C3444C775BF72
                                                                                                                                                                                                                          SHA-512:080827EFF2E465086AE18D559D60D7F8961246066F87C15C686BCE7DC999C5C94F73CBBCF33A45DD99AEF11B2E47865DDA1CAE3842A24E26DE9B59E8FFA9B5A1
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......Q......Y...._keyhttps://assets.paperturn-view.com/12.dc063ac5.js .https://paperturn-view.com/ .\.W&/......................._.H..._.....K....iosD.gT..C...A..Eo......}..f.........A..Eo.................. .\.W&/.H...8389C906E744D8A135784F72A1F058BC57213A6C3D384DFC165AFEF5F291D058..._.H..._.....K....iosD.gT..C...A..Eo......mt4.L.......
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7a24f279f3c8e97a_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):640
                                                                                                                                                                                                                          Entropy (8bit):5.59352073339948
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m2XYcvhAbuB/KSXyc/blytMSgORs2buBlgiXcL+AvwK6tW2XYcvhAbuB/KSXyc/Z:3JNKm6MQ0D0+2SNJNKm6MQ0g8+41
                                                                                                                                                                                                                          MD5:9404BFF386371657DA5423626768B82C
                                                                                                                                                                                                                          SHA1:DA91C3670663CB6ACA57F7BFA36DC2AF9CB00619
                                                                                                                                                                                                                          SHA-256:B26886FDCCB4665B189E74B8055DBA59F2662441125B329DDD41BCECC9788D80
                                                                                                                                                                                                                          SHA-512:CA96CAEADC0563DCDC6D6D234E07316C7A8B9308F1ADDD267C0501C21F623C395F45756CE764203DB6FC2BFFE840FBC41369503110FD7E3719363876DC0E7255
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m...........o....._keyhttps://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~components-BlockingPage~components~b32f8ea9.41aa8c5a.js .https://paperturn-view.com/,ge.W&/......................"E......G....y.M.]d.....q|-o.A..Eo......J............A..Eo..................0\r..m...........o....._keyhttps://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~components-BlockingPage~components~b32f8ea9.41aa8c5a.js .https://paperturn-view.com/.(..W&/.............R........"E......G....y.M.]d.....q|-o.A..Eo......^Y.l.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\80d379f7f5b93e31_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):545
                                                                                                                                                                                                                          Entropy (8bit):5.524706577381669
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mezs6EYk+tHh4Kk6s2btWMg9xccqiH/YpyhK6tmgEccqiH/YAa6ugrBccqiH/YQ8:o6U+tHh4YyOiHTliHxWiHlEiH2AiH
                                                                                                                                                                                                                          MD5:76FCF113E5087320F299D68D4E7C57D7
                                                                                                                                                                                                                          SHA1:0F7474467C0378A4B7CAF94FD4206C65FFE86C38
                                                                                                                                                                                                                          SHA-256:FAE05E851FE4B443D29C96AC2410E999741F2FF0CA38443E59A8F2C9B2CEE6BC
                                                                                                                                                                                                                          SHA-512:1A3AE1E27345E0F2FB2A2B8BC03F4010BEAEA59212D66CAD50F337D1CDF3825F7C33EFBBCC0FD200FD5C0C86B65A5EEA073E21CFD224DECA2B5685C4D38481D8
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......M....E.R...._keyhttps://static.zdassets.com/ekr/asset_composer.js .https://paperturn.com/s..W&/.............*......[..z...\.t.O.&....P...VX..Cs..\.A..Eo.......,..........A..Eo......................W&/.............Q.......[..z...\.t.O.&....P...VX..Cs..\.A..Eo......0..*.........k`.W&/....................[..z...\.t.O.&....P...VX..Cs..\.A..Eo......x.uj..........b.W&/....................[..z...\.t.O.&....P...VX..Cs..\.A..Eo......m..............W&/.............j.......[..z...\.t.O.&....P...VX..Cs..\.A..Eo......d...........
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8140b5c475fbdf1c_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):623
                                                                                                                                                                                                                          Entropy (8bit):5.425356890061851
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:dUOLE/33+71xsP/u+RsU7y1Vt/u+Rq5Xi1n/u+RP1ol/u+R861Tlf/u+RDU61DlJ:4/33k/sP/GU7yl/IiR/RE/O6dt/1U6N5
                                                                                                                                                                                                                          MD5:D812E1B250BFD3521961063343150BD0
                                                                                                                                                                                                                          SHA1:32B884D46F91213B47C97D38A90527EB255F1F20
                                                                                                                                                                                                                          SHA-256:D74A3E071FF50CFF2892E3BC726FBE385DC01AC8F15BD6BD523A03CB406E07FA
                                                                                                                                                                                                                          SHA-512:2666761D5BC277E622270467EE136F229060E92B34C6A9BE9CB909376A5DEC0C4E619AB8808A663F54B5C20AEED5189D981762C089C32EAD02521D4F5657B3F5
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......G..........._keyhttps://acsbapp.com/apps/app/dist/js/app.js .https://paperturn.com/.4..W&/.............c.......b..WQ47.>\.J..e.K#.!..\4......A..Eo......b............A..Eo...................4..W&/.....................b..WQ47.>\.J..e.K#.!..\4......A..Eo.........e.........4..W&/.............?n......b..WQ47.>\.J..e.K#.!..\4......A..Eo.......3...........4..W&/....................b..WQ47.>\.J..e.K#.!..\4......A..Eo........H.........4..W&/....................b..WQ47.>\.J..e.K#.!..\4......A..Eo.........%.........4..W&/.............-.......b..WQ47.>\.J..e.K#.!..\4......A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\823f8fc18e89de25_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):240
                                                                                                                                                                                                                          Entropy (8bit):5.70465334362172
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mxYGLibtGqtIelRs2bt0QDugOXxe5UY0DK6t:4quelRDiLJ1
                                                                                                                                                                                                                          MD5:5E6A064066501A6404A17A93EA1DF64C
                                                                                                                                                                                                                          SHA1:59D0A5527B999A2A7DE578AF8CA11778CD2267D9
                                                                                                                                                                                                                          SHA-256:92E53743184BFD3B77A8D159723F9CD613E65B17F30CEA6A84648113AA31B199
                                                                                                                                                                                                                          SHA-512:A2CC1741E27490C36E3F89E5F0D938D4207DF7CB669099076423340E1E7A6BB56559C06274F3442641C09456D7C3BBFAAB47D90EB975D25F329F4DAF8F359BC9
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......l...n."....._keyhttps://www.paperturn.com/cache/v2.3.12/mini-5a97efeeff018a0419f17b6689972674.js .https://paperturn.com/..k.W&/......................j.........2...3..N..hF.....O.A..Eo.......X.T.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8421b1b3082ac36c_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):470
                                                                                                                                                                                                                          Entropy (8bit):5.6020510631814515
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:0/JuXs9QWFz0lwJDvYkHP6/JuXs9QWFz0HswJDvYkHKsT:wRGGlPqR3GlH
                                                                                                                                                                                                                          MD5:2EB48BFF929A07AF08EA44C1F1342E83
                                                                                                                                                                                                                          SHA1:CC7DA02F6BD8A7104F32A5803AF425A014B23EB5
                                                                                                                                                                                                                          SHA-256:C60CBC3743E27100E54DD360653D4176FDF9B3627B7ADEFF51CF63B5DBE86EAC
                                                                                                                                                                                                                          SHA-512:A0FEFF481FEEA2441C09567A36570FC179E03E9F4839634849DEB5590D21AC35BA13E3923D1DC07CD7C500EF733EA008D41FE58CC214C2C335FC938799D5452D
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......g...l..{...._keyhttps://assets.paperturn-view.com/components-ErrorBoundary.3ef6552e.js .https://paperturn-view.com/..b.W&/...................I..&...X.a7...|UEg.......b..9.G.A..Eo......X............A..Eo..................0\r..m......g...l..{...._keyhttps://assets.paperturn-view.com/components-ErrorBoundary.3ef6552e.js .https://paperturn-view.com/...W&/.....................I..&...X.a7...|UEg.......b..9.G.A..Eo.......(.k.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\859d57729f30e053_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):456
                                                                                                                                                                                                                          Entropy (8bit):5.5893133213756325
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mtYcvhAbuB4Y3WKzs2buBPygysS8YT6AZsK6tWtYcvhAbuB4Y3WKzs2buBbuygcE:0JuY3l0bYGn6JuY3l0tuvYGLT
                                                                                                                                                                                                                          MD5:834CE5A8A4B2BB9ED29D368FC8EDCA97
                                                                                                                                                                                                                          SHA1:A4F91405EDB0469B1FB47272720AB9411EA19D0E
                                                                                                                                                                                                                          SHA-256:9BA3DEEBD3CFA9220091253824AFD62AB430F30046BEE16209D3A0B033F96679
                                                                                                                                                                                                                          SHA-512:B925196AB1370F2CB4A1D572FEC0202D0267A3B6476EC543A07F3DABC492EF8571118A78185E58E987F2EF0CA64C40BE0C31195545E7ACC7F0A00D2582B2E085
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......`....?.7...._keyhttps://assets.paperturn-view.com/components-Styles.e7b2b5dd.js .https://paperturn-view.com/{8r.W&/.............Q........g......5FX..@.~...b...J7....a..A..Eo......2&r..........A..Eo..................0\r..m......`....?.7...._keyhttps://assets.paperturn-view.com/components-Styles.e7b2b5dd.js .https://paperturn-view.com/U...W&/.............S........g......5FX..@.~...b...J7....a..A..Eo......G..(.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\878756e158c08974_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):170480
                                                                                                                                                                                                                          Entropy (8bit):6.203814751146289
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3072:xK25x4AMhS3MPmaQ4+/cAuZKYa9PvfI4hGT6inQQddy:82KPm4gzY6B6fRddy
                                                                                                                                                                                                                          MD5:AA80529BE26D226942F5E6D0756CD316
                                                                                                                                                                                                                          SHA1:1D98423F0111CDABC7D0290513C2A842D0E3D2E0
                                                                                                                                                                                                                          SHA-256:6464700AEF9C08656C71A2369E16AF6C5C05CDDF42E9C568FAEDC741DC5ECFA0
                                                                                                                                                                                                                          SHA-512:ACA1EDE93EB8D72F0877CB2CA4BFA3BE0FB3FAD9FF6BDD57C8F601CC76F30C54190162EFEA2D8FA7836944EADF855848B7FF334CFE295C9A190A6B6A65EDB4CE
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......@...^.......8389C906E744D8A135784F72A1F058BC57213A6C3D384DFC165AFEF5F291D058..............'.......O7...@...................p...................@...........................T.......l...................|...............p...............4...............................|............................................................................(S.]...`n......L`......Q.@fr.G....window...(Q...`@.....__LOADABLE_LOADED_CHUNKS__....Qb.5.%....push.....`......L`.......`......Mb............`.........a~.........Qb......../qGLC..Qb~......02tDC..Qb.Z4.....3uHEC..Qb...n....4GVaC..Qb..um....58rzC..Qbb.......5l27C..Qb...=....AZXiC..QbrE.#....DHZpC..Qb>2......DXALC..Qb...2....EtmHC..Qb.F.Z....GsHdC..Qb.WC.....IDU+C..Qb... ....IOplC..Qb.8)V....JmTYC..Qb..{.....KiHeC..Qb........KkK4C..Qb........Lu7cC..Qb......OoD+C..Qb...\....RkXmC..Qb..&....cqR5C..QbFo......ctS7C..QbR.......hGZ5C..Qb.y......jrqJC..Qb.5Z.....lf30C..Qb.%.....m2f9C..QbJHP.....nZn8C..Qb.=N.....oOYKC..Qb........q72ZC..Qb:......
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8936c0436506fed9_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):233
                                                                                                                                                                                                                          Entropy (8bit):5.580214739740404
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mmTXYcvhAbuB4sLPks2buBPygHXYMbWxKZ9nK6t:TJugk0ta4bp
                                                                                                                                                                                                                          MD5:53EA4D652233A19CBF0986981BD54C2E
                                                                                                                                                                                                                          SHA1:78FA50229125B73D44F18AC516EE0C2670F70270
                                                                                                                                                                                                                          SHA-256:4BD773D866B51EB76C3697732A8EA26B8CD9F54C160715608AE265A56930E710
                                                                                                                                                                                                                          SHA-512:58BB9BFC8373CE6678773340E908D98363D7E7887B12CA871997231AB621EA3B733818C07FB12D1906E1E277126D0D71A2EBB8B8275C322D22A040BA08E92CD6
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......e......F...._keyhttps://assets.paperturn-view.com/components-ToolbarIcon.687326a7.js .https://paperturn-view.com/..x.W&/.............H........J...R..5.8i.&.........'M.g1C...A..Eo.......y..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8959e7f160a77ede_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1644
                                                                                                                                                                                                                          Entropy (8bit):5.666849382989875
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:48:g9EjQaSm9EjoEam9Ejx0m9Ej9u/m9EjU4m9Ejhj:1QrKYKn
                                                                                                                                                                                                                          MD5:247BF292A331862DA1C1C6189285F218
                                                                                                                                                                                                                          SHA1:ADDE55FDCC0D7E605A970A33923B5A7A9F520130
                                                                                                                                                                                                                          SHA-256:01A8FDF807719B8560129A13679BA0704B8E47FA32709E2B4A11B8BFF525FC3C
                                                                                                                                                                                                                          SHA-512:1D5C099BBD671651F73EEB0AD5531C656D631A87AAD2A5C35AC1526A5B75590DE044CEA06459EC45EA0B343F1B0482EE976459196F922D411ABDCFDE406A5F02
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m..........3......._keyhttps://consentcdn.cookiebot.com/consentconfig/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/paperturn.com/configuration.js .https://paperturn.com/e...W&/....................# Cl.{......<,\p.X.'..h$......:.A..Eo......d...........A..Eo..................0\r..m..........3......._keyhttps://consentcdn.cookiebot.com/consentconfig/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/paperturn.com/configuration.js .https://paperturn.com/.>F.W&/.....................# Cl.{......<,\p.X.'..h$......:.A..Eo.......3.I.........A..Eo..................0\r..m..........3......._keyhttps://consentcdn.cookiebot.com/consentconfig/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/paperturn.com/configuration.js .https://paperturn.com/id..W&/.............tn......# Cl.{......<,\p.X.'..h$......:.A..Eo...................A..Eo..................0\r..m..........3......._keyhttps://consentcdn.cookiebot.com/consentconfig/15dac99d-cb99-4df3-83c0-6e8c10ac66d8/paperturn.com/configuration.js .https://paperturn.com/M&..W&/.....
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d4436abab9cbffc_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):227
                                                                                                                                                                                                                          Entropy (8bit):5.501108649011263
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mYeYcvhAbuB4cNQUuRs2buBitgus/lldVLDBSENr4o5RK6t:F+JucNCR03lrhNzr
                                                                                                                                                                                                                          MD5:5FA5CBAC01EA6CE1A7DEBF8B40D57ECD
                                                                                                                                                                                                                          SHA1:AD0A8BA43398CC9A660A64295A28AC58A01C61E2
                                                                                                                                                                                                                          SHA-256:04A6F38EAB4656FB40F70B68BB9A69D19A942A6F5A16199E6DD415CB36057B54
                                                                                                                                                                                                                          SHA-512:C1078EDECF061EEA542FFD07F8E001663218C7B6B1A090A5A434EA6FEB4C21EC252C10CF33AC7BA596D6CDE3D347EBF8F1936DFA267D2918DA635115A2B19832
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......_....o%....._keyhttps://assets.paperturn-view.com/components-Alert.22553599.js .https://paperturn-view.com/.`n.W&/.....................B*".mH..X..}........$t.<.......A..Eo....../ ]7.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8e8595a5d4720c28_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):240
                                                                                                                                                                                                                          Entropy (8bit):5.699302458141952
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mAYYGLibtGqkS1Ez7ks2btgbKvtgPkiKSM0v/dK6t:2qgzgMbKikiKS1f
                                                                                                                                                                                                                          MD5:A5D81F18605593E4DC566CB14EB4578D
                                                                                                                                                                                                                          SHA1:78BC98ABE21391D874B97B384CEE6DCFD3E91838
                                                                                                                                                                                                                          SHA-256:C1CE03853E6EAAAA9B65D72013D10602C8A267B57CC367AB99BA0BED3D0B290B
                                                                                                                                                                                                                          SHA-512:BDA53A273D5C20BA7FA4D066F86FE5DEC3E7436EEFD5946F8CCBA14C31400C87F867B3F57BE0EFC7F026A815CA5ABDA3CBA6CCC91C284C06DA5EE45BF9C60884
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......l.... ......_keyhttps://www.paperturn.com/cache/v2.3.12/mini-af8546ccbc09deec7e6b7a04c8502a92.js .https://paperturn.com/d3..W&/..............m......$...L....,.7...~.....)B..'..C..A..Eo........q..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\91b9b5ff6833c0d7_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):98088
                                                                                                                                                                                                                          Entropy (8bit):5.942967621197124
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:1536:p/NHbZHKH0cfuUzfbHLFn+5RxJmKGcEc6DnPViLAcIRNoCbhdIcBwBHzs:pB6023zHLF+5gxcEc6D4NMdIcBw1w
                                                                                                                                                                                                                          MD5:9C808A9D225536F8D4BB6F7C644E5BA8
                                                                                                                                                                                                                          SHA1:BBBAC35E1E8C9B4ECD92A7BE26C7FA2F61657CBF
                                                                                                                                                                                                                          SHA-256:FE093A51056C6513CE5EF1C7490F63D7D5966984BB45694EC5D86E4A50C77BB8
                                                                                                                                                                                                                          SHA-512:7D385AEE4B6EC8A8858CF632F046D46AA9BC92900F0976985C2368CFD51D720865CE6AF68696C88150A6EF4A7D5760BBD69B5F109812DF6D28DC70CEA6DE8EAD
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......@...Hv......8A34A66321308543B62F72F0751030C47E71FF01705F36D714FB0C0F9194AC13..............'......O"....}......................((..................H...........p...............8............................................................................(S....`.....0L`.....(S...)(.`.P.......L`h........Rc..................Qb~d......w.....Qbfx......oe....Qb........Wb....Qb.qTu....K.....Qb&.......wa....Qb"8.X....r.....Qb.f>.....Oc....Qbr.......Xb....Qb.#w.....pe....Qb.cr.....Yb....QbR9:Y....O.....Qb.[......qe....Qb...F....Z.....Qb.}......$b....Qb........D.....Qb..K ....ab....Qb.......la....QbN.......ac....Qb..;%....x.....R....Qb..Z.....B.....Qb:.b.....Nc....Qb.._*....E.....Qb......Y.....Qb..t.....fa....Qb*.+....bc....Qb.......C.....Qb........$a....QbJ.......Za....Qb........bb....QbZ.sQ....Na....QbB.......re....Qb.sC^....Zb....Qb.u.....te....QbZ.......ya....Qb..<.....cb....Qb..c.....pa....QbB......cc....Qb..g>....sa....Qb.X......db....Qb.</.....Ra....Qb.^S.....Qc....Qb...
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\95fee99bab72dc0f_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):231
                                                                                                                                                                                                                          Entropy (8bit):5.564605602535899
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mVltXYGLUxGBznGKT2duguGxZvtgH6XEOklBVhnL+nK6t:AwGBR6IguGX/UOkRN+
                                                                                                                                                                                                                          MD5:340821E5AB3BDD4B9735C5B3A1A971EB
                                                                                                                                                                                                                          SHA1:E8A502F73980090CEAF9260F3D2F3881EA0BFCCE
                                                                                                                                                                                                                          SHA-256:16804A94446A6E24D59F7E7B79432C8E72D7DF3174EABE59DB2EC746DEB77240
                                                                                                                                                                                                                          SHA-512:60C8FFFFBA9188E8DF0D9378D89299DDA13CC5DBA02050814B902D307471225595E9F48BC509E6D12596A2DD4C43420C5F9816EC7DBC4D47C1F7509898D6A26A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......c....T......_keyhttps://www.youtube.com/s/player/3804dce2/player_ias.vflset/en_US/base.js .https://youtube.com/....W&/.............pp......M.x.7.3.g...Bl7..9..|.Cw.o.9.X..A..Eo......,*O..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\98f7ac3352864cdd_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):506
                                                                                                                                                                                                                          Entropy (8bit):5.517868925878412
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:gJNKO1b805sXcyo0E+m6Qqtl7qJNKO1b80Icyo0E+mCYY:XOV8BX5o0E+ttl7tOV8Po0E+8Y
                                                                                                                                                                                                                          MD5:6209398C629A006D6EBD44777F66E8EA
                                                                                                                                                                                                                          SHA1:B86EE0CA05A457377DE295E3B7E5E4FA9F3AF905
                                                                                                                                                                                                                          SHA-256:DF80806AAFAA37E902C86A208F08EFF3644075D65DE3EF4D4CBA713E5764F644
                                                                                                                                                                                                                          SHA-512:F740E9571FBCF0B35D0AAE6E5D1C44B6517C0B28EB1D6F95488B7DE2475FB260551CBA148289934156F5B4B3945148611945B69DDF6053D79D21C5500DA465E0
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......y..........._keyhttps://assets.paperturn-view.com/vendors~components-Pages~components-Search.4fcb49bb.js .https://paperturn-view.com/@.x.W&/........................v......kz.<Adp..*E.2r..GaT...A..Eo.......45..........A..Eo..................0\r..m......y..........._keyhttps://assets.paperturn-view.com/vendors~components-Pages~components-Search.4fcb49bb.js .https://paperturn-view.com/OA..W&/........................v......kz.<Adp..*E.2r..GaT...A..Eo......n .}.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9aeca2548873487f_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):353976
                                                                                                                                                                                                                          Entropy (8bit):4.121726950379738
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6144:yHyGURF39jLLzg1FK3oqQFVLzFCfu1uVg:XQFvXf
