Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://mata0msk_logiusa.godaddysites.com/

Overview

General Information

Sample URL:https://mata0msk_logiusa.godaddysites.com/
Analysis ID:1521854
Tags:openphish
Infos:

Detection

Score:48
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample
Creates files inside the system directory
Deletes files inside the Windows folder
Detected non-DNS traffic on DNS port
HTML body contains low number of good links
HTML title does not match URL

Classification

Process Tree

  • System is w10x64
  • chrome.exe (PID: 5288 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 5296 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2288 --field-trial-handle=2204,i,7253217964030355801,18320007836951237884,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 6328 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://mata0msk_logiusa.godaddysites.com/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Suricata Signatures

No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Antivirus / Scanner detection for submitted sample
Source: https://mata0msk_logiusa.godaddysites.com/SlashNext: detection malicious, Label: Fraudulent Website type: Phishing & Social Engineering
Source: https://mata0msk_logiusa.godaddysites.com/HTTP Parser: Number of links: 0
Source: https://mata0msk_logiusa.godaddysites.com/HTTP Parser: Title: Metmask Login | Community Pltform does not match URL
Source: https://mata0msk_logiusa.godaddysites.com/HTTP Parser: No <meta name="copyright".. found
Source: https://mata0msk_logiusa.godaddysites.com/HTTP Parser: No <meta name="copyright".. found
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\LICENSE.txtJump to behavior
Source: unknownHTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49755 version: TLS 1.2
Source: unknownHTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49766 version: TLS 1.2
Source: global trafficTCP traffic: 192.168.2.4:63428 -> 1.1.1.1:53
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: mata0msk_logiusa.godaddysites.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global trafficHTTP traffic detected: GET /sw.js HTTP/1.1Host: mata0msk_logiusa.godaddysites.comConnection: keep-aliveCache-Control: max-age=0Accept: */*Service-Worker: scriptSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://mata0msk_logiusa.godaddysites.com/User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=876861ef-01a4-4cbe-a993-36db3fc6136a; _tccl_visit=876861ef-01a4-4cbe-a993-36db3fc6136a; _scc_session=pc=1&C_TOUCH=2024-09-29T02:46:50.285Z
Source: global trafficHTTP traffic detected: GET /manifest.webmanifest HTTP/1.1Host: mata0msk_logiusa.godaddysites.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://mata0msk_logiusa.godaddysites.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: mata0msk_logiusa.godaddysites.comConnection: keep-alivePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://mata0msk_logiusa.godaddysites.com/sw.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=876861ef-01a4-4cbe-a993-36db3fc6136a; _tccl_visit=876861ef-01a4-4cbe-a993-36db3fc6136a; _scc_session=pc=1&C_TOUCH=2024-09-29T02:46:50.285Z
Source: global trafficDNS traffic detected: DNS query: mata0msk_logiusa.godaddysites.com
Source: global trafficDNS traffic detected: DNS query: img1.wsimg.com
Source: global trafficDNS traffic detected: DNS query: isteam.wsimg.com
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: events.api.secureserver.net
Source: global trafficDNS traffic detected: DNS query: csp.secureserver.net
Source: chromecache_171.2.dr, chromecache_206.2.dr, chromecache_213.2.dr, chromecache_193.2.drString found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_182.2.drString found in binary or memory: http://scripts.sil.org/OFL
Source: sets.json.0.drString found in binary or memory: https://07c225f3.online
Source: sets.json.0.drString found in binary or memory: https://24.hu
Source: sets.json.0.drString found in binary or memory: https://aajtak.in
Source: sets.json.0.drString found in binary or memory: https://abczdrowie.pl
Source: sets.json.0.drString found in binary or memory: https://alice.tw
Source: sets.json.0.drString found in binary or memory: https://ambitionbox.com
Source: sets.json.0.drString found in binary or memory: https://autobild.de
Source: sets.json.0.drString found in binary or memory: https://baomoi.com
Source: sets.json.0.drString found in binary or memory: https://bild.de
Source: sets.json.0.drString found in binary or memory: https://blackrock.com
Source: sets.json.0.drString found in binary or memory: https://blackrockadvisorelite.it
Source: sets.json.0.drString found in binary or memory: https://bluradio.com
Source: sets.json.0.drString found in binary or memory: https://bolasport.com
