Joe Sandbox Cloud Basic Analysis Report
Edit tour

Windows Analysis Report
http://thehealthiestfat.com

Overview

General Information

Sample URL:http://thehealthiestfat.com
Analysis ID:1480435
Infos:

Detection

Score:1
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Program does not show much activity (idle)
Stores files to the Windows start menu directory

Classification

RansomwareSpreadingPhishingBankerTrojan / BotAdwareSpywareExploiterEvaderMinercleansuspiciousmalicious

Process Tree

  • System is w10x64
  • chrome.exe (PID: 6508 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 1856 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=2056,i,14863577855135751033,9318323746197729823,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 5356 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://thehealthiestfat.com" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Snort Signatures

No Snort rule has matched

Joe Sandbox Signatures

  • Cryptography
  • Networking
  • System Summary
  • Boot Survival
  • Malware Analysis System Evasion
  • Anti Debugging

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: chromecache_144.2.drBinary or memory string: var process_env = {"PAYPAL_NVP_ENABLED":true,"SHIP_FROM_COUNTRY":"US","APPLEPAY_AUTOCOMPLETE_CHECKOUT":"true","STRIPE_APPLEPAY_IS_ENABLED":"false","API_URL":"https://prod-ps-api-altmar.herokuapp.com/api/v1/","BRAND":"Gundry MD","SITE_NAME":"FunnelSite","NODE_ENV":"production","PAYPAL_IS_ENABLED":true,"GOOGLEPAY_IS_ENABLED":false,"APPLEPAY_IS_ENABLED":false,"CARDPAY_IS_ENABLED":true,"GTM":"GTM-5PNTFNV","GDPR":false,"IS_ENABLED_CMS":false,"STRIPE_KEY":null,"GOOGLE_APPLE_PAYMENT_AGENT":null,"CART_URL":"http://cart.gundrymd.com","FUNNEL_URL":"https://prod-ps-f-gundry-md.herokuapp.com/","AFFILIATE_URL":null,"KEEN_PROJECT_ID":null,"KEEN_WRITE_KEY":null,"KEEN_READ_KEY":null,"IS_ENABLED_SALESTAX":true,"PUBLIC_KEY":"-----BEGIN RSA PUBLIC KEY-----\nMIIBCgKCAQEAxKVSwo+1LKVUnmLzxz4ORIhSnQkprb7Nj/O/DPAkglutEkrLMBJI55wZDJqb\nsqmk0/0eCt1tMMbMNr6LNvYCTxd3j9N4rGBazSicly/y5GA2tviGFx9IILkb2RClTBpFcUc1\nBPXAMZod/eea3wQszkREL9Jt5jpDK/7toZRQD0hxuXxo7ub2tmpAmJ4m2+wOGETjf8zgh1al\nhlr8G8W5VjdLYyWFL1MNV2kldB3B0IpV9E427+L3hYWpo/zYPDSN7AiF3DFodAsLlvG82WA2\ndBVaD8zEXs+7kE/RKXh5GsGX9dVTMiI1xF4u+ix0QEaqF9SkRzZtPbomBmcnE6bHYwIDAQAB\n-----END RSA PUBLIC KEY-----\n","BRAINTREE_ENABLED":"true","BRAINTREE_PAYPAL_ENABLED":"true","BRAINTREE_PAYPAL_DROPIN_ENABLED":"false","BRAINTREE_AUTOCOMPLETE_CHECKOUT":"false","BRAINTREE_TAX_ESTIMATE":"1.1","dynamicPages":["plDyn_","videoDyn_","surveyDyn_","offerSelectorDyn_","upDownDyn_"]}memstr_31ff90ed-d
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: Math.round(p);v["gtm.videoCurrentTime"]=Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Vj:function(){e=Cb()},od:function(){d()}}};var lc=ja(["data-gtm-yt-inspected-"]),gC=["www.youtube.com","www.youtube-nocookie.com"],hC,iC=!1; equals www.youtube.com (Youtube)
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=Rz(a,c,e);P(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return P(122),!0;if(d&&f){for(var m=Nb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},Uz=function(){var a=[],b=function(c){return sb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: e||f||g.length||k.length))return;var n={Rg:d,Pg:e,Qg:f,Gh:g,Hh:k,xe:m,Bb:b},p=H.YT,q=function(){oC(n)};if(p)return p.ready&&p.ready(q),b;var r=H.onYouTubeIframeAPIReady;H.onYouTubeIframeAPIReady=function(){r&&r();q()};J(function(){for(var t=I.getElementsByTagName("script"),u=t.length,v=0;v<u;v++){var w=t[v].getAttribute("src");if(rC(w,"iframe_api")||rC(w,"player_api"))return b}for(var x=I.getElementsByTagName("iframe"),y=x.length,B=0;B<y;B++)if(!iC&&pC(x[B],n.xe))return Dc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: return b}eC.J="internal.enableAutoEventOnTimer";var lc=ja(["data-gtm-yt-inspected-"]),gC=["www.youtube.com","www.youtube-nocookie.com"],hC,iC=!1; equals www.youtube.com (Youtube)
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: var tB=function(a,b,c,d,e){var f=oz("fsl",c?"nv.mwt":"mwt",0),g;g=c?oz("fsl","nv.ids",[]):oz("fsl","ids",[]);if(!g.length)return!0;var k=tz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);P(121);if(m==="https://www.facebook.com/tr/")return P(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!ey(k,fy(b, equals www.facebook.com (Facebook)
Source: chromecache_144.2.dr, chromecache_146.2.drString found in binary or memory: http://cart.gundrymd.com
Source: chromecache_124.2.drString found in binary or memory: http://www.marksimonson.comProxima
Source: chromecache_137.2.dr, chromecache_143.2.drString found in binary or memory: https://a.quora.com/qevents.js
Source: chromecache_110.2.drString found in binary or memory: https://ad.doubleclick.net
Source: chromecache_126.2.dr, chromecache_121.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_110.2.drString found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_107.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_126.2.dr, chromecache_163.2.drString found in binary or memory: https://cdn.taboola.com/libtrc/unip/
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRxC7mw9c.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRxi7mw9c.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRxy7mw9c.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRzS7mw9c.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WRhyzbi.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WZhyzbi.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2)
Source: chromecache_123.2.drString found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_141.2.drString found in binary or memory: https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_150.2.drString found in binary or memory: https://funnel.com/fst/destination_base
Source: chromecache_150.2.drString found in binary or memory: https://funnel.com/home/
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_143.2.dr, chromecache_163.2.drString found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: chromecache_110.2.drString found in binary or memory: https://google.com
Source: chromecache_110.2.drString found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_150.2.drString found in binary or memory: https://js.braintreegateway.com/web/3.97.2/js/client.min.js
Source: chromecache_150.2.drString found in binary or memory: https://js.braintreegateway.com/web/3.97.2/js/data-collector.min.js
Source: chromecache_150.2.drString found in binary or memory: https://js.braintreegateway.com/web/3.97.2/js/hosted-fields.min.js
Source: chromecache_150.2.drString found in binary or memory: https://js.braintreegateway.com/web/3.97.2/js/paypal-checkout.min.js
Source: chromecache_150.2.drString found in binary or memory: https://js.stripe.com/v2/
Source: chromecache_150.2.drString found in binary or memory: https://jsfiddle.net/y7j2q0gh/2/
Source: chromecache_110.2.drString found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_107.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_150.2.drString found in binary or memory: https://payments.developers.google.com/js/apis/pay.js
Source: chromecache_144.2.dr, chromecache_146.2.drString found in binary or memory: https://prod-ps-api-altmar.herokuapp.com/api/v1/
Source: chromecache_144.2.dr, chromecache_146.2.drString found in binary or memory: https://prod-ps-f-gundry-md.herokuapp.com/
Source: chromecache_143.2.drString found in binary or memory: https://q.quora.com/_/ad/
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_143.2.dr, chromecache_163.2.drString found in binary or memory: https://s.pinimg.com/ct/core.js
Source: chromecache_150.2.drString found in binary or memory: https://static-na.payments-amazon.com/OffAmazonPayments/us/js/Widgets.js
Source: chromecache_150.2.drString found in binary or memory: https://static-na.payments-amazon.com/OffAmazonPayments/us/sandbox/js/Widgets.js
Source: chromecache_143.2.drString found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_107.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: https://td.doubleclick.net
Source: chromecache_110.2.drString found in binary or memory: https://www.google.com
Source: chromecache_110.2.drString found in binary or memory: https://www.googleadservices.com
Source: chromecache_110.2.drString found in binary or memory: https://www.googletagmanager.com
Source: chromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_126.2.dr, chromecache_121.2.dr, chromecache_163.2.dr, chromecache_110.2.drString found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_150.2.drString found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_137.2.dr, chromecache_143.2.drString found in binary or memory: https://www.redditstatic.com/ads/pixel.js
Source: chromecache_114.2.dr, chromecache_107.2.drString found in binary or memory: https://www.youtube.com/iframe_api
Source: classification engineClassification label: clean1.win@17/101@0/17
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome AppsJump to behavior
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=2056,i,14863577855135751033,9318323746197729823,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://thehealthiestfat.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=2056,i,14863577855135751033,9318323746197729823,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: Google Drive.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome AppsJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnkJump to behavior
Source: all processesThread injection, dropped files, key value created, disk infection and DNS query: no activity detected
Source: all processesThread injection, dropped files, key value created, disk infection and DNS query: no activity detected

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management Instrumentation1
Registry Run Keys / Startup Folder		1
Process Injection		1
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote Services1
Archive Collected Data		Data ObfuscationExfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization Scripts1
Registry Run Keys / Startup Folder		1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable MediaJunk DataExfiltration Over BluetoothNetwork Denial of Service

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 process2 2 Behavior Graph ID: 1480435 URL: http://thehealthiestfat.com Startdate: 24/07/2024 Architecture: WINDOWS Score: 1 5 chrome.exe 9 2->5         started        8 chrome.exe 2->8         started        dnsIp3 13 192.168.2.5 unknown unknown 5->13 15 239.255.255.250 unknown Reserved 5->15 10 chrome.exe 5->10         started        process4 dnsIp5 17 142.250.181.232 GOOGLEUS United States 10->17 19 142.250.181.238 GOOGLEUS United States 10->19 21 13 other IPs or domains 10->21

Screenshots

Download Video

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
http://thehealthiestfat.com0%Avira URL Cloudsafe

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

SourceDetectionScannerLabelLink
https://stats.g.doubleclick.net/g/collect0%URL Reputationsafe
https://www.redditstatic.com/ads/pixel.js0%URL Reputationsafe
https://cct.google/taggy/agent.js0%URL Reputationsafe
https://www.youtube.com/iframe_api0%URL Reputationsafe
https://s.pinimg.com/ct/core.js0%URL Reputationsafe
https://td.doubleclick.net0%URL Reputationsafe
https://www.merchant-center-analytics.goog0%URL Reputationsafe
https://a.quora.com/qevents.js0%URL Reputationsafe
http://cart.gundrymd.com0%Avira URL Cloudsafe
https://funnel.com/home/0%Avira URL Cloudsafe
https://payments.developers.google.com/js/apis/pay.js0%Avira URL Cloudsafe
https://js.stripe.com/v2/0%Avira URL Cloudsafe
https://googleads.g.doubleclick.net0%Avira URL Cloudsafe
https://static-na.payments-amazon.com/OffAmazonPayments/us/sandbox/js/Widgets.js0%Avira URL Cloudsafe
https://js.braintreegateway.com/web/3.97.2/js/data-collector.min.js0%Avira URL Cloudsafe
https://cdn.taboola.com/libtrc/unip/0%Avira URL Cloudsafe
https://js.braintreegateway.com/web/3.97.2/js/client.min.js0%Avira URL Cloudsafe
https://jsfiddle.net/y7j2q0gh/2/0%Avira URL Cloudsafe
https://static.ads-twitter.com/uwt.js0%Avira URL Cloudsafe
https://q.quora.com/_/ad/0%Avira URL Cloudsafe
https://www.google.com0%Avira URL Cloudsafe
https://ad.doubleclick.net0%Avira URL Cloudsafe
https://static-na.payments-amazon.com/OffAmazonPayments/us/js/Widgets.js0%Avira URL Cloudsafe
https://prod-ps-f-gundry-md.herokuapp.com/0%Avira URL Cloudsafe
https://prod-ps-api-altmar.herokuapp.com/api/v1/0%Avira URL Cloudsafe
https://js.braintreegateway.com/web/3.97.2/js/paypal-checkout.min.js0%Avira URL Cloudsafe
https://github.com/krux/postscribe/blob/master/LICENSE.0%Avira URL Cloudsafe
http://www.marksimonson.comProxima0%Avira URL Cloudsafe
https://funnel.com/fst/destination_base0%Avira URL Cloudsafe
https://google.com0%Avira URL Cloudsafe
https://js.braintreegateway.com/web/3.97.2/js/hosted-fields.min.js0%Avira URL Cloudsafe
https://adservice.google.com/pagead/regclk?0%Avira URL Cloudsafe

Domains and IPs

Contacted Domains

No contacted domains info

Contacted URLs

NameMaliciousAntivirus DetectionReputation
https://www2.thehealthiestfat.com/home?sessionid=96590875872024false
    		unknown
    https://www2.thehealthiestfat.com/os210803a_ap?sessionid=96590875872024false
      		unknown
      NameSourceMaliciousAntivirus DetectionReputation
      https://stats.g.doubleclick.net/g/collectchromecache_114.2.dr, chromecache_107.2.drfalse
      • URL Reputation: safe
      		unknown
      https://payments.developers.google.com/js/apis/pay.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://www.redditstatic.com/ads/pixel.jschromecache_137.2.dr, chromecache_143.2.drfalse
      • URL Reputation: safe
      		unknown
      https://js.stripe.com/v2/chromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://googleads.g.doubleclick.netchromecache_110.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://cdn.taboola.com/libtrc/unip/chromecache_126.2.dr, chromecache_163.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://funnel.com/home/chromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://js.braintreegateway.com/web/3.97.2/js/client.min.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      http://cart.gundrymd.comchromecache_144.2.dr, chromecache_146.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://static-na.payments-amazon.com/OffAmazonPayments/us/sandbox/js/Widgets.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://js.braintreegateway.com/web/3.97.2/js/data-collector.min.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://cct.google/taggy/agent.jschromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_107.2.dr, chromecache_163.2.dr, chromecache_110.2.drfalse
      • URL Reputation: safe
      		unknown
      https://jsfiddle.net/y7j2q0gh/2/chromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://static.ads-twitter.com/uwt.jschromecache_143.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://q.quora.com/_/ad/chromecache_143.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://static-na.payments-amazon.com/OffAmazonPayments/us/js/Widgets.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://www.google.comchromecache_110.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://www.youtube.com/iframe_apichromecache_114.2.dr, chromecache_107.2.drfalse
      • URL Reputation: safe
      		unknown
      https://ad.doubleclick.netchromecache_110.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://s.pinimg.com/ct/core.jschromecache_126.2.dr, chromecache_137.2.dr, chromecache_143.2.dr, chromecache_163.2.drfalse
      • URL Reputation: safe
      		unknown
      https://prod-ps-f-gundry-md.herokuapp.com/chromecache_144.2.dr, chromecache_146.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://js.braintreegateway.com/web/3.97.2/js/paypal-checkout.min.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://td.doubleclick.netchromecache_126.2.dr, chromecache_137.2.dr, chromecache_121.2.dr, chromecache_143.2.dr, chromecache_114.2.dr, chromecache_107.2.dr, chromecache_163.2.dr, chromecache_110.2.drfalse
      • URL Reputation: safe
      		unknown
      https://www.merchant-center-analytics.googchromecache_114.2.dr, chromecache_107.2.drfalse
      • URL Reputation: safe
      		unknown
      https://github.com/krux/postscribe/blob/master/LICENSE.chromecache_126.2.dr, chromecache_137.2.dr, chromecache_143.2.dr, chromecache_163.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://prod-ps-api-altmar.herokuapp.com/api/v1/chromecache_144.2.dr, chromecache_146.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      http://www.marksimonson.comProximachromecache_124.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://a.quora.com/qevents.jschromecache_137.2.dr, chromecache_143.2.drfalse
      • URL Reputation: safe
      		unknown
      https://google.comchromecache_110.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://funnel.com/fst/destination_basechromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://adservice.google.com/pagead/regclk?chromecache_110.2.drfalse
      • Avira URL Cloud: safe
      		unknown
      https://js.braintreegateway.com/web/3.97.2/js/hosted-fields.min.jschromecache_150.2.drfalse
      • Avira URL Cloud: safe
      		unknown

      World Map of Contacted IPs

      • No. of IPs < 25%
      • 25% < No. of IPs < 50%
      • 50% < No. of IPs < 75%
      • 75% < No. of IPs

      Public IPs

      IPDomainCountryFlagASNASN NameMalicious
      142.250.186.78
      		unknownUnited States
      		15169GOOGLEUSfalse
      104.18.43.34
      		unknownUnited States
      		13335CLOUDFLARENETUSfalse
      1.1.1.1
      		unknownAustralia
      		13335CLOUDFLARENETUSfalse
      142.250.186.170
      		unknownUnited States
      		15169GOOGLEUSfalse
      142.250.186.163
      		unknownUnited States
      		15169GOOGLEUSfalse
      104.18.32.170
      		unknownUnited States
      		13335CLOUDFLARENETUSfalse
      142.250.181.232
      		unknownUnited States
      		15169GOOGLEUSfalse
      142.250.181.238
      		unknownUnited States
      		15169GOOGLEUSfalse
      192.229.221.25
      		unknownUnited States
      		15133EDGECASTUSfalse
      239.255.255.250
      		unknownReserved
      		unknownunknownfalse
      172.217.23.99
      		unknownUnited States
      		15169GOOGLEUSfalse
      172.217.23.100
      		unknownUnited States
      		15169GOOGLEUSfalse
      64.233.184.84
      		unknownUnited States
      		15169GOOGLEUSfalse
      104.18.43.81
      		unknownUnited States
      		13335CLOUDFLARENETUSfalse
      142.250.186.136
      		unknownUnited States
      		15169GOOGLEUSfalse
      172.217.16.195
      		unknownUnited States
      		15169GOOGLEUSfalse

      Private

      IP
      192.168.2.5

      General Information

      Joe Sandbox version:40.0.0 Tourmaline
      Analysis ID:1480435
      Start date and time:2024-07-24 19:20:05 +02:00
      Joe Sandbox product:CloudBasic
      Overall analysis duration:0h 3m 16s
      Hypervisor based Inspection enabled:false
      Report type:full
      Cookbook file name:browseurl.jbs
      Sample URL:http://thehealthiestfat.com
      Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
      Number of analysed new started processes analysed:8
      Number of new started drivers analysed:0
      Number of existing processes analysed:0
      Number of existing drivers analysed:0
      Number of injected processes analysed:0
      Technologies:
      • HCA enabled
      • EGA enabled
      • AMSI enabled
      Analysis Mode:default
      Analysis stop reason:Timeout
      Detection:CLEAN
      Classification:clean1.win@17/101@0/17
      EGA Information:Failed
      HCA Information:
      • Successful, ratio: 100%
      • Number of executed functions: 0
      • Number of non-executed functions: 0
      • Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe, svchost.exe
      • Not all processes where analyzed, report is missing behavior information
      • Report size getting too big, too many NtSetInformationFile calls found.
      • Skipping network analysis since amount of network traffic is too extensive
      • VT rate limit hit for: http://thehealthiestfat.com