                                                                                                                                                                                                                          MD5:78E233A563F1D56617D30E83BD60233F
                                                                                                                                                                                                                          SHA1:82E9F1CCCA52FE9A3FE3173CD28099BB118C4449
                                                                                                                                                                                                                          SHA-256:3C209DC0507F8B8DAE36EBD79576F5C9CEEEA533C84E98B25490774C39A7E858
                                                                                                                                                                                                                          SHA-512:2B34B381A5B80BB5023D03F7BF5628BF4FF74CBC93BA632E529D0A39A15C8F33959DD64828886A0BDCCED6163C7192FD37F98266820D413DCC9EA279C7159AA0
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......@...p$......8E88A35BD36F53D98288D14D5E501E2F584B9B2AF358BA6A88F63A1F7303D98B..............'.G.....O.....e..[...............D....d..d...........4....(S....`..... L`........(S....`.....8L`.....@Rc..................Qb&T.f....d.....Qb.......e......M.b....d.......I`....Da.........(S...`......L`....I..Qc.R......parseInt.q...Qd.'......fromCharCode.....K`....D{ ...............i..........&....&...7..&.]...&.]...&...8..&..#j.......&.(...&.%.@..&.Y......(...&..$&.Y....4.....,Rc...................`.....aJ...............e..................G......@.-....\P.a.....P...https://www.paperturn.com/cache/v2.3.12/mini-b6b0e1e2a9cc4a10cafe9a7b0396818b.jsa........D`....D`(...D`.........`....&...&..!.&..!.&.(S.,..`....]..K`....De................&.%.*....,Rc...............I`......Qbb.2D....k...a............b..............1.d....................&.(S.(.`......L`......Qb~..Q....\w+...K`....Dd.....................,Rc...................`.....a................d....................`....DI]d...........
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9bec16c4529e250a_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):454
                                                                                                                                                                                                                          Entropy (8bit):5.564515944967586
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:FtJuNt0TpIHPPEX5wPtJuNt0rmHPPEX5ip:6tspIH3EiAtTH3Eop
                                                                                                                                                                                                                          MD5:3EF19B8EAA74511294F841A18AD89C58
                                                                                                                                                                                                                          SHA1:DABA9ED71609F7BA20DA40F6CC64451778799DFF
                                                                                                                                                                                                                          SHA-256:37F08BC67BC8FB878EA87E114A2651C3FAEEBFD86A0743E4E3200F482155603A
                                                                                                                                                                                                                          SHA-512:A14019EF72993958D2A96A194FB19D507F95D2935AE4BA863C544F3962426BC5F293F969FDC7DAAA381A9E63D683568CB9D3B9FA277ADDFC5B0CA911DFE6E825
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......_.....$....._keyhttps://assets.paperturn-view.com/components-Pages.5c372095.js .https://paperturn-view.com/P.x.W&/......................]...T$.BB.;U..=)..@=...)..Sd.0.A..Eo......R.Rf.........A..Eo..................0\r..m......_.....$....._keyhttps://assets.paperturn-view.com/components-Pages.5c372095.js .https://paperturn-view.com/.A..W&/......................]...T$.BB.;U..=)..@=...)..Sd.0.A..Eo........MB.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a07811dab2c1a983_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):424
                                                                                                                                                                                                                          Entropy (8bit):5.531377111764403
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mVIEYcvhAbuBV9XYSRs2buBnWtgLVslNnk4KK6tWVIEYcvhAbuBV9XYSRs2buBsi:CI0Jz1bR0E2sXk/UI0Jz1bR0HsXkb
                                                                                                                                                                                                                          MD5:E079C0A6786BEE30F511A972AE41BF7A
                                                                                                                                                                                                                          SHA1:ED11C6B72AE2041B7588810ACB27AB95057685A6
                                                                                                                                                                                                                          SHA-256:51135D37656A0F1E8CD5A4CE2699A8C5F0146FF1C08B4DDEDDFEDA248A83AE65
                                                                                                                                                                                                                          SHA-512:A955028E7360D27370EC089D4513D050AD6E6A589A7C03F9641651A16703DD1EE91193006C33B59448D6D776CDE5A44B8B7344201B6EFA9E4C6DF2E79B665C80
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......P....3......_keyhttps://assets.paperturn-view.com/7.0f628dc6.js .https://paperturn-view.com/..\.W&/....................u..(...e.../.:)...q.$\x(.t...=.A..Eo.......!...........A..Eo..................0\r..m......P....3......_keyhttps://assets.paperturn-view.com/7.0f628dc6.js .https://paperturn-view.com/....W&/....................u..(...e.../.:)...q.$\x(.t...=.A..Eo......O.P..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2a9870c369aa42b_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):254
                                                                                                                                                                                                                          Entropy (8bit):5.591537159900901
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mdtXYgcOEQfu9a/Wn/bWnSsN3Lqug1rWefYXplbK6t:uckkQyWnxLqLWsKLN
                                                                                                                                                                                                                          MD5:DF292C4865279697D7F067C261DA7898
                                                                                                                                                                                                                          SHA1:455E111D4AEDC7C6274BC4D9E36146AB47992714
                                                                                                                                                                                                                          SHA-256:8F8EB144CEB6CE79669AD648BF798180674CA0D7B395957098FD4BF09390F2E0
                                                                                                                                                                                                                          SHA-512:357AE191B52E9173BFB6E6BC211417C5123038AD57256C0FE09481E4B0414C4A48FFCF6DDDE1EBE29D09F53BA90F6F680905FC0AC5C63E972942D86541BF1B5B
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......z....%.^...._keyhttps://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/require-a19851d1.js .https://xpans.in/..r.W&/.............Q.............?5......r.2,d.O6pN..GZ..9.A..Eo..................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2df7e764a389255_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):239
                                                                                                                                                                                                                          Entropy (8bit):5.4759910476283356
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mU6EYcvhAbuB/KSlYoNRs2buB0tgb9l0TF+hfqRK6t:p60JNKq0KiaTF+pqr
                                                                                                                                                                                                                          MD5:4DC9F0F469C4B3C66A61ADF8C8A9AF11
                                                                                                                                                                                                                          SHA1:38CBFDC52DFF79433423BEA58BD124CDE63B2FED
                                                                                                                                                                                                                          SHA-256:767ED770A1BE954AB817EC56E715BBFF649D0B23CE5039231F572BD4FA7CAC1E
                                                                                                                                                                                                                          SHA-512:EA24C5059F9549024E7594D3AF49D1CEE767DDCF19459C05EE29F98E76A952AD8C5B06C5FD45EAEF6CABD94EFD03935243FD9AF318404215CFBBBBE4E1F38E7A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......k...f.Fp...._keyhttps://assets.paperturn-view.com/vendors~components-BottomBar.e724eb41.js .https://paperturn-view.com/PEt.W&/.....................R./>.].DN.{+mA.L.....f^.I+.@.q.A..Eo........~3.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a3b9cf33e4506e9e_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):231
                                                                                                                                                                                                                          Entropy (8bit):5.46301282753867
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mytgEYcvhAbuB48yHabbs2buB32goRMkTplK6t:vvJux6/0k7TN
                                                                                                                                                                                                                          MD5:8C3DBDB5C1181E478F6F3BFD4AD8FFEE
                                                                                                                                                                                                                          SHA1:2A42803BBC60ECF4A1B7AD861701C2F3FB26F2C3
                                                                                                                                                                                                                          SHA-256:0A218717D96E048931262C2116BA8AD91BBD637F898FBBB3EAFA770B1F834E56
                                                                                                                                                                                                                          SHA-512:68D56B1EAC76EEA69556003C433125893EC5040D86FDF9FB5FE77F56F4CE175E039366EB5EF2CBA8017010F94910F1AD3C276349C5A70C92444CF6F2FAB5B0A2
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......c..........._keyhttps://assets.paperturn-view.com/components-PoweredBy.81832c27.js .https://paperturn-view.com/uVn.W&/.............t.......^..so}.-.........'..4..X.j....A..Eo.......1.a.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a6de80f86bf10fb4_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):243
                                                                                                                                                                                                                          Entropy (8bit):5.560093072536592
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mwmYcvhAbuB449bMIL0GUos2buBteNHgDUAs6tlmrNTnK6t:PmJumtL8o07AXUcZTp
                                                                                                                                                                                                                          MD5:9B01A0DC8468E8CA6CB8F95D7D656EEA
                                                                                                                                                                                                                          SHA1:6435D88CD163E10083BEBC1C4EB112046587E1CB
                                                                                                                                                                                                                          SHA-256:A8E15FCC4C5B68F02E23E266597E1AD5D8DE709E49759B88253FEECC0D1018B2
                                                                                                                                                                                                                          SHA-512:4CFD2C71D6C03886E2418C4E501427EF00D0BE73B713E72E677847ABB5AC380D80DDBCEB3F6A04BE37DCA192E2A71F1350D4E8AA926D6B5468355AA4FC0B4877
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......o...#.._...._keyhttps://assets.paperturn-view.com/components-EmbedFullscreenSwitch.b1cc3074.js .https://paperturn-view.com/.:..W&/....................W(....g.vC.:.."UsG.n[.n..I."J.A..Eo........E3.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ab2e7647897bb5a2_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):229
                                                                                                                                                                                                                          Entropy (8bit):5.54179192846904
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mR0EYcvhAbuB4PpjgvNRs2buBHSD+1tgIbIGPbg41JhK6t:u00JuhEz09bpbgo
                                                                                                                                                                                                                          MD5:663DF95C003348D1B0366EC716957C3E
                                                                                                                                                                                                                          SHA1:7323F6FBFB24B3BCC7E06292450D5E969DF12EB0
                                                                                                                                                                                                                          SHA-256:A4ABD3148B86A80FF8689574021630B88B5723B29225AE573DE26A9CCD533663
                                                                                                                                                                                                                          SHA-512:E7E47F8B8C50F21013E0F40896A443AFA36BFA108229AC52D5EF1EBAC1049169EFE2AD93CCABB1A90E911ADE118C825CA6C1E7736AEF8A8120004690944EFDAB
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......a..........._keyhttps://assets.paperturn-view.com/components-Preload.8e1d07ba.js .https://paperturn-view.com/!.k.W&/....................F..y.]...@I......qjq:..cC....I.A..Eo..................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ab9b9b92e56d5efe_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):235
                                                                                                                                                                                                                          Entropy (8bit):5.479560551570538
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mNyXXYcvhAbuB4EQRs2buBWFgb5ceYvYZcnK6t:JJu50Ge3cp
                                                                                                                                                                                                                          MD5:C7D001491CDA1DB50E59CA967B5A9C45
                                                                                                                                                                                                                          SHA1:3BF241BE8A4CE8B0B2C19F232C74B5F2C8AD67FD
                                                                                                                                                                                                                          SHA-256:F2917578E8F3BF6D031F9E4513E3726DB0093DAB87E57901653B77BCC9159377
                                                                                                                                                                                                                          SHA-512:BA59F84CCADCDE99211804DB807F5D723DDB1C6CF8091A51D25A6D340C92D294D6664C48C39F993FF6617217A0E0F7CBC884BB62549E52AC922BEC8791763F74
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......g..........._keyhttps://assets.paperturn-view.com/components-ToolbarButton.4ce3af8a.js .https://paperturn-view.com/@.x.W&/.............>.......*....... X./.rh.....\....8...A.A..Eo..................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b4191926631e1e0f_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):578
                                                                                                                                                                                                                          Entropy (8bit):5.609303466251818
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:PJNK/OlD24R0M193Gy79JNK/OlD24R0l2193GUi:O/OlD2uZssQ/OlD2uZsUi
                                                                                                                                                                                                                          MD5:F81D94E1EDD077F53626F5D6C1DC0619
                                                                                                                                                                                                                          SHA1:FB2049514BBDAEE4A855E7F1D6960B0B29B50C41
                                                                                                                                                                                                                          SHA-256:12A67270FD885E1F633A0B6D48A5F2237D6EBEA4C9D5730422EB63AFF4CE5FF9
                                                                                                                                                                                                                          SHA-512:FDA0809AA2246A15CF2DCF40CACFBCCE82223F851F5F44825930DA2F32A9F2167786E65885A3CC2DFA0B234C5C36434AE630C89E7457590708DD5DC5ADB6C159
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m............r....._keyhttps://assets.paperturn-view.com/vendors~components-BuyBasket~components-SendBasket~components-SnackbarProvider.39ec3713.js .https://paperturn-view.com/..f.W&/.............C.............F..=.;~.....m.7j(...P.A..Eo......P............A..Eo..................0\r..m............r....._keyhttps://assets.paperturn-view.com/vendors~components-BuyBasket~components-SendBasket~components-SnackbarProvider.39ec3713.js .https://paperturn-view.com/.)..W&/.........................F..=.;~.....m.7j(...P.A..Eo......g..O.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b868e2287919f738_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):416
                                                                                                                                                                                                                          Entropy (8bit):6.325424734669373
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mjIEYELaKJQFtaxiR1z52pEjkJry6YgLqrRUNsQ9qS2tDnxgL+c3nLUgmnoFUOK+:P0LaK6axo8JryvgsU7YSwuT3nLuno9
                                                                                                                                                                                                                          MD5:FDB338562A9845C548390C5C26B079FB
                                                                                                                                                                                                                          SHA1:66F4F853BB70C91A2089B40BA966718698F604AA
                                                                                                                                                                                                                          SHA-256:138C370A12F2040DBC2A94DB488E60FE3437E882F275DE0C35F334C4D4246288
                                                                                                                                                                                                                          SHA-512:76F2759C19A1ECA5606FA037EE437CF141CE56ABEE0B7471401B8A5B6711000F529CCF3B3612BE57420952B148D6381A5A628CB2AE79D075C34D5BF86D2CEF27
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m.................._keyhttps://xpans.in/document/Drive/asd/ScriptResource.axd?d=P9Sp2kK_d4BNWXJEemNdILK9AkaZTG86MaHXVWE9ulLLVoOV2_uW1v0US-bX7dmgAnCfaQZZr5Xs_PMb2qlY_PZzJWUXIvFhdqwbDETknzEmfBkVtnOHt2UrW1fhYKSvnNu6LRTwvwsd5-_je6Walguw52MlxQXzYUZD9J954ItjszBMdOwHNUoRr-iIqIr00&t=545ba255 .https://xpans.in/]kr.W&/.............Y".......M}.......(.|.0.S...8.`>D.....A..Eo.......;Gj.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bbfcd0a0712d3aa4_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):261
                                                                                                                                                                                                                          Entropy (8bit):5.604148725483563
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m3nYgcOEQfu9a/Wn/NziRzg6VN3LrRiHga1yaqaL/I6AxK6t:WckkQ0mRL3LtlaqqQ6o
                                                                                                                                                                                                                          MD5:19E2D9DD2FD5ED18B346457A20CA8980
                                                                                                                                                                                                                          SHA1:8582F3C8B2C615287409E39D7B20E03E4C2D4B26
                                                                                                                                                                                                                          SHA-256:DBF4AC83BD022DCF1B4B4574BE6E1A2282A64DC1AF1C8E203911BA8758755265
                                                                                                                                                                                                                          SHA-512:CDCAB9A3791A82E766B2C6179DFFDD72C4D158FBBAD0CEA0D6E9D53F7694744C1B556406CC04A62582AB48D071C91731B55C8C623B5975C23ED3BF376A5C2BAE
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m..........4......._keyhttps://spoprod-a.akamaihd.net/files/odsp-next-prod_2018-11-02-sts_20181108.001/spoguestaccess-f1ac83f1.js .https://xpans.in/..u.W&/.............. .......;...)....,......J..=.I...;.N.h.A..Eo........-D.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bf709059c5fc7310_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):456
                                                                                                                                                                                                                          Entropy (8bit):5.527410248112826
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mu/yEYcvhAbuB45RLs2buBzLugeS4swbdNubK6tWu/yEYcvhAbuB45RLs2buBwH4:XvJu5RL0yRJYNvJu5RL0eBRJKr
                                                                                                                                                                                                                          MD5:9480A5B015E3FDB668B47EC83E289F2C
                                                                                                                                                                                                                          SHA1:B977199AFDF13570AEC5736E2163D8693847C951
                                                                                                                                                                                                                          SHA-256:35BD9F7432D76ECA74BB62EEF6DB3CA178CEF99CA02DB40E1D42C74E682BB5C7
                                                                                                                                                                                                                          SHA-512:2C000F67AB231CE16691AF4C2DD3C6D45BA25C657D25EF964749EB7CF39F95074DD4E8F752BD858E6732418416E6D33690B03530317873CB52DA9A6530E9BB3D
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......`......|...._keyhttps://assets.paperturn-view.com/components-Viewer.775a1c39.js .https://paperturn-view.com/.9r.W&/.............].............`Or].A.....U1.H....._.].A..Eo.................A..Eo..................0\r..m......`......|...._keyhttps://assets.paperturn-view.com/components-Viewer.775a1c39.js .https://paperturn-view.com/...W&/.............W.............`Or].A.....U1.H....._.].A..Eo.........>.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c693e56ec7dc32cf_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1278
                                                                                                                                                                                                                          Entropy (8bit):5.487719356668925
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:MoEJRI0JmpOoEJReJArOoEJR48JuOoEJRkzJQOoEJRUJwOoEJR+SJ8:REPVJmpfEPeJsfEPlJufEPkzJQfEPUJ4
                                                                                                                                                                                                                          MD5:CE413CAA5F78CDE0A475D8DD009AC7A9
                                                                                                                                                                                                                          SHA1:3A6B7F81B985AA9020F47DFD2DF69F268A3AF640
                                                                                                                                                                                                                          SHA-256:A962A40D7C50DC454F371804772DA153810DCF26413BCAB437097E6BB6CA28BB
                                                                                                                                                                                                                          SHA-512:B98968EBEF86AA73778B420EF38780F6452049F2490791C414F1B7D60EAF77688B134EBE7F6D463916CD4B463DE2849DB2A5BC0136FF4676D67683473C1F1AAA
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......Q...X......._keyhttps://assets.calendly.com/assets/external/widget.js .https://paperturn.com/'t..W&/.............~..........p......LK..W.`F..!E.Z.@9..I..A..Eo.......Ev.........A..Eo..................0\r..m......Q...X......._keyhttps://assets.calendly.com/assets/external/widget.js .https://paperturn.com/..?.W&/.............@..........p......LK..W.`F..!E.Z.@9..I..A..Eo......^..9.........A..Eo..................0\r..m......Q...X......._keyhttps://assets.calendly.com/assets/external/widget.js .https://paperturn.com/i2..W&/.............m.........p......LK..W.`F..!E.Z.@9..I..A..Eo.......M...........A..Eo..................0\r..m......Q...X......._keyhttps://assets.calendly.com/assets/external/widget.js .https://paperturn.com/....W&/......................p......LK..W.`F..!E.Z.@9..I..A..Eo...................A..Eo..................0\r..m......Q...X......._keyhttps://assets.calendly.com/assets/external/widget.js .https://paperturn.com/....W&/......................p......LK..W
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c7dbfff3f5d11b28_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):424
                                                                                                                                                                                                                          Entropy (8bit):5.576882292689583
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mmKEYcvhAbuBHwPsLs2buB7ugZgmr8xzbK6tWmKEYcvhAbuBHwPsLs2buBJQygUC:E0JqPsL0NfTgpO0JqPsL0iTfN
                                                                                                                                                                                                                          MD5:7E00D779B7E59C412EEC50360490125F
                                                                                                                                                                                                                          SHA1:7DDEAB34C7168971B926BCEC5988D036FA59656C
                                                                                                                                                                                                                          SHA-256:213D1916A834C75B66CFE242621ABF23ACE6B738FB72CB0921B7BDCDE20B93EC
                                                                                                                                                                                                                          SHA-512:970B420C76146E2FE3328E5DBDF14CF8B578D090CFD71587D04F161BD603B541F95F30DDD74AC1BA22C5538032CA335A9453B83FADBA33450DB125499ED67852
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......P.........._keyhttps://assets.paperturn-view.com/6.f4dbef67.js .https://paperturn-view.com/..[.W&/.............c.......$3x.....).sO&R......i....d..A..Eo.........8.........A..Eo..................0\r..m......P.........._keyhttps://assets.paperturn-view.com/6.f4dbef67.js .https://paperturn-view.com/G..W&/............./.......$3x.....).sO&R......i....d..A..Eo........+..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c968078420fe3f97_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):320
                                                                                                                                                                                                                          Entropy (8bit):5.575034352655751
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mZYcvhAbuB/KSXyc/blyQOlyKHBUVRs2buBlag5qWWaLW4/1K6t:oJNKmhOVo0HFPP
                                                                                                                                                                                                                          MD5:21D97C685E676615EB6C1A18F0E2F44C
                                                                                                                                                                                                                          SHA1:1C04E82F55CF1B1B3620BD4A591C7EF1812B5F83
                                                                                                                                                                                                                          SHA-256:72EF2303DE7674E9DA78F26D636CE7CCBD2E33B765BFB2DF00EB4EF8EEF7AD9A