Source: sets.json.0.drString found in binary or memory: https://bonvivir.com
Source: sets.json.0.drString found in binary or memory: https://bumbox.com
Source: sets.json.0.drString found in binary or memory: https://businessinsider.com.pl
Source: sets.json.0.drString found in binary or memory: https://businesstoday.in
Source: sets.json.0.drString found in binary or memory: https://cachematrix.com
Source: sets.json.0.drString found in binary or memory: https://cafemedia.com
Source: sets.json.0.drString found in binary or memory: https://caracoltv.com
Source: sets.json.0.drString found in binary or memory: https://carcostadvisor.be
Source: sets.json.0.drString found in binary or memory: https://carcostadvisor.com
Source: sets.json.0.drString found in binary or memory: https://carcostadvisor.fr
Source: sets.json.0.drString found in binary or memory: https://cardsayings.net
Source: sets.json.0.drString found in binary or memory: https://chatbot.com
Source: sets.json.0.drString found in binary or memory: https://chennien.com
Source: sets.json.0.drString found in binary or memory: https://citybibleforum.org
Source: sets.json.0.drString found in binary or memory: https://clarosports.com
Source: sets.json.0.drString found in binary or memory: https://clmbtech.com
Source: sets.json.0.drString found in binary or memory: https://closeronline.co.uk
Source: sets.json.0.drString found in binary or memory: https://clubelpais.com.uy
Source: sets.json.0.drString found in binary or memory: https://cmxd.com.mx
Source: sets.json.0.drString found in binary or memory: https://cognitive-ai.ru
Source: sets.json.0.drString found in binary or memory: https://cognitiveai.ru
Source: sets.json.0.drString found in binary or memory: https://commentcamarche.com
Source: sets.json.0.drString found in binary or memory: https://commentcamarche.net
Source: sets.json.0.drString found in binary or memory: https://computerbild.de
Source: sets.json.0.drString found in binary or memory: https://content-loader.com
Source: sets.json.0.drString found in binary or memory: https://cookreactor.com
Source: LICENSE.txt.0.drString found in binary or memory: https://creativecommons.org/.
Source: LICENSE.txt.0.drString found in binary or memory: https://creativecommons.org/compatiblelicenses
Source: sets.json.0.drString found in binary or memory: https://cricbuzz.com
Source: sets.json.0.drString found in binary or memory: https://css-load.com
Source: sets.json.0.drString found in binary or memory: https://deccoria.pl
Source: sets.json.0.drString found in binary or memory: https://deere.com
Source: sets.json.0.drString found in binary or memory: https://desimartini.com
Source: sets.json.0.drString found in binary or memory: https://dewarmsteweek.be
Source: sets.json.0.drString found in binary or memory: https://drimer.io
Source: sets.json.0.drString found in binary or memory: https://drimer.travel
Source: LICENSE.txt.0.drString found in binary or memory: https://easylist.to/)
Source: sets.json.0.drString found in binary or memory: https://economictimes.com
Source: sets.json.0.drString found in binary or memory: https://een.be
Source: sets.json.0.drString found in binary or memory: https://efront.com
Source: sets.json.0.drString found in binary or memory: https://eleconomista.net
Source: sets.json.0.drString found in binary or memory: https://elfinancierocr.com
Source: sets.json.0.drString found in binary or memory: https://elgrafico.com
Source: sets.json.0.drString found in binary or memory: https://ella.sv
Source: sets.json.0.drString found in binary or memory: https://elpais.com.uy
Source: sets.json.0.drString found in binary or memory: https://elpais.uy
Source: sets.json.0.drString found in binary or memory: https://etfacademy.it
Source: sets.json.0.drString found in binary or memory: https://eworkbookcloud.com
Source: sets.json.0.drString found in binary or memory: https://eworkbookrequest.com
Source: sets.json.0.drString found in binary or memory: https://fakt.pl
Source: sets.json.0.drString found in binary or memory: https://finn.no
Source: sets.json.0.drString found in binary or memory: https://firstlook.biz
Source: sets.json.0.drString found in binary or memory: https://gallito.com.uy
Source: sets.json.0.drString found in binary or memory: https://geforcenow.com
Source: sets.json.0.drString found in binary or memory: https://gettalkdesk.com
Source: LICENSE.txt.0.drString found in binary or memory: https://github.com/easylist)
Source: sets.json.0.drString found in binary or memory: https://gliadomain.com
Source: sets.json.0.drString found in binary or memory: https://gnttv.com
Source: sets.json.0.drString found in binary or memory: https://graziadaily.co.uk
Source: sets.json.0.drString found in binary or memory: https://grid.id