      Simulations

      Behavior and APIs

      No simulations

      Joe Sandbox View / Context

      IPs

      No context

      Domains

      No context

      ASNs

      No context

      JA3 Fingerprints

      No context

      Dropped Files

      No context

      Created / dropped Files

      C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 24 16:20:59 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
      Category:dropped
      Size (bytes):2677
      Entropy (8bit):3.9859633384083604
      Encrypted:false
      SSDEEP:48:8XajdtT1pTHJidAKZdA19ehwiZUklqehry+3:8q3Dfky
      MD5:3B88F21C45B52926A9B97B59FC2DEF78
      SHA1:44740C1024031F2254F9B794AABAD3CA1072B5E7
      SHA-256:93CB6D34705F12DDF364D14CD3F7350C3D1C8AF887043B07B7F573D79BEEDBD1
      SHA-512:B17240CECCC7F3E28FDEAA964FEFD850817F297C90A8D710D629189A801DF425C2416214047947A3272D8B07AD993164E7DC8C40812DA6BAABC5AD9BDFD7D79D
      Malicious:false
      Reputation:low
      Preview:L..................F.@.. ...$+.,.....x'.....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I.X......B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............}.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

      C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 24 16:20:59 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
      Category:dropped
      Size (bytes):2679
      Entropy (8bit):4.002160931326677
      Encrypted:false
      SSDEEP:48:8/dtT1pTHJidAKZdA1weh/iZUkAQkqehUy+2:8rDl9Qpy
      MD5:13C278DA5FF003A2D540322454518CF9
      SHA1:1D0CA15ADEAE1A50CCC22B12ECA51184A7F2A74D
      SHA-256:F72CAD76A8BE7D56EACFA26B7E093D227B8429B467D340D0B4C2505076AFAE1B
      SHA-512:E755D628939C2867B4D8719A0627D7803167CEC4CA7C9B4E3FC7D67B0B31A0CC08850E2CFF6E3A87E367BEDFC33D882995CD447BAF478AC3EA38A16AF6FC1C53
      Malicious:false
      Reputation:low
      Preview:L..................F.@.. ...$+.,.....n......N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I.X......B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............}.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

      C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
      Category:dropped
      Size (bytes):2693
      Entropy (8bit):4.012841190691449
      Encrypted:false
      SSDEEP:48:8xKdtT1psHJidAKZdA14tseh7sFiZUkmgqeh7siy+BX:8xMDgnoy
      MD5:ABC15897757062AEE7A509D0298FFB56
      SHA1:8A73B613F01DE9A763796C3F645FF81CA0B98FA7
      SHA-256:93A05E69FFC6CBBB475A91ABE54CB505BF889F23C0C0AA51F5F4D7B0FE56D24B
      SHA-512:AD53C35D09F774D03F4C118178645298C2322C5E54CBCE2C35418E5A83697822A732E4CF94619EC570453DC6E8FBAD51A58B36F9AECEFF457C13BD2F8239B682
      Malicious:false
      Reputation:low
      Preview:L..................F.@.. ...$+.,......e>....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I.X......B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VDW.n...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............}.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

      C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 24 16:20:59 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
      Category:dropped
      Size (bytes):2681
      Entropy (8bit):4.001083204532762
      Encrypted:false
      SSDEEP:48:8adtT1pTHJidAKZdA1vehDiZUkwqehgy+R:88Dmay
      MD5:86EDF0BA06A99C893EF241E57C1D6A35
      SHA1:23E88220CDC86F66783998F3775F522D93AC720D
      SHA-256:12A95B835A916B80238CCDC8971784771E527556B7F7E74F4A9BED00CC98D174
      SHA-512:A22A1987E6B000825B5FADB6953C5DDBFBC3843567F3977182FF73FB0A4FEE73151433BEA3BDB189FCA05EF3B3E6C4AD826D26D478B515292C82556C46C74040
      Malicious:false
      Reputation:low
      Preview:L..................F.@.. ...$+.,...."&......N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I.X......B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............}.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

      C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 24 16:20:59 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
      Category:dropped
      Size (bytes):2681
      Entropy (8bit):3.989835972739855
      Encrypted:false
      SSDEEP:48:84jdtT1pTHJidAKZdA1hehBiZUk1W1qehmy+C:843Dm9Gy
      MD5:26EE0A1B7024FE96E83CCD2AB5112C7B
      SHA1:2F89FFA1B60540AE7211E0E282BACF314FD58535
      SHA-256:F830725289FEBA7837E805FFCAB7106607FD74C83921E5B55F0C47350628D15C
      SHA-512:49C12C0E5B7A9BDB1F38EF9DFE594D6113CAC5B35571D7AACF7F44063F188C7F895F2F1FBD034E67179B538E6D280585CC07F7909E0D0D2C86D83AB817D8C240
      Malicious:false
      Reputation:low
      Preview:L..................F.@.. ...$+.,............N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I.X......B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............}.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

      C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Jul 24 16:20:59 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
      Category:dropped
      Size (bytes):2683
      Entropy (8bit):4.001329592723821
      Encrypted:false
      SSDEEP:48:8PdtT1pTHJidAKZdA1duT+ehOuTbbiZUk5OjqehOuTboy+yT+:8bD4T/TbxWOvTboy7T
      MD5:1B752EE3A57A17D27B64C76035A59E40
      SHA1:BD11F2D8A1240D0D9E89CF8FA3E0145F827BD6DD
      SHA-256:9A180062C90BB01D244BAF1F26272809082FEAE392747D20335148B086607D42
      SHA-512:36B64B349F7C2122926577632749E5F492189056030D367B2661688A3BE65EEE8E46D85F62796130B34132CC8773C526EB2F77EC31F0F790AA634976D719803D
      Malicious:false
      Reputation:low
      Preview:L..................F.@.. ...$+.,.....K......N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.I.X......B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.V.X......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.V.X......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.V.X............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.V.X.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i..............}.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

      Chrome Cache Entry: 107

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (3969)
      Category:downloaded
      Size (bytes):298325
      Entropy (8bit):5.560701527315038
      Encrypted:false
      SSDEEP:6144:7hBp2L/QlIzotJPd9S/Hu0bwJQNdnirhiiXi3Qk:7hmtsJ9VE7
      MD5:643F6B083195A248B8C53F4BB24BE2C9
      SHA1:90D22B25B0A8A16989CA20EFC6BFA5F2BBA64A81
      SHA-256:52241A73C25DFFDA3C7B83704954482A91E1E4314219C9BFA10CB1CF4DEE9CC6
      SHA-512:346E13E0575CD027B08077BBD959DF99F09CA1AD43E68E6F95CAB95E084244E308314F3786C830C5AE84B2564121E9193C8B508C46B382B149E347FDE193398C
      Malicious:false
      Reputation:low
      URL:https://www.googletagmanager.com/gtag/js?id=G-55Y6329ENS&l=dataLayer&cx=c
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"1",. . "macros":[{"function":"__e"},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0},{"vtp_signal":0,"function":"__c","vtp_value":0}],. "tags":[{"function":"__gct","vtp_trackingId":"G-55Y6329ENS","vtp_sessionDuration":0,"tag_id":1},{"function":"__set_product_settings","vtp_instanceDestinationId":"G-55Y6329ENS","vtp_foreignTldMacroResult":["macro",1],"vtp_isChinaVipRegionMacroResult":["macro",2],"tag_id":3},{"function":"__ogt_google_signals","vtp_googleSignals":"DISABLED","vtp_instanceDestinationId":"G-55Y6329ENS","vtp_serverMacroResult":["macro",3],"tag_id":5},{"function":"__ccd_em_outbound_click","priority":0,"vtp_includeParams":true,"vtp_instanceDestinationId":"G-55Y6329ENS","tag_id":6},{"function":"__ccd_em_form","vtp_includeParams":true,"vtp_instanceDestinationId":"G-55Y6329ENS","tag_id":7},{"function":"__ccd_em_video","vtp_includeParams":true,"vtp_instan

      Chrome Cache Entry: 108

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (65536), with no line terminators
      Category:dropped
      Size (bytes):1200372
      Entropy (8bit):5.294359103305345
      Encrypted:false
      SSDEEP:12288:bMeJkyFT1iXiben3362uTyv6F4YVl2RysSYaC8CjFN41Du/cX9+zPsM53F2OuXXD:jJ2FOzbWUOeHWEpZwtQmoZb/
      MD5:758B2911E5E626629787713D734E92B6
      SHA1:51C57EDFF1CEB11968E8CC1DB5D6F60DEA6D1AB3
      SHA-256:78981854D2C6BAC32749FEC32F9E2D7F6CDBC18FDE0D6C90DF4FFBE4DA105F7B
      SHA-512:9688BD59AF88C4444B03B60A119F33FEA36A1486F5DCD18659D7BCC03742CA978EEF66E15F0F6B222EFDB86842D4F3AACC3AAA6B3E56D0F24B711F562B324753
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[1],{"+HKJ":function(t,e,o){"use strict";o.d(e,"a",(function(){return A}));var a=o("uHdq"),n=o("1sEo"),s=o("AqYC"),i=o("0F6l"),r=o("pxIk"),p=o("QJQ6"),c=o("5aNy"),h=o("z8tj"),u=o("clCo"),d=o("nci+"),l=o("/m5n"),m=o("/0Ja"),g=o("ypZM"),y=o("Yefh"),b=o("rg4e"),_=o("swzM"),f=o("dZuI"),w=o("3hd2"),P=o("Encp"),v=o("9szu"),N=o("fXoL"),$=o("tyNb");let A=(()=>{class t extends a.a{constructor(t,e,o,a,n,s,i,r,p,c,h,u,d,l,m,g,y,b,_,f,w){super(t,e,o,a,n,s,i,r,p,c,h,u,d,l,m,g,y,b,_,f,w),this.navCtrl=t,this.tcrApi=e,this.tcrApiOrder=o,this.eventStreamer=a,this.paypalPayment=n,this.ngZone=s,this.ApplePayWeb=i,this.GooglePayWeb=r,this.shippingProvider=p,this.tcrApiRemoteServices=c,this.calculateHelper=h,this.urlsHelper=u,this.stateProvider=d,this.tcrApiOrderform=l,this.funnelProvider=m,this.spinner=g,this.route=y,this.generalProvider=b,this.scriptLoader=_,this.handler=f,this.amazonPay=w}setProductName(){this.productName="Polyphenol-Rich Olive Oil",th

      Chrome Cache Entry: 109

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1514), with no line terminators
      Category:downloaded
      Size (bytes):1514
      Entropy (8bit):5.202966572039875
      Encrypted:false
      SSDEEP:24:lD58eI7tCa9uKnkiaRqikVJERF58/jtN2WTMxFOS1DVWPQYDcXy3pMO+VCZ:lD58TEI85j5qftTiQEDApoXy3Ey
      MD5:8034677102E1C646656B9A2DC010F486
      SHA1:BA48DDEC91ACD339AAF419FE9EC9FE13C58209A9
      SHA-256:487F988D7F8E2F7BA77D3443D2EF1577E3B7D5210E2B445BF97414B8C216A935
      SHA-512:A3264177B82266135DC970F89F1C9F06B38BB60F8B0B37489A8ED9380814D53067AAD3640EEC1F002642ACFEAC2C51C728823A5A6EDF778FA137E98CF5510BCF
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/762.968ae36d7d43baad1852.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[762],{nGaW:function(e,t,n){"use strict";n.r(t),n.d(t,"KEYBOARD_DID_CLOSE",(function(){return o})),n.d(t,"KEYBOARD_DID_OPEN",(function(){return i})),n.d(t,"copyVisualViewport",(function(){return l})),n.d(t,"keyboardDidClose",(function(){return b})),n.d(t,"keyboardDidOpen",(function(){return p})),n.d(t,"keyboardDidResize",(function(){return w})),n.d(t,"resetKeyboardAssist",(function(){return a})),n.d(t,"setKeyboardClose",(function(){return f})),n.d(t,"setKeyboardOpen",(function(){return c})),n.d(t,"startKeyboardAssist",(function(){return u})),n.d(t,"trackViewportChanges",(function(){return D}));const i="ionKeyboardDidShow",o="ionKeyboardDidHide";let r={},d={},s=!1;const a=()=>{r={},d={},s=!1},u=e=>{h(e),e.visualViewport&&(d=l(e.visualViewport),e.visualViewport.onresize=()=>{D(e),p()||w(e)?c(e):b(e)&&f(e)})},h=e=>{e.addEventListener("keyboardDidShow",t=>c(e,t)),e.addEventListener("keyboardDidHide",()=>f(e))},c=(e,t)=>{g(e,t),s=!0},f=e=>

      Chrome Cache Entry: 110

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (28606)
      Category:dropped
      Size (bytes):286253
      Entropy (8bit):5.556929260677939
      Encrypted:false
      SSDEEP:3072:32ICuKurL5pQlXfpJmX0L9hwSxl9kLEibn8JuoIxxa4BbwJQNzjm6bi:mp2L/QlxJXPwScdk4BbwJQNPm62
      MD5:4B26E615807703486C68F338758E125C
      SHA1:D8DC2C3D8AE676A7645B6EBE9FEB49B436856D25
      SHA-256:75D152DDC6C692105EF87F3FFA838CE40A6223EEC4A85D99C77A01B12B5DD133
      SHA-512:53AB32AE2069F07DAFBED6AA6A99AD105287A89DC11EADA490E8D2271C8E8035939EF4DF8A3DFDF107550AF167EAD2DEE7EDD853D837F5DD33638C05E5175229
      Malicious:false
      Reputation:low
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"6",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__u","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_name":"gtm.elementClasses","vtp_dataLayerVersion":1},{"function":"__v","vtp_name":"gtm.triggers","vtp_dataLayerVersion":2,"vtp_setDefaultValue":true,"vtp_defaultValue":""},{"function":"__r"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"ecommerce.purchase.actionField.revenue"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"affiliateInfo.utmCampaign"},{"function":"__k","vtp_decodeCookie":false,"vtp_name":"GAID"},{"function":"__u","vtp_component":"HOST","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__u","vtp

      Chrome Cache Entry: 111

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with no line terminators
      Category:downloaded
      Size (bytes):60
      Entropy (8bit):4.639572261986722
      Encrypted:false
      SSDEEP:3:KGAp1gXMR2LMfSEthnn:5dX8thnn
      MD5:183839382F14CC9051C56321EFC56DCA
      SHA1:DF82B9C6190DC69435E00CCB26EF45954DA67C90
      SHA-256:785CA3447631DDD45FD0031A97D2EE336D64E0C2228FEFDCB14F2A878FF09874
      SHA-512:21F6D1F970D34A5BDAC1A807D03D2B3CB7C1CCE2279416D71866D07828A58D3F9E95F72451D235DF07C595596E8EA6EF1321C715A3A71A692EEBC96C9A9E7740
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/request-ip
      Preview:getIP({"ip":"8.46.123.33", "country": "US", "eu": "false"});

      Chrome Cache Entry: 112

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (22829), with no line terminators
      Category:downloaded
      Size (bytes):22829
      Entropy (8bit):4.644333144180019
      Encrypted:false
      SSDEEP:384:fCSEDaBeHyq5Eis3iwIB18RioGWM0bay9visTTHmYTfqDU1F:aSE2B8hs3MvMlM0W3AHmYeDU1F
      MD5:168B15B26191DF9958A2DD1E8D909B0E
      SHA1:B477B03497B765C066A03DC22DCD3A6094984D7C
      SHA-256:F7BAD2C2238C0379254408C9D56A6570B35B4C70169B9159E03A732FF9247F7A
      SHA-512:501F8E4B6FA6BB43900F0F605B684AD60B9F35CD39845BF86039AD406DDFDEB72C9CB53BB4082D513802C7764FC2A9B875D566332626193D5A7CE5CAE9CE6100
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/runtime.61860748c0bc84a08545.js
      Preview:!function(e){function a(a){for(var d,r,t=a[0],n=a[1],o=a[2],i=0,l=[];i<t.length;i++)r=t[i],Object.prototype.hasOwnProperty.call(b,r)&&b[r]&&l.push(b[r][0]),b[r]=0;for(d in n)Object.prototype.hasOwnProperty.call(n,d)&&(e[d]=n[d]);for(u&&u(a);l.length;)l.shift()();return f.push.apply(f,o||[]),c()}function c(){for(var e,a=0;a<f.length;a++){for(var c=f[a],d=!0,t=1;t<c.length;t++)0!==b[c[t]]&&(d=!1);d&&(f.splice(a--,1),e=r(r.s=c[0]))}return e}var d={},b={14:0},f=[];function r(a){if(d[a])return d[a].exports;var c=d[a]={i:a,l:!1,exports:{}};return e[a].call(c.exports,c,c.exports,r),c.l=!0,c.exports}r.e=function(e){var a=[],c=b[e];if(0!==c)if(c)a.push(c[2]);else{var d=new Promise((function(a,d){c=b[e]=[a,d]}));a.push(c[2]=d);var f,t=document.createElement("script");t.charset="utf-8",t.timeout=120,r.nc&&t.setAttribute("nonce",r.nc),t.src=function(e){return r.p+""+({1:"common",43:"polyfills-core-js",44:"polyfills-css-shim",45:"polyfills-dom"}[e]||e)+"."+{0:"5a154218aacd9ec331b7",1:"f85ddbc7ebc5a

      Chrome Cache Entry: 113

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1579), with no line terminators
      Category:dropped
      Size (bytes):1579
      Entropy (8bit):5.057233143584277
      Encrypted:false
      SSDEEP:48:lD58jsR2TaqhwyQShtX67+atUKBoFUKBoI:1TqzYozoI
      MD5:34EAED2A674F9378515C9C679F741AEF
      SHA1:B49DD6C602F55EDC35FD01A2ECEF5AB43D71DE89
      SHA-256:928EE272FE0AB807A842E532E6921C942A59CFA6B8CE3E2DA411AC5022AD66FA
      SHA-512:24A6BC87E1995C6587607A6ABE0CB7441AB4FB0203E9924FA3906D72A274B9A3A1A5F247CAF38842899396075D48592A2532270FF6EDDFDFD753C782FC8DACDB
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[724],{Q2Bp:function(o,t,a){"use strict";a.r(t),a.d(t,"ion_backdrop",(function(){return s}));var r=a("wEJo"),n=a("E/Mt"),i=a("y08P");const s=class{constructor(o){Object(r.o)(this,o),this.ionBackdropTap=Object(r.g)(this,"ionBackdropTap",7),this.blocker=i.a.createBlocker({disableScroll:!0}),this.visible=!0,this.tappable=!0,this.stopPropagation=!0}connectedCallback(){this.stopPropagation&&this.blocker.block()}disconnectedCallback(){this.blocker.unblock()}onMouseDown(o){this.emitTap(o)}emitTap(o){this.stopPropagation&&(o.preventDefault(),o.stopPropagation()),this.tappable&&this.ionBackdropTap.emit()}render(){const o=Object(n.b)(this);return Object(r.j)(r.c,{tabindex:"-1","aria-hidden":"true",class:{[o]:!0,"backdrop-hide":!this.visible,"backdrop-no-tappable":!this.tappable}})}};s.style={ios:":host{left:0;right:0;top:0;bottom:0;display:block;position:absolute;-webkit-transform:translateZ(0);transform:translateZ(0);contain:strict;cursor:poin