                                                                                                                                                                                                                          SHA-512:63E95404F33280C1C707A74FF08D99A121DA0BC9A9448373BD42675806D33F1278BD56F5CCD156F962B4CB6183F3EE1728E6C7B7C5223053CB03BE73109F985A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m...........3.K...._keyhttps://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~components-BuyBasket~components-Di~52c89d82.7a50110a.js .https://paperturn-view.com/DWn.W&/.....................M.5T..#...V)....d.C..=..R{..G;$.A..Eo........(..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ca3cacf61e20435d_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1230
                                                                                                                                                                                                                          Entropy (8bit):5.536227725617456
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:wIQazLtBSIQaMtgSIQaCRtwNSIQactaSIQa7tYSIQaTtg:wLaVBSLaKgSLaCjmSLa6aSLa5YSLahg
                                                                                                                                                                                                                          MD5:79CFA599D8AEDC11B77883FBFDF37E24
                                                                                                                                                                                                                          SHA1:E1622938B129E8717ECD96A2777E616F107482D4
                                                                                                                                                                                                                          SHA-256:78E72469146AC63FF0331E940F292CECD76BE09156120469E0BB8DE2C8949E83
                                                                                                                                                                                                                          SHA-512:AD2700086442D0A2C10FB986673ACB28CFDD1F7BF24639C975B5EBA8FA755D7A19F31D798AA5C5FEA912A865EC994D4032EEDCF3755637FE377F7BB846F9D9F7
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......I...G(......_keyhttps://www.google-analytics.com/analytics.js .https://paperturn.com/U..W&/......................l.0..w.......~E'5M..T.=b.m^..D..A..Eo......5.X.........A..Eo..................0\r..m......I...G(......_keyhttps://www.google-analytics.com/analytics.js .https://paperturn.com/..C.W&/......................l.0..w.......~E'5M..T.=b.m^..D..A..Eo......?ftn.........A..Eo..................0\r..m......I...G(......_keyhttps://www.google-analytics.com/analytics.js .https://paperturn.com/....W&/..............n.......l.0..w.......~E'5M..T.=b.m^..D..A..Eo...................A..Eo..................0\r..m......I...G(......_keyhttps://www.google-analytics.com/analytics.js .https://paperturn.com/....W&/.....................l.0..w.......~E'5M..T.=b.m^..D..A..Eo......~.T..........A..Eo..................0\r..m......I...G(......_keyhttps://www.google-analytics.com/analytics.js .https://paperturn.com/.R/.W&/.....................l.0..w.......~E'5M..T.=b.m^..D..A..Eo........`........
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cb14d97ede8b4cfb_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1422
                                                                                                                                                                                                                          Entropy (8bit):5.746208547991548
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:cLWHBe6LRB+N6LVBd6LKB66LkBt6LClBr:w522N2R2l2E2C3
                                                                                                                                                                                                                          MD5:A5C5E810FD57A6FA30040CF9CFF02498
                                                                                                                                                                                                                          SHA1:4FA0BAD619B410CF26183268B5C2EE431BC5A27E
                                                                                                                                                                                                                          SHA-256:0855FDC6AF83218B5FE6FA498D6FE6A8A88234DAB22036C7FE38D92F4866BD34
                                                                                                                                                                                                                          SHA-512:2E33A5A50E3457C969A33D91C56B5BD674132016F6A30A3FFE30C012C646CADCC29DFECCF628505E71BD736BF6079E66B79D1B5D5A4F0EDE05DC3BBA33EFD5A6
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......i....U.B...._keyhttps://connect.facebook.net/signals/config/808672289198286?v=2.9.43&r=stable .https://paperturn.com/.&..W&/........................*...R...=....pz.n.%w...1D..#.A..Eo......6.^..........A..Eo..................0\r..m......i....U.B...._keyhttps://connect.facebook.net/signals/config/808672289198286?v=2.9.43&r=stable .https://paperturn.com/..G.W&/.............3..........*...R...=....pz.n.%w...1D..#.A..Eo...................A..Eo..................0\r..m......i....U.B...._keyhttps://connect.facebook.net/signals/config/808672289198286?v=2.9.43&r=stable .https://paperturn.com/u8..W&/..............m.........*...R...=....pz.n.%w...1D..#.A..Eo.........x.........A..Eo..................0\r..m......i....U.B...._keyhttps://connect.facebook.net/signals/config/808672289198286?v=2.9.43&r=stable .https://paperturn.com/.:..W&/.............&..........*...R...=....pz.n.%w...1D..#.A..Eo......D...........A..Eo..................0\r..m......i....U.B...._keyhttps://connect.facebook
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d1d96ac840cd7ef0_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):369
                                                                                                                                                                                                                          Entropy (8bit):5.921737387086463
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mBPYGLibtKFANFoCQOB8As2bt89HgLRl/g9QO1kYsSK6tMCiSpE8QFmlVmIO1kYY:0p6N2TOBxg9EI9bW9SPuqB
                                                                                                                                                                                                                          MD5:10AF160B3376A79633047ECB7C34A400
                                                                                                                                                                                                                          SHA1:895B87856B76E9AEF9BEA0B7423CDA5A24EFCD3B
                                                                                                                                                                                                                          SHA-256:0563A5D9D3A3C960CCFAEF17A2FA8B60C5C645096C20536512FCA4497B299001
                                                                                                                                                                                                                          SHA-512:26C78DC8DF5E77FE8BCFA2FDC766107902E74BEFA5DD64DF67A5F22D806A4608205F2117E669AD6D0D6C12256A562A6DBD235E517D75FD3CE4E6CF90699FAB37
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......i..........._keyhttps://www.paperturn.com/o3/resource/js/lib/angularjs/angularjs-lates.min.js .https://paperturn.com/..W&/.....................]pf.......>..x.1...L/...?6n.*.A..Eo...... ...........A..Eo....................W&/..~..8A34A66321308543B62F72F0751030C47E71FF01705F36D714FB0C0F9194AC13]pf.......>..x.1...L/...?6n.*.A..Eo.........L.......
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d2b8a8d9a2d95859_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):239
                                                                                                                                                                                                                          Entropy (8bit):5.562062884418913
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mU6/XYGLUxGBznUk006guGRUtgmll0WO/prAlhK6t:pKwGBUf06guGW/SWO/pUN
                                                                                                                                                                                                                          MD5:2F6A3D1ABA20413216938D9BE8E44561
                                                                                                                                                                                                                          SHA1:AAB14B42475D6C1DDF97F52C85AC0791646461E9
                                                                                                                                                                                                                          SHA-256:99D2E2E59C49C610B4F4E111DB25345B168DF1CB6BEB79EA1C41CF57DB9FCBB9
                                                                                                                                                                                                                          SHA-512:580BB622BF22AA6585DCE9BD60174E5B09BDEC3DC5CAA1B1EAE91766A3C4B4DF7BFCF3E4C6CA5ABC83CD68EFE45E97A08B1410A5AADC31C15B92AC1329E1D3E0
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......k....?....._keyhttps://www.youtube.com/s/player/3804dce2/fetch-polyfill.vflset/fetch-polyfill.js .https://youtube.com/H&..W&/.............qp......6z...J.....tY0.........(..Sf....A..Eo...................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d5ef84d81abcea8d_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):444
                                                                                                                                                                                                                          Entropy (8bit):5.604797346491657
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mHYGLSmXZC2jns2buBxWtgC6XfO4z68RK6tWHYGLSmXZC2jns2buBig76XfO4z6K:MZ0k6XPNruZ0b6XPj
                                                                                                                                                                                                                          MD5:6B5A6A904AE3A9786348666BA611B5DD
                                                                                                                                                                                                                          SHA1:D60A221516BB4A474AAC914C550763051331FE6F
                                                                                                                                                                                                                          SHA-256:DD488B696FEE136A1CAFA00B259EAE6477B7D384BF734797426900E10B02A5FF
                                                                                                                                                                                                                          SHA-512:C4C508EFC77EAF3E69258336C4F05D0A4FBF123893448E7872E311BE1A652608B25A937C02D5A903649B499C865680DC66A393C8849066BDDF6E1DA0523A2368
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......Z...p"......_keyhttps://www.googletagmanager.com/gtag/js?id=UA-47719712-4 .https://paperturn-view.com/..S.W&/...................0.5}1...........:.z+.."....O.b..A..Eo.......;...........A..Eo..................0\r..m......Z...p"......_keyhttps://www.googletagmanager.com/gtag/js?id=UA-47719712-4 .https://paperturn-view.com/.?..W&/....................0.5}1...........:.z+.."....O.b..A..Eo........ /.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d80a1cc1e7bfcfc1_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):338
                                                                                                                                                                                                                          Entropy (8bit):6.117126609709782
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m7llXYELaKJQDmQQy/OWQlxDEU5US0LCUBc+erRVL0FgnvJt6K42iDK6t:iLaKizGJF5US2KrRVLRt6p1
                                                                                                                                                                                                                          MD5:071031922354AAF101007464D61B1EA2
                                                                                                                                                                                                                          SHA1:5161766A8377831A01D1B8AB7B0E85DBCDA5B6A9
                                                                                                                                                                                                                          SHA-256:665EDE2960A3FE2A407C6419D9614E9DF8F157AD9F1DFED2A7C4AEC82C9399E3
                                                                                                                                                                                                                          SHA-512:E30424D5CCC1A0EFFED946FE7B24B6D5F2709C731121B0C837A7C0ED83A330CD0974CF3F5E7386105DA7441E831BC07ABCA5DAD8E14F1AAD3C01FC334230F366
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m............]>...._keyhttps://xpans.in/document/Drive/asd/WebResource.axd?d=Vseh0_O29CS6SASZGjJ5B50eCxofIEK9mDd5NZNa5k8KtiJMrh6DL1CqUgbSMvuYp9XMuEXY1onzPRs6Z1nFvYLL4ESa9mSIGj7DzvVHhP41&t=636686402738678653 .https://xpans.in/F.p.W&/.............T........r..PGE.NDA...b3.....:.j....@F.A..Eo.......t;k.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ddf29fd5d7ab777f_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):372
                                                                                                                                                                                                                          Entropy (8bit):5.8843265360354104
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mGmXYGLibtGqlIEvSb4s2btiA+HgvtlW0OkbIahfK6ty9Msx7u8cDgNWOkbIahyl:PmtqlIJ89lWNa/G5a4
                                                                                                                                                                                                                          MD5:A91E42BD767B2F0AD2BCD233C2AD4EA2
                                                                                                                                                                                                                          SHA1:71E36235B1E495E06257767994A4FFE87EDE2EAE
                                                                                                                                                                                                                          SHA-256:61101E718E6D4DA259E924BC0DEAD54785030EF338E68747D13B39C6A76DC278
                                                                                                                                                                                                                          SHA-512:48C09DB69F9146A2AE052E26009BDDC2F9B2181774693B2523DAB6AB3889203DDB53B16B25B50D33ACBC61B87EF6F351BB693AB0F9AF73E21BED132F258FB79C
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......l...).)b...._keyhttps://www.paperturn.com/cache/v2.3.12/mini-2c7001179082c8031f506f1a6a77ca2f.js .https://paperturn.com/9v..W&/.....................,.a..E.....za......g..?.R...E..A..Eo......=...........A..Eo..................9v..W&/..l..A46A4BACBDA6493C18D52D950BA55B74358D15D3599484FFCE96C2C2F844F3B3.,.a..E.....za......g..?.R...E..A..Eo.......3E.L.......
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ddf7e8582ef3dff7_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):420
                                                                                                                                                                                                                          Entropy (8bit):5.501565690531915
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m6VYGL+MIwJJas2buB4ug/GS6IYFtbK6tW6VYGL+MIwJJas2buB7TlgqeS6IYUgJ:LIwva0D9ftNxIwva0N9e9B7
                                                                                                                                                                                                                          MD5:14029B1260CFABE9AA5C8BC13BC92E07
                                                                                                                                                                                                                          SHA1:624FD6917C456AA685FBDF565EB05CC09274F292
                                                                                                                                                                                                                          SHA-256:C025FE2F4CFCBAF3478344B95ACED3EEEE741CB0E5745F349829EC3C006F8504
                                                                                                                                                                                                                          SHA-512:5CB237901914EFC8EAB078C4B13BC5F312217AE84EE6E447E456686BF9515B4910C13A4702BE8E224173921053F0D59ACA04AD5D6AB902FE3B471DD580EB31C1
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......N...s..F...._keyhttps://www.google-analytics.com/analytics.js .https://paperturn-view.com/..X.W&/....................Z.......F. ./..3....V...c..U.....A..Eo.......z...........A..Eo..................0\r..m......N...s..F...._keyhttps://www.google-analytics.com/analytics.js .https://paperturn-view.com/....W&/...................Z.......F. ./..3....V...c..U.....A..Eo.......oz..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e41c3bf86352e7cd_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):222
                                                                                                                                                                                                                          Entropy (8bit):5.538090585196531
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m0nYcvhAbuBKB/2uhs2buBigr5x3vnxuK6t:hJsoe0z5NvxQ
                                                                                                                                                                                                                          MD5:6F1B306DE23CEBD2C7C4DE5CEBDC86BF
                                                                                                                                                                                                                          SHA1:2459E2646E1CD29E840EEE742D5DE64F4B3AB1F0
                                                                                                                                                                                                                          SHA-256:6B6E35A95D4A23204499287F918F7FDD2C70165DA4F472DBBD32518513878B50
                                                                                                                                                                                                                          SHA-512:C83C6AA11D58CBC65E98AB69573E9D90838C4FCB5F5F0614C0F4419A97D6DB654F9F717F68CCD512A599662210E3575F570CAFAC250C9F27073188B8D8818ED7
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......Z...'XR....._keyhttps://assets.paperturn-view.com/index.js?20210723020133 .https://paperturn-view.com/d...W&/.............~............&]...ey..u.....1Sp.d.t.fZ.!.A..Eo.........5.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e65797cd70a56c3a_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):539
                                                                                                                                                                                                                          Entropy (8bit):5.554909789196034
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mwFYp3zJs2bt6HgKlQdfF4/nSK6t+9Hgj8edfF4/nd+d9HgwnlQdfF4/ndLS9Hg+:dsFW0dckMredcuPlQdcdL+sedcg/dc
                                                                                                                                                                                                                          MD5:00E5DF6070ED6E14625A544A12025CC8
                                                                                                                                                                                                                          SHA1:621159ACB26AA96EEEB5AAD81E6F01B6A59BDCB7
                                                                                                                                                                                                                          SHA-256:172B431581D0858BE9DEF0EE62C4192A1B1CFEFF7C980F44809BE58511CB0070
                                                                                                                                                                                                                          SHA-512:967054845BBD640A1373D24D32BA8B2A5171E26CB097497A79DD202940923B9AB8E395FAA8D2B3FF8EBCF7BCAF6BB8091F7283325337CF224ED13C0773EACCD2
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......G....t.&...._keyhttps://v2.zopim.com/bin/v/widget_v2.329.js .https://paperturn.com/.l..W&/.............;0.......n.dl..hd........$....\.<.......A..Eo......K.[..........A..Eo...................l..W&/....................n.dl..hd........$....\.<.......A..Eo........C.........l..W&/.....................n.dl..hd........$....\.<.......A..Eo.......W0..........l..W&/.............j........n.dl..hd........$....\.<.......A..Eo.......P...........l..W&/.............^........n.dl..hd........$....\.<.......A..Eo.......v^.........
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e78a65cbed4dea02_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):240
                                                                                                                                                                                                                          Entropy (8bit):5.703882154487978
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mokYGLibtGqd45rn1Qjzs2btIgO/mIVrbzbK6t:iqd41AzwmIV/p
                                                                                                                                                                                                                          MD5:1403038EC9FFD542E35BA74E6028C027
                                                                                                                                                                                                                          SHA1:7D7950A1C3CE5632186F62CA1D3719DBE4F8E508
                                                                                                                                                                                                                          SHA-256:C2F67272FA7DB13384095F778C7E1630C6A9CAC9471392F2AF553AA8C52FB6C5
                                                                                                                                                                                                                          SHA-512:3A3FD4BBDC545DCA9D6EF31FB6EEFA6F686D066241F830975723DFC3716551FA0537CF9F6A5BE578A8DC04D5EAA5801E0E97A234CC03181F11F585A8BB28AADA
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......l...'.^)...._keyhttps://www.paperturn.com/cache/v2.3.12/mini-d0f4fc79d4063f6d5171f399465f6cb6.js .https://paperturn.com/ T+.W&/.......................)...X...)...C"j.]..L..s$2hr.B.A..Eo..................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e7eeab8bd5560049_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):476
                                                                                                                                                                                                                          Entropy (8bit):5.606218219962993
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mEYnYcvhAbuB4a+1h2Z7vNRs2buBmDug4mIGnEK6tWEYnYcvhAbuB4a+1h2Z7vNp:OvJuvD2tL0yGvIvJuvD2tL05Lxdqp
                                                                                                                                                                                                                          MD5:5A61AC31E29FBB0F651134605ACC6A7B
                                                                                                                                                                                                                          SHA1:284408987DF33334CF35A71B34FFEA743C892D4F
                                                                                                                                                                                                                          SHA-256:59A596444E398ECE1C446217E00093E114FB7F23E7BC0BF5650A33CBD4E3A791
                                                                                                                                                                                                                          SHA-512:088154BAF967EEE7ADBF9B6F8971ECDEA852F9229AC93E4BD0F2E1ED3F4BD694944DC22A5A25075B74A80F30FC4F3A2E6D2BF1BB88F6E8E93129EDD9E4A679AD
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......j......5...._keyhttps://assets.paperturn-view.com/components-SnackbarProvider.b1a734fc.js .https://paperturn-view.com/..f.W&/.............G..........?.N.Mv...s.C#c5..d....QX....A..Eo........].........A..Eo..................0\r..m......j......5...._keyhttps://assets.paperturn-view.com/components-SnackbarProvider.b1a734fc.js .https://paperturn-view.com/A)..W&/.............s..........?.N.Mv...s.C#c5..d....QX....A..Eo......~............A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e8a9b928233b277a_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):403
                                                                                                                                                                                                                          Entropy (8bit):6.210332409062683
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mrS8XXYELaKJQFd/OKtqfUmtI7Jsb+vamvAipfYBxkfrQxLRtgallGmdvgzk4A0H:ES8xLaKS/m3tIlHSm3ox9xLztgY/g
                                                                                                                                                                                                                          MD5:8F6F4AB12C5E151D09A121C6A56A5E1E
                                                                                                                                                                                                                          SHA1:3A646F5B58AD8E638B558764B5106403FC66C7A0
                                                                                                                                                                                                                          SHA-256:9553EBF8F92705DE7C67DC23BA64D97425557174426F8A1F40D9474312D57425
                                                                                                                                                                                                                          SHA-512:E2C84C9184EBA725385DA1572C9EAEF133A0707C603EDD412BABFEB2D78A0F1726D3F73791B05D4707E18B6A98B7F2921421597D18C8956CF638C6137C0630C2
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m.................._keyhttps://xpans.in/document/Drive/asd/ScriptResource.axd?d=KozZrTVT8ndoIojtkc7ps-zrkEG427bomy-mzEko1QrwRvKEBPnBH-eEBG-fwBgYq7vo370eJLLGk7WUP2b7mI8TDWlp_qYPfXW_5pbAQZLH8_PPmuRYZViI-z0367-tVCsNT-4DayceIpClEr2xh51rkJ0nz9Zws1FVvy1dbq41&t=ffffffffab5b37cd .https://xpans.in/.p.W&/.............W".......0."..i^E...E8F..08.3.U0x...[....A..Eo...................A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ed55c9f01fcca8ed_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):474
                                                                                                                                                                                                                          Entropy (8bit):5.5145729087981445
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:12:UJu5080NR1+EeUfA3T2Ju5080ZEeUfyr:+8C+XUfC88eXUfS
                                                                                                                                                                                                                          MD5:FE21CE46DE6F1B412664686E038D39B2
                                                                                                                                                                                                                          SHA1:8769C378BDEC1C128587ADC929C730F15B8B8D48
                                                                                                                                                                                                                          SHA-256:118EB9E48DBC803E5645072C4CC4059C928ABB5ADA786FB21088ACFA7693F796
                                                                                                                                                                                                                          SHA-512:ABD5A30283647F50937A45A9CAD53ADF6A9377EDDE6F20BDA3AE04C9EA8CE4488CC778A1B253AD53916D9B3653C7795318375671D6963616E0DC463D53A8EA44
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......i....!......_keyhttps://assets.paperturn-view.com/components-ViewerContainer.a8be06bc.js .https://paperturn-view.com/.Mt.W&/.............N...........7..Q... x.GQ..wW.D..U...e...A..Eo..................A..Eo..................0\r..m......i....!......_keyhttps://assets.paperturn-view.com/components-ViewerContainer.a8be06bc.js .https://paperturn-view.com/...W&/.......................7..Q... x.GQ..wW.D..U...e...A..Eo.........u.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f4692d38da8f7d92_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):320
                                                                                                                                                                                                                          Entropy (8bit):5.538136501360896
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:me6EYcvhAbuB/KSXyc/blyb2WoXamZvLs2buBgyg58msaAnnK6t:P/JNKmvWYz0YHsaqp
                                                                                                                                                                                                                          MD5:89FCE1604A62273840A4C6CDCF6CC645
                                                                                                                                                                                                                          SHA1:51761C3CE4755B475892BB5E69871445FDF6B876
                                                                                                                                                                                                                          SHA-256:EAD36D112729585BC2933A7AE27E270DB7F117D3286B09AF7E62B4AA1989F041