Source: sets.json.0.drString found in binary or memory: https://gridgames.app
Source: sets.json.0.drString found in binary or memory: https://growthrx.in
Source: sets.json.0.drString found in binary or memory: https://grupolpg.sv
Source: sets.json.0.drString found in binary or memory: https://gujaratijagran.com
Source: sets.json.0.drString found in binary or memory: https://hapara.com
Source: sets.json.0.drString found in binary or memory: https://hazipatika.com
Source: sets.json.0.drString found in binary or memory: https://hc1.com
Source: sets.json.0.drString found in binary or memory: https://hc1.global
Source: sets.json.0.drString found in binary or memory: https://hc1cas.com
Source: sets.json.0.drString found in binary or memory: https://hc1cas.global
Source: sets.json.0.drString found in binary or memory: https://healthshots.com
Source: sets.json.0.drString found in binary or memory: https://hearty.app
Source: sets.json.0.drString found in binary or memory: https://hearty.gift
Source: sets.json.0.drString found in binary or memory: https://hearty.me
Source: sets.json.0.drString found in binary or memory: https://heartymail.com
Source: sets.json.0.drString found in binary or memory: https://heatworld.com
Source: sets.json.0.drString found in binary or memory: https://helpdesk.com
Source: sets.json.0.drString found in binary or memory: https://hindustantimes.com
Source: sets.json.0.drString found in binary or memory: https://hj.rs
Source: sets.json.0.drString found in binary or memory: https://hjck.com
Source: sets.json.0.drString found in binary or memory: https://html-load.cc
Source: sets.json.0.drString found in binary or memory: https://html-load.com
Source: sets.json.0.drString found in binary or memory: https://human-talk.org
Source: sets.json.0.drString found in binary or memory: https://idbs-cloud.com
Source: sets.json.0.drString found in binary or memory: https://idbs-dev.com
Source: sets.json.0.drString found in binary or memory: https://idbs-eworkbook.com
Source: sets.json.0.drString found in binary or memory: https://idbs-staging.com
Source: sets.json.0.drString found in binary or memory: https://img-load.com
Source: chromecache_185.2.drString found in binary or memory: https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff)
Source: chromecache_185.2.drString found in binary or memory: https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff2)
Source: chromecache_182.2.drString found in binary or memory: https://img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/metamask%20login.jpg
Source: chromecache_182.2.drString found in binary or memory: https://img1.wsimg.com/poly/v3/polyfill.min.js?rum=0&unknown=polyfill&flags=gated&features=Intl.~loc
Source: sets.json.0.drString found in binary or memory: https://indiatimes.com
Source: sets.json.0.drString found in binary or memory: https://indiatoday.in
Source: sets.json.0.drString found in binary or memory: https://indiatodayne.in
Source: sets.json.0.drString found in binary or memory: https://infoedgeindia.com
Source: sets.json.0.drString found in binary or memory: https://interia.pl
Source: sets.json.0.drString found in binary or memory: https://intoday.in
Source: sets.json.0.drString found in binary or memory: https://iolam.it
Source: sets.json.0.drString found in binary or memory: https://ishares.com
Source: sets.json.0.drString found in binary or memory: https://jagran.com
Source: sets.json.0.drString found in binary or memory: https://johndeere.com
Source: sets.json.0.drString found in binary or memory: https://journaldesfemmes.com
Source: sets.json.0.drString found in binary or memory: https://journaldesfemmes.fr
Source: sets.json.0.drString found in binary or memory: https://journaldunet.com
Source: sets.json.0.drString found in binary or memory: https://journaldunet.fr
Source: sets.json.0.drString found in binary or memory: https://joyreactor.cc
Source: sets.json.0.drString found in binary or memory: https://joyreactor.com
Source: sets.json.0.drString found in binary or memory: https://kaksya.in
Source: sets.json.0.drString found in binary or memory: https://knowledgebase.com
Source: sets.json.0.drString found in binary or memory: https://kompas.com
Source: sets.json.0.drString found in binary or memory: https://kompas.tv
Source: sets.json.0.drString found in binary or memory: https://kompasiana.com
Source: sets.json.0.drString found in binary or memory: https://lanacion.com.ar
Source: sets.json.0.drString found in binary or memory: https://landyrev.com
Source: sets.json.0.drString found in binary or memory: https://landyrev.ru
Source: sets.json.0.drString found in binary or memory: https://laprensagrafica.com
Source: sets.json.0.drString found in binary or memory: https://lateja.cr