      Chrome Cache Entry: 114

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (3969)
      Category:dropped
      Size (bytes):298325
      Entropy (8bit):5.560672821484256
      Encrypted:false
      SSDEEP:6144:7hBp2L/QlIzotJEd9S/Hu0bwJQNdnirhiiXi3Qk:7hmtsJoVE7
      MD5:B9F121958E6DFBD87C974D7B4D32B428
      SHA1:FC2F2B7ACD3E73A7D23149455E2783BCF2765737
      SHA-256:9942966FA60106F908440AB820D0787F9C03A7F5C07910E284C80740DE1FA1C9
      SHA-512:AF2A9C1B49CC38973FCC31DBAB9F7BEB2004A234B0766D7CB027C98E814EF086AD6C009878B45C7F56F6524E05194619DDE0515DE80FC6ED04E0DAE3153F7430
      Malicious:false
      Reputation:low
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"1",. . "macros":[{"function":"__e"},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0},{"vtp_signal":0,"function":"__c","vtp_value":0}],. "tags":[{"function":"__gct","vtp_trackingId":"G-55Y6329ENS","vtp_sessionDuration":0,"tag_id":1},{"function":"__set_product_settings","vtp_instanceDestinationId":"G-55Y6329ENS","vtp_foreignTldMacroResult":["macro",1],"vtp_isChinaVipRegionMacroResult":["macro",2],"tag_id":3},{"function":"__ogt_google_signals","vtp_googleSignals":"DISABLED","vtp_instanceDestinationId":"G-55Y6329ENS","vtp_serverMacroResult":["macro",3],"tag_id":5},{"function":"__ccd_em_outbound_click","priority":0,"vtp_includeParams":true,"vtp_instanceDestinationId":"G-55Y6329ENS","tag_id":6},{"function":"__ccd_em_form","vtp_includeParams":true,"vtp_instanceDestinationId":"G-55Y6329ENS","tag_id":7},{"function":"__ccd_em_video","vtp_includeParams":true,"vtp_instan

      Chrome Cache Entry: 115

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (770), with no line terminators
      Category:dropped
      Size (bytes):770
      Entropy (8bit):5.0536850161639935
      Encrypted:false
      SSDEEP:24:lD58epN92XCRFHIYEq1ohXgAhpQWqZx00vd29/ejJOem54:lD58E9NjzEq2zLRqZx04d2/eUF54
      MD5:125FED5E8D19A4CA22A8E04795EC2836
      SHA1:EFA590C9A1301DD859BB504BB3F554A688CFAE3F
      SHA-256:54367E4FBFD599CB61BB504DAA62D5BF14613E84649D2780654D57D09B3DFD1C
      SHA-512:96C8672885C3FEEC3765A1C8853B18D34483870393193E6896F20745B6493A137A870F22831661FAAC537573794C68AF3B2B56617F4971E6736799C572707706
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[717],{Tsnu:function(e,s,t){"use strict";t.r(s),t.d(s,"startFocusVisible",(function(){return n}));const o=["Tab","ArrowDown","Space","Escape"," ","Shift","Enter","ArrowLeft","ArrowRight","ArrowUp"],n=()=>{let e=[],s=!0;const t=document,n=s=>{e.forEach(e=>e.classList.remove("ion-focused")),s.forEach(e=>e.classList.add("ion-focused")),e=s},c=()=>{s=!1,n([])};t.addEventListener("keydown",e=>{s=o.includes(e.key),s||n([])}),t.addEventListener("focusin",e=>{if(s&&e.composedPath){const s=e.composedPath().filter(e=>!!e.classList&&e.classList.contains("ion-focusable"));n(s)}}),t.addEventListener("focusout",()=>{t.activeElement===t.body&&n([])}),t.addEventListener("touchstart",c),t.addEventListener("mousedown",c)}}}]);

      Chrome Cache Entry: 116

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (5306), with no line terminators
      Category:dropped
      Size (bytes):5306
      Entropy (8bit):5.100572054507943
      Encrypted:false
      SSDEEP:48:lD585yaTs4zTJvUenjPq7FgjXzFgjVHiQZvQyReh0kzunShuwLeGq5z3KavZKZ5S:GQ4zl7kFmzFSFVhuUmogbk
      MD5:424C979B0A92A7A5AAA7A0E01D5E3420
      SHA1:F9408D985D3D107A08697B4913F2D8A00AABDF37
      SHA-256:6C219C7D738E28534DE51DFDF531971760CEC0305E9FB98C990D752D000DBC67
      SHA-512:A6F2782FBCC71DC4B671E7D929D872C89DB1127906A04C8E7F74981330C289F22C841B07417D04C41B48B44DEFA7007A2F5C28AD176DB7DCACEBBCDEEA660E33
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[753],{nI0H:function(e,t,r){"use strict";r.r(t),r.d(t,"ion_spinner",(function(){return o}));var s=r("wEJo"),n=r("E/Mt"),i=r("74mu"),a=r("h3R7");const o=class{constructor(e){Object(s.o)(this,e),this.paused=!1}getName(){const e=this.name||n.c.get("spinner"),t=Object(n.b)(this);return e||("ios"===t?"lines":"circular")}render(){const e=Object(n.b)(this),t=this.getName(),r=a.a[t]||a.a.lines,o="number"==typeof this.duration&&this.duration>10?this.duration:r.dur,p=[];if(void 0!==r.circles)for(let s=0;s<r.circles;s++)p.push(l(r,o,s,r.circles));else if(void 0!==r.lines)for(let s=0;s<r.lines;s++)p.push(c(r,o,s,r.lines));return Object(s.j)(s.c,{class:Object(i.a)(this.color,{[e]:!0,["spinner-"+t]:!0,"spinner-paused":!!this.paused||n.c.getBoolean("_testing")}),role:"progressbar",style:r.elmDuration?{animationDuration:o+"ms"}:{}},p)}},l=(e,t,r,n)=>{const i=e.fn(t,r,n);return i.style["animation-duration"]=t+"ms",Object(s.j)("svg",{viewBox:i.viewBox|

      Chrome Cache Entry: 117

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:JSON data
      Category:dropped
      Size (bytes):21
      Entropy (8bit):3.558518613048906
      Encrypted:false
      SSDEEP:3:YArjJ4:YA3J4
      MD5:75421E5814F8B1C17A20C760D653A9BE
      SHA1:E4A6A34C2C740090F4C6882849E3A38D5D8CF0AD
      SHA-256:E28BF7D9FCC22CDFDE0C7C8F31E3648A4847E7BDA9CB69F309F24257EEE3DD41
      SHA-512:AAFCD4A053F784EA928F3E37101BFDF0CDB3BB353507BA8D13F20AD8126E3D0C9434B61AE9620F4DFC202BB0469719320DB27F6289F5DBB65CC28845E4FEBEED
      Malicious:false
      Reputation:low
      Preview:{"error":"Not Found"}

      Chrome Cache Entry: 118

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (38602), with no line terminators
      Category:downloaded
      Size (bytes):38602
      Entropy (8bit):5.432933734373714
      Encrypted:false
      SSDEEP:768:E7gXReL4RDwCAbkl9nDxu7de90OUsTGn2IL4a2s:9GEDiG9nlGK7UsTIL4Xs
      MD5:D9DCF1CBD42751AB39CB51FC64E6E133
      SHA1:34997EAD7E4438F012EBC98E153F6FBA08BD11B4
      SHA-256:7CC8D713A18B57F6816EBF31B137904FEB0C02DACEE6991D932F58C3F8B41CE9
      SHA-512:C9E9C0ECB041A1AE0323AA31826B15593114B4D014EA10F7930BB76A1B8BD8F5589E73BBF37FB93CF7CF5E51F88F5E543179AF240BFA61054A402D8D4B02B345
      Malicious:false
      Reputation:low
      URL:https://js.braintreegateway.com/web/3.97.2/js/client.min.js
      Preview:!function(e){var t;"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):((t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(t.braintree={})).client=e()}(function(){return function n(o,i,a){function s(t,e){if(!i[t]){if(!o[t]){var r="function"==typeof require&&require;if(!e&&r)return r(t,!0);if(c)return c(t,!0);throw(e=new Error("Cannot find module '"+t+"'")).code="MODULE_NOT_FOUND",e}r=i[t]={exports:{}},o[t][0].call(r.exports,function(e){return s(o[t][1][e]||e)},r,r.exports,n,o,i,a)}return i[t].exports}for(var c="function"==typeof require&&require,e=0;e<a.length;e++)s(a[e]);return s}({1:[function(e,t,r){"use strict";var n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}},n=(Object.defineProperty(r,"__esModule",{value:!0}),r.PromiseGlobal=void 0,n(e("promise-polyfill"))),e="undefined"!=typeof Promise?Promise:n.default;r.Prom

      Chrome Cache Entry: 119

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (11519), with no line terminators
      Category:downloaded
      Size (bytes):11519
      Entropy (8bit):4.830044951997317
      Encrypted:false
      SSDEEP:192:GCDtoXHXGQ8YypppyjRiKpePLJ74bQvK+SJitXJmK9/Jvw/vZyKNjJTgNELKKiJL:GCDSXXGuRiost4bQvUktXJmiVw/vZyOA
      MD5:2185C824D47D021C6BEE46F8F829B523
      SHA1:B9D9AA677074B9167BA1E8EBE8680438F54FBAC5
      SHA-256:626B0D5A0FCA781F3174C24C621CACE8A3D26F51932CA2FBF0A81E12CA1CFAA9
      SHA-512:D9C95D23B049B1F8BA1AAEDD18A4D6B0CB13A5E30F9C48DC4A37307EC9D845241E55F69873802201A67A6A0391A43F3A4A8E0EB6D69E670EEBA049B23BB696F0
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/729.59a3f2357632c7b72d94.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[729],{"/CAe":function(i,d,n){"use strict";n.r(d),n.d(d,"ion_col",(function(){return e})),n.d(d,"ion_grid",(function(){return l})),n.d(d,"ion_row",(function(){return m}));var a=n("wEJo"),r=n("E/Mt");const g={xs:"(min-width: 0px)",sm:"(min-width: 576px)",md:"(min-width: 768px)",lg:"(min-width: 992px)",xl:"(min-width: 1200px)"},t=i=>void 0===i||""===i||!!window.matchMedia&&window.matchMedia(g[i]).matches,o=window,p=!!(o.CSS&&o.CSS.supports&&o.CSS.supports("--a: 0")),s=["","xs","sm","md","lg","xl"],e=class{constructor(i){Object(a.o)(this,i)}onResize(){Object(a.l)(this)}getColumns(i){let d;for(const n of s){const a=t(n),r=this[i+n.charAt(0).toUpperCase()+n.slice(1)];a&&void 0!==r&&(d=r)}return d}calculateSize(){const i=this.getColumns("size");if(!i||""===i)return;const d="auto"===i?"auto":p?`calc(calc(${i} / var(--ion-grid-columns, 12)) * 100%)`:i/12*100+"%";return{flex:"0 0 "+d,width:""+d,"max-width":""+d}}calculatePosition(i,d){const n=

      Chrome Cache Entry: 120

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
      Category:dropped
      Size (bytes):1150
      Entropy (8bit):4.627152610405557
      Encrypted:false
      SSDEEP:12:XCSjztiEwjGUdpj4ZpjYIfS+cZj3LGnZXGKxvv5Vg1pFc8qc1gELYDycg1pmR6iJ:XeDx4ZxYIwB36nbZv5E7SEKyBtC/
      MD5:3F5BB41C1F0549F2F58C505AF405FDFC
      SHA1:F0C9124F04C418BD5CF90A03485184482E1FBB14
      SHA-256:89966FD994E29304D1EDF7C03E80B4063E185A7119B0DD2AB7B16121283C7AD1
      SHA-512:B7F659E9D718B6011EE15CDBA6464928512B1FDDEF99C0D88C622BD47BC4E4D78740D1A958E84BB388196CC61740DEF83F502CA0BD08FA0A9A5699D24DFC9C99
      Malicious:false
      Reputation:low
      Preview:............ .h.......(....... ..... .....................................z7'.z7'.z7'#z7'<z7'.z7'.z7'.z7'.....................................SmN..'..|2"Az6&wz7'qz7' z7'.z7'.............................6..6..5..2..;gcP.{5%=y9).z7'.z7'.............................6..6.26.l1..3pO>q{5%<z6&.....................................6..6..6.13.LicP.\.i.2..?6..6..6..................................V.t.....y9).j]Jp2..E6..6.#6..................6..6..6..6.76.O5.\X.u.Q...4.b6.P6..6..................6..6..6.c6..6.A8.,pP>.rK:w....5..6......................6..6..6.16..6.g>.-z8(.z6&}x;+.5..6..6..6..6......6..6..6.n6..6..6..:..pP>.v?/.*...6.o6..6..6.[6..6..6..6.{6..6..6..6..@..Qz7'.hbN.5..6..6..6..6..6.^6..6.*6..6..6..6..6..I..B{5%.y:*.7.M6..6..6..6..6..6..6.t6..6..6..6..6..D..*|3$V}/ @7.86..6..6..6..6..6.P6..6..6..6..6..4.dx;+=z7'.z7'.lWD#5.~6..6..6..6..6..6.-6..6..6.#6......z7'xz7'.z7'.z6&E..

      Chrome Cache Entry: 121

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (28606)
      Category:downloaded
      Size (bytes):286266
      Entropy (8bit):5.557065806220529
      Encrypted:false
      SSDEEP:3072:32ICuKurL5pQlXfpJmX0LShwSxl9kLEibn8JuoIxxa4BbwJQNzjm6bm:mp2L/QlxJXqwScdk4BbwJQNPm6y
      MD5:7D057AC9BB920D59FD57B424C1E37E52
      SHA1:B7970D652D553D84E366BC5CB81C3DF9C21D27A7
      SHA-256:55F6D5CE87231F0FA4BB3349D31DF11A76D227B69302BB5C2A5CCEC36854E2B8
      SHA-512:DA6DADCDCAB711A7332F348B2029B32E30009BC003484A38BB0E5885A0C46C57F3698D855FEA706FC955628F37BEA2B2C153FEE63C96B061EDA6D7BFE6A45D99
      Malicious:false
      Reputation:low
      URL:https://www.googletagmanager.com/gtm.js?id=GTM-KGWMKVQL
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"6",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__u","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_name":"gtm.elementClasses","vtp_dataLayerVersion":1},{"function":"__v","vtp_name":"gtm.triggers","vtp_dataLayerVersion":2,"vtp_setDefaultValue":true,"vtp_defaultValue":""},{"function":"__r"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"ecommerce.purchase.actionField.revenue"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"affiliateInfo.utmCampaign"},{"function":"__k","vtp_decodeCookie":false,"vtp_name":"GAID"},{"function":"__u","vtp_component":"HOST","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__u","vtp

      Chrome Cache Entry: 122

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:Unicode text, UTF-8 text, with very long lines (39172), with no line terminators
      Category:downloaded
      Size (bytes):39179
      Entropy (8bit):5.006971193346705
      Encrypted:false
      SSDEEP:768:GYlql8l/tF6EvqF5qQ8g/JFGE1qMzqx8q/nFAE4qEKqQ8y/UFlEMq1hHqo8yb/1W:w5Lh
      MD5:2DC207DB0E1A5B85F009E4B10638D773
      SHA1:8DC52804D0B40C55C26802B7FB8090441CC747EA
      SHA-256:69C96D9EFF7A09533C5FCC55CADCCB98676DFCD68A44EBA4A71BEFC34B4FEB75
      SHA-512:216C40DD985490ED64BCEE4AF3128014476FFE195F5DDBC095E1D7DF2FB25DC056ED3FE88DBA6FA13651DEB0212DD82CF856ADA45B995A4EE8867BAFF7EB424E
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/styles.b24e9025f95a2431e02c.css
      Preview:@charset "UTF-8";@import "https://fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,400;0,500;0,600;0,700;0,800;1,400;1,500&display=swap";@import "https://fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap";html.ios{--ion-default-font:-apple-system,BlinkMacSystemFont,"Helvetica Neue","Roboto",sans-serif}html.md{--ion-default-font:"Roboto","Helvetica Neue",sans-serif}html{--ion-font-family:var(--ion-default-font)}body{background:var(--ion-background-color)}body.backdrop-no-scroll{overflow:hidden}html.ios ion-modal.modal-card .ion-page>ion-header>ion-toolbar:first-of-type{padding-top:0}html.ios ion-modal .ion-page{border-radius:inherit}.ion-color-primary{--ion-color-base:var(--ion-color-primary,#3880ff)!important;--ion-color-base-rgb:var(--ion-color-primary-rgb,56,128,255)!important;--ion-color-contrast:var(--ion-color-primary-contrast,#fff)!important;--ion-color-contrast-rgb:var(--ion-color-primary-contrast-rgb,255,255,255)!important;--ion-color-shade:var(--ion-colo

      Chrome Cache Entry: 123

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text
      Category:downloaded
      Size (bytes):12838
      Entropy (8bit):5.445115212931679
      Encrypted:false
      SSDEEP:192:AO9wOhFOKOpuO1N9wNhFNKNpuNjloQTEtmSblvQMrtFS+lSQ1OtcS9lBQWNtjSIo:AQwSFffcXw/FUyDHaoOR2aaDS
      MD5:EB138298A7334FD1A8AB72C887F1FDBD
      SHA1:EDD9BF209B8994DDA977BDFBEE29A8805726832B
      SHA-256:6F438FF6B8C01672606525F9D68B495F4879ECB4757E6363BD3A18F43B21B5B0
      SHA-512:C1ED7761049B1834482AD460CA7D9F0718792A15E68490DBE1E171AA82F6D97EAFEC305FBF1C8CAB129E826C66B63ABDAAAB946D245EE317A4E00B3159BCB100
      Malicious:false
      Reputation:low
      URL:"https://fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,400;0,500;0,600;0,700;0,800;1,400;1,500&display=swap"
      Preview:/* cyrillic-ext */.@font-face {. font-family: 'Montserrat';. font-style: italic;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRxC7mw9c.woff2) format('woff2');. unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;.}./* cyrillic */.@font-face {. font-family: 'Montserrat';. font-style: italic;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRzS7mw9c.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./* vietnamese */.@font-face {. font-family: 'Montserrat';. font-style: italic;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/montserrat/v26/JTUQjIg1_i6t8kCHKm459WxRxi7mw9c.woff2) format('woff2');. unicode-range: U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U

      Chrome Cache Entry: 124

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:OpenType font data
      Category:downloaded
      Size (bytes):62892
      Entropy (8bit):6.8396420565099385
      Encrypted:false
      SSDEEP:1536:wtCDRtg+Mc8IlNOMMth52sYj+9BNXioHUxysEZuWp:wtItgq8IlNOjz5hYj+9BV0QsEZuWp
      MD5:BF9F5D50C1B928FF21436517A1A95AD9
      SHA1:E41A5E523F03BE8B9B9002422A52E4E8741CA462
      SHA-256:2B80FBE521E07E4E84EB52E707B364C3E6C05C57E483276DC4B3BE93A9794BA9
      SHA-512:E456205CD5DEF287A1FF62AA329E9E860B3322105524BCE30014E30A43EA9E33E3564305F1C813E73E5A7E096716DFBF161C6BC1BAB7465AB8B896C17CB10F62
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/ProximaNova-Regular.7bc9ce404c297c24f210.otf
      Preview:OTTO.......0CFF ...........GPOS?.C.......1.GSUB..A........`OS/2l..... ...`cmapBS.V........head.$.........6hhea...........$hmtx.zo.........maxp..P.........nameg..........spost........... ..........._.<...........4.......4..U...:.z.......................f.U.U.:....................P................................2.M................P...........mlss.@. ............ ...M.......... .......>.........7.............7...........C.........(.J...........7.........'.r.....................-.................................................7...........C.....................n...................................P...........&...........N.%.........&...........Z.s.....................6...........6..............Copyright (c) Mark Simonson, 2005. All rights reserved.Proxima NovaRegularMarkSimonson: Proxima Nova Regular: 2005Version 1.101;PS 001.001;hotconv 1.0.38ProximaNova-RegularProxima Nova is a trademark of Mark Simonson.Mark Simonsonhttp://www.marksimonson.comProxima Nova Regular.C.o.p.y.r.i.g.h.t. .