                                                                                                                                                                                                                          SHA-512:0C34D037BB05DF3F585565033CF7674341450DB5F3D092ACBBEBFF5279888E77E8660CE66BC2FF4E9AFD87DE175849C8329135416CB2CD3975ACC73755EE969B
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m...........$......_keyhttps://assets.paperturn-view.com/vendors~components-AddToBasket~components-Alert~components-Basket~components-Basket-BasketItems~comp~3396e82e.035b7405.js .https://paperturn-view.com/8Xn.W&/......................s..C.0Z.....!......-.. 3.....A..Eo......d............A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f5e415729b027894_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):426
                                                                                                                                                                                                                          Entropy (8bit):5.617893101705748
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:m3inYcvhAbuBUSNRs2buB4Wtg64ErlFh+fRK6tW3inYcvhAbuBUSNRs2buBMgoEh:DJmu03mwPhCrRJmu0OwPhXp
                                                                                                                                                                                                                          MD5:155AFF630B70D48796DA2561542EDCBE
                                                                                                                                                                                                                          SHA1:227A6FC0ED591452793B21AB6EFCDE6489B899E2
                                                                                                                                                                                                                          SHA-256:81371976BAB8AE8234FDFD37A1942DB77D73D4342467166912FBB866594E7DEE
                                                                                                                                                                                                                          SHA-512:960ADEA8CDD2F4347B65DC6FB413360F8E4ECAD3BE38824C6DB147AE10C2687BABD374FE50F6D07C422855CB082DE3CD426FC4AA844D03F8C37CDD0BF1A57B24
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......Q...J......._keyhttps://assets.paperturn-view.com/13.9cb813a3.js .https://paperturn-view.com/..\.W&/....................R....)^.}..f.CK.|..R...g.`.7..A..Eo......NQYt.........A..Eo..................0\r..m......Q...J......._keyhttps://assets.paperturn-view.com/13.9cb813a3.js .https://paperturn-view.com/....W&/.....................R....)^.}..f.CK.|..R...g.`.7..A..Eo........dQ.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f7733717fc9a9560_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1236
                                                                                                                                                                                                                          Entropy (8bit):5.526249243571525
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:7e58DyrMf9e583rMnr9e58XrMD9e58IQrMO9e58NirMD9e58cErMD:7K8GrMf9K83rMr9K8XrMD9K8IQrMO9K5
                                                                                                                                                                                                                          MD5:D80757EF1EBD9C569AA22C6E6699C673
                                                                                                                                                                                                                          SHA1:3A3FF97B27B06169D6C88493BF74E30D292BDD28
                                                                                                                                                                                                                          SHA-256:41832BB7AE7C64A95DCF0F80B7751C18D3EC55F2B09CE98F573E1854AA14A0B8
                                                                                                                                                                                                                          SHA-512:18DEF44E2878D6698175E4A0BAE30848E81FA052C364BE00FB0E11CF1A221F6E7F542C7281A800603226B1368117B818B1FE4439587AC2BF6C37B14B55CE7E33
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......J..........._keyhttps://connect.facebook.net/en_US/fbevents.js .https://paperturn.com/....W&/.....................%.......{....1;.....t...N......A..Eo..................A..Eo..................0\r..m......J..........._keyhttps://connect.facebook.net/en_US/fbevents.js .https://paperturn.com/.5>.W&/.....................%.......{....1;.....t...N......A..Eo...................A..Eo..................0\r..m......J..........._keyhttps://connect.facebook.net/en_US/fbevents.js .https://paperturn.com/...W&/.............dl......%.......{....1;.....t...N......A..Eo.........5.........A..Eo..................0\r..m......J..........._keyhttps://connect.facebook.net/en_US/fbevents.js .https://paperturn.com/....W&/...................%.......{....1;.....t...N......A..Eo......m<k..........A..Eo..................0\r..m......J..........._keyhttps://connect.facebook.net/en_US/fbevents.js .https://paperturn.com/HL,.W&/...................%.......{....1;.....t...N......A..Eo......0.....
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f99d6da11388c29b_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):231
                                                                                                                                                                                                                          Entropy (8bit):5.452964540637544
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:majYcvhAbuB4VGYRs2buBItgxtsZnn6Fk84+nK6t:7JuVJ02isQFk8Xp
                                                                                                                                                                                                                          MD5:A8729B6C74C6222CCC5093E537B02017
                                                                                                                                                                                                                          SHA1:04DEF8997060DAB8A2D54EAA7F5B4F7B77A3235A
                                                                                                                                                                                                                          SHA-256:F6624E747D5FCB44B449EDB9EF00D9584C7D08383218580D084BA0654E04E150
                                                                                                                                                                                                                          SHA-512:12E767FB6377E8248679014F335F547257F1170B314EBD408772271BAD025ECA9E9688B5F8B233D7E249C6AC949111D05BB9BF05E80BD15F17D750183B27CBB4
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m......c...w#......_keyhttps://assets.paperturn-view.com/components-BottomBar.9060c6c1.js .https://paperturn-view.com/$Mt.W&/.........................@.7.~)].&/..+....o..=l...w.A..Eo........lM.........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fd410d0fcd87a62a_0
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):416
                                                                                                                                                                                                                          Entropy (8bit):6.256769339267302
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mGYELaKJQF0EKi3PmsPVqXtq9IvrQCykZrxgKzG+MeRN3nLyDugy7BnoyP49QzbD:hLaKyf3Gq+DIKzG+/N3nLykRomB
                                                                                                                                                                                                                          MD5:8CA8C4F837A6BE6C1B8D6F6F6B567A36
                                                                                                                                                                                                                          SHA1:1738DA7E298BF5DA90DACA08946BBA03BC9749A6
                                                                                                                                                                                                                          SHA-256:5EF8ADACE12CA9EC14FAE096D39A2BCB752FC3CB512EAA603ED8A63AA1642B44
                                                                                                                                                                                                                          SHA-512:38EB8386D602F138E25D9552749A4C0E3CC98A700F3A3475D9FD0E591B3C0B94535A113A420596D4C7C63D3595B81011BB958323663CA0F7F7578B2DBA396EA6
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 0\r..m...........Ok....._keyhttps://xpans.in/document/Drive/asd/ScriptResource.axd?d=YfbPqEYj0W31Qd6b83PGlWON7nZi7y2471DNsdTWssElkCGzwOy2JjZMN6Q2J0CxzcQQMZxoFp-M9jgIk2__cRVfgn6cWZ7Z_b9bpoSJ9398HB6BkZgWc5aKYHnJsU-BmVVRY4UUCV5Fic6Gmpm_oZLb8Buaqp86-tiOy7lm8vuLYoTaNPLJWb1IMmHTO7uG0&t=545ba255 .https://xpans.in/5.q.W&/.............X".........,.t5Go..,..2..*........U..m.A..Eo........_..........A..Eo..................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):1776
                                                                                                                                                                                                                          Entropy (8bit):5.354397763326519
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:24:qVV6jzvl3CCpMM84fFz9dw2A+xKO13sn/hO:k8zv177dnnU/hO
                                                                                                                                                                                                                          MD5:4614BBAB23A47A09FAF1733D27A476B0
                                                                                                                                                                                                                          SHA1:3D8B771E76494C1696121FDB4A6CC4071B947024
                                                                                                                                                                                                                          SHA-256:12E020281B8EA264F85BF4C01D8278089C3AA42789FA6919F977D2C6D97BDB05
                                                                                                                                                                                                                          SHA-512:F6DED58B6CB3E3CE2A83DD421EBA87CEE49958657BA3F805339B7D45A2C4DDA1062A3AA43EB57B0937FF577EF0C6A57F7A69494DDB885A961FD0BF61125B6E3E
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: ....1Hr.oy retne....H....................R....W....W&/............k.......W&/..........rp43..?....W&/..........%.R.......W&/..........L.R3.......W&/..........s..Y.p.....W&/.........S.0.rW......W&/............c&.......W&/.........Bh.7........W&/.........I.V........W&/.........z...y.$z....W&/.........l.*...!.....W&/.............X.......W&/...............x.....W&/..........L..~.......W&/..........x..r.......W&/.........(...........W&/............+P._P....W&/...............{..W&/...........Rc.;..{..W&/..........~.`..Y..{..W&/.........]C ...<.{..W&/..........2..n..@9..W&/.........`....7s.@9..W&/.........NNBn/.......W&/.........%....?.....W&/...........M..e.....W&/.........(M....d..].W&/..........+..i^3.. .W&/..........l....u.. .W&/...............V... .W&/.........2]..}'.>.. .W&/...........r.........W&/.............*..J....W&/.........(.r........W&/.........:l.p.W..u..W&/.........1>...y..3..W&/.........8..y(.h..l..W&/.........*.....A..l..W&/..........:-q.....l..W&/.........
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:SQLite 3.x database, last written using SQLite version 3032001
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):24576
                                                                                                                                                                                                                          Entropy (8bit):1.834741055616875
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:48:TekLLOpEO5J/Kn7UieSxfvv3TS4+RPu/yLSIbXZLLOpEO5J/Kn7UGMzSyfvv3TS0:dNwunQLRPKUSeNwENLRPBUSdJW
                                                                                                                                                                                                                          MD5:079A6353B1DE774B3D4E4E211608F5D7
                                                                                                                                                                                                                          SHA1:1351279DFB3155F246A8207A8CBC91B73ED9CBA1
                                                                                                                                                                                                                          SHA-256:12476646EC6C84D14A0480867981E2B8220FEC6D3BFCF0874A03AA9B97F8C2A5
                                                                                                                                                                                                                          SHA-512:34AFE7164AF85D8BFD12DDDACE86D4BDED614A79E98E6AA7942F3CE1017D4652451F88A2C9D7FEB6F0B19F59D7B312E4510C671F43167B783824FDA8CB4DE3F3
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: SQLite format 3......@ ..........................................................................C....... ..g... .8....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):25672
                                                                                                                                                                                                                          Entropy (8bit):1.3149000527612524
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:48:KI+mq5LLOpEO5J/Kn7UF8eSxfvv3TS4+RPu/yLSI0qekLLOpEO5J/Kn7Ur8:H+mcNwWnQLRPKUSTMNwk
                                                                                                                                                                                                                          MD5:42BE930D04F9F24F1672B77513D6B8CB
                                                                                                                                                                                                                          SHA1:1E72256701D6740C5BBB28120A392255E30C3153
                                                                                                                                                                                                                          SHA-256:795E8A021BCA87320D0DA724E5187981BB4F7B4C002211C01FAAD3D88A55A66E
                                                                                                                                                                                                                          SHA-512:74C14A5E9414C943E116012B0C8385FFE5D50AC791839F05FF9B1C200F7322F56FAAB82A9EB6DD349039E2DF8C5FC9245388B43C7FA5FF0EF81BE817F9218D35
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: .............4.x........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):136384
                                                                                                                                                                                                                          Entropy (8bit):2.97169755269141
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:768:3DYLT/Bd/A8/AM/Au9pWnGmw4O6mmI4OT/Asxm9mb:3D+/b///v/zKS4zS4O/nt
                                                                                                                                                                                                                          MD5:918EEB30E6F50DCC3BBBFADBFF6D6F6F
                                                                                                                                                                                                                          SHA1:6CB3C2F856CF6382F0941F758879169CA4C27671
                                                                                                                                                                                                                          SHA-256:CFA12DAC39E65ACF78396350DACA3A6B351165D6E43EEB06B22E97270FB155AD
                                                                                                                                                                                                                          SHA-512:61B7A76521316C88925E534DD2122192B6168E5A89D9B86ECD977BED73D5C1681D1973FFDFE34DC071BF92E50C05BB4795BADA07B2CD14C0F9270FED2CD09DEA
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: SNSS....................................................!.............................................1..,.......$...d4f530e5_e0ae_4e85_92aa_55a2b469342f.........................................................................................................5..0.......&...{2F4F8386-A58B-4B0C-A17B-2FAAF764E551}............................U...https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1.......................................................h.......`............................... .......................................X.......p...................................U...h.t.t.p.s.:././.w.w.w...p.a.p.e.r.t.u.r.n.-.v.i.e.w...c.o.m./.u.s./.p.a.p.t.e.r.t.u.r.n.f.i.l.e.s./.s.h.a.r.e.p.o.i.n.t.-.f.i.l.e.?.p.i.d.=.M.T.c.1.7.5.0.3.6.&.v.=.1...1.......................................8.......0.......8....................................................................... .......................................................U...https://www.paperturn-view.com/u
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):8
                                                                                                                                                                                                                          Entropy (8bit):1.8112781244591325
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3:3Dtn:3h
                                                                                                                                                                                                                          MD5:0686D6159557E1162D04C44240103333
                                                                                                                                                                                                                          SHA1:053E9DB58E20A67D1E158E407094359BF61D0639
                                                                                                                                                                                                                          SHA-256:3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
                                                                                                                                                                                                                          SHA-512:884C0D3594390E2FC0AEAB05460F0783815170C4B57DB749B8AD9CD10741A5604B7A0F979465C4171AD9C14ED56359A4508B4DE58E794550599AAA261120976C
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: SNSS....
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):164
                                                                                                                                                                                                                          Entropy (8bit):4.391736045892206
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:3:FQxlXayz/t2Hmwg0EOZL7Ao4uhFkEuRLKyC5Ei5+Gg:qT5z/t2qoEwhXeLKB
                                                                                                                                                                                                                          MD5:0A906A9A542CDF08FF50DAAF1D1E596E
                                                                                                                                                                                                                          SHA1:B97D6274196F40874A368C265799F5FA78C52893
                                                                                                                                                                                                                          SHA-256:EB9CABBF5FDA1AD535300B0110EAA4068A083248BA928A631C9278545935426D
                                                                                                                                                                                                                          SHA-512:8795E905B711ADE6B1C4B402D50AF491B64D157AA738669482DDBFC30E857DF970BFFB774A925F3F4A0802BD27AFAF939CE140894FF09B67FB9C0BB83ED4491A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: .f.5................i.Wd...............Sgdaefkejpgkiemlaofpalmlakkmbjdnl.declarative_rules.declarativeContent.onPageChanged.[]..F..................F................
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):322
                                                                                                                                                                                                                          Entropy (8bit):5.221935049153129
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mfXYUq2P923iKKdK8aPrqIFUtpUXYuZmwPUXY5PkwO923iKKdK8amLJ:9Uv45KkL3FUtpNu/PNd5L5KkQJ
                                                                                                                                                                                                                          MD5:1C68BB0146DCC1D1A7D39A0A018FC728
                                                                                                                                                                                                                          SHA1:0F101845CDEC9D7AF8A55A70411C96494AA126DB
                                                                                                                                                                                                                          SHA-256:0F77156A18ACA5EB4CA88CB0A73171935533D5B6EA0CBCE3EC1F81DC78889BC6
                                                                                                                                                                                                                          SHA-512:8897F4817CBE742850F3C2F49E642240D6C74F0505E880393C619C42E5A6563BFC0E7F96E991B1F7ED21EBE6FC7880D18B3917F273EB1FDDEE43F89DF722104A
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 2021/07/22-19:00:28.164 17b4 Reusing MANIFEST C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules/MANIFEST-000001.2021/07/22-19:00:28.165 17b4 Recovering log #3.2021/07/22-19:00:28.166 17b4 Reusing old log C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules/000003.log .
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:data
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):570
                                                                                                                                                                                                                          Entropy (8bit):1.8784775129881184
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:qTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCTCT:qWWWWWWWWWWWWWWWWWWWWWWWWWWWWW
                                                                                                                                                                                                                          MD5:D4BA0AE0BB0B9FAFF3DA6F35FDBC3C8A
                                                                                                                                                                                                                          SHA1:FB3E9DEC7F35A9B1D94E54A5659DD0DE484055E7
                                                                                                                                                                                                                          SHA-256:99DEF1B557F19F04C1AFFC6F247D0451F33FC10EC42E73792223C3215AC98BE6
                                                                                                                                                                                                                          SHA-512:86FD07C34B9ABD4C52BA19EAE291936F92BC6D38A75C021EDC1DEDBC15617669876180CD99F959C62476D82EC6BB9F5FE4C6CB4D82CB037EFB76D99A4D3D9C51
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: .f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5................f.5...............
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):322
                                                                                                                                                                                                                          Entropy (8bit):5.125535418865473
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:6:mfHE4q2P923iKKdK8NIFUtpUHQNJZmwPUHWFKpDkwO923iKKdK8+eLJ:mv45KkpFUtpR/P9Fi5L5KkqJ
                                                                                                                                                                                                                          MD5:3E9F5493CF6D107B8D197FA1CE7885C9
                                                                                                                                                                                                                          SHA1:84F27EFE3863D46DEED6181408BEFF28FC34D096
                                                                                                                                                                                                                          SHA-256:2CEE483E4BFC056A280F76CCB827276FA02CD3CEEF2BF51CC6D70225C4BDAF4E
                                                                                                                                                                                                                          SHA-512:EFF37C17274CABD6C658F6125ACBCBD8530BD61DD22D0EEE1C82F90E5CFCB5241A8B200FCFCA83205E1FD4358BB8053E947F742054D9EA8ACE4A8F0A89F3D422
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: 2021/07/22-19:00:31.710 16d0 Reusing MANIFEST C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State/MANIFEST-000001.2021/07/22-19:00:31.712 16d0 Recovering log #3.2021/07/22-19:00:31.713 16d0 Reusing old log C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State/000003.log .
                                                                                                                                                                                                                          C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
                                                                                                                                                                                                                          Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          File Type:ASCII text, with very long lines, with no line terminators
                                                                                                                                                                                                                          Category:dropped
                                                                                                                                                                                                                          Size (bytes):11217
                                                                                                                                                                                                                          Entropy (8bit):6.069602775336632
                                                                                                                                                                                                                          Encrypted:false
                                                                                                                                                                                                                          SSDEEP:192:GbylJnlTwGB7V9Hne4qasKxXItmLG48gcLg/PkI:Gb+nldByaFx4toj8VEPT
                                                                                                                                                                                                                          MD5:90F880064A42B29CCFF51FE5425BF1A3
                                                                                                                                                                                                                          SHA1:6A3CAE3996E9FFF653A1DDF731CED32B2BE2ACBF
                                                                                                                                                                                                                          SHA-256:965203D541E442C107DBC6D5B395168123D0397559774BEAE4E5B9ABC44EF268
                                                                                                                                                                                                                          SHA-512:D9CBFCD865356F19A57954F8FD952CAF3D31B354112766C41892D1EF40BD2533682D4EC3F4DA0E59A5397364F67A484B45091BA94E6C69ED18AB681403DFD3F3
                                                                                                                                                                                                                          Malicious:false
                                                                                                                                                                                                                          Reputation:low
                                                                                                                                                                                                                          Preview: {"file_hashes":[{"block_hashes":["A+1PYW3V6CJbBuQ7aqrgYhyH3bT8PKyBXp3hN2slpI0=","WSOpQRkYTHjPSlG9Zif2a7TNhy43NDcG1Zg5Nv0UbH0=","jDctR8ImG5KZrQKm4kDjUB7FokSJfjo/pmvFowRVlaY=","LPxhhJiuU0lprt0T6flpS7TkaDg7MocrbmzO65xH6RI=","nZ9zLb2By96AkKXALRM+C0Eu11XUjPiMXEKjiCPdtHE=","wifibc1QfMBN2jrtUtLgsCefvuceTpAatmLvul11RJA=","dHjWlSIIdjj7MWqg3T8MG58RuuqRXk32vqi/13JqEgA=","zd3DV7dbvfNvx1hdhU01fW5ily52DLN0CFL/ADaEeTI=","DpjXcO85FFFY9KJFPkGNfFUtdQIOsGwO5jUckiUwY14=","gqid6l1+mk/6yWgUECRofI9lMipXgXh2jEN2+CxmPE0=","prDB91X2Mmfg/M/txVMITWBmEGbOGjqBTP7CMjYqdHs=","yLPAqV4gqoyS/zFkEt3Cn2j0q2v9QOSthVFfWn8EzCM=","EPQ3jzdrLkAHyvf3920B5Y3aAkO1IJdn/UtbnAmq6T0=","+oOc6ca+ChKUpTu+oa2ZRxRE+wG3QJmuYWEvYCs40NI=","3mBGNAiRlTANEQkqzU3TEi+5wJ0ubR5uwtS4/9OOM7w=","1A9NNawxuhu95H5eThvf1rewJ4QQWhhPNxJXO1C/n68=","E3vWLQxzmj+e5QxYbUscllJ5n0ITpw5JBHV1Kph3/KM=","i3I8ghdTF9c1ZXNBZmvsID+DV4gxBVN27rj9wsMtRpg=","R8B8qYabnMSlLPhrtu0hGYrHn3llsMHqBbi70gkIjEE=","rhlzuEvv2KRAFMms896xFwkNgPrw6WvmgPn6xrBSa2Y=","LAMXv6sRb0VZrY34aVXF3Fftxs