Source: sets.json.0.drString found in binary or memory: https://libero.it
Source: sets.json.0.drString found in binary or memory: https://linternaute.com
Source: sets.json.0.drString found in binary or memory: https://linternaute.fr
Source: sets.json.0.drString found in binary or memory: https://livechat.com
Source: sets.json.0.drString found in binary or memory: https://livechatinc.com
Source: sets.json.0.drString found in binary or memory: https://livehindustan.com
Source: sets.json.0.drString found in binary or memory: https://livemint.com
Source: chromecache_182.2.drString found in binary or memory: https://mata0msk_logiusa.godaddysites.com/
Source: sets.json.0.drString found in binary or memory: https://max.auto
Source: sets.json.0.drString found in binary or memory: https://medonet.pl
Source: sets.json.0.drString found in binary or memory: https://meo.pt
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.cl
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.co.cr
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.ar
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.bo
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.co
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.do
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.ec
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.gt
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.hn
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.mx
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.ni
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.pa
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.pe
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.py
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.sv
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.uy
Source: sets.json.0.drString found in binary or memory: https://mercadolibre.com.ve
Source: sets.json.0.drString found in binary or memory: https://mercadolivre.com
Source: sets.json.0.drString found in binary or memory: https://mercadolivre.com.br
Source: sets.json.0.drString found in binary or memory: https://mercadopago.cl
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.ar
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.br
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.co
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.ec
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.mx
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.pe
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.uy
Source: sets.json.0.drString found in binary or memory: https://mercadopago.com.ve
Source: sets.json.0.drString found in binary or memory: https://mercadoshops.cl
Source: sets.json.0.drString found in binary or memory: https://mercadoshops.com
Source: sets.json.0.drString found in binary or memory: https://mercadoshops.com.ar
Source: sets.json.0.drString found in binary or memory: https://mercadoshops.com.br
Source: sets.json.0.drString found in binary or memory: https://mercadoshops.com.co
Source: sets.json.0.drString found in binary or memory: https://mercadoshops.com.mx
Source: sets.json.0.drString found in binary or memory: https://mighty-app.appspot.com
Source: sets.json.0.drString found in binary or memory: https://mightytext.net
Source: sets.json.0.drString found in binary or memory: https://mittanbud.no
Source: sets.json.0.drString found in binary or memory: https://money.pl
Source: sets.json.0.drString found in binary or memory: https://motherandbaby.com
Source: sets.json.0.drString found in binary or memory: https://mystudentdashboard.com
Source: sets.json.0.drString found in binary or memory: https://nacion.com
Source: sets.json.0.drString found in binary or memory: https://naukri.com
Source: sets.json.0.drString found in binary or memory: https://nidhiacademyonline.com
Source: sets.json.0.drString found in binary or memory: https://nien.co
Source: sets.json.0.drString found in binary or memory: https://nien.com
Source: sets.json.0.drString found in binary or memory: https://nien.org
Source: sets.json.0.drString found in binary or memory: https://nlc.hu
Source: sets.json.0.drString found in binary or memory: https://nosalty.hu
Source: sets.json.0.drString found in binary or memory: https://noticiascaracol.com
Source: sets.json.0.drString found in binary or memory: https://nourishingpursuits.com
Source: sets.json.0.drString found in binary or memory: https://nvidia.com
Source: sets.json.0.drString found in binary or memory: https://o2.pl
Source: sets.json.0.drString found in binary or memory: https://ocdn.eu
Source: sets.json.0.drString found in binary or memory: https://onet.pl
Source: sets.json.0.drString found in binary or memory: https://ottplay.com
Source: sets.json.0.drString found in binary or memory: https://p106.net