      Chrome Cache Entry: 125

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (627), with no line terminators
      Category:downloaded
      Size (bytes):627
      Entropy (8bit):5.323985547071034
      Encrypted:false
      SSDEEP:12:lD71AZeNjOzbXSP8jD5FEJuV5LiDAXvplK6SJKrbRtPUZ5nbMUyCOyOe6fnZ:lD58eNjaC89FEJDDAXHK6DrFtPEbkn7B
      MD5:C0C09F026BF8600B556E25C44FC40E14
      SHA1:BEC7C5DCBF71260C66B4120B74EAB11B11B7A273
      SHA-256:4EF81544CB08773307BB1D8362E6E651D1CF354CD79B851A5E21147CC671A0DF
      SHA-512:82AC486D1E403421537698ED19D61D48838BDBB510FBAE9333BBF5B20DDAA6766CD33B95788D9349B2EECA119A9204679EB2B923EFFE7156529C64EB1705E5E7
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/40.6eca2d7a9d09525bafd7.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[40],{TWyq:function(t,e,n){"use strict";n.r(e),n.d(e,"createSwipeBackGesture",(function(){return a}));var r=n("W6o/"),o=n("KF81");n("y08P");const a=(t,e,n,a,c)=>{const i=t.ownerDocument.defaultView;return Object(o.createGesture)({el:t,gestureName:"goback-swipe",gesturePriority:40,threshold:10,canStart:t=>t.startX<=50&&e(),onStart:n,onMove:t=>{a(t.deltaX/i.innerWidth)},onEnd:t=>{const e=i.innerWidth,n=t.deltaX/e,o=t.velocityX,a=o>=0&&(o>.2||t.deltaX>e/2),s=(a?1-n:n)*e;let u=0;if(s>5){const t=s/Math.abs(o);u=Math.min(t,540)}c(a,n<=0?.01:Object(r.k)(0,n,.9999),u)}})}}}]);

      Chrome Cache Entry: 126

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (55785)
      Category:dropped
      Size (bytes):639725
      Entropy (8bit):5.560046258629991
      Encrypted:false
      SSDEEP:12288:h/7hcRK4U9CKKrXmZjlSU9D+TcoP4d2XpNJ5mBh:h/7hcRK4U9CKKrXmZjlSI+TMd2fK
      MD5:32D2C3A828C203E281061D81F07C5B24
      SHA1:A11BDAB64220D26586E2729149A67AEFEB894F9F
      SHA-256:E6E0C957AEA5EA2B09E87E32CD4F5BAA4AB27DD69AB2181E99972DE6F9FC4FE8
      SHA-512:85463E6CD2607160869C0AF4418B286F9BC7A42F61D172AB5461FB5309132AAC1DE2F2753892A55BBCDF43ED3061F875A7619EDDCDF7E21DE075A5ABD0DB69E6
      Malicious:false
      Reputation:low
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. . (function(w,g){w[g]=w[g]||{};. w[g].e=function(s){return eval(s);};})(window,'google_tag_manager');. .(function(){..var data = {."resource": {. "version":"1337",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"screenPath"},{"function":"__u","vtp_component":"HOST","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"affiliateInfo.utmCampaign"},{"function":"__e"},{"function":"__u","vtp_component":"PATH","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_name":"gtm.elementClasses","vtp_dataLayerVersion":1},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"ecommerce.purchase.

      Chrome Cache Entry: 127

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (59638), with no line terminators
      Category:downloaded
      Size (bytes):59638
      Entropy (8bit):5.384268710012802
      Encrypted:false
      SSDEEP:768:gsv3147DmBGFiC43zcUSHDGn8ILxwPRiag3WGJXubDLvSiWUeLNGIs:vZK43zcTILxMRiag3WGJXubDLZWUQ2
      MD5:87F1785A06A7B9B22C36C9ADFD6FA060
      SHA1:3088E49555CFED24D1418C5BC618B26D3CB6393D
      SHA-256:8B37337F74B6289BEF481BADFEB67C0778BA97592141300E25B3900CCFA88A68
      SHA-512:643D63EAD5B3C024BF693E275B3148B1D5112AB9378CA86A2686ADBF69D7B843DC54FE5FAEE51C1AA856FBA99A6FC0324A9049405CD1E1557B6683B3A1D855D7
      Malicious:false
      Reputation:low
      URL:https://js.braintreegateway.com/web/3.97.2/js/paypal-checkout.min.js
      Preview:!function(e){var t;"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):((t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(t.braintree={})).paypalCheckout=e()}(function(){return function n(i,o,s){function a(t,e){if(!o[t]){if(!i[t]){var r="function"==typeof require&&require;if(!e&&r)return r(t,!0);if(c)return c(t,!0);throw(e=new Error("Cannot find module '"+t+"'")).code="MODULE_NOT_FOUND",e}r=o[t]={exports:{}},i[t][0].call(r.exports,function(e){return a(i[t][1][e]||e)},r,r.exports,n,i,o,s)}return o[t].exports}for(var c="function"==typeof require&&require,e=0;e<s.length;e++)a(s[e]);return a}({1:[function(e,t,r){"use strict";var n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}},n=(Object.defineProperty(r,"__esModule",{value:!0}),r.PromiseGlobal=void 0,n(e("promise-polyfill"))),e="undefined"!=typeof Promise?Promise:n.defaul

      Chrome Cache Entry: 128

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1976), with no line terminators
      Category:dropped
      Size (bytes):1976
      Entropy (8bit):5.141492198858362
      Encrypted:false
      SSDEEP:48:lD58elK8P3Oy9m/M3XDCgjlPsE1bsG+ZdtvfCRrsKPoclm25l5PX:XlP3Oiys2clPsEhsGHY0mUX
      MD5:BF855F66C720272A8A20A6F9C0C93E7C
      SHA1:DEA05BAF30A5AB58D800452E748B6217B3309D04
      SHA-256:F837C2D30742ECEAB5C3182DCBBF713C49E29863A5FD6480760696AF980294A6
      SHA-512:1C449A820251EDC6DC6387447B5E757BC5AE846D4559B2ED7EA0DC70F9250079BF1511818C72F3E4ED518650E032F7FE4A1C0D9E71B77927264ED998A3D96677
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[766],{"r+KJ":function(e,t,o){"use strict";o.r(t),o.d(t,"startTapClick",(function(){return i}));var n=o("W6o/");const i=e=>{let t,o,i,v,p=10*-u,f=0;const L=e.getBoolean("animated",!0)&&e.getBoolean("rippleEffect",!0),m=new WeakMap,w=e=>{p=Object(n.q)(e),b(e)},h=()=>{clearTimeout(v),v=void 0,o&&(j(!1),o=void 0)},E=e=>{o||void 0!==t&&null!==t.parentElement||(t=void 0,g(s(e),e))},b=e=>{g(void 0,e)},g=(e,t)=>{if(e&&e===o)return;clearTimeout(v),v=void 0;const{x:i,y:s}=Object(n.p)(t);if(o){if(m.has(o))throw new Error("internal error");o.classList.contains(r)||q(o,i,s),j(!0)}if(e){const t=m.get(e);t&&(clearTimeout(t),m.delete(e));const o=a(e)?0:d;e.classList.remove(r),v=setTimeout(()=>{q(e,i,s),v=void 0},o)}o=e},q=(e,t,o)=>{f=Date.now(),e.classList.add(r);const n=L&&c(e);n&&n.addRipple&&(T(),i=n.addRipple(t,o))},T=()=>{void 0!==i&&(i.then(e=>e()),i=void 0)},j=e=>{T();const t=o;if(!t)return;const n=l-Date.now()+f;if(e&&n>0&&!a(t)){const e=set

      Chrome Cache Entry: 129

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (4609), with no line terminators
      Category:dropped
      Size (bytes):4609
      Entropy (8bit):4.832378541729407
      Encrypted:false
      SSDEEP:96:YVmVoEDwvKMGU42oa9srtRdDyCnEhgIB7zhAUiphDHZT:YVmVgGUSaGbWCnCgAhyDHZT
      MD5:A425A07633E79E026660111B878C415F
      SHA1:798E986B11511539BB8443E479F50298BC78351C
      SHA-256:B6AA9105649DBD72B2199AC8849CC8029C42F26C9F35CDA59616327AAB3C703F
      SHA-512:2D657BDA19B4530A86D61DF6FB84DD85862B0557150303C3E33499D37DA8B57C59F6DA5FA590E652D7CFB9C1FDA63510278E06B0FA23BE9D718D9132EABC2E99
      Malicious:false
      Reputation:low
      Preview:var countries=[{"value":"US","states":{"WY":"Wyoming","WI":"Wisconsin","WV":"West Virginia","WA":"Washington","VA":"Virginia","VT":"Vermont","UT":"Utah","TX":"Texas","TN":"Tennessee","SD":"South Dakota","SC":"South Carolina","RI":"Rhode Island","PA":"Pennsylvania","OR":"Oregon","OK":"Oklahoma","OH":"Ohio","ND":"North Dakota","NC":"North Carolina","NY":"New York","NM":"New Mexico","NJ":"New Jersey","NH":"New Hampshire","NV":"Nevada","NE":"Nebraska","MT":"Montana","MO":"Missouri","MS":"Mississippi","MN":"Minnesota","MI":"Michigan","MA":"Massachusetts","MD":"Maryland","ME":"Maine","LA":"Louisiana","KY":"Kentucky","KS":"Kansas","IA":"Iowa","IN":"Indiana","IL":"Illinois","ID":"Idaho","HI":"Hawaii","GA":"Georgia","FL":"Florida","DC":"District of Columbia","DE":"Delaware","CT":"Connecticut","CO":"Colorado","CA":"California","AP":"Armed Forces Pacific","AE":"Armed Forces Europe","AA":"Armed Forces Americas","AR":"Arkansas","AZ":"Arizona","AK":"Alaska","AL":"Alabama"},"label":"United States"},{

      Chrome Cache Entry: 130

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (37243), with no line terminators
      Category:downloaded
      Size (bytes):37243
      Entropy (8bit):5.232564088039265
      Encrypted:false
      SSDEEP:768:bvnxbLjjq9No7Aw+FqLVOeWd8LqGt7haE8tim1RZDXiV0K+AxJXov7YM4/XreoL5:biNo7vpJlitOTr
      MD5:74DEF0AD20C6203684661FA04E9BCE2B
      SHA1:D4D4F4CBDFC68EA3DEDD63D235757EC85A876DA2
      SHA-256:8FF7DE36CAB0C49D5D5930EFD791EDAD1843ECFEB0DAE32A4B3AA6A4CA121221
      SHA-512:CBD8099E8F1EAEFEE968B56D4C24E74D9F742499D738708EE1B504DBE7AD4724ABE52DA9CCCFFF0DFC5EEB1BE2C4A8F84CCAE45D46AA0FD6F3D0AB01BF32EF07
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/polyfills.42b7138332bea3a120ba.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[42],{1:function(e,t,n){e.exports=n("hN/g")},"hN/g":function(e,t,n){"use strict";n.r(t),n("o3nU"),n("pDpN")},o3nU:function(e,t){window.__Zone_disable_customElements=!0},pDpN:function(e,t,n){(function(o){var r,s;void 0===(s="function"==typeof(r=function(){"use strict";!function(e){const t=e.performance;function n(e){t&&t.mark&&t.mark(e)}function o(e,n){t&&t.measure&&t.measure(e,n)}n("Zone");const r=e.__Zone_symbol_prefix||"__zone_symbol__";function s(e){return r+e}const i=!0===e[s("forceDuplicateZoneCheck")];if(e.Zone){if(i||"function"!=typeof e.Zone.__symbol__)throw new Error("Zone already loaded.");return e.Zone}class a{constructor(e,t){this._parent=e,this._name=t?t.name||"unnamed":"<root>",this._properties=t&&t.properties||{},this._zoneDelegate=new l(this,this._parent&&this._parent._zoneDelegate,t)}static assertZonePatched(){if(e.Promise!==C.ZoneAwarePromise)throw new Error("Zone.js has detected that ZoneAwarePromise `(window|global

      Chrome Cache Entry: 131

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (11519), with no line terminators
      Category:dropped
      Size (bytes):11519
      Entropy (8bit):4.830044951997317
      Encrypted:false
      SSDEEP:192:GCDtoXHXGQ8YypppyjRiKpePLJ74bQvK+SJitXJmK9/Jvw/vZyKNjJTgNELKKiJL:GCDSXXGuRiost4bQvUktXJmiVw/vZyOA
      MD5:2185C824D47D021C6BEE46F8F829B523
      SHA1:B9D9AA677074B9167BA1E8EBE8680438F54FBAC5
      SHA-256:626B0D5A0FCA781F3174C24C621CACE8A3D26F51932CA2FBF0A81E12CA1CFAA9
      SHA-512:D9C95D23B049B1F8BA1AAEDD18A4D6B0CB13A5E30F9C48DC4A37307EC9D845241E55F69873802201A67A6A0391A43F3A4A8E0EB6D69E670EEBA049B23BB696F0
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[729],{"/CAe":function(i,d,n){"use strict";n.r(d),n.d(d,"ion_col",(function(){return e})),n.d(d,"ion_grid",(function(){return l})),n.d(d,"ion_row",(function(){return m}));var a=n("wEJo"),r=n("E/Mt");const g={xs:"(min-width: 0px)",sm:"(min-width: 576px)",md:"(min-width: 768px)",lg:"(min-width: 992px)",xl:"(min-width: 1200px)"},t=i=>void 0===i||""===i||!!window.matchMedia&&window.matchMedia(g[i]).matches,o=window,p=!!(o.CSS&&o.CSS.supports&&o.CSS.supports("--a: 0")),s=["","xs","sm","md","lg","xl"],e=class{constructor(i){Object(a.o)(this,i)}onResize(){Object(a.l)(this)}getColumns(i){let d;for(const n of s){const a=t(n),r=this[i+n.charAt(0).toUpperCase()+n.slice(1)];a&&void 0!==r&&(d=r)}return d}calculateSize(){const i=this.getColumns("size");if(!i||""===i)return;const d="auto"===i?"auto":p?`calc(calc(${i} / var(--ion-grid-columns, 12)) * 100%)`:i/12*100+"%";return{flex:"0 0 "+d,width:""+d,"max-width":""+d}}calculatePosition(i,d){const n=

      Chrome Cache Entry: 132

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1976), with no line terminators
      Category:downloaded
      Size (bytes):1976
      Entropy (8bit):5.141492198858362
      Encrypted:false
      SSDEEP:48:lD58elK8P3Oy9m/M3XDCgjlPsE1bsG+ZdtvfCRrsKPoclm25l5PX:XlP3Oiys2clPsEhsGHY0mUX
      MD5:BF855F66C720272A8A20A6F9C0C93E7C
      SHA1:DEA05BAF30A5AB58D800452E748B6217B3309D04
      SHA-256:F837C2D30742ECEAB5C3182DCBBF713C49E29863A5FD6480760696AF980294A6
      SHA-512:1C449A820251EDC6DC6387447B5E757BC5AE846D4559B2ED7EA0DC70F9250079BF1511818C72F3E4ED518650E032F7FE4A1C0D9E71B77927264ED998A3D96677
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/766.de148240a820a6954766.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[766],{"r+KJ":function(e,t,o){"use strict";o.r(t),o.d(t,"startTapClick",(function(){return i}));var n=o("W6o/");const i=e=>{let t,o,i,v,p=10*-u,f=0;const L=e.getBoolean("animated",!0)&&e.getBoolean("rippleEffect",!0),m=new WeakMap,w=e=>{p=Object(n.q)(e),b(e)},h=()=>{clearTimeout(v),v=void 0,o&&(j(!1),o=void 0)},E=e=>{o||void 0!==t&&null!==t.parentElement||(t=void 0,g(s(e),e))},b=e=>{g(void 0,e)},g=(e,t)=>{if(e&&e===o)return;clearTimeout(v),v=void 0;const{x:i,y:s}=Object(n.p)(t);if(o){if(m.has(o))throw new Error("internal error");o.classList.contains(r)||q(o,i,s),j(!0)}if(e){const t=m.get(e);t&&(clearTimeout(t),m.delete(e));const o=a(e)?0:d;e.classList.remove(r),v=setTimeout(()=>{q(e,i,s),v=void 0},o)}o=e},q=(e,t,o)=>{f=Date.now(),e.classList.add(r);const n=L&&c(e);n&&n.addRipple&&(T(),i=n.addRipple(t,o))},T=()=>{void 0!==i&&(i.then(e=>e()),i=void 0)},j=e=>{T();const t=o;if(!t)return;const n=l-Date.now()+f;if(e&&n>0&&!a(t)){const e=set

      Chrome Cache Entry: 133

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
      Category:downloaded
      Size (bytes):1150
      Entropy (8bit):4.627152610405557
      Encrypted:false
      SSDEEP:12:XCSjztiEwjGUdpj4ZpjYIfS+cZj3LGnZXGKxvv5Vg1pFc8qc1gELYDycg1pmR6iJ:XeDx4ZxYIwB36nbZv5E7SEKyBtC/
      MD5:3F5BB41C1F0549F2F58C505AF405FDFC
      SHA1:F0C9124F04C418BD5CF90A03485184482E1FBB14
      SHA-256:89966FD994E29304D1EDF7C03E80B4063E185A7119B0DD2AB7B16121283C7AD1
      SHA-512:B7F659E9D718B6011EE15CDBA6464928512B1FDDEF99C0D88C622BD47BC4E4D78740D1A958E84BB388196CC61740DEF83F502CA0BD08FA0A9A5699D24DFC9C99
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/assets/img/favicon.ico?v=2
      Preview:............ .h.......(....... ..... .....................................z7'.z7'.z7'#z7'<z7'.z7'.z7'.z7'.....................................SmN..'..|2"Az6&wz7'qz7' z7'.z7'.............................6..6..5..2..;gcP.{5%=y9).z7'.z7'.............................6..6.26.l1..3pO>q{5%<z6&.....................................6..6..6.13.LicP.\.i.2..?6..6..6..................................V.t.....y9).j]Jp2..E6..6.#6..................6..6..6..6.76.O5.\X.u.Q...4.b6.P6..6..................6..6..6.c6..6.A8.,pP>.rK:w....5..6......................6..6..6.16..6.g>.-z8(.z6&}x;+.5..6..6..6..6......6..6..6.n6..6..6..:..pP>.v?/.*...6.o6..6..6.[6..6..6..6.{6..6..6..6..@..Qz7'.hbN.5..6..6..6..6..6.^6..6.*6..6..6..6..6..I..B{5%.y:*.7.M6..6..6..6..6..6..6.t6..6..6..6..6..D..*|3$V}/ @7.86..6..6..6..6..6.P6..6..6..6..6..4.dx;+=z7'.z7'.lWD#5.~6..6..6..6..6..6.-6..6..6.#6......z7'xz7'.z7'.z6&E..