                                                                                                                                                                                                                          Static File Info

                                                                                                                                                                                                                          No static file info

                                                                                                                                                                                                                          Network Behavior

                                                                                                                                                                                                                          Network Port Distribution

                                                                                                                                                                                                                          TCP Packets

                                                                                                                                                                                                                          TimestampSource PortDest PortSource IPDest IP
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.290611029 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.292263985 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.293086052 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.294200897 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.340454102 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.340603113 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.342360020 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.343595982 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.343693018 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.343913078 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.344316959 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.344470024 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.344765902 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.344793081 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.344875097 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.345253944 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.392326117 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.394372940 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.395858049 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.396874905 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.397809982 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.397845984 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.397869110 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.397907019 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.399266958 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.399298906 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.399322033 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.399415970 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.400808096 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.400826931 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.400873899 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.402226925 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.402247906 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.402323008 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.405292988 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.405320883 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.405340910 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.405360937 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.405436039 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.405462027 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.410669088 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.410706997 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.410778999 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.510663986 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.636240959 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.638566017 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.639228106 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.639532089 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.639651060 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.641109943 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.641552925 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.641746044 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.655858040 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.656121016 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.656550884 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.656598091 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.687316895 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.687458038 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.687998056 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.690447092 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.690469980 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.690494061 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.690685034 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.690743923 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.691073895 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.691095114 CEST44349718143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.691199064 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.691231012 CEST49718443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.692076921 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.692091942 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.692409039 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.697765112 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710387945 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710414886 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710483074 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710495949 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710509062 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710510969 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710521936 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710547924 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710552931 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710622072 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.710967064 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.716134071 CEST49714443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.716185093 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.729732037 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.729758978 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.729773998 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.729886055 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.733989000 CEST49715443192.168.2.5172.217.168.45
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.741296053 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.743283033 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.767735004 CEST44349714142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.775202990 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.787564993 CEST44349715172.217.168.45192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.809860945 CEST49717443192.168.2.5143.204.225.123
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.053643942 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.053668976 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.053689957 CEST44349717143.204.225.123192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.053714037 CEST44349717143.204.225.123192.168.2.5