Source: sets.json.0.drString found in binary or memory: https://p24.hu
Source: sets.json.0.drString found in binary or memory: https://paula.com.uy
Source: sets.json.0.drString found in binary or memory: https://pdmp-apis.no
Source: sets.json.0.drString found in binary or memory: https://phonandroid.com
Source: sets.json.0.drString found in binary or memory: https://player.pl
Source: sets.json.0.drString found in binary or memory: https://plejada.pl
Source: sets.json.0.drString found in binary or memory: https://poalim.site
Source: sets.json.0.drString found in binary or memory: https://poalim.xyz
Source: sets.json.0.drString found in binary or memory: https://pomponik.pl
Source: sets.json.0.drString found in binary or memory: https://portalinmobiliario.com
Source: sets.json.0.drString found in binary or memory: https://prisjakt.no
Source: sets.json.0.drString found in binary or memory: https://pudelek.pl
Source: sets.json.0.drString found in binary or memory: https://punjabijagran.com
Source: sets.json.0.drString found in binary or memory: https://radio1.be
Source: sets.json.0.drString found in binary or memory: https://radio2.be
Source: sets.json.0.drString found in binary or memory: https://reactor.cc
Source: sets.json.0.drString found in binary or memory: https://repid.org
Source: sets.json.0.drString found in binary or memory: https://reshim.org
Source: sets.json.0.drString found in binary or memory: https://rws1nvtvt.com
Source: sets.json.0.drString found in binary or memory: https://rws2nvtvt.com
Source: sets.json.0.drString found in binary or memory: https://rws3nvtvt.com
Source: sets.json.0.drString found in binary or memory: https://sackrace.ai
Source: sets.json.0.drString found in binary or memory: https://salemoveadvisor.com
Source: sets.json.0.drString found in binary or memory: https://salemovefinancial.com
Source: sets.json.0.drString found in binary or memory: https://salemovetravel.com
Source: sets.json.0.drString found in binary or memory: https://samayam.com
Source: sets.json.0.drString found in binary or memory: https://sapo.io
Source: sets.json.0.drString found in binary or memory: https://sapo.pt
Source: sets.json.0.drString found in binary or memory: https://shock.co
Source: sets.json.0.drString found in binary or memory: https://smaker.pl
Source: sets.json.0.drString found in binary or memory: https://smoney.vn
Source: sets.json.0.drString found in binary or memory: https://smpn106jkt.sch.id
Source: sets.json.0.drString found in binary or memory: https://socket-to-me.vip
Source: sets.json.0.drString found in binary or memory: https://songshare.com
Source: sets.json.0.drString found in binary or memory: https://songstats.com
Source: sets.json.0.drString found in binary or memory: https://sporza.be
Source: sets.json.0.drString found in binary or memory: https://standardsandpraiserepurpose.com
Source: sets.json.0.drString found in binary or memory: https://startlap.hu
Source: sets.json.0.drString found in binary or memory: https://startupislandtaiwan.com
Source: sets.json.0.drString found in binary or memory: https://startupislandtaiwan.net
Source: sets.json.0.drString found in binary or memory: https://startupislandtaiwan.org
Source: sets.json.0.drString found in binary or memory: https://stripe.com
Source: sets.json.0.drString found in binary or memory: https://stripe.network
Source: sets.json.0.drString found in binary or memory: https://stripecdn.com
Source: sets.json.0.drString found in binary or memory: https://supereva.it
Source: sets.json.0.drString found in binary or memory: https://takeabreak.co.uk
Source: sets.json.0.drString found in binary or memory: https://talkdeskqaid.com
Source: sets.json.0.drString found in binary or memory: https://talkdeskstgid.com
Source: sets.json.0.drString found in binary or memory: https://teacherdashboard.com
Source: sets.json.0.drString found in binary or memory: https://technology-revealed.com
Source: sets.json.0.drString found in binary or memory: https://terazgotuje.pl
Source: sets.json.0.drString found in binary or memory: https://text.com
Source: sets.json.0.drString found in binary or memory: https://textyserver.appspot.com
Source: sets.json.0.drString found in binary or memory: https://the42.ie
Source: sets.json.0.drString found in binary or memory: https://thejournal.ie
Source: sets.json.0.drString found in binary or memory: https://thirdspace.org.au
Source: sets.json.0.drString found in binary or memory: https://timesinternet.in
Source: sets.json.0.drString found in binary or memory: https://timesofindia.com
Source: sets.json.0.drString found in binary or memory: https://tolteck.app
Source: sets.json.0.drString found in binary or memory: https://tolteck.com
Source: sets.json.0.drString found in binary or memory: https://top.pl