      Chrome Cache Entry: 134

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (62063), with no line terminators
      Category:dropped
      Size (bytes):62063
      Entropy (8bit):5.483725307642872
      Encrypted:false
      SSDEEP:1536:9FIT4sZAfcn6HviabSDgES8zLN3DBNILyczq/:3M4sZdtaC3bILyl
      MD5:1524049A1148E2F4134E5B6330C673E2
      SHA1:0A10CA38D62B6F0B83E36F7A045D62A4969E7596
      SHA-256:705B14BCCE33311ED8D7B132A37A0110AAF3E0BD72580950F9BD7836223B5F21
      SHA-512:58AF31397B33E0CC74090FA3E50255509CC4CF8D110E087CCCA856BBFE2B533782ED5F7618544E7D1F242247281712F5C71156872BDEBD8818334CDA1D51829E
      Malicious:false
      Reputation:low
      Preview:!function(e){var t;"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):((t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(t.braintree={})).hostedFields=e()}(function(){return function r(i,o,s){function a(t,e){if(!o[t]){if(!i[t]){var n="function"==typeof require&&require;if(!e&&n)return n(t,!0);if(c)return c(t,!0);throw(e=new Error("Cannot find module '"+t+"'")).code="MODULE_NOT_FOUND",e}n=o[t]={exports:{}},i[t][0].call(n.exports,function(e){return a(i[t][1][e]||e)},n,n.exports,r,i,o,s)}return o[t].exports}for(var c="function"==typeof require&&require,e=0;e<s.length;e++)a(s[e]);return a}({1:[function(e,t,n){"use strict";var r=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}},r=(Object.defineProperty(n,"__esModule",{value:!0}),n.PromiseGlobal=void 0,r(e("promise-polyfill"))),e="undefined"!=typeof Promise?Promise:r.default;

      Chrome Cache Entry: 135

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (65536), with no line terminators
      Category:downloaded
      Size (bytes):784911
      Entropy (8bit):5.421624223608813
      Encrypted:false
      SSDEEP:12288:91hQG/7r+VgMA8PWpk5H85x31lXA9f0RJ9czJAatJ7HE2:9wG/7r+Vu8epk5H85x31lXA9f0RJ9czR
      MD5:8E5710DAC05C5AA866D52603805A45A6
      SHA1:A0484C4E343D8E46A9F61F716F92531AE2FF5FB9
      SHA-256:EF1A890C48A5BBD9DA7BC2B53580EAD5718153010133C96E06BBF1DE27F0BF91
      SHA-512:6503D827F1A587E2DFD86BA8F1D7FA095154F2BF851251A81B3E24091F9462F6F51EBD6F79C5CF164E7A6C87182DEBBF18AF741F2EF5854B6B34E397608EBEB3
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/main.7d9ad3177c2e06cbe8c8.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[41],{"+lAO":function(e,t,n){"use strict";n.r(t),n.d(t,"iosTransitionAnimation",(function(){return d})),n.d(t,"shadow",(function(){return o}));var r=n("Kfhc"),i=n("qb1Q");n("W6o/"),n("wEJo");const a=e=>document.querySelector(e+".ion-cloned-element"),o=e=>e.shadowRoot||e,s=e=>{const t="ION-TABS"===e.tagName?e:e.querySelector("ion-tabs"),n="ion-content ion-header:not(.header-collapse-condense-inactive) ion-title.title-large";if(null!=t){const e=t.querySelector("ion-tab:not(.tab-hidden), .ion-page:not(.ion-page-hidden)");return null!=e?e.querySelector(n):null}return e.querySelector(n)},l=(e,t)=>{const n="ION-TABS"===e.tagName?e:e.querySelector("ion-tabs");let r=[];if(null!=n){const e=n.querySelector("ion-tab:not(.tab-hidden), .ion-page:not(.ion-page-hidden)");null!=e&&(r=e.querySelectorAll("ion-buttons"))}else r=e.querySelectorAll("ion-buttons");for(const i of r){const e=i.closest("ion-header"),n=e&&!e.classList.contains("header-collapse

      Chrome Cache Entry: 136

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1514), with no line terminators
      Category:dropped
      Size (bytes):1514
      Entropy (8bit):5.202966572039875
      Encrypted:false
      SSDEEP:24:lD58eI7tCa9uKnkiaRqikVJERF58/jtN2WTMxFOS1DVWPQYDcXy3pMO+VCZ:lD58TEI85j5qftTiQEDApoXy3Ey
      MD5:8034677102E1C646656B9A2DC010F486
      SHA1:BA48DDEC91ACD339AAF419FE9EC9FE13C58209A9
      SHA-256:487F988D7F8E2F7BA77D3443D2EF1577E3B7D5210E2B445BF97414B8C216A935
      SHA-512:A3264177B82266135DC970F89F1C9F06B38BB60F8B0B37489A8ED9380814D53067AAD3640EEC1F002642ACFEAC2C51C728823A5A6EDF778FA137E98CF5510BCF
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[762],{nGaW:function(e,t,n){"use strict";n.r(t),n.d(t,"KEYBOARD_DID_CLOSE",(function(){return o})),n.d(t,"KEYBOARD_DID_OPEN",(function(){return i})),n.d(t,"copyVisualViewport",(function(){return l})),n.d(t,"keyboardDidClose",(function(){return b})),n.d(t,"keyboardDidOpen",(function(){return p})),n.d(t,"keyboardDidResize",(function(){return w})),n.d(t,"resetKeyboardAssist",(function(){return a})),n.d(t,"setKeyboardClose",(function(){return f})),n.d(t,"setKeyboardOpen",(function(){return c})),n.d(t,"startKeyboardAssist",(function(){return u})),n.d(t,"trackViewportChanges",(function(){return D}));const i="ionKeyboardDidShow",o="ionKeyboardDidHide";let r={},d={},s=!1;const a=()=>{r={},d={},s=!1},u=e=>{h(e),e.visualViewport&&(d=l(e.visualViewport),e.visualViewport.onresize=()=>{D(e),p()||w(e)?c(e):b(e)&&f(e)})},h=e=>{e.addEventListener("keyboardDidShow",t=>c(e,t)),e.addEventListener("keyboardDidHide",()=>f(e))},c=(e,t)=>{g(e,t),s=!0},f=e=>

      Chrome Cache Entry: 137

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (59757)
      Category:downloaded
      Size (bytes):644465
      Entropy (8bit):5.548273604090462
      Encrypted:false
      SSDEEP:12288:VBOOBpu8OKdJi7/44rElBx7d+fJc1wpNJYz:VBOOBpu8OKdJi7/44rElBx7d+fJc1+u
      MD5:7F52C7E61935F842BE881F4E2408AC2E
      SHA1:00691BD62FA7458673C46D41F0957067AC77F3C3
      SHA-256:47BEDD791A285AEC56168B4E403726D74DC2376D186715B29E1A206E488009EA
      SHA-512:A05838A84E2C5AB5D6D017C0AF6DF243B2976FC85F61509CDFBFA3020A2A55433DB4BA4A8255009AC4EE72179F37F63ACE183F77AE3682235AFF88095590A512
      Malicious:false
      Reputation:low
      URL:https://www.googletagmanager.com/gtm.js?id=GTM-5WLKKPD
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. . (function(w,g){w[g]=w[g]||{};. w[g].e=function(s){return eval(s);};})(window,'google_tag_manager');. .(function(){..var data = {."resource": {. "version":"654",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__e"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"screenPath"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"affiliateInfo.utmCampaign"},{"function":"__u","vtp_component":"PATH","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__u","vtp_component":"HOST","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__aev","vtp_varType":"TEXT"},{"function":"__u","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_dataLayerVersion":2,"v

      Chrome Cache Entry: 138

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1579), with no line terminators
      Category:downloaded
      Size (bytes):1579
      Entropy (8bit):5.057233143584277
      Encrypted:false
      SSDEEP:48:lD58jsR2TaqhwyQShtX67+atUKBoFUKBoI:1TqzYozoI
      MD5:34EAED2A674F9378515C9C679F741AEF
      SHA1:B49DD6C602F55EDC35FD01A2ECEF5AB43D71DE89
      SHA-256:928EE272FE0AB807A842E532E6921C942A59CFA6B8CE3E2DA411AC5022AD66FA
      SHA-512:24A6BC87E1995C6587607A6ABE0CB7441AB4FB0203E9924FA3906D72A274B9A3A1A5F247CAF38842899396075D48592A2532270FF6EDDFDFD753C782FC8DACDB
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/724.77a3da17b1eae583d6f0.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[724],{Q2Bp:function(o,t,a){"use strict";a.r(t),a.d(t,"ion_backdrop",(function(){return s}));var r=a("wEJo"),n=a("E/Mt"),i=a("y08P");const s=class{constructor(o){Object(r.o)(this,o),this.ionBackdropTap=Object(r.g)(this,"ionBackdropTap",7),this.blocker=i.a.createBlocker({disableScroll:!0}),this.visible=!0,this.tappable=!0,this.stopPropagation=!0}connectedCallback(){this.stopPropagation&&this.blocker.block()}disconnectedCallback(){this.blocker.unblock()}onMouseDown(o){this.emitTap(o)}emitTap(o){this.stopPropagation&&(o.preventDefault(),o.stopPropagation()),this.tappable&&this.ionBackdropTap.emit()}render(){const o=Object(n.b)(this);return Object(r.j)(r.c,{tabindex:"-1","aria-hidden":"true",class:{[o]:!0,"backdrop-hide":!this.visible,"backdrop-no-tappable":!this.tappable}})}};s.style={ios:":host{left:0;right:0;top:0;bottom:0;display:block;position:absolute;-webkit-transform:translateZ(0);transform:translateZ(0);contain:strict;cursor:poin

      Chrome Cache Entry: 139

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with no line terminators
      Category:dropped
      Size (bytes):60
      Entropy (8bit):4.639572261986722
      Encrypted:false
      SSDEEP:3:KGAp1gXMR2LMfSEthnn:5dX8thnn
      MD5:183839382F14CC9051C56321EFC56DCA
      SHA1:DF82B9C6190DC69435E00CCB26EF45954DA67C90
      SHA-256:785CA3447631DDD45FD0031A97D2EE336D64E0C2228FEFDCB14F2A878FF09874
      SHA-512:21F6D1F970D34A5BDAC1A807D03D2B3CB7C1CCE2279416D71866D07828A58D3F9E95F72451D235DF07C595596E8EA6EF1321C715A3A71A692EEBC96C9A9E7740
      Malicious:false
      Reputation:low
      Preview:getIP({"ip":"8.46.123.33", "country": "US", "eu": "false"});

      Chrome Cache Entry: 140

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 302x79, components 3
      Category:downloaded
      Size (bytes):4413
      Entropy (8bit):7.833949095126615
      Encrypted:false
      SSDEEP:96:RhXANZZqAlLREYPgu9v2ZA5e6LX4l54qHgor9qr/JCBHEnw:nANvqA3ZPJ2C5e6LX4l54qAsqd4Enw
      MD5:BEAF1FA2AFE43B6F8B292DD02755B7FA
      SHA1:AFE1450CCD99EFC4A4378446DA064C6890C7E413
      SHA-256:5D7A48F4EB2E5B82C2F4FAE762AEBF632C65AB78312AA95AF4718E28CB5817B2
      SHA-512:0CCA5855AA06CC7B0238DC945367D6BFD4CEEBB333AEB9E345513BED9219F9C9B29BA59ED3768A71DDD445509B34F86188D6EA30DAC2199CF632167EEE83C230
      Malicious:false
      Reputation:low
      URL:https://cdn.gundrymd.com/images/gundry-logo.jpg
      Preview:......JFIF............................................................!........."$".$...........................................................................O...."..........6...................................................................-..4.........Q...a....._9'.p...........>.<......U.~.N._..2.?.}y...X............5...o..gfs...W.Y~n.r..).:.T{...`G~^%..bwqW%.=z...;.........NH.7^.*.a.=t.[..8.S.y.P.."...........XUy.5.'.Nr.......E.h.m.s.=!h.Z..Y.."...MR...B...Z.S...>m.6..D.J....o....#.c.Q.ntg..................-................................. !"17P@%24...........6f....G%...i....J.&<.......C0.e.T.H.'..Q..........f..v$.<.e."..`....."..`_s..Lx.../!..n.....i..u..q..*\..B[....f.....'..;){>.<.k..u.,.u......j.=..W/.... .t....H....F....]}.....\.K.....72......X..M\I(...'.BP=.p.t...[.)(..rA.l....l%L..R.-.dX.J...6...zE.b.s.?.0&.V{S...R.>.2..|vB.-;...;1.m..oX.$P......M....<.q.(.^....\.s(..x.g.k.......5.).J*..).fC7...S..,'..........A..{^F.9:.A(hok..f..5...~

      Chrome Cache Entry: 141

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text
      Category:downloaded
      Size (bytes):4660
      Entropy (8bit):5.399953144686011
      Encrypted:false
      SSDEEP:96:1OEaNFlOEaNTFZKOEaNZOEaNW3yOEaNwOEaN8Vc+umOEaN+1N1OpaNnlOpaNiFZX:KNF6NBNWNW3FN/NGYN+nNnXNTNIND3cU
      MD5:F23961360DB776F7FBF38C2D042212F8
      SHA1:F4B71C7E3BB62BEE80EE76AC3891A20754E7DAD2
      SHA-256:47CE859F7F0F545825C8AB983547BBF88D0DE3F52AFEBC7A1CCC0611661DF70D
      SHA-512:6FB896BAB5FC92D91F1B3FC280E659F6B3685E1571739C248B262AB3CCA8C6AA96F0B85A3153DB1D62326A324721BA7FE1531FE27CFFC3DBF463AF09FACAAD18
      Malicious:false
      Reputation:low
      URL:https://fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
      Preview:/* cyrillic-ext */.@font-face {. font-family: 'Roboto';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2) format('woff2');. unicode-range: U+0460-052F, U+1C80-1C88, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;.}./* cyrillic */.@font-face {. font-family: 'Roboto';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./* greek-ext */.@font-face {. font-family: 'Roboto';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2) format('woff2');. unicode-range: U+1F00-1FFF;.}./* greek */.@font-face {. font-family: 'Roboto';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s

      Chrome Cache Entry: 142

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (30015), with no line terminators
      Category:downloaded
      Size (bytes):30015
      Entropy (8bit):5.478585822973082
      Encrypted:false
      SSDEEP:768:rAJsGbugMPnl5cPJMQ5r4PM8tzizyzMz5iqYkmnwFIGUILwILwKLNlZ:G3bBMPnl5chMQN4PM8m12nILjZ
      MD5:4ABE6BD8C1EB31CAF609ED1A61DA278F
      SHA1:D8FD5B79E4B14CE42DDC91F3337B3867329151AE
      SHA-256:F32D05F83039B9CC66E733C2BC0B25FE8B9D50253B861252821B44BCAAE9346F
      SHA-512:8FFA9C08B18133055A5897EAB0FC5FEEF02E6A6F08EE259722EF3AED2688B6E2E310D8E18A46C204BE1AAC05C7D8D0EACE804F95200E9EBC1EFA5A9CEACF32DD
      Malicious:false
      Reputation:low
      URL:https://js.braintreegateway.com/web/3.97.2/js/data-collector.min.js
      Preview:!function(t){var e;"object"==typeof exports&&"undefined"!=typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):((e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(e.braintree={})).dataCollector=t()}(function(){return function r(i,o,s){function a(e,t){if(!o[e]){if(!i[e]){var n="function"==typeof require&&require;if(!t&&n)return n(e,!0);if(c)return c(e,!0);throw(t=new Error("Cannot find module '"+e+"'")).code="MODULE_NOT_FOUND",t}n=o[e]={exports:{}},i[e][0].call(n.exports,function(t){return a(i[e][1][t]||t)},n,n.exports,r,i,o,s)}return o[e].exports}for(var c="function"==typeof require&&require,t=0;t<s.length;t++)a(s[t]);return a}({1:[function(t,e,n){"use strict";var r=this&&this.__importDefault||function(t){return t&&t.__esModule?t:{default:t}},r=(Object.defineProperty(n,"__esModule",{value:!0}),n.PromiseGlobal=void 0,r(t("promise-polyfill"))),t="undefined"!=typeof Promise?Promise:r.default

      Chrome Cache Entry: 143

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (59757)
      Category:dropped
      Size (bytes):644465
      Entropy (8bit):5.548325102826971
      Encrypted:false
      SSDEEP:12288:VBOOBpu8OKdJi7/44rElBx7d+fJc1wpNJlz:VBOOBpu8OKdJi7/44rElBx7d+fJc1+/
      MD5:CEFC1389D1C9F21D964F407A1116A617
      SHA1:CFF0ED6D43D0630487FD36556A54095BB4DDF9B3
      SHA-256:F4A8CBA859D599021F3341A99EDBD8F25DB186764A2040BBF2860416824E40C6
      SHA-512:99AF8D548AD3B61652E2D9F7BD78F8DA9705930D4AC04F9B6718D51F391889771B8BAFF4806269B007B637877A8B20EFE4A723D0B3DB5A1F38132DB236781118
      Malicious:false
      Reputation:low
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. . (function(w,g){w[g]=w[g]||{};. w[g].e=function(s){return eval(s);};})(window,'google_tag_manager');. .(function(){..var data = {."resource": {. "version":"654",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__e"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"screenPath"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"affiliateInfo.utmCampaign"},{"function":"__u","vtp_component":"PATH","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__u","vtp_component":"HOST","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__aev","vtp_varType":"TEXT"},{"function":"__u","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_dataLayerVersion":2,"v