                                                                                                                                                                                                                          UDP Packets

                                                                                                                                                                                                                          TimestampSource PortDest PortSource IPDest IP
                                                                                                                                                                                                                          Jul 22, 2021 19:00:20.015588999 CEST4955753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:20.066082954 CEST53495578.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:21.235193014 CEST6173353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:21.287585020 CEST53617338.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:22.049083948 CEST6544753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:22.119457006 CEST53654478.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:23.885094881 CEST5244153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:23.934560061 CEST53524418.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:25.585997105 CEST6217653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:25.634890079 CEST53621768.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:26.504111052 CEST5959653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:26.561116934 CEST53595968.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:29.090055943 CEST6529653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:29.140630960 CEST53652968.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:31.737884998 CEST5696953192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:31.788163900 CEST53569698.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.214699984 CEST5516153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.220160961 CEST5475753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.222985983 CEST4999253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.227921009 CEST6007553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.280190945 CEST53547578.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.280525923 CEST53551618.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.288146973 CEST53499928.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.291388988 CEST53600758.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.736733913 CEST5501653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.805970907 CEST53550168.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.809812069 CEST6434553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.875504971 CEST53643458.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.964730978 CEST5479153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.013989925 CEST53547918.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.121892929 CEST5046353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.121944904 CEST5039453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.122211933 CEST5853053192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.122229099 CEST5381353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.129268885 CEST6373253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.179481030 CEST53585308.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181731939 CEST53503948.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181889057 CEST53538138.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.186906099 CEST53504638.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.218102932 CEST53637328.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.424011946 CEST5734453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.483755112 CEST53573448.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.538593054 CEST5445053192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.606247902 CEST53544508.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.841011047 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.877474070 CEST5926153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.896596909 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.896640062 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.896657944 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.897083998 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.898408890 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.936671019 CEST53592618.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.967041969 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.973475933 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.973505974 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.033667088 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.033813000 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.035491943 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.048899889 CEST5715153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.101423979 CEST53571518.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.552658081 CEST5941353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.553356886 CEST6051653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.610393047 CEST53605168.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.617379904 CEST53594138.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.528513908 CEST5292953192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.567890882 CEST6431753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.587951899 CEST53529298.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.616887093 CEST53643178.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.832051992 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.898349047 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.898390055 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.898416042 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.898833990 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.900830030 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.901211977 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.979176044 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.979204893 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.980695963 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.980741024 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984606028 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984627962 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984678030 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984705925 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984725952 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984751940 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984776974 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984801054 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984819889 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984837055 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984863043 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.984882116 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.986411095 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.986500025 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.986583948 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.986663103 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.986812115 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.364301920 CEST6100453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.438906908 CEST53610048.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.047708988 CEST5689553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.064929962 CEST6237253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.109952927 CEST53568958.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.128928900 CEST53623728.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:38.135340929 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:38.178545952 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:38.178576946 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:38.180124998 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:39.988229036 CEST6151553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:39.991869926 CEST5667553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.053800106 CEST53566758.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.053864002 CEST53615158.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.172305107 CEST5717253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.204581976 CEST5526753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.239497900 CEST53571728.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.253742933 CEST53552678.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.258683920 CEST5476653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.321464062 CEST53547668.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.479422092 CEST6144653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.537102938 CEST53614468.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.590717077 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.590928078 CEST64318443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.659245014 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.666558027 CEST44364318172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.675187111 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.678127050 CEST5819953192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.720717907 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.738614082 CEST53581998.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.747901917 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:41.340328932 CEST6522153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:41.401802063 CEST53652218.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:41.809170008 CEST6157353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:41.869838953 CEST53615738.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.019191980 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.076519966 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.076668024 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.077706099 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.223084927 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.281452894 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.281476974 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.281493902 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.297332048 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.300647020 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.359577894 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.361320019 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.361612082 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.422061920 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.422086954 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.565701962 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.710527897 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.911026001 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:42.911051989 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.272870064 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.273454905 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.273570061 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.311353922 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.311379910 CEST4436157464.233.167.157192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.328025103 CEST61574443192.168.2.564.233.167.157
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.536467075 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.537275076 CEST61577443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.577816963 CEST5656253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.598012924 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.602401018 CEST44361577172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.602438927 CEST44361577172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.602466106 CEST44361577172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.627810001 CEST53565628.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.717609882 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.717936039 CEST61577443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.779539108 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.779575109 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.779596090 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.779613018 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.852499962 CEST44361577172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.117714882 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.117779016 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.117816925 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.117856026 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.353044987 CEST44361577172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.621640921 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.621681929 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.621711016 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.621733904 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.726340055 CEST61577443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.726453066 CEST61577443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.726959944 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.728051901 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.729044914 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.729105949 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.729167938 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.729227066 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.729289055 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.763607979 CEST61577443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.785252094 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.801548004 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.841131926 CEST44361577172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.860449076 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.861073971 CEST44361576172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.871279955 CEST61576443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:44.871556044 CEST61577443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.199749947 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.264692068 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.264755011 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.264780045 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.270668983 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.272954941 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.273610115 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.353281021 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.353418112 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.367685080 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.367774963 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.368001938 CEST44353592142.250.203.110192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.369777918 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.370081902 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.395488024 CEST53592443192.168.2.5142.250.203.110
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.723614931 CEST5968853192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.784218073 CEST53596888.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.949541092 CEST5603253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.009107113 CEST53560328.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.029556036 CEST6115053192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.111012936 CEST53611508.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.996655941 CEST6345853192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:47.053620100 CEST53634588.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.077531099 CEST5042253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.141895056 CEST5324753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.157763958 CEST53504228.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.190963984 CEST53532478.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.725361109 CEST5854453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.789084911 CEST53585448.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:49.111061096 CEST5381453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:49.166347980 CEST5130553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:49.168472052 CEST53538148.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:49.226435900 CEST53513058.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:49.551429987 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:49.619524002 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:52.796205044 CEST5367053192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:52.853281021 CEST53536708.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:55.238342047 CEST5516053192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:55.298424959 CEST53551608.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.010092974 CEST6141453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.070926905 CEST53614148.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.097094059 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.171821117 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.172323942 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.434010029 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.477189064 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.477212906 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.481043100 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.482543945 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.550479889 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.881150961 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.937525988 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.937776089 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.938057899 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.993319988 CEST6384753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.042562008 CEST53638478.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.046284914 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.102592945 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.102627039 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.118310928 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.302958012 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.302983999 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.323498964 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.417397022 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.473445892 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.474015951 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.507365942 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.509120941 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.565736055 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.565757036 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.566222906 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.573523998 CEST6152353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.575089931 CEST5055153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.625771046 CEST53615238.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.637414932 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.637736082 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.640732050 CEST53505518.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.668924093 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.669192076 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.715588093 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.717376947 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.733336926 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.733361006 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.734100103 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.746395111 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.747745991 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.748188972 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.764795065 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.764869928 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.765264034 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:00:58.973692894 CEST6284753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.038078070 CEST53628478.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.344590902 CEST5771253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.362659931 CEST6106453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.401336908 CEST53577128.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.425767899 CEST53610648.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.589297056 CEST6189153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.650556087 CEST53618918.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.375731945 CEST6158553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.434077978 CEST53615858.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.461642027 CEST6516353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.523473978 CEST53651638.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.183159113 CEST5896953192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.233021975 CEST53589698.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.561655998 CEST5397753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.614084959 CEST53539778.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.903520107 CEST5714753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST53571478.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:04.591250896 CEST5238153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:04.657028913 CEST53523818.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:11.882900000 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:11.951781034 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:12.511172056 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:12.592794895 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:12.647814989 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:12.681056976 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:12.728835106 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:12.759103060 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:14.189574957 CEST4923153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:14.258395910 CEST53492318.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:14.529078960 CEST5321753192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:14.589420080 CEST53532178.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.170155048 CEST5255453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.238015890 CEST53525548.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.516477108 CEST4960353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.517483950 CEST6447653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.519071102 CEST4997553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.573379040 CEST53496038.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.574305058 CEST53644768.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.575881004 CEST53499758.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:18.282258034 CEST5770153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:18.341384888 CEST53577018.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.183092117 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233688116 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233712912 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233736992 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233758926 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233781099 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233802080 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233823061 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233845949 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233865023 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233881950 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233897924 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233915091 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.233932972 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.234971046 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235022068 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235079050 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235225916 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235610008 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235632896 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235641956 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235666037 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.235718012 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.236608028 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.236665010 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.237009048 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.237035036 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.237054110 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.237689972 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.238503933 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.238560915 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.238596916 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.239701033 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.239747047 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.239779949 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.239836931 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.239876032 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.240741014 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.241578102 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.241648912 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.241695881 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.242034912 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.242089987 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.243026972 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.243057966 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.243081093 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.243326902 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.244435072 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.244462967 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.244488001 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.244599104 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.245623112 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.246329069 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.273390055 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.284220934 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.284825087 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.284852982 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.285837889 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.288742065 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.288778067 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.289804935 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.289947033 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.289972067 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.290631056 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.291254044 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.291285992 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.291632891 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.293732882 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.293771029 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.294619083 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.294748068 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.294771910 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.295650959 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.296277046 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.296308994 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.296672106 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.297358036 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.297426939 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.297725916 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299016953 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299048901 CEST6033453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299051046 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299074888 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299097061 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299664021 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299727917 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.301198959 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.301281929 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.302073956 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.302951097 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.302980900 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.303030014 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.303050995 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.304178953 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.304229021 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.304991961 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.305023909 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.306067944 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.306099892 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.307311058 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.307343960 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.308595896 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.308629990 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.309223890 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.309247971 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.309307098 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.309815884 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.310301065 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.310339928 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.310360909 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.310380936 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.310638905 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.310683966 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.312352896 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.312386990 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.312628031 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.313685894 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.313719988 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.314989090 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.315260887 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.315283060 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.315805912 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.342715025 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST53603348.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.364126921 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.390645981 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.407047987 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.450261116 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.450289011 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.450839996 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.548439980 CEST6495853192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.607424021 CEST53649588.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.706372023 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.729549885 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756690979 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756741047 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756781101 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756843090 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756881952 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756933928 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.756979942 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757021904 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757060051 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757098913 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757136106 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757168055 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757900000 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.757957935 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.758027077 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.758083105 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.758166075 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.758737087 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.786011934 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.786226034 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.786973953 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.801316977 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.857937098 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.857973099 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.858397007 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.868218899 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.868386984 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.936918974 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.937220097 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.937694073 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.938215017 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.964627028 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.352044106 CEST5850453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.360992908 CEST6497153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.408777952 CEST53585048.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.427203894 CEST53649718.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.603137970 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656605005 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656657934 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656685114 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656708956 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656730890 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656752110 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656776905 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656800032 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656822920 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656845093 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.656862020 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.659291983 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.659373045 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.659456968 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.660203934 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.660372019 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.704098940 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.929851055 CEST5804153192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.937478065 CEST5776453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.994856119 CEST53577648.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.998456001 CEST53580418.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.055107117 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.057684898 CEST5797353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.117506981 CEST53579738.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.118069887 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.118088007 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.118103027 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.119213104 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.121191978 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.121707916 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.195913076 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.196755886 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.197546005 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.221529961 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.233963966 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.235243082 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:21.237355947 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.836606979 CEST57977443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.901658058 CEST44357977172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.901686907 CEST44357977172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.901710033 CEST44357977172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.913749933 CEST57977443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.915724039 CEST57977443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.995225906 CEST44357977172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.995861053 CEST44357977172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:23.996411085 CEST57977443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:24.585685015 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:24.628820896 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:24.628859997 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:24.629692078 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.043872118 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.100558996 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.100707054 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.101228952 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.140429974 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.198178053 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.198213100 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.198678017 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.210232019 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.210884094 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.279387951 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.279642105 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.280814886 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.281099081 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.281321049 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:25.284154892 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.627933979 CEST6328653192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.667208910 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.697159052 CEST53632868.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.711529970 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.711962938 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.713207960 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.739916086 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:28.781743050 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.148161888 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.205169916 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.205339909 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.205811977 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.254390001 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.311029911 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.311064005 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.311837912 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.348020077 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.350054979 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.417628050 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.417802095 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.418127060 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.419558048 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.419811010 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.421843052 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.533072948 CEST5487553192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:29.590189934 CEST53548758.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:30.850138903 CEST4986253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:30.881715059 CEST5011953192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:30.908731937 CEST53498628.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:30.933592081 CEST53501198.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:32.754302025 CEST6015953192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:32.845731020 CEST53601598.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.202426910 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.246474981 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.246527910 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.246953011 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.984649897 CEST4946453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.986771107 CEST6465053192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.044720888 CEST53494648.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.050635099 CEST53646508.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.832374096 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.834433079 CEST61415443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.895421028 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.895533085 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.895555973 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.909043074 CEST44361415172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.930263042 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.931732893 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.933515072 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.933940887 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.993073940 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.993108988 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.008491039 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.008521080 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.020677090 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.020718098 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.082839012 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.112281084 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.112677097 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.112838984 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.133219957 CEST44364651172.217.168.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.186719894 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.186960936 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.219695091 CEST64651443192.168.2.5172.217.168.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.244008064 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.244028091 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.244714975 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.822542906 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.867886066 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.867923021 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.868904114 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.891907930 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.893526077 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.964428902 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.964462996 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.964984894 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.973772049 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.975649118 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.975867033 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:35.976031065 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:36.123439074 CEST57765443192.168.2.5172.217.168.2
                                                                                                                                                                                                                          Jul 22, 2021 19:01:36.198131084 CEST44357765172.217.168.2192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:50.193274975 CEST63848443192.168.2.566.102.1.156
                                                                                                                                                                                                                          Jul 22, 2021 19:01:50.274125099 CEST4436384866.102.1.156192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:50.840836048 CEST54451443192.168.2.5216.58.215.238
                                                                                                                                                                                                                          Jul 22, 2021 19:01:50.910881042 CEST44354451216.58.215.238192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:51.391184092 CEST50552443192.168.2.5172.217.168.68
                                                                                                                                                                                                                          Jul 22, 2021 19:01:51.391259909 CEST50553443192.168.2.5172.217.168.3
                                                                                                                                                                                                                          Jul 22, 2021 19:01:51.469966888 CEST44350553172.217.168.3192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:51.469985962 CEST44350552172.217.168.68192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:01:56.595933914 CEST5263353192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:01:56.655411005 CEST53526338.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:02:03.115705967 CEST5612453192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:02:03.184483051 CEST53561248.8.8.8192.168.2.5
                                                                                                                                                                                                                          Jul 22, 2021 19:02:18.716252089 CEST5555253192.168.2.58.8.8.8
                                                                                                                                                                                                                          Jul 22, 2021 19:02:18.783724070 CEST53555528.8.8.8192.168.2.5