Source: sets.json.0.drString found in binary or memory: https://tribunnews.com
Source: sets.json.0.drString found in binary or memory: https://trytalkdesk.com
Source: sets.json.0.drString found in binary or memory: https://tucarro.com
Source: sets.json.0.drString found in binary or memory: https://tucarro.com.co
Source: sets.json.0.drString found in binary or memory: https://tucarro.com.ve
Source: sets.json.0.drString found in binary or memory: https://tvid.in
Source: sets.json.0.drString found in binary or memory: https://tvn.pl
Source: sets.json.0.drString found in binary or memory: https://tvn24.pl
Source: sets.json.0.drString found in binary or memory: https://unotv.com
Source: sets.json.0.drString found in binary or memory: https://victorymedium.com
Source: sets.json.0.drString found in binary or memory: https://vrt.be
Source: sets.json.0.drString found in binary or memory: https://vwo.com
Source: sets.json.0.drString found in binary or memory: https://welt.de
Source: sets.json.0.drString found in binary or memory: https://wieistmeineip.de
Source: sets.json.0.drString found in binary or memory: https://wildix.com
Source: sets.json.0.drString found in binary or memory: https://wildixin.com
Source: sets.json.0.drString found in binary or memory: https://wingify.com
Source: sets.json.0.drString found in binary or memory: https://wordle.at
Source: sets.json.0.drString found in binary or memory: https://wp.pl
Source: sets.json.0.drString found in binary or memory: https://wpext.pl
Source: sets.json.0.drString found in binary or memory: https://www.asadcdn.com
Source: chromecache_182.2.drString found in binary or memory: https://www.fontsquirrel.com/license/league-spartan
Source: sets.json.0.drString found in binary or memory: https://ya.ru
Source: sets.json.0.drString found in binary or memory: https://yours.co.uk
Source: sets.json.0.drString found in binary or memory: https://zalo.me
Source: sets.json.0.drString found in binary or memory: https://zdrowietvn.pl
Source: sets.json.0.drString found in binary or memory: https://zingmp3.vn
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49755
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49766
Source: unknownNetwork traffic detected: HTTP traffic on port 63431 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49741
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49794
Source: unknownNetwork traffic detected: HTTP traffic on port 49741 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49748 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49794 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49806 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49806
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 63431
Source: unknownNetwork traffic detected: HTTP traffic on port 49736 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
Source: unknownNetwork traffic detected: HTTP traffic on port 49735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49736
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49735
Source: unknownNetwork traffic detected: HTTP traffic on port 49755 -> 443
Source: unknownHTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49755 version: TLS 1.2
Source: unknownHTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49766 version: TLS 1.2
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\sets.jsonJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\manifest.jsonJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\LICENSEJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\_metadata\Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\_metadata\verified_contents.jsonJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\manifest.fingerprintJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\LICENSE.txtJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\Filtering RulesJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\manifest.jsonJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\_metadata\Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\_metadata\verified_contents.jsonJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\manifest.fingerprintJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile deleted: C:\Windows\SystemTemp\chrome_BITS_5288_1810267315Jump to behavior
Source: classification engineClassification label: mal48.win@23/122@16/6
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2288 --field-trial-handle=2204,i,7253217964030355801,18320007836951237884,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://mata0msk_logiusa.godaddysites.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2288 --field-trial-handle=2204,i,7253217964030355801,18320007836951237884,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\LICENSE.txtJump to behavior