      Chrome Cache Entry: 144

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1412), with no line terminators
      Category:dropped
      Size (bytes):1412
      Entropy (8bit):5.710327158156066
      Encrypted:false
      SSDEEP:24:7FG4HeMKM/wISD7hzfpe8D8pkZwpD4TKGAa+i42C+v+0eApO2pMp2MOL/:7FG4HeMKs+3hztApAI4T8a+UT+0eqOAP
      MD5:FDD6FCD547F224A3838AD81F1274D608
      SHA1:97DF3CC55D262F9E4BD29D00937D600D2C610A3A
      SHA-256:F7C4E07A81AAEF544676BAAED423401B2B9DD54681DA0B3183661E9DB8FAC8F3
      SHA-512:A8FCFE24B2760E970236F88B172EAC14DC44A997A2E14AAC7C66A627F575A8B2676D45B5AE46015007633ECFA7E116C13EFC96B070762F35C34793D4720A79B1
      Malicious:false
      Reputation:low
      Preview:var process_env = {"PAYPAL_NVP_ENABLED":true,"SHIP_FROM_COUNTRY":"US","APPLEPAY_AUTOCOMPLETE_CHECKOUT":"true","STRIPE_APPLEPAY_IS_ENABLED":"false","API_URL":"https://prod-ps-api-altmar.herokuapp.com/api/v1/","BRAND":"Gundry MD","SITE_NAME":"FunnelSite","NODE_ENV":"production","PAYPAL_IS_ENABLED":true,"GOOGLEPAY_IS_ENABLED":false,"APPLEPAY_IS_ENABLED":false,"CARDPAY_IS_ENABLED":true,"GTM":"GTM-5PNTFNV","GDPR":false,"IS_ENABLED_CMS":false,"STRIPE_KEY":null,"GOOGLE_APPLE_PAYMENT_AGENT":null,"CART_URL":"http://cart.gundrymd.com","FUNNEL_URL":"https://prod-ps-f-gundry-md.herokuapp.com/","AFFILIATE_URL":null,"KEEN_PROJECT_ID":null,"KEEN_WRITE_KEY":null,"KEEN_READ_KEY":null,"IS_ENABLED_SALESTAX":true,"PUBLIC_KEY":"-----BEGIN RSA PUBLIC KEY-----\nMIIBCgKCAQEAxKVSwo+1LKVUnmLzxz4ORIhSnQkprb7Nj/O/DPAkglutEkrLMBJI55wZDJqb\nsqmk0/0eCt1tMMbMNr6LNvYCTxd3j9N4rGBazSicly/y5GA2tviGFx9IILkb2RClTBpFcUc1\nBPXAMZod/eea3wQszkREL9Jt5jpDK/7toZRQD0hxuXxo7ub2tmpAmJ4m2+wOGETjf8zgh1al\nhlr8G8W5VjdLYyWFL1MNV2kldB3B

      Chrome Cache Entry: 145

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (5306), with no line terminators
      Category:downloaded
      Size (bytes):5306
      Entropy (8bit):5.100572054507943
      Encrypted:false
      SSDEEP:48:lD585yaTs4zTJvUenjPq7FgjXzFgjVHiQZvQyReh0kzunShuwLeGq5z3KavZKZ5S:GQ4zl7kFmzFSFVhuUmogbk
      MD5:424C979B0A92A7A5AAA7A0E01D5E3420
      SHA1:F9408D985D3D107A08697B4913F2D8A00AABDF37
      SHA-256:6C219C7D738E28534DE51DFDF531971760CEC0305E9FB98C990D752D000DBC67
      SHA-512:A6F2782FBCC71DC4B671E7D929D872C89DB1127906A04C8E7F74981330C289F22C841B07417D04C41B48B44DEFA7007A2F5C28AD176DB7DCACEBBCDEEA660E33
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/753.2ebb5bc3ad2edb7bab19.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[753],{nI0H:function(e,t,r){"use strict";r.r(t),r.d(t,"ion_spinner",(function(){return o}));var s=r("wEJo"),n=r("E/Mt"),i=r("74mu"),a=r("h3R7");const o=class{constructor(e){Object(s.o)(this,e),this.paused=!1}getName(){const e=this.name||n.c.get("spinner"),t=Object(n.b)(this);return e||("ios"===t?"lines":"circular")}render(){const e=Object(n.b)(this),t=this.getName(),r=a.a[t]||a.a.lines,o="number"==typeof this.duration&&this.duration>10?this.duration:r.dur,p=[];if(void 0!==r.circles)for(let s=0;s<r.circles;s++)p.push(l(r,o,s,r.circles));else if(void 0!==r.lines)for(let s=0;s<r.lines;s++)p.push(c(r,o,s,r.lines));return Object(s.j)(s.c,{class:Object(i.a)(this.color,{[e]:!0,["spinner-"+t]:!0,"spinner-paused":!!this.paused||n.c.getBoolean("_testing")}),role:"progressbar",style:r.elmDuration?{animationDuration:o+"ms"}:{}},p)}},l=(e,t,r,n)=>{const i=e.fn(t,r,n);return i.style["animation-duration"]=t+"ms",Object(s.j)("svg",{viewBox:i.viewBox|

      Chrome Cache Entry: 146

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (1412), with no line terminators
      Category:downloaded
      Size (bytes):1412
      Entropy (8bit):5.710327158156066
      Encrypted:false
      SSDEEP:24:7FG4HeMKM/wISD7hzfpe8D8pkZwpD4TKGAa+i42C+v+0eApO2pMp2MOL/:7FG4HeMKs+3hztApAI4T8a+UT+0eqOAP
      MD5:FDD6FCD547F224A3838AD81F1274D608
      SHA1:97DF3CC55D262F9E4BD29D00937D600D2C610A3A
      SHA-256:F7C4E07A81AAEF544676BAAED423401B2B9DD54681DA0B3183661E9DB8FAC8F3
      SHA-512:A8FCFE24B2760E970236F88B172EAC14DC44A997A2E14AAC7C66A627F575A8B2676D45B5AE46015007633ECFA7E116C13EFC96B070762F35C34793D4720A79B1
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/assets/process_env.js
      Preview:var process_env = {"PAYPAL_NVP_ENABLED":true,"SHIP_FROM_COUNTRY":"US","APPLEPAY_AUTOCOMPLETE_CHECKOUT":"true","STRIPE_APPLEPAY_IS_ENABLED":"false","API_URL":"https://prod-ps-api-altmar.herokuapp.com/api/v1/","BRAND":"Gundry MD","SITE_NAME":"FunnelSite","NODE_ENV":"production","PAYPAL_IS_ENABLED":true,"GOOGLEPAY_IS_ENABLED":false,"APPLEPAY_IS_ENABLED":false,"CARDPAY_IS_ENABLED":true,"GTM":"GTM-5PNTFNV","GDPR":false,"IS_ENABLED_CMS":false,"STRIPE_KEY":null,"GOOGLE_APPLE_PAYMENT_AGENT":null,"CART_URL":"http://cart.gundrymd.com","FUNNEL_URL":"https://prod-ps-f-gundry-md.herokuapp.com/","AFFILIATE_URL":null,"KEEN_PROJECT_ID":null,"KEEN_WRITE_KEY":null,"KEEN_READ_KEY":null,"IS_ENABLED_SALESTAX":true,"PUBLIC_KEY":"-----BEGIN RSA PUBLIC KEY-----\nMIIBCgKCAQEAxKVSwo+1LKVUnmLzxz4ORIhSnQkprb7Nj/O/DPAkglutEkrLMBJI55wZDJqb\nsqmk0/0eCt1tMMbMNr6LNvYCTxd3j9N4rGBazSicly/y5GA2tviGFx9IILkb2RClTBpFcUc1\nBPXAMZod/eea3wQszkREL9Jt5jpDK/7toZRQD0hxuXxo7ub2tmpAmJ4m2+wOGETjf8zgh1al\nhlr8G8W5VjdLYyWFL1MNV2kldB3B

      Chrome Cache Entry: 147

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (8638), with no line terminators
      Category:dropped
      Size (bytes):8638
      Entropy (8bit):5.11930137777257
      Encrypted:false
      SSDEEP:192:jAPKwFyYcKwxyYTZs1RpWtx+pUITG5qWCy4IfeJfnqWzYXlM9Zfw:jACAktxE+qWCt7qWzYX8K
      MD5:B0F3BDC47D77F8639B9C46E1FC26941F
      SHA1:80234BDE136AF1E5C5E78CD36280D3D789408DC9
      SHA-256:FEB35CE86A6D5FBDAE1250AFADB068E87D5A5E633C1737A4DD75650BF740B51D
      SHA-512:BD717E0D8A624A7C665AB2EE10B2C799A459C34A6BFE0D01200E93305B2023B438D75584F7D510BC29BAB50CE8FF6D7091B7F16ED0A0167520EC01954F14CB2D
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[737],{cABk:function(i,n,t){"use strict";t.r(n),t.d(n,"ion_loading",(function(){return m}));var e=t("wEJo"),o=t("E/Mt"),a=t("f9PN"),s=t("39oe"),r=t("74mu"),d=t("Kfhc");t("B4Jq"),t("W6o/");const l=i=>{const n=Object(d.a)(),t=Object(d.a)(),e=Object(d.a)();return t.addElement(i.querySelector("ion-backdrop")).fromTo("opacity",.01,"var(--backdrop-opacity)").beforeStyles({"pointer-events":"none"}).afterClearStyles(["pointer-events"]),e.addElement(i.querySelector(".loading-wrapper")).keyframes([{offset:0,opacity:.01,transform:"scale(1.1)"},{offset:1,opacity:1,transform:"scale(1)"}]),n.addElement(i).easing("ease-in-out").duration(200).addAnimation([t,e])},c=i=>{const n=Object(d.a)(),t=Object(d.a)(),e=Object(d.a)();return t.addElement(i.querySelector("ion-backdrop")).fromTo("opacity","var(--backdrop-opacity)",0),e.addElement(i.querySelector(".loading-wrapper")).keyframes([{offset:0,opacity:.99,transform:"scale(1)"},{offset:1,opacity:0,transfor

      Chrome Cache Entry: 148

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (5019), with no line terminators
      Category:dropped
      Size (bytes):5019
      Entropy (8bit):5.215066931902054
      Encrypted:false
      SSDEEP:96:Mjas06ggdTz8qFN1lW2gdggxg5G1Ewo0oYmg70gkdqNqVG6NZ2oHDdTlvIYSsDhn:Mjas03gdXFN1adw5G1Ewo0oYL7dkkn6H
      MD5:B0232B675465F05EE5A564EF26BBD9F9
      SHA1:5AFF9983CA3C7F2F30C71EDC722F85ECB65259A5
      SHA-256:C847CE5EF64759C45ED2C8AD048FAE2218159927696CCF5300976936DCC0EB05
      SHA-512:C8C069938F397F67C1FB0DFABFE0049AD233DB4A36D00E042DCBC68E0D4ECCC9FBF3C3522860EA30894FF8B957FD09E9B8A4D6B403A62D2A9B87ABF871628D8D
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[76],{EdS4:function(t,e,r){"use strict";r.r(e),r.d(e,"DefaultPageModule",(function(){return h}));var o=r("ofXK"),i=r("TEn/"),a=r("tyNb"),n=r("j1ZV"),s=r("h5Gk"),l=r("fXoL");let h=(()=>{class t{}return t.\u0275mod=l.Nb({type:t}),t.\u0275inj=l.Mb({factory:function(e){return new(e||t)},imports:[[o.b,i.l,n.a,a.h.forChild([{path:"",component:s.a}])]]}),t})()},FUS3:function(t,e,r){"use strict";r.d(e,"a",(function(){return i}));var o=r("fXoL");let i=(()=>{class t{}return t.\u0275mod=o.Nb({type:t}),t.\u0275inj=o.Mb({factory:function(e){return new(e||t)},imports:[[]]}),t})()},JsMn:function(t,e,r){"use strict";r.d(e,"a",(function(){return P}));var o=r("mrSG"),i=r("1sEo"),a=r("rg4e"),n=r("/0Ja"),s=r("ypZM"),l=r("eTZr"),h=r("swzM"),u=r("Encp"),c=r("9szu"),f=r("vY5A"),d=r("fXoL");let P=(()=>{class t{constructor(t,e,r,o,i,a,n,s){this.navCtrl=t,this.funnelProvider=e,this.urls=r,this.stateProvider=o,this.affiliateProvider=i,this.spinner=a,this.handle

      Chrome Cache Entry: 149

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (4609), with no line terminators
      Category:downloaded
      Size (bytes):4609
      Entropy (8bit):4.832378541729407
      Encrypted:false
      SSDEEP:96:YVmVoEDwvKMGU42oa9srtRdDyCnEhgIB7zhAUiphDHZT:YVmVgGUSaGbWCnCgAhyDHZT
      MD5:A425A07633E79E026660111B878C415F
      SHA1:798E986B11511539BB8443E479F50298BC78351C
      SHA-256:B6AA9105649DBD72B2199AC8849CC8029C42F26C9F35CDA59616327AAB3C703F
      SHA-512:2D657BDA19B4530A86D61DF6FB84DD85862B0557150303C3E33499D37DA8B57C59F6DA5FA590E652D7CFB9C1FDA63510278E06B0FA23BE9D718D9132EABC2E99
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/assets/countries.js
      Preview:var countries=[{"value":"US","states":{"WY":"Wyoming","WI":"Wisconsin","WV":"West Virginia","WA":"Washington","VA":"Virginia","VT":"Vermont","UT":"Utah","TX":"Texas","TN":"Tennessee","SD":"South Dakota","SC":"South Carolina","RI":"Rhode Island","PA":"Pennsylvania","OR":"Oregon","OK":"Oklahoma","OH":"Ohio","ND":"North Dakota","NC":"North Carolina","NY":"New York","NM":"New Mexico","NJ":"New Jersey","NH":"New Hampshire","NV":"Nevada","NE":"Nebraska","MT":"Montana","MO":"Missouri","MS":"Mississippi","MN":"Minnesota","MI":"Michigan","MA":"Massachusetts","MD":"Maryland","ME":"Maine","LA":"Louisiana","KY":"Kentucky","KS":"Kansas","IA":"Iowa","IN":"Indiana","IL":"Illinois","ID":"Idaho","HI":"Hawaii","GA":"Georgia","FL":"Florida","DC":"District of Columbia","DE":"Delaware","CT":"Connecticut","CO":"Colorado","CA":"California","AP":"Armed Forces Pacific","AE":"Armed Forces Europe","AA":"Armed Forces Americas","AR":"Arkansas","AZ":"Arizona","AK":"Alaska","AL":"Alabama"},"label":"United States"},{

      Chrome Cache Entry: 150

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:HTML document, ASCII text, with very long lines (1740)
      Category:downloaded
      Size (bytes):29316
      Entropy (8bit):4.883595231356156
      Encrypted:false
      SSDEEP:768:Q4dlmSfEcd5pLRK7WKJ9P2z1l2DnZOvaFeHjFX/Zgr5Qttq:Q4dlmSfVd5pLR2W6P2z1QDn7sDFX/ZgJ
      MD5:3FAF567407F957C0D170251451674275
      SHA1:84E7AF15ED2F666FDFB83113B037025B04B0BD70
      SHA-256:32332224E60F6E993A7CECF620744E796D6172047A643257FDF2B48991758619
      SHA-512:D6890116CBF9E6C9B66BE899D7D5F3DB7CE46B781D4F3401E0D1ECD183648148FBB8DF21E3E8EF5C2EF4E4FDA7DD9038A8E307A24EA7298F3716BDA460052EAF
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/os210803a_ap/
      Preview:<!DOCTYPE html>.<html lang="en" class="hydrated">.<head>.<script>. try {. sessionStorage.setItem('timer_start', new Date().getTime());. } catch (e) {. console.log('error setting up '+e);. }. </script>.<meta http-equiv="Content-Security-Policy" content="font-src * 'self' data:;">.<meta charset="utf-8" />.<title id="title">Gundry MD</title>.<base href="/" />.<meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, maximum-scale=1.0, user-scalable=no" />.<meta name="format-detection" content="telephone=no" />.<meta name="msapplication-tap-highlight" content="no" />.<link rel="icon" type="image/x-icon" href="assets/img/favicon.ico?v=2" />.<meta name="theme-color" content="#4e8ef7" />..<meta name="apple-mobile-web-app-capable" content="yes" />.<meta name="apple-mobile-web-app-status-bar-style" content="black" />.<meta name="robots" content="noindex,nofollow">.<script src="https://js.braintreegateway.com/web/3.97.2/js/hosted-fields.min.js">

      Chrome Cache Entry: 151

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (40438), with no line terminators
      Category:downloaded
      Size (bytes):40438
      Entropy (8bit):5.236557249948317
      Encrypted:false
      SSDEEP:768:HcBhLIx4Oc0sNnoBS4vYN0gYLb0Q++40bZNE3/NXMCO4vQpdSwr9A0BzJ8vQAz6o:OFIXfAu8
      MD5:3AFFCFB758F4AB2F42643EA9CB6745CA
      SHA1:CD001116D44F332C3838A6672581E93307D77BE9
      SHA-256:3963775CEA9BF8EEB3458234A5A0CC279DF476244878266F7AC11A8AAF234C87
      SHA-512:CD47C307DF8D019C7D0F9B437C27C288C916818BF183540B82B8781F50B21B2135219391BF94AF9FD82E185317C1298B15DEB42FFF496FF441596EF7B8A4898E
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/721.993cc209419f8e6e9f15.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[721],{hgI1:function(t,o,e){"use strict";e.r(o),e.d(o,"ion_app",(function(){return d})),e.d(o,"ion_buttons",(function(){return p})),e.d(o,"ion_content",(function(){return h})),e.d(o,"ion_footer",(function(){return f})),e.d(o,"ion_header",(function(){return y})),e.d(o,"ion_router_outlet",(function(){return A})),e.d(o,"ion_title",(function(){return j})),e.d(o,"ion_toolbar",(function(){return O}));var i=e("wEJo"),n=e("E/Mt"),r=e("74mu"),a=e("W6o/"),s=e("bC4P"),l=e("spDm"),c=e("qb1Q");const d=class{constructor(t){Object(i.o)(this,t)}componentDidLoad(){g(async()=>{const t=Object(n.a)(window,"hybrid");n.c.getBoolean("_testing")||e.e(766).then(e.bind(null,"r+KJ")).then(t=>t.startTapClick(n.c)),n.c.getBoolean("statusTap",t)&&e.e(764).then(e.bind(null,"eVst")).then(t=>t.startStatusTap()),n.c.getBoolean("inputShims",b())&&e.e(718).then(e.bind(null,"aYbf")).then(t=>t.startInputShims(n.c));const o=await Promise.resolve().then(e.bind(null,"B4Jq"))