                                                                                                                                                                                                                          DNS Queries

                                                                                                                                                                                                                          TimestampSource IPDest IPTrans IDOP CodeNameTypeClass
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.214699984 CEST192.168.2.58.8.8.80xfed3Standard query (0)clients2.google.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.222985983 CEST192.168.2.58.8.8.80xe6a6Standard query (0)accounts.google.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.227921009 CEST192.168.2.58.8.8.80xa626Standard query (0)www.paperturn-view.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.122229099 CEST192.168.2.58.8.8.80xe213Standard query (0)d3euuwqpqlzvic.cloudfront.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.129268885 CEST192.168.2.58.8.8.80x7160Standard query (0)www.paperturn.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.424011946 CEST192.168.2.58.8.8.80xd015Standard query (0)assets.paperturn-view.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.048899889 CEST192.168.2.58.8.8.80x6a09Standard query (0)stats.g.doubleclick.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.552658081 CEST192.168.2.58.8.8.80x1a81Standard query (0)www.google.deA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.553356886 CEST192.168.2.58.8.8.80xe424Standard query (0)www.google.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.528513908 CEST192.168.2.58.8.8.80xa89dStandard query (0)translations.paperturn.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.364301920 CEST192.168.2.58.8.8.80x4fc3Standard query (0)www.paperturn-view.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.047708988 CEST192.168.2.58.8.8.80x8999Standard query (0)assets.paperturn-view.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.064929962 CEST192.168.2.58.8.8.80x143aStandard query (0)d3euuwqpqlzvic.cloudfront.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:39.988229036 CEST192.168.2.58.8.8.80x10bdStandard query (0)consent.cookiebot.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:39.991869926 CEST192.168.2.58.8.8.80x813aStandard query (0)use.fontawesome.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.172305107 CEST192.168.2.58.8.8.80x924dStandard query (0)images.paperturn.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.258683920 CEST192.168.2.58.8.8.80x713aStandard query (0)assets.calendly.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.479422092 CEST192.168.2.58.8.8.80x9e5eStandard query (0)connect.facebook.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.678127050 CEST192.168.2.58.8.8.80x7830Standard query (0)acsbapp.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:41.340328932 CEST192.168.2.58.8.8.80x1f76Standard query (0)consentcdn.cookiebot.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.577816963 CEST192.168.2.58.8.8.80xc884Standard query (0)www.facebook.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.723614931 CEST192.168.2.58.8.8.80x22b0Standard query (0)cdn.acsbapp.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.029556036 CEST192.168.2.58.8.8.80x1876Standard query (0)images.paperturn.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.996655941 CEST192.168.2.58.8.8.80xeaefStandard query (0)clients2.googleusercontent.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.725361109 CEST192.168.2.58.8.8.80xe253Standard query (0)v2.zopim.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:55.238342047 CEST192.168.2.58.8.8.80x57abStandard query (0)www.paperturn.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.993319988 CEST192.168.2.58.8.8.80x92c9Standard query (0)stats.g.doubleclick.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.573523998 CEST192.168.2.58.8.8.80xbf22Standard query (0)www.google.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.575089931 CEST192.168.2.58.8.8.80xeeb1Standard query (0)www.google.deA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:58.973692894 CEST192.168.2.58.8.8.80xa72Standard query (0)xpans.inA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.344590902 CEST192.168.2.58.8.8.80x90bdStandard query (0)spoprod-a.akamaihd.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.362659931 CEST192.168.2.58.8.8.80x7139Standard query (0)static.sharepointonline.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.375731945 CEST192.168.2.58.8.8.80x16bStandard query (0)xpans.inA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.461642027 CEST192.168.2.58.8.8.80x1758Standard query (0)spoprod-a.akamaihd.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.183159113 CEST192.168.2.58.8.8.80xb949Standard query (0)static.zdassets.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.561655998 CEST192.168.2.58.8.8.80x173fStandard query (0)ekr.zdassets.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.903520107 CEST192.168.2.58.8.8.80xe5ffStandard query (0)widget-mediator.zopim.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:04.591250896 CEST192.168.2.58.8.8.80xc775Standard query (0)v2assets.zopim.ioA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.516477108 CEST192.168.2.58.8.8.80x71f7Standard query (0)images.paperturn.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.517483950 CEST192.168.2.58.8.8.80xbb05Standard query (0)use.fontawesome.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:18.282258034 CEST192.168.2.58.8.8.80x1b08Standard query (0)consent.cookiebot.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.299048901 CEST192.168.2.58.8.8.80xf042Standard query (0)www.youtube.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.548439980 CEST192.168.2.58.8.8.80x972fStandard query (0)consentcdn.cookiebot.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.352044106 CEST192.168.2.58.8.8.80x1efStandard query (0)googleads.g.doubleclick.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.360992908 CEST192.168.2.58.8.8.80x4223Standard query (0)static.doubleclick.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.929851055 CEST192.168.2.58.8.8.80xc23fStandard query (0)yt3.ggpht.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.937478065 CEST192.168.2.58.8.8.80x33b3Standard query (0)i.ytimg.comA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:32.754302025 CEST192.168.2.58.8.8.80x64feStandard query (0)d8n9fts9ic943.cloudfront.netA (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:33.986771107 CEST192.168.2.58.8.8.80xfb96Standard query (0)d3euuwqpqlzvic.cloudfront.netA (IP address)IN (0x0001)

                                                                                                                                                                                                                          DNS Answers

                                                                                                                                                                                                                          TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClass
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.280525923 CEST8.8.8.8192.168.2.50xfed3No error (0)clients2.google.comclients.l.google.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.280525923 CEST8.8.8.8192.168.2.50xfed3No error (0)clients.l.google.com142.250.203.110A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.288146973 CEST8.8.8.8192.168.2.50xe6a6No error (0)accounts.google.com172.217.168.45A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.291388988 CEST8.8.8.8192.168.2.50xa626No error (0)www.paperturn-view.com143.204.225.123A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.291388988 CEST8.8.8.8192.168.2.50xa626No error (0)www.paperturn-view.com143.204.225.125A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.291388988 CEST8.8.8.8192.168.2.50xa626No error (0)www.paperturn-view.com143.204.225.71A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:32.291388988 CEST8.8.8.8192.168.2.50xa626No error (0)www.paperturn-view.com143.204.225.42A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181731939 CEST8.8.8.8192.168.2.50x6f8No error (0)gstaticadssl.l.google.com172.217.168.3A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181889057 CEST8.8.8.8192.168.2.50xe213No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.76A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181889057 CEST8.8.8.8192.168.2.50xe213No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.13A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181889057 CEST8.8.8.8192.168.2.50xe213No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.224A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.181889057 CEST8.8.8.8192.168.2.50xe213No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.40A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.186906099 CEST8.8.8.8192.168.2.50xbdf4No error (0)www-googletagmanager.l.google.com172.217.168.8A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.218102932 CEST8.8.8.8192.168.2.50x7160No error (0)www.paperturn.com148.251.96.155A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.483755112 CEST8.8.8.8192.168.2.50xd015No error (0)assets.paperturn-view.com143.204.225.93A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.483755112 CEST8.8.8.8192.168.2.50xd015No error (0)assets.paperturn-view.com143.204.225.76A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.483755112 CEST8.8.8.8192.168.2.50xd015No error (0)assets.paperturn-view.com143.204.225.82A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.483755112 CEST8.8.8.8192.168.2.50xd015No error (0)assets.paperturn-view.com143.204.225.60A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.606247902 CEST8.8.8.8192.168.2.50x5659No error (0)www-google-analytics.l.google.com216.58.215.238A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.101423979 CEST8.8.8.8192.168.2.50x6a09No error (0)stats.g.doubleclick.netstats.l.doubleclick.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.101423979 CEST8.8.8.8192.168.2.50x6a09No error (0)stats.l.doubleclick.net64.233.167.157A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.101423979 CEST8.8.8.8192.168.2.50x6a09No error (0)stats.l.doubleclick.net64.233.167.155A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.101423979 CEST8.8.8.8192.168.2.50x6a09No error (0)stats.l.doubleclick.net64.233.167.154A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.101423979 CEST8.8.8.8192.168.2.50x6a09No error (0)stats.l.doubleclick.net64.233.167.156A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.610393047 CEST8.8.8.8192.168.2.50xe424No error (0)www.google.com172.217.168.68A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:34.617379904 CEST8.8.8.8192.168.2.50x1a81No error (0)www.google.de172.217.168.3A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.587951899 CEST8.8.8.8192.168.2.50xa89dNo error (0)translations.paperturn.com143.204.225.69A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.587951899 CEST8.8.8.8192.168.2.50xa89dNo error (0)translations.paperturn.com143.204.225.62A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.587951899 CEST8.8.8.8192.168.2.50xa89dNo error (0)translations.paperturn.com143.204.225.123A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.587951899 CEST8.8.8.8192.168.2.50xa89dNo error (0)translations.paperturn.com143.204.225.84A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.438906908 CEST8.8.8.8192.168.2.50x4fc3No error (0)www.paperturn-view.com143.204.225.123A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.438906908 CEST8.8.8.8192.168.2.50x4fc3No error (0)www.paperturn-view.com143.204.225.125A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.438906908 CEST8.8.8.8192.168.2.50x4fc3No error (0)www.paperturn-view.com143.204.225.71A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.438906908 CEST8.8.8.8192.168.2.50x4fc3No error (0)www.paperturn-view.com143.204.225.42A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.109952927 CEST8.8.8.8192.168.2.50x8999No error (0)assets.paperturn-view.com143.204.225.93A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.109952927 CEST8.8.8.8192.168.2.50x8999No error (0)assets.paperturn-view.com143.204.225.60A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.109952927 CEST8.8.8.8192.168.2.50x8999No error (0)assets.paperturn-view.com143.204.225.82A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.109952927 CEST8.8.8.8192.168.2.50x8999No error (0)assets.paperturn-view.com143.204.225.76A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.128928900 CEST8.8.8.8192.168.2.50x143aNo error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.224A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.128928900 CEST8.8.8.8192.168.2.50x143aNo error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.13A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.128928900 CEST8.8.8.8192.168.2.50x143aNo error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.40A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.128928900 CEST8.8.8.8192.168.2.50x143aNo error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.76A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.053800106 CEST8.8.8.8192.168.2.50x813aNo error (0)use.fontawesome.comuse.fontawesome.com.cdn.cloudflare.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.053864002 CEST8.8.8.8192.168.2.50x10bdNo error (0)consent.cookiebot.comconsent.cookiebot.com.edgekey.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.239497900 CEST8.8.8.8192.168.2.50x924dNo error (0)images.paperturn.comd3jodor2jgify2.cloudfront.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.239497900 CEST8.8.8.8192.168.2.50x924dNo error (0)d3jodor2jgify2.cloudfront.net143.204.225.4A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.239497900 CEST8.8.8.8192.168.2.50x924dNo error (0)d3jodor2jgify2.cloudfront.net143.204.225.25A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.239497900 CEST8.8.8.8192.168.2.50x924dNo error (0)d3jodor2jgify2.cloudfront.net143.204.225.16A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.239497900 CEST8.8.8.8192.168.2.50x924dNo error (0)d3jodor2jgify2.cloudfront.net143.204.225.106A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.321464062 CEST8.8.8.8192.168.2.50x713aNo error (0)assets.calendly.comd2mvl3dkxvehny.cloudfront.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.321464062 CEST8.8.8.8192.168.2.50x713aNo error (0)d2mvl3dkxvehny.cloudfront.net143.204.225.47A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.321464062 CEST8.8.8.8192.168.2.50x713aNo error (0)d2mvl3dkxvehny.cloudfront.net143.204.225.8A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.321464062 CEST8.8.8.8192.168.2.50x713aNo error (0)d2mvl3dkxvehny.cloudfront.net143.204.225.113A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.321464062 CEST8.8.8.8192.168.2.50x713aNo error (0)d2mvl3dkxvehny.cloudfront.net143.204.225.79A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.537102938 CEST8.8.8.8192.168.2.50x9e5eNo error (0)connect.facebook.netscontent.xx.fbcdn.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.537102938 CEST8.8.8.8192.168.2.50x9e5eNo error (0)scontent.xx.fbcdn.net157.240.17.15A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.738614082 CEST8.8.8.8192.168.2.50x7830No error (0)acsbapp.com206.189.187.108A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.738614082 CEST8.8.8.8192.168.2.50x7830No error (0)acsbapp.com161.35.15.77A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.738614082 CEST8.8.8.8192.168.2.50x7830No error (0)acsbapp.com208.68.39.149A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.738614082 CEST8.8.8.8192.168.2.50x7830No error (0)acsbapp.com206.189.191.180A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:41.401802063 CEST8.8.8.8192.168.2.50x1f76No error (0)consentcdn.cookiebot.comconsentcdn.cookiebot.com-v1.edgekey.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.627810001 CEST8.8.8.8192.168.2.50xc884No error (0)www.facebook.comstar-mini.c10r.facebook.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:43.627810001 CEST8.8.8.8192.168.2.50xc884No error (0)star-mini.c10r.facebook.com157.240.16.35A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.784218073 CEST8.8.8.8192.168.2.50x22b0No error (0)cdn.acsbapp.comacsbapp.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.784218073 CEST8.8.8.8192.168.2.50x22b0No error (0)acsbapp.com206.189.191.180A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.784218073 CEST8.8.8.8192.168.2.50x22b0No error (0)acsbapp.com206.189.187.108A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.784218073 CEST8.8.8.8192.168.2.50x22b0No error (0)acsbapp.com161.35.15.77A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:45.784218073 CEST8.8.8.8192.168.2.50x22b0No error (0)acsbapp.com208.68.39.149A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.111012936 CEST8.8.8.8192.168.2.50x1876No error (0)images.paperturn.comd3jodor2jgify2.cloudfront.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.111012936 CEST8.8.8.8192.168.2.50x1876No error (0)d3jodor2jgify2.cloudfront.net143.204.225.25A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.111012936 CEST8.8.8.8192.168.2.50x1876No error (0)d3jodor2jgify2.cloudfront.net143.204.225.16A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.111012936 CEST8.8.8.8192.168.2.50x1876No error (0)d3jodor2jgify2.cloudfront.net143.204.225.106A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:46.111012936 CEST8.8.8.8192.168.2.50x1876No error (0)d3jodor2jgify2.cloudfront.net143.204.225.4A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:47.053620100 CEST8.8.8.8192.168.2.50xeaefNo error (0)clients2.googleusercontent.comgooglehosted.l.googleusercontent.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:47.053620100 CEST8.8.8.8192.168.2.50xeaefNo error (0)googlehosted.l.googleusercontent.com142.250.203.97A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.789084911 CEST8.8.8.8192.168.2.50xe253No error (0)v2.zopim.com104.16.106.139A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.789084911 CEST8.8.8.8192.168.2.50xe253No error (0)v2.zopim.com104.16.103.139A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.789084911 CEST8.8.8.8192.168.2.50xe253No error (0)v2.zopim.com104.16.105.139A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.789084911 CEST8.8.8.8192.168.2.50xe253No error (0)v2.zopim.com104.16.107.139A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:48.789084911 CEST8.8.8.8192.168.2.50xe253No error (0)v2.zopim.com104.16.104.139A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:55.298424959 CEST8.8.8.8192.168.2.50x57abNo error (0)www.paperturn.com148.251.96.155A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:56.070926905 CEST8.8.8.8192.168.2.50xdb9dNo error (0)gstaticadssl.l.google.com172.217.168.3A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.042562008 CEST8.8.8.8192.168.2.50x92c9No error (0)stats.g.doubleclick.netstats.l.doubleclick.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.042562008 CEST8.8.8.8192.168.2.50x92c9No error (0)stats.l.doubleclick.net66.102.1.156A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.042562008 CEST8.8.8.8192.168.2.50x92c9No error (0)stats.l.doubleclick.net66.102.1.154A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.042562008 CEST8.8.8.8192.168.2.50x92c9No error (0)stats.l.doubleclick.net66.102.1.155A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.042562008 CEST8.8.8.8192.168.2.50x92c9No error (0)stats.l.doubleclick.net66.102.1.157A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.625771046 CEST8.8.8.8192.168.2.50xbf22No error (0)www.google.com172.217.168.68A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:57.640732050 CEST8.8.8.8192.168.2.50xeeb1No error (0)www.google.de172.217.168.3A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.038078070 CEST8.8.8.8192.168.2.50xa72No error (0)xpans.in144.91.89.225A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.401336908 CEST8.8.8.8192.168.2.50x90bdNo error (0)spoprod-a.akamaihd.netspoprod-a.akamaihd.net.edgesuite.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:00:59.425767899 CEST8.8.8.8192.168.2.50x7139No error (0)static.sharepointonline.comstatic.sharepointonline.com-c.edgekey.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.434077978 CEST8.8.8.8192.168.2.50x16bNo error (0)xpans.in144.91.89.225A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:01.523473978 CEST8.8.8.8192.168.2.50x1758No error (0)spoprod-a.akamaihd.netspoprod-a.akamaihd.net.edgesuite.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.233021975 CEST8.8.8.8192.168.2.50xb949No error (0)static.zdassets.com104.18.70.113A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.233021975 CEST8.8.8.8192.168.2.50xb949No error (0)static.zdassets.com104.18.72.113A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.614084959 CEST8.8.8.8192.168.2.50x173fNo error (0)ekr.zdassets.com104.18.70.113A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:02.614084959 CEST8.8.8.8192.168.2.50x173fNo error (0)ekr.zdassets.com104.18.72.113A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com52.29.88.9A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com35.158.37.218A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com52.29.74.145A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com3.65.187.24A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com35.157.204.138A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com52.59.52.172A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com52.57.125.117A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:03.966042995 CEST8.8.8.8192.168.2.50xe5ffNo error (0)widget-mediator.zopim.com18.198.99.212A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:04.657028913 CEST8.8.8.8192.168.2.50xc775No error (0)v2assets.zopim.io104.18.204.90A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:04.657028913 CEST8.8.8.8192.168.2.50xc775No error (0)v2assets.zopim.io104.16.152.37A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.573379040 CEST8.8.8.8192.168.2.50x71f7No error (0)images.paperturn.comd3jodor2jgify2.cloudfront.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.573379040 CEST8.8.8.8192.168.2.50x71f7No error (0)d3jodor2jgify2.cloudfront.net143.204.225.25A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.573379040 CEST8.8.8.8192.168.2.50x71f7No error (0)d3jodor2jgify2.cloudfront.net143.204.225.16A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.573379040 CEST8.8.8.8192.168.2.50x71f7No error (0)d3jodor2jgify2.cloudfront.net143.204.225.106A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.573379040 CEST8.8.8.8192.168.2.50x71f7No error (0)d3jodor2jgify2.cloudfront.net143.204.225.4A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:17.574305058 CEST8.8.8.8192.168.2.50xbb05No error (0)use.fontawesome.comuse.fontawesome.com.cdn.cloudflare.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:18.341384888 CEST8.8.8.8192.168.2.50x1b08No error (0)consent.cookiebot.comconsent.cookiebot.com.edgekey.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST8.8.8.8192.168.2.50xf042No error (0)www.youtube.comyoutube-ui.l.google.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST8.8.8.8192.168.2.50xf042No error (0)youtube-ui.l.google.com172.217.168.14A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST8.8.8.8192.168.2.50xf042No error (0)youtube-ui.l.google.com172.217.168.46A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST8.8.8.8192.168.2.50xf042No error (0)youtube-ui.l.google.com172.217.168.78A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST8.8.8.8192.168.2.50xf042No error (0)youtube-ui.l.google.com142.250.203.110A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.351037979 CEST8.8.8.8192.168.2.50xf042No error (0)youtube-ui.l.google.com216.58.215.238A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:19.607424021 CEST8.8.8.8192.168.2.50x972fNo error (0)consentcdn.cookiebot.comconsentcdn.cookiebot.com-v1.edgekey.netCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.408777952 CEST8.8.8.8192.168.2.50x1efNo error (0)googleads.g.doubleclick.net172.217.168.2A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.427203894 CEST8.8.8.8192.168.2.50x4223No error (0)static.doubleclick.netstatic-doubleclick-net.l.google.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.427203894 CEST8.8.8.8192.168.2.50x4223No error (0)static-doubleclick-net.l.google.com172.217.168.70A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.994856119 CEST8.8.8.8192.168.2.50x33b3No error (0)i.ytimg.com216.58.215.246A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.994856119 CEST8.8.8.8192.168.2.50x33b3No error (0)i.ytimg.com172.217.168.22A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.994856119 CEST8.8.8.8192.168.2.50x33b3No error (0)i.ytimg.com172.217.168.54A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.994856119 CEST8.8.8.8192.168.2.50x33b3No error (0)i.ytimg.com172.217.168.86A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.994856119 CEST8.8.8.8192.168.2.50x33b3No error (0)i.ytimg.com142.250.203.118A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.998456001 CEST8.8.8.8192.168.2.50xc23fNo error (0)yt3.ggpht.comphotos-ugc.l.googleusercontent.comCNAME (Canonical name)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:20.998456001 CEST8.8.8.8192.168.2.50xc23fNo error (0)photos-ugc.l.googleusercontent.com172.217.168.1A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.044720888 CEST8.8.8.8192.168.2.50xd618No error (0)www-googletagmanager.l.google.com172.217.168.8A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.050635099 CEST8.8.8.8192.168.2.50xfb96No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.13A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.050635099 CEST8.8.8.8192.168.2.50xfb96No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.224A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.050635099 CEST8.8.8.8192.168.2.50xfb96No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.40A (IP address)IN (0x0001)
                                                                                                                                                                                                                          Jul 22, 2021 19:01:34.050635099 CEST8.8.8.8192.168.2.50xfb96No error (0)d3euuwqpqlzvic.cloudfront.net13.225.29.76A (IP address)IN (0x0001)