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management InstrumentationPath Interception1
Process Injection		1
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System1
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media2
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)1
File Deletion		Security Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive3
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture1
Ingress Tool Transfer		Traffic DuplicationData Destruction

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
https://mata0msk_logiusa.godaddysites.com/100%SlashNextFraudulent Website type: Phishing & Social Engineering

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

SourceDetectionScannerLabelLink
https://wieistmeineip.de0%URL Reputationsafe
https://mercadoshops.com.co0%URL Reputationsafe
https://gliadomain.com0%URL Reputationsafe
https://poalim.xyz0%URL Reputationsafe
https://mercadolivre.com0%URL Reputationsafe
https://reshim.org0%URL Reputationsafe
https://nourishingpursuits.com0%URL Reputationsafe
https://medonet.pl0%URL Reputationsafe
https://unotv.com0%URL Reputationsafe
https://mercadoshops.com.br0%URL Reputationsafe
https://zdrowietvn.pl0%URL Reputationsafe
https://johndeere.com0%URL Reputationsafe
https://songstats.com0%URL Reputationsafe
https://baomoi.com0%URL Reputationsafe
https://supereva.it0%URL Reputationsafe
https://elfinancierocr.com0%URL Reputationsafe
https://bolasport.com0%URL Reputationsafe
https://rws1nvtvt.com0%URL Reputationsafe
https://desimartini.com0%URL Reputationsafe
https://hearty.app0%URL Reputationsafe
https://hearty.gift0%URL Reputationsafe
https://mercadoshops.com0%URL Reputationsafe
https://heartymail.com0%URL Reputationsafe
https://p106.net0%URL Reputationsafe
https://radio2.be0%URL Reputationsafe
https://finn.no0%URL Reputationsafe
https://hc1.com0%URL Reputationsafe
https://kompas.tv0%URL Reputationsafe
https://mystudentdashboard.com0%URL Reputationsafe
https://songshare.com0%URL Reputationsafe
https://smaker.pl0%URL Reputationsafe
https://mercadopago.com.mx0%URL Reputationsafe
https://p24.hu0%URL Reputationsafe
https://talkdeskqaid.com0%URL Reputationsafe
https://mercadopago.com.pe0%URL Reputationsafe
https://cardsayings.net0%URL Reputationsafe
https://text.com0%URL Reputationsafe
https://mightytext.net0%URL Reputationsafe
https://pudelek.pl0%URL Reputationsafe
https://hazipatika.com0%URL Reputationsafe
https://joyreactor.com0%URL Reputationsafe
https://cookreactor.com0%URL Reputationsafe
https://wildixin.com0%URL Reputationsafe
https://eworkbookcloud.com0%URL Reputationsafe
https://cognitiveai.ru0%URL Reputationsafe
https://nacion.com0%URL Reputationsafe
https://chennien.com0%URL Reputationsafe
https://drimer.travel0%URL Reputationsafe
https://deccoria.pl0%URL Reputationsafe
https://mercadopago.cl0%URL Reputationsafe
https://talkdeskstgid.com0%URL Reputationsafe
https://bonvivir.com0%URL Reputationsafe
https://carcostadvisor.be0%URL Reputationsafe
https://salemovetravel.com0%URL Reputationsafe
https://sapo.io0%URL Reputationsafe
https://wpext.pl0%URL Reputationsafe
https://welt.de0%URL Reputationsafe