      Chrome Cache Entry: 152

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (30015), with no line terminators
      Category:dropped
      Size (bytes):30015
      Entropy (8bit):5.478585822973082
      Encrypted:false
      SSDEEP:768:rAJsGbugMPnl5cPJMQ5r4PM8tzizyzMz5iqYkmnwFIGUILwILwKLNlZ:G3bBMPnl5chMQN4PM8m12nILjZ
      MD5:4ABE6BD8C1EB31CAF609ED1A61DA278F
      SHA1:D8FD5B79E4B14CE42DDC91F3337B3867329151AE
      SHA-256:F32D05F83039B9CC66E733C2BC0B25FE8B9D50253B861252821B44BCAAE9346F
      SHA-512:8FFA9C08B18133055A5897EAB0FC5FEEF02E6A6F08EE259722EF3AED2688B6E2E310D8E18A46C204BE1AAC05C7D8D0EACE804F95200E9EBC1EFA5A9CEACF32DD
      Malicious:false
      Reputation:low
      Preview:!function(t){var e;"object"==typeof exports&&"undefined"!=typeof module?module.exports=t():"function"==typeof define&&define.amd?define([],t):((e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(e.braintree={})).dataCollector=t()}(function(){return function r(i,o,s){function a(e,t){if(!o[e]){if(!i[e]){var n="function"==typeof require&&require;if(!t&&n)return n(e,!0);if(c)return c(e,!0);throw(t=new Error("Cannot find module '"+e+"'")).code="MODULE_NOT_FOUND",t}n=o[e]={exports:{}},i[e][0].call(n.exports,function(t){return a(i[e][1][t]||t)},n,n.exports,r,i,o,s)}return o[e].exports}for(var c="function"==typeof require&&require,t=0;t<s.length;t++)a(s[t]);return a}({1:[function(t,e,n){"use strict";var r=this&&this.__importDefault||function(t){return t&&t.__esModule?t:{default:t}},r=(Object.defineProperty(n,"__esModule",{value:!0}),n.PromiseGlobal=void 0,r(t("promise-polyfill"))),t="undefined"!=typeof Promise?Promise:r.default

      Chrome Cache Entry: 153

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (13653), with no line terminators
      Category:dropped
      Size (bytes):13653
      Entropy (8bit):5.356105414662191
      Encrypted:false
      SSDEEP:192:diPELK/Vt1WccZueXyti3LKGAV62SZ+BBNTl+DNjLKGR0iXKMbMXgMf1GbbOaWSQ:dAVt1Wf5XytjdM0IbOaWrfgzfrFQ
      MD5:4C4E346E073EE0BFC83941AD38FACB75
      SHA1:09D35C3F54A2D5AB00ACE080CB08D2548F4EC1E5
      SHA-256:36BAEE7EFAD8279AD1C6482AD052E9919A86DDD7666E3D9E178B52E40F84605B
      SHA-512:9F31B838CA184DCEFA3F71D1975AEF231B01D3B1BA94E8112C6B97CFA6A26BC326CFCAD2CF19D9ED76B27F06700DAF6FC1847918559CE2B58121270E74BBEA86
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[49],{"99Un":function(t,e,n){"use strict";n.r(e),n.d(e,"HomePageModule",(function(){return l}));var i=n("ofXK"),r=n("TEn/"),o=n("tyNb"),s=n("j1ZV"),a=n("qwQQ"),h=n("fXoL");let l=(()=>{class t{}return t.\u0275mod=h.Nb({type:t}),t.\u0275inj=h.Mb({factory:function(e){return new(e||t)},imports:[[i.b,r.l,s.a,o.h.forChild([{path:"",component:a.a}])]]}),t})()},FUS3:function(t,e,n){"use strict";n.d(e,"a",(function(){return r}));var i=n("fXoL");let r=(()=>{class t{}return t.\u0275mod=i.Nb({type:t}),t.\u0275inj=i.Mb({factory:function(e){return new(e||t)},imports:[[]]}),t})()},NJtq:function(t,e,n){"use strict";n.d(e,"a",(function(){return m}));var i=n("mrSG"),r=n("1sEo"),o=n("pxIk"),s=n("Yefh"),a=n("ypZM"),h=n("rg4e"),l=n("dZuI"),c=n("swzM"),d=n("Encp"),u=n("fXoL"),p=n("jhN1");let m=(()=>{class t{constructor(t,e,n,i,r,o,s,a,h){this.navCtrl=t,this.eventStreamer=e,this.tcrApiOrderform=n,this.sanitizer=i,this.stateProvider=r,this.funnelProvider=o,t

      Chrome Cache Entry: 154

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (22829), with no line terminators
      Category:dropped
      Size (bytes):22829
      Entropy (8bit):4.644333144180019
      Encrypted:false
      SSDEEP:384:fCSEDaBeHyq5Eis3iwIB18RioGWM0bay9visTTHmYTfqDU1F:aSE2B8hs3MvMlM0W3AHmYeDU1F
      MD5:168B15B26191DF9958A2DD1E8D909B0E
      SHA1:B477B03497B765C066A03DC22DCD3A6094984D7C
      SHA-256:F7BAD2C2238C0379254408C9D56A6570B35B4C70169B9159E03A732FF9247F7A
      SHA-512:501F8E4B6FA6BB43900F0F605B684AD60B9F35CD39845BF86039AD406DDFDEB72C9CB53BB4082D513802C7764FC2A9B875D566332626193D5A7CE5CAE9CE6100
      Malicious:false
      Reputation:low
      Preview:!function(e){function a(a){for(var d,r,t=a[0],n=a[1],o=a[2],i=0,l=[];i<t.length;i++)r=t[i],Object.prototype.hasOwnProperty.call(b,r)&&b[r]&&l.push(b[r][0]),b[r]=0;for(d in n)Object.prototype.hasOwnProperty.call(n,d)&&(e[d]=n[d]);for(u&&u(a);l.length;)l.shift()();return f.push.apply(f,o||[]),c()}function c(){for(var e,a=0;a<f.length;a++){for(var c=f[a],d=!0,t=1;t<c.length;t++)0!==b[c[t]]&&(d=!1);d&&(f.splice(a--,1),e=r(r.s=c[0]))}return e}var d={},b={14:0},f=[];function r(a){if(d[a])return d[a].exports;var c=d[a]={i:a,l:!1,exports:{}};return e[a].call(c.exports,c,c.exports,r),c.l=!0,c.exports}r.e=function(e){var a=[],c=b[e];if(0!==c)if(c)a.push(c[2]);else{var d=new Promise((function(a,d){c=b[e]=[a,d]}));a.push(c[2]=d);var f,t=document.createElement("script");t.charset="utf-8",t.timeout=120,r.nc&&t.setAttribute("nonce",r.nc),t.src=function(e){return r.p+""+({1:"common",43:"polyfills-core-js",44:"polyfills-css-shim",45:"polyfills-dom"}[e]||e)+"."+{0:"5a154218aacd9ec331b7",1:"f85ddbc7ebc5a

      Chrome Cache Entry: 155

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (40438), with no line terminators
      Category:dropped
      Size (bytes):40438
      Entropy (8bit):5.236557249948317
      Encrypted:false
      SSDEEP:768:HcBhLIx4Oc0sNnoBS4vYN0gYLb0Q++40bZNE3/NXMCO4vQpdSwr9A0BzJ8vQAz6o:OFIXfAu8
      MD5:3AFFCFB758F4AB2F42643EA9CB6745CA
      SHA1:CD001116D44F332C3838A6672581E93307D77BE9
      SHA-256:3963775CEA9BF8EEB3458234A5A0CC279DF476244878266F7AC11A8AAF234C87
      SHA-512:CD47C307DF8D019C7D0F9B437C27C288C916818BF183540B82B8781F50B21B2135219391BF94AF9FD82E185317C1298B15DEB42FFF496FF441596EF7B8A4898E
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[721],{hgI1:function(t,o,e){"use strict";e.r(o),e.d(o,"ion_app",(function(){return d})),e.d(o,"ion_buttons",(function(){return p})),e.d(o,"ion_content",(function(){return h})),e.d(o,"ion_footer",(function(){return f})),e.d(o,"ion_header",(function(){return y})),e.d(o,"ion_router_outlet",(function(){return A})),e.d(o,"ion_title",(function(){return j})),e.d(o,"ion_toolbar",(function(){return O}));var i=e("wEJo"),n=e("E/Mt"),r=e("74mu"),a=e("W6o/"),s=e("bC4P"),l=e("spDm"),c=e("qb1Q");const d=class{constructor(t){Object(i.o)(this,t)}componentDidLoad(){g(async()=>{const t=Object(n.a)(window,"hybrid");n.c.getBoolean("_testing")||e.e(766).then(e.bind(null,"r+KJ")).then(t=>t.startTapClick(n.c)),n.c.getBoolean("statusTap",t)&&e.e(764).then(e.bind(null,"eVst")).then(t=>t.startStatusTap()),n.c.getBoolean("inputShims",b())&&e.e(718).then(e.bind(null,"aYbf")).then(t=>t.startInputShims(n.c));const o=await Promise.resolve().then(e.bind(null,"B4Jq"))

      Chrome Cache Entry: 156

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (5019), with no line terminators
      Category:downloaded
      Size (bytes):5019
      Entropy (8bit):5.215066931902054
      Encrypted:false
      SSDEEP:96:Mjas06ggdTz8qFN1lW2gdggxg5G1Ewo0oYmg70gkdqNqVG6NZ2oHDdTlvIYSsDhn:Mjas03gdXFN1adw5G1Ewo0oYL7dkkn6H
      MD5:B0232B675465F05EE5A564EF26BBD9F9
      SHA1:5AFF9983CA3C7F2F30C71EDC722F85ECB65259A5
      SHA-256:C847CE5EF64759C45ED2C8AD048FAE2218159927696CCF5300976936DCC0EB05
      SHA-512:C8C069938F397F67C1FB0DFABFE0049AD233DB4A36D00E042DCBC68E0D4ECCC9FBF3C3522860EA30894FF8B957FD09E9B8A4D6B403A62D2A9B87ABF871628D8D
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/76.eb90015d47eecd3e6e43.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[76],{EdS4:function(t,e,r){"use strict";r.r(e),r.d(e,"DefaultPageModule",(function(){return h}));var o=r("ofXK"),i=r("TEn/"),a=r("tyNb"),n=r("j1ZV"),s=r("h5Gk"),l=r("fXoL");let h=(()=>{class t{}return t.\u0275mod=l.Nb({type:t}),t.\u0275inj=l.Mb({factory:function(e){return new(e||t)},imports:[[o.b,i.l,n.a,a.h.forChild([{path:"",component:s.a}])]]}),t})()},FUS3:function(t,e,r){"use strict";r.d(e,"a",(function(){return i}));var o=r("fXoL");let i=(()=>{class t{}return t.\u0275mod=o.Nb({type:t}),t.\u0275inj=o.Mb({factory:function(e){return new(e||t)},imports:[[]]}),t})()},JsMn:function(t,e,r){"use strict";r.d(e,"a",(function(){return P}));var o=r("mrSG"),i=r("1sEo"),a=r("rg4e"),n=r("/0Ja"),s=r("ypZM"),l=r("eTZr"),h=r("swzM"),u=r("Encp"),c=r("9szu"),f=r("vY5A"),d=r("fXoL");let P=(()=>{class t{constructor(t,e,r,o,i,a,n,s){this.navCtrl=t,this.funnelProvider=e,this.urls=r,this.stateProvider=o,this.affiliateProvider=i,this.spinner=a,this.handle

      Chrome Cache Entry: 157

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (37243), with no line terminators
      Category:dropped
      Size (bytes):37243
      Entropy (8bit):5.232564088039265
      Encrypted:false
      SSDEEP:768:bvnxbLjjq9No7Aw+FqLVOeWd8LqGt7haE8tim1RZDXiV0K+AxJXov7YM4/XreoL5:biNo7vpJlitOTr
      MD5:74DEF0AD20C6203684661FA04E9BCE2B
      SHA1:D4D4F4CBDFC68EA3DEDD63D235757EC85A876DA2
      SHA-256:8FF7DE36CAB0C49D5D5930EFD791EDAD1843ECFEB0DAE32A4B3AA6A4CA121221
      SHA-512:CBD8099E8F1EAEFEE968B56D4C24E74D9F742499D738708EE1B504DBE7AD4724ABE52DA9CCCFFF0DFC5EEB1BE2C4A8F84CCAE45D46AA0FD6F3D0AB01BF32EF07
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[42],{1:function(e,t,n){e.exports=n("hN/g")},"hN/g":function(e,t,n){"use strict";n.r(t),n("o3nU"),n("pDpN")},o3nU:function(e,t){window.__Zone_disable_customElements=!0},pDpN:function(e,t,n){(function(o){var r,s;void 0===(s="function"==typeof(r=function(){"use strict";!function(e){const t=e.performance;function n(e){t&&t.mark&&t.mark(e)}function o(e,n){t&&t.measure&&t.measure(e,n)}n("Zone");const r=e.__Zone_symbol_prefix||"__zone_symbol__";function s(e){return r+e}const i=!0===e[s("forceDuplicateZoneCheck")];if(e.Zone){if(i||"function"!=typeof e.Zone.__symbol__)throw new Error("Zone already loaded.");return e.Zone}class a{constructor(e,t){this._parent=e,this._name=t?t.name||"unnamed":"<root>",this._properties=t&&t.properties||{},this._zoneDelegate=new l(this,this._parent&&this._parent._zoneDelegate,t)}static assertZonePatched(){if(e.Promise!==C.ZoneAwarePromise)throw new Error("Zone.js has detected that ZoneAwarePromise `(window|global

      Chrome Cache Entry: 158

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 302x79, components 3
      Category:dropped
      Size (bytes):4413
      Entropy (8bit):7.833949095126615
      Encrypted:false
      SSDEEP:96:RhXANZZqAlLREYPgu9v2ZA5e6LX4l54qHgor9qr/JCBHEnw:nANvqA3ZPJ2C5e6LX4l54qAsqd4Enw
      MD5:BEAF1FA2AFE43B6F8B292DD02755B7FA
      SHA1:AFE1450CCD99EFC4A4378446DA064C6890C7E413
      SHA-256:5D7A48F4EB2E5B82C2F4FAE762AEBF632C65AB78312AA95AF4718E28CB5817B2
      SHA-512:0CCA5855AA06CC7B0238DC945367D6BFD4CEEBB333AEB9E345513BED9219F9C9B29BA59ED3768A71DDD445509B34F86188D6EA30DAC2199CF632167EEE83C230
      Malicious:false
      Reputation:low
      Preview:......JFIF............................................................!........."$".$...........................................................................O...."..........6...................................................................-..4.........Q...a....._9'.p...........>.<......U.~.N._..2.?.}y...X............5...o..gfs...W.Y~n.r..).:.T{...`G~^%..bwqW%.=z...;.........NH.7^.*.a.=t.[..8.S.y.P.."...........XUy.5.'.Nr.......E.h.m.s.=!h.Z..Y.."...MR...B...Z.S...>m.6..D.J....o....#.c.Q.ntg..................-................................. !"17P@%24...........6f....G%...i....J.&<.......C0.e.T.H.'..Q..........f..v$.<.e."..`....."..`_s..Lx.../!..n.....i..u..q..*\..B[....f.....'..;){>.<.k..u.,.u......j.=..W/.... .t....H....F....]}.....\.K.....72......X..M\I(...'.BP=.p.t...[.)(..rA.l....l%L..R.-.dX.J...6...zE.b.s.?.0&.V{S...R.>.2..|vB.-;...;1.m..oX.$P......M....<.q.(.^....\.s(..x.g.k.......5.).J*..).fC7...S..,'..........A..{^F.9:.A(hok..f..5...~

      Chrome Cache Entry: 159

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (65536), with no line terminators
      Category:dropped
      Size (bytes):784911
      Entropy (8bit):5.421624223608813
      Encrypted:false
      SSDEEP:12288:91hQG/7r+VgMA8PWpk5H85x31lXA9f0RJ9czJAatJ7HE2:9wG/7r+Vu8epk5H85x31lXA9f0RJ9czR
      MD5:8E5710DAC05C5AA866D52603805A45A6
      SHA1:A0484C4E343D8E46A9F61F716F92531AE2FF5FB9
      SHA-256:EF1A890C48A5BBD9DA7BC2B53580EAD5718153010133C96E06BBF1DE27F0BF91
      SHA-512:6503D827F1A587E2DFD86BA8F1D7FA095154F2BF851251A81B3E24091F9462F6F51EBD6F79C5CF164E7A6C87182DEBBF18AF741F2EF5854B6B34E397608EBEB3
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[41],{"+lAO":function(e,t,n){"use strict";n.r(t),n.d(t,"iosTransitionAnimation",(function(){return d})),n.d(t,"shadow",(function(){return o}));var r=n("Kfhc"),i=n("qb1Q");n("W6o/"),n("wEJo");const a=e=>document.querySelector(e+".ion-cloned-element"),o=e=>e.shadowRoot||e,s=e=>{const t="ION-TABS"===e.tagName?e:e.querySelector("ion-tabs"),n="ion-content ion-header:not(.header-collapse-condense-inactive) ion-title.title-large";if(null!=t){const e=t.querySelector("ion-tab:not(.tab-hidden), .ion-page:not(.ion-page-hidden)");return null!=e?e.querySelector(n):null}return e.querySelector(n)},l=(e,t)=>{const n="ION-TABS"===e.tagName?e:e.querySelector("ion-tabs");let r=[];if(null!=n){const e=n.querySelector("ion-tab:not(.tab-hidden), .ion-page:not(.ion-page-hidden)");null!=e&&(r=e.querySelectorAll("ion-buttons"))}else r=e.querySelectorAll("ion-buttons");for(const i of r){const e=i.closest("ion-header"),n=e&&!e.classList.contains("header-collapse

      Chrome Cache Entry: 160

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (770), with no line terminators
      Category:downloaded
      Size (bytes):770
      Entropy (8bit):5.0536850161639935
      Encrypted:false
      SSDEEP:24:lD58epN92XCRFHIYEq1ohXgAhpQWqZx00vd29/ejJOem54:lD58E9NjzEq2zLRqZx04d2/eUF54
      MD5:125FED5E8D19A4CA22A8E04795EC2836
      SHA1:EFA590C9A1301DD859BB504BB3F554A688CFAE3F
      SHA-256:54367E4FBFD599CB61BB504DAA62D5BF14613E84649D2780654D57D09B3DFD1C
      SHA-512:96C8672885C3FEEC3765A1C8853B18D34483870393193E6896F20745B6493A137A870F22831661FAAC537573794C68AF3B2B56617F4971E6736799C572707706
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/717.f225e00db317d614b3a3.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[717],{Tsnu:function(e,s,t){"use strict";t.r(s),t.d(s,"startFocusVisible",(function(){return n}));const o=["Tab","ArrowDown","Space","Escape"," ","Shift","Enter","ArrowLeft","ArrowRight","ArrowUp"],n=()=>{let e=[],s=!0;const t=document,n=s=>{e.forEach(e=>e.classList.remove("ion-focused")),s.forEach(e=>e.classList.add("ion-focused")),e=s},c=()=>{s=!1,n([])};t.addEventListener("keydown",e=>{s=o.includes(e.key),s||n([])}),t.addEventListener("focusin",e=>{if(s&&e.composedPath){const s=e.composedPath().filter(e=>!!e.classList&&e.classList.contains("ion-focusable"));n(s)}}),t.addEventListener("focusout",()=>{t.activeElement===t.body&&n([])}),t.addEventListener("touchstart",c),t.addEventListener("mousedown",c)}}}]);