                                                                                                                                                                                                                          HTTPS Packets

                                                                                                                                                                                                                          TimestampSource IPSource PortDest IPDest PortSubjectIssuerNot BeforeNot AfterJA3 SSL Client FingerprintJA3 SSL Client Digest
                                                                                                                                                                                                                          Jul 22, 2021 19:00:33.361386061 CEST148.251.96.155443192.168.2.549726CN=paperturn.com CN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jun 02 12:37:18 CEST 2021 Fri Sep 04 02:00:00 CEST 2020 Wed Jan 20 20:14:03 CET 2021Tue Aug 31 12:37:18 CEST 2021 Mon Sep 15 18:00:00 CEST 2025 Mon Sep 30 20:14:03 CEST 2024771,4865-4866-4867-49195-49199-49196-49200-52393-52392-49171-49172-156-157-47-53,0-23-65281-10-11-35-16-5-13-18-51-45-43-27-21,29-23-24,0b32309a26951912be7dba376398abc3b
                                                                                                                                                                                                                          CN=R3, O=Let's Encrypt, C=USCN=ISRG Root X1, O=Internet Security Research Group, C=USFri Sep 04 02:00:00 CEST 2020Mon Sep 15 18:00:00 CEST 2025
                                                                                                                                                                                                                          CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jan 20 20:14:03 CET 2021Mon Sep 30 20:14:03 CEST 2024
                                                                                                                                                                                                                          Jul 22, 2021 19:00:35.573985100 CEST148.251.96.155443192.168.2.549740CN=paperturn.com CN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jun 02 12:37:18 CEST 2021 Fri Sep 04 02:00:00 CEST 2020 Wed Jan 20 20:14:03 CET 2021Tue Aug 31 12:37:18 CEST 2021 Mon Sep 15 18:00:00 CEST 2025 Mon Sep 30 20:14:03 CEST 2024771,4865-4866-4867-49195-49199-49196-49200-52393-52392-49171-49172-156-157-47-53,0-23-65281-10-11-35-16-5-13-18-51-45-43-27-21,29-23-24,0b32309a26951912be7dba376398abc3b
                                                                                                                                                                                                                          CN=R3, O=Let's Encrypt, C=USCN=ISRG Root X1, O=Internet Security Research Group, C=USFri Sep 04 02:00:00 CEST 2020Mon Sep 15 18:00:00 CEST 2025
                                                                                                                                                                                                                          CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jan 20 20:14:03 CET 2021Mon Sep 30 20:14:03 CEST 2024
                                                                                                                                                                                                                          Jul 22, 2021 19:00:36.601207972 CEST143.204.225.123443192.168.2.549748CN=paperturn-view.com CN=Amazon, OU=Server CA 1B, O=Amazon, C=US CN=Amazon Root CA 1, O=Amazon, C=US CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=USCN=Amazon, OU=Server CA 1B, O=Amazon, C=US CN=Amazon Root CA 1, O=Amazon, C=US CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=US OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=USWed Oct 07 02:00:00 CEST 2020 Thu Oct 22 02:00:00 CEST 2015 Mon May 25 14:00:00 CEST 2015 Wed Sep 02 02:00:00 CEST 2009Sat Nov 06 13:00:00 CET 2021 Sun Oct 19 02:00:00 CEST 2025 Thu Dec 31 02:00:00 CET 2037 Wed Jun 28 19:39:16 CEST 2034771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-23-65281,29-23-24,037f463bf4616ecd445d4a1937da06e19
                                                                                                                                                                                                                          CN=Amazon, OU=Server CA 1B, O=Amazon, C=USCN=Amazon Root CA 1, O=Amazon, C=USThu Oct 22 02:00:00 CEST 2015Sun Oct 19 02:00:00 CEST 2025
                                                                                                                                                                                                                          CN=Amazon Root CA 1, O=Amazon, C=USCN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=USMon May 25 14:00:00 CEST 2015Thu Dec 31 02:00:00 CET 2037
                                                                                                                                                                                                                          CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=USOU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=USWed Sep 02 02:00:00 CEST 2009Wed Jun 28 19:39:16 CEST 2034
                                                                                                                                                                                                                          Jul 22, 2021 19:00:37.229034901 CEST143.204.225.93443192.168.2.549750CN=paperturn-view.com CN=Amazon, OU=Server CA 1B, O=Amazon, C=US CN=Amazon Root CA 1, O=Amazon, C=US CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=USCN=Amazon, OU=Server CA 1B, O=Amazon, C=US CN=Amazon Root CA 1, O=Amazon, C=US CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=US OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=USWed Oct 07 02:00:00 CEST 2020 Thu Oct 22 02:00:00 CEST 2015 Mon May 25 14:00:00 CEST 2015 Wed Sep 02 02:00:00 CEST 2009Sat Nov 06 13:00:00 CET 2021 Sun Oct 19 02:00:00 CEST 2025 Thu Dec 31 02:00:00 CET 2037 Wed Jun 28 19:39:16 CEST 2034771,49196-49195-49200-49199-49188-49187-49192-49191-49162-49161-49172-49171-157-156-61-60-53-47-10,0-10-11-13-35-23-65281,29-23-24,037f463bf4616ecd445d4a1937da06e19
                                                                                                                                                                                                                          CN=Amazon, OU=Server CA 1B, O=Amazon, C=USCN=Amazon Root CA 1, O=Amazon, C=USThu Oct 22 02:00:00 CEST 2015Sun Oct 19 02:00:00 CEST 2025
                                                                                                                                                                                                                          CN=Amazon Root CA 1, O=Amazon, C=USCN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=USMon May 25 14:00:00 CEST 2015Thu Dec 31 02:00:00 CET 2037
                                                                                                                                                                                                                          CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, ST=Arizona, C=USOU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=USWed Sep 02 02:00:00 CEST 2009Wed Jun 28 19:39:16 CEST 2034
                                                                                                                                                                                                                          Jul 22, 2021 19:00:39.585961103 CEST148.251.96.155443192.168.2.549757CN=paperturn.com CN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jun 02 12:37:18 CEST 2021 Fri Sep 04 02:00:00 CEST 2020 Wed Jan 20 20:14:03 CET 2021Tue Aug 31 12:37:18 CEST 2021 Mon Sep 15 18:00:00 CEST 2025 Mon Sep 30 20:14:03 CEST 2024771,4865-4866-4867-49195-49199-49196-49200-52393-52392-49171-49172-156-157-47-53,0-23-65281-10-11-35-16-5-13-18-51-45-43-27-21,29-23-24,0b32309a26951912be7dba376398abc3b
                                                                                                                                                                                                                          CN=R3, O=Let's Encrypt, C=USCN=ISRG Root X1, O=Internet Security Research Group, C=USFri Sep 04 02:00:00 CEST 2020Mon Sep 15 18:00:00 CEST 2025
                                                                                                                                                                                                                          CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jan 20 20:14:03 CET 2021Mon Sep 30 20:14:03 CEST 2024
                                                                                                                                                                                                                          Jul 22, 2021 19:00:40.316572905 CEST148.251.96.155443192.168.2.549760CN=paperturn.com CN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=R3, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=US CN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jun 02 12:37:18 CEST 2021 Fri Sep 04 02:00:00 CEST 2020 Wed Jan 20 20:14:03 CET 2021Tue Aug 31 12:37:18 CEST 2021 Mon Sep 15 18:00:00 CEST 2025 Mon Sep 30 20:14:03 CEST 2024771,4865-4866-4867-49195-49199-49196-49200-52393-52392-49171-49172-156-157-47-53,0-23-65281-10-11-35-16-5-13-18-51-45-43-27-21,29-23-24,0b32309a26951912be7dba376398abc3b
                                                                                                                                                                                                                          CN=R3, O=Let's Encrypt, C=USCN=ISRG Root X1, O=Internet Security Research Group, C=USFri Sep 04 02:00:00 CEST 2020Mon Sep 15 18:00:00 CEST 2025
                                                                                                                                                                                                                          CN=ISRG Root X1, O=Internet Security Research Group, C=USCN=DST Root CA X3, O=Digital Signature Trust Co.Wed Jan 20 20:14:03 CET 2021Mon Sep 30 20:14:03 CEST 2024

                                                                                                                                                                                                                          Code Manipulations

                                                                                                                                                                                                                          Statistics

                                                                                                                                                                                                                          Behavior

                                                                                                                                                                                                                          Click to jump to process

                                                                                                                                                                                                                          System Behavior

                                                                                                                                                                                                                          Analysis Process: chrome.exe PID: 3500 Parent PID: 4672

                                                                                                                                                                                                                          General

                                                                                                                                                                                                                          Start time:19:00:26
                                                                                                                                                                                                                          Start date:22/07/2021
                                                                                                                                                                                                                          Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          Wow64 process (32bit):false
                                                                                                                                                                                                                          Commandline:'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://www.paperturn-view.com/us/papterturnfiles/sharepoint-file?pid=MTc175036&v=1.1'
                                                                                                                                                                                                                          Imagebase:0x7ff677c70000
                                                                                                                                                                                                                          File size:2150896 bytes
                                                                                                                                                                                                                          MD5 hash:C139654B5C1438A95B321BB01AD63EF6
                                                                                                                                                                                                                          Has elevated privileges:true
                                                                                                                                                                                                                          Has administrator privileges:true
                                                                                                                                                                                                                          Programmed in:C, C++ or other language
                                                                                                                                                                                                                          Reputation:low

                                                                                                                                                                                                                          Analysis Process: chrome.exe PID: 4588 Parent PID: 3500

                                                                                                                                                                                                                          General

                                                                                                                                                                                                                          Start time:19:00:28
                                                                                                                                                                                                                          Start date:22/07/2021
                                                                                                                                                                                                                          Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          Wow64 process (32bit):false
                                                                                                                                                                                                                          Commandline:'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1708 /prefetch:8
                                                                                                                                                                                                                          Imagebase:0x7ff677c70000
                                                                                                                                                                                                                          File size:2150896 bytes
                                                                                                                                                                                                                          MD5 hash:C139654B5C1438A95B321BB01AD63EF6
                                                                                                                                                                                                                          Has elevated privileges:true
                                                                                                                                                                                                                          Has administrator privileges:true
                                                                                                                                                                                                                          Programmed in:C, C++ or other language
                                                                                                                                                                                                                          Reputation:low

                                                                                                                                                                                                                          Analysis Process: chrome.exe PID: 6532 Parent PID: 3500

                                                                                                                                                                                                                          General

                                                                                                                                                                                                                          Start time:19:00:34
                                                                                                                                                                                                                          Start date:22/07/2021
                                                                                                                                                                                                                          Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          Wow64 process (32bit):false
                                                                                                                                                                                                                          Commandline:'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4612 /prefetch:8
                                                                                                                                                                                                                          Imagebase:0x7ff677c70000
                                                                                                                                                                                                                          File size:2150896 bytes
                                                                                                                                                                                                                          MD5 hash:C139654B5C1438A95B321BB01AD63EF6
                                                                                                                                                                                                                          Has elevated privileges:false
                                                                                                                                                                                                                          Has administrator privileges:false
                                                                                                                                                                                                                          Programmed in:C, C++ or other language
                                                                                                                                                                                                                          Reputation:low

                                                                                                                                                                                                                          Analysis Process: chrome.exe PID: 3708 Parent PID: 3500

                                                                                                                                                                                                                          General

                                                                                                                                                                                                                          Start time:19:01:23
                                                                                                                                                                                                                          Start date:22/07/2021
                                                                                                                                                                                                                          Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                                                                                                                          Wow64 process (32bit):false
                                                                                                                                                                                                                          Commandline:'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1572,7917042391378505505,9881702941299426833,131072 --lang=en-US --service-sandbox-type=video_capture --enable-audio-service-sandbox --mojo-platform-channel-handle=3848 /prefetch:8
                                                                                                                                                                                                                          Imagebase:0x7ff677c70000
                                                                                                                                                                                                                          File size:2150896 bytes
                                                                                                                                                                                                                          MD5 hash:C139654B5C1438A95B321BB01AD63EF6
                                                                                                                                                                                                                          Has elevated privileges:true
                                                                                                                                                                                                                          Has administrator privileges:true
                                                                                                                                                                                                                          Programmed in:C, C++ or other language
                                                                                                                                                                                                                          Reputation:low

                                                                                                                                                                                                                          Disassembly

                                                                                                                                                                                                                          Reset < >