      Chrome Cache Entry: 161

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (8638), with no line terminators
      Category:downloaded
      Size (bytes):8638
      Entropy (8bit):5.11930137777257
      Encrypted:false
      SSDEEP:192:jAPKwFyYcKwxyYTZs1RpWtx+pUITG5qWCy4IfeJfnqWzYXlM9Zfw:jACAktxE+qWCt7qWzYX8K
      MD5:B0F3BDC47D77F8639B9C46E1FC26941F
      SHA1:80234BDE136AF1E5C5E78CD36280D3D789408DC9
      SHA-256:FEB35CE86A6D5FBDAE1250AFADB068E87D5A5E633C1737A4DD75650BF740B51D
      SHA-512:BD717E0D8A624A7C665AB2EE10B2C799A459C34A6BFE0D01200E93305B2023B438D75584F7D510BC29BAB50CE8FF6D7091B7F16ED0A0167520EC01954F14CB2D
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/737.5ca841c8dbb56df894a2.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[737],{cABk:function(i,n,t){"use strict";t.r(n),t.d(n,"ion_loading",(function(){return m}));var e=t("wEJo"),o=t("E/Mt"),a=t("f9PN"),s=t("39oe"),r=t("74mu"),d=t("Kfhc");t("B4Jq"),t("W6o/");const l=i=>{const n=Object(d.a)(),t=Object(d.a)(),e=Object(d.a)();return t.addElement(i.querySelector("ion-backdrop")).fromTo("opacity",.01,"var(--backdrop-opacity)").beforeStyles({"pointer-events":"none"}).afterClearStyles(["pointer-events"]),e.addElement(i.querySelector(".loading-wrapper")).keyframes([{offset:0,opacity:.01,transform:"scale(1.1)"},{offset:1,opacity:1,transform:"scale(1)"}]),n.addElement(i).easing("ease-in-out").duration(200).addAnimation([t,e])},c=i=>{const n=Object(d.a)(),t=Object(d.a)(),e=Object(d.a)();return t.addElement(i.querySelector("ion-backdrop")).fromTo("opacity","var(--backdrop-opacity)",0),e.addElement(i.querySelector(".loading-wrapper")).keyframes([{offset:0,opacity:.99,transform:"scale(1)"},{offset:1,opacity:0,transfor

      Chrome Cache Entry: 162

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (38602), with no line terminators
      Category:dropped
      Size (bytes):38602
      Entropy (8bit):5.432933734373714
      Encrypted:false
      SSDEEP:768:E7gXReL4RDwCAbkl9nDxu7de90OUsTGn2IL4a2s:9GEDiG9nlGK7UsTIL4Xs
      MD5:D9DCF1CBD42751AB39CB51FC64E6E133
      SHA1:34997EAD7E4438F012EBC98E153F6FBA08BD11B4
      SHA-256:7CC8D713A18B57F6816EBF31B137904FEB0C02DACEE6991D932F58C3F8B41CE9
      SHA-512:C9E9C0ECB041A1AE0323AA31826B15593114B4D014EA10F7930BB76A1B8BD8F5589E73BBF37FB93CF7CF5E51F88F5E543179AF240BFA61054A402D8D4B02B345
      Malicious:false
      Reputation:low
      Preview:!function(e){var t;"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):((t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(t.braintree={})).client=e()}(function(){return function n(o,i,a){function s(t,e){if(!i[t]){if(!o[t]){var r="function"==typeof require&&require;if(!e&&r)return r(t,!0);if(c)return c(t,!0);throw(e=new Error("Cannot find module '"+t+"'")).code="MODULE_NOT_FOUND",e}r=i[t]={exports:{}},o[t][0].call(r.exports,function(e){return s(o[t][1][e]||e)},r,r.exports,n,o,i,a)}return i[t].exports}for(var c="function"==typeof require&&require,e=0;e<a.length;e++)s(a[e]);return s}({1:[function(e,t,r){"use strict";var n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}},n=(Object.defineProperty(r,"__esModule",{value:!0}),r.PromiseGlobal=void 0,n(e("promise-polyfill"))),e="undefined"!=typeof Promise?Promise:n.default;r.Prom

      Chrome Cache Entry: 163

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (55785)
      Category:downloaded
      Size (bytes):639725
      Entropy (8bit):5.560052091738205
      Encrypted:false
      SSDEEP:12288:h/7hcRK4U9CKKrXmZjlSU9D+TcoP4d2XpNJ3mBh:h/7hcRK4U9CKKrXmZjlSI+TMd2fo
      MD5:5124F0A74730235FCD422D89D3EBA74E
      SHA1:8FD7E3E40D94E0648A02DBBFCC3BF5F888DEDA87
      SHA-256:B9C53C0DB0F677E225C6143FFA28C1E34AA2EE38D0B819CD8A4F1414AD7B219A
      SHA-512:BB212F62BD7DD75791B93FFC9FBC0603A11752ABC6ED24904CDCC5DAE022D0EA7892CE5809D6ED8AD6DA1DBAE7E031DCC44A8ADEBD496A27A403B0F8862708AA
      Malicious:false
      Reputation:low
      URL:https://www.googletagmanager.com/gtm.js?id=GTM-5PNTFNV
      Preview:.// Copyright 2012 Google Inc. All rights reserved.. . (function(w,g){w[g]=w[g]||{};. w[g].e=function(s){return eval(s);};})(window,'google_tag_manager');. .(function(){..var data = {."resource": {. "version":"1337",. . "macros":[{"function":"__u","vtp_component":"URL","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__e"},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"screenPath"},{"function":"__u","vtp_component":"HOST","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"affiliateInfo.utmCampaign"},{"function":"__e"},{"function":"__u","vtp_component":"PATH","vtp_enableMultiQueryKeys":false,"vtp_enableIgnoreEmptyQueryParam":false},{"function":"__v","vtp_name":"gtm.elementClasses","vtp_dataLayerVersion":1},{"function":"__v","vtp_dataLayerVersion":2,"vtp_setDefaultValue":false,"vtp_name":"ecommerce.purchase.

      Chrome Cache Entry: 164

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (13653), with no line terminators
      Category:downloaded
      Size (bytes):13653
      Entropy (8bit):5.356105414662191
      Encrypted:false
      SSDEEP:192:diPELK/Vt1WccZueXyti3LKGAV62SZ+BBNTl+DNjLKGR0iXKMbMXgMf1GbbOaWSQ:dAVt1Wf5XytjdM0IbOaWrfgzfrFQ
      MD5:4C4E346E073EE0BFC83941AD38FACB75
      SHA1:09D35C3F54A2D5AB00ACE080CB08D2548F4EC1E5
      SHA-256:36BAEE7EFAD8279AD1C6482AD052E9919A86DDD7666E3D9E178B52E40F84605B
      SHA-512:9F31B838CA184DCEFA3F71D1975AEF231B01D3B1BA94E8112C6B97CFA6A26BC326CFCAD2CF19D9ED76B27F06700DAF6FC1847918559CE2B58121270E74BBEA86
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/49.c1c54292cab8b50d15de.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[49],{"99Un":function(t,e,n){"use strict";n.r(e),n.d(e,"HomePageModule",(function(){return l}));var i=n("ofXK"),r=n("TEn/"),o=n("tyNb"),s=n("j1ZV"),a=n("qwQQ"),h=n("fXoL");let l=(()=>{class t{}return t.\u0275mod=h.Nb({type:t}),t.\u0275inj=h.Mb({factory:function(e){return new(e||t)},imports:[[i.b,r.l,s.a,o.h.forChild([{path:"",component:a.a}])]]}),t})()},FUS3:function(t,e,n){"use strict";n.d(e,"a",(function(){return r}));var i=n("fXoL");let r=(()=>{class t{}return t.\u0275mod=i.Nb({type:t}),t.\u0275inj=i.Mb({factory:function(e){return new(e||t)},imports:[[]]}),t})()},NJtq:function(t,e,n){"use strict";n.d(e,"a",(function(){return m}));var i=n("mrSG"),r=n("1sEo"),o=n("pxIk"),s=n("Yefh"),a=n("ypZM"),h=n("rg4e"),l=n("dZuI"),c=n("swzM"),d=n("Encp"),u=n("fXoL"),p=n("jhN1");let m=(()=>{class t{constructor(t,e,n,i,r,o,s,a,h){this.navCtrl=t,this.eventStreamer=e,this.tcrApiOrderform=n,this.sanitizer=i,this.stateProvider=r,this.funnelProvider=o,t

      Chrome Cache Entry: 165

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (65536), with no line terminators
      Category:downloaded
      Size (bytes):1200372
      Entropy (8bit):5.294359103305345
      Encrypted:false
      SSDEEP:12288:bMeJkyFT1iXiben3362uTyv6F4YVl2RysSYaC8CjFN41Du/cX9+zPsM53F2OuXXD:jJ2FOzbWUOeHWEpZwtQmoZb/
      MD5:758B2911E5E626629787713D734E92B6
      SHA1:51C57EDFF1CEB11968E8CC1DB5D6F60DEA6D1AB3
      SHA-256:78981854D2C6BAC32749FEC32F9E2D7F6CDBC18FDE0D6C90DF4FFBE4DA105F7B
      SHA-512:9688BD59AF88C4444B03B60A119F33FEA36A1486F5DCD18659D7BCC03742CA978EEF66E15F0F6B222EFDB86842D4F3AACC3AAA6B3E56D0F24B711F562B324753
      Malicious:false
      Reputation:low
      URL:https://www2.thehealthiestfat.com/common.f85ddbc7ebc5a146a248.js
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[1],{"+HKJ":function(t,e,o){"use strict";o.d(e,"a",(function(){return A}));var a=o("uHdq"),n=o("1sEo"),s=o("AqYC"),i=o("0F6l"),r=o("pxIk"),p=o("QJQ6"),c=o("5aNy"),h=o("z8tj"),u=o("clCo"),d=o("nci+"),l=o("/m5n"),m=o("/0Ja"),g=o("ypZM"),y=o("Yefh"),b=o("rg4e"),_=o("swzM"),f=o("dZuI"),w=o("3hd2"),P=o("Encp"),v=o("9szu"),N=o("fXoL"),$=o("tyNb");let A=(()=>{class t extends a.a{constructor(t,e,o,a,n,s,i,r,p,c,h,u,d,l,m,g,y,b,_,f,w){super(t,e,o,a,n,s,i,r,p,c,h,u,d,l,m,g,y,b,_,f,w),this.navCtrl=t,this.tcrApi=e,this.tcrApiOrder=o,this.eventStreamer=a,this.paypalPayment=n,this.ngZone=s,this.ApplePayWeb=i,this.GooglePayWeb=r,this.shippingProvider=p,this.tcrApiRemoteServices=c,this.calculateHelper=h,this.urlsHelper=u,this.stateProvider=d,this.tcrApiOrderform=l,this.funnelProvider=m,this.spinner=g,this.route=y,this.generalProvider=b,this.scriptLoader=_,this.handler=f,this.amazonPay=w}setProductName(){this.productName="Polyphenol-Rich Olive Oil",th

      Chrome Cache Entry: 166

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (59638), with no line terminators
      Category:dropped
      Size (bytes):59638
      Entropy (8bit):5.384268710012802
      Encrypted:false
      SSDEEP:768:gsv3147DmBGFiC43zcUSHDGn8ILxwPRiag3WGJXubDLvSiWUeLNGIs:vZK43zcTILxMRiag3WGJXubDLZWUQ2
      MD5:87F1785A06A7B9B22C36C9ADFD6FA060
      SHA1:3088E49555CFED24D1418C5BC618B26D3CB6393D
      SHA-256:8B37337F74B6289BEF481BADFEB67C0778BA97592141300E25B3900CCFA88A68
      SHA-512:643D63EAD5B3C024BF693E275B3148B1D5112AB9378CA86A2686ADBF69D7B843DC54FE5FAEE51C1AA856FBA99A6FC0324A9049405CD1E1557B6683B3A1D855D7
      Malicious:false
      Reputation:low
      Preview:!function(e){var t;"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):((t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(t.braintree={})).paypalCheckout=e()}(function(){return function n(i,o,s){function a(t,e){if(!o[t]){if(!i[t]){var r="function"==typeof require&&require;if(!e&&r)return r(t,!0);if(c)return c(t,!0);throw(e=new Error("Cannot find module '"+t+"'")).code="MODULE_NOT_FOUND",e}r=o[t]={exports:{}},i[t][0].call(r.exports,function(e){return a(i[t][1][e]||e)},r,r.exports,n,i,o,s)}return o[t].exports}for(var c="function"==typeof require&&require,e=0;e<s.length;e++)a(s[e]);return a}({1:[function(e,t,r){"use strict";var n=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}},n=(Object.defineProperty(r,"__esModule",{value:!0}),r.PromiseGlobal=void 0,n(e("promise-polyfill"))),e="undefined"!=typeof Promise?Promise:n.defaul

      Chrome Cache Entry: 167

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (627), with no line terminators
      Category:dropped
      Size (bytes):627
      Entropy (8bit):5.323985547071034
      Encrypted:false
      SSDEEP:12:lD71AZeNjOzbXSP8jD5FEJuV5LiDAXvplK6SJKrbRtPUZ5nbMUyCOyOe6fnZ:lD58eNjaC89FEJDDAXHK6DrFtPEbkn7B
      MD5:C0C09F026BF8600B556E25C44FC40E14
      SHA1:BEC7C5DCBF71260C66B4120B74EAB11B11B7A273
      SHA-256:4EF81544CB08773307BB1D8362E6E651D1CF354CD79B851A5E21147CC671A0DF
      SHA-512:82AC486D1E403421537698ED19D61D48838BDBB510FBAE9333BBF5B20DDAA6766CD33B95788D9349B2EECA119A9204679EB2B923EFFE7156529C64EB1705E5E7
      Malicious:false
      Reputation:low
      Preview:(window.webpackJsonp=window.webpackJsonp||[]).push([[40],{TWyq:function(t,e,n){"use strict";n.r(e),n.d(e,"createSwipeBackGesture",(function(){return a}));var r=n("W6o/"),o=n("KF81");n("y08P");const a=(t,e,n,a,c)=>{const i=t.ownerDocument.defaultView;return Object(o.createGesture)({el:t,gestureName:"goback-swipe",gesturePriority:40,threshold:10,canStart:t=>t.startX<=50&&e(),onStart:n,onMove:t=>{a(t.deltaX/i.innerWidth)},onEnd:t=>{const e=i.innerWidth,n=t.deltaX/e,o=t.velocityX,a=o>=0&&(o>.2||t.deltaX>e/2),s=(a?1-n:n)*e;let u=0;if(s>5){const t=s/Math.abs(o);u=Math.min(t,540)}c(a,n<=0?.01:Object(r.k)(0,n,.9999),u)}})}}}]);

      Chrome Cache Entry: 168

      Download File
      Process:C:\Program Files\Google\Chrome\Application\chrome.exe
      File Type:ASCII text, with very long lines (62063), with no line terminators
      Category:downloaded
      Size (bytes):62063
      Entropy (8bit):5.483725307642872
      Encrypted:false
      SSDEEP:1536:9FIT4sZAfcn6HviabSDgES8zLN3DBNILyczq/:3M4sZdtaC3bILyl
      MD5:1524049A1148E2F4134E5B6330C673E2
      SHA1:0A10CA38D62B6F0B83E36F7A045D62A4969E7596
      SHA-256:705B14BCCE33311ED8D7B132A37A0110AAF3E0BD72580950F9BD7836223B5F21
      SHA-512:58AF31397B33E0CC74090FA3E50255509CC4CF8D110E087CCCA856BBFE2B533782ED5F7618544E7D1F242247281712F5C71156872BDEBD8818334CDA1D51829E
      Malicious:false
      Reputation:low
      URL:https://js.braintreegateway.com/web/3.97.2/js/hosted-fields.min.js
      Preview:!function(e){var t;"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define([],e):((t="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).braintree||(t.braintree={})).hostedFields=e()}(function(){return function r(i,o,s){function a(t,e){if(!o[t]){if(!i[t]){var n="function"==typeof require&&require;if(!e&&n)return n(t,!0);if(c)return c(t,!0);throw(e=new Error("Cannot find module '"+t+"'")).code="MODULE_NOT_FOUND",e}n=o[t]={exports:{}},i[t][0].call(n.exports,function(e){return a(i[t][1][e]||e)},n,n.exports,r,i,o,s)}return o[t].exports}for(var c="function"==typeof require&&require,e=0;e<s.length;e++)a(s[e]);return a}({1:[function(e,t,n){"use strict";var r=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}},r=(Object.defineProperty(n,"__esModule",{value:!0}),n.PromiseGlobal=void 0,r(e("promise-polyfill"))),e="undefined"!=typeof Promise?Promise:r.default;

      Static File Info

      No static file info

      Network Behavior

      Skipped network analysis since the amount of network traffic is too extensive. Please download the PCAP and check manually.

      Statistics

      CPU Usage

      020406080s020406080100

      Click to jump to process

      Memory Usage

      020406080s0.0050100150200MB

      Click to jump to process

      Behavior

      Click to jump to process

      System Behavior

      General

      Target ID:0
      Start time:13:20:52
      Start date:24/07/2024
      Path:C:\Program Files\Google\Chrome\Application\chrome.exe
      Wow64 process (32bit):false
      Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
      Imagebase:0x7ff715980000
      File size:3'242'272 bytes
      MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
      Has elevated privileges:true
      Has administrator privileges:true
      Programmed in:C, C++ or other language
      Reputation:low
      Has exited:false
      Show Windows behavior

      File Activities

      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.
      Show Windows behavior

      Process Activities

      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.
      Show Windows behavior

      Memory Activities

      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.
      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.
      Show Windows behavior

      Process Token Activities


      General

      Target ID:2
      Start time:13:20:56
      Start date:24/07/2024
      Path:C:\Program Files\Google\Chrome\Application\chrome.exe
      Wow64 process (32bit):false
      Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=2056,i,14863577855135751033,9318323746197729823,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
      Imagebase:0x7ff715980000
      File size:3'242'272 bytes
      MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
      Has elevated privileges:true
      Has administrator privileges:true
      Programmed in:C, C++ or other language
      Reputation:low
      Has exited:false
      Show Windows behavior

      File Activities

      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.
      Show Windows behavior

      Memory Activities


      General

      Target ID:3
      Start time:13:20:59
      Start date:24/07/2024
      Path:C:\Program Files\Google\Chrome\Application\chrome.exe
      Wow64 process (32bit):false
      Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://thehealthiestfat.com"
      Imagebase:0x7ff715980000
      File size:3'242'272 bytes
      MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
      Has elevated privileges:true
      Has administrator privileges:true
      Programmed in:C, C++ or other language
      Reputation:low
      Has exited:true
      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.
      There is hidden Windows Behavior. Click on Show Windows Behavior to show it.

      Disassembly

      No disassembly