https://poalim.site0%URL Reputationsafe
https://drimer.io0%URL Reputationsafe
https://infoedgeindia.com0%URL Reputationsafe
https://blackrockadvisorelite.it0%URL Reputationsafe
https://cognitive-ai.ru0%URL Reputationsafe
https://cafemedia.com0%URL Reputationsafe
https://graziadaily.co.uk0%URL Reputationsafe
https://thirdspace.org.au0%URL Reputationsafe
https://mercadoshops.com.ar0%URL Reputationsafe
https://smpn106jkt.sch.id0%URL Reputationsafe
https://elpais.uy0%URL Reputationsafe
https://landyrev.com0%URL Reputationsafe
https://the42.ie0%URL Reputationsafe
https://commentcamarche.com0%URL Reputationsafe
https://tucarro.com.ve0%URL Reputationsafe
https://rws3nvtvt.com0%URL Reputationsafe
https://eleconomista.net0%URL Reputationsafe
https://helpdesk.com0%URL Reputationsafe
https://mercadolivre.com.br0%URL Reputationsafe
https://clmbtech.com0%URL Reputationsafe
https://standardsandpraiserepurpose.com0%URL Reputationsafe
https://salemovefinancial.com0%URL Reputationsafe
https://mercadopago.com.br0%URL Reputationsafe
https://commentcamarche.net0%URL Reputationsafe
https://etfacademy.it0%URL Reputationsafe
https://mighty-app.appspot.com0%URL Reputationsafe
https://hj.rs0%URL Reputationsafe
https://hearty.me0%URL Reputationsafe
https://mercadolibre.com.gt0%URL Reputationsafe
https://timesinternet.in0%URL Reputationsafe
https://indiatodayne.in0%URL Reputationsafe
https://idbs-staging.com0%URL Reputationsafe
https://blackrock.com0%URL Reputationsafe

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
mata0msk_logiusa.godaddysites.com
13.248.243.5
truefalse
    		unknown
    www.google.com
    		216.58.212.164
    		truefalse
      		unknown
      isteam.wsimg.com
      		3.121.64.201
      		truefalse
        		unknown
        fp2e7a.wpc.phicdn.net
        		192.229.221.95
        		truefalse
          		unknown
          img1.wsimg.com
          		unknown
          		unknownfalse
            		unknown
            csp.secureserver.net
            		unknown
            		unknownfalse
              		unknown
              events.api.secureserver.net
              		unknown
              		unknownfalse
                		unknown

                Contacted URLs

                NameMaliciousAntivirus DetectionReputation
                https://mata0msk_logiusa.godaddysites.com/sw.jstrue
                  		unknown

                  URLs from Memory and Binaries

                  NameSourceMaliciousAntivirus DetectionReputation
                  https://wieistmeineip.desets.json.0.drfalse
                  • URL Reputation: safe
                  		unknown
                  https://mercadoshops.com.cosets.json.0.drfalse
                  • URL Reputation: safe
                  		unknown
                  https://gliadomain.comsets.json.0.drfalse
                  • URL Reputation: safe
                  		unknown
                  https://poalim.xyzsets.json.0.drfalse
                  • URL Reputation: safe
                  		unknown
                  https://mercadolivre.comsets.json.0.drfalse
                  • URL Reputation: safe
                  		unknown
                  https://easylist.to/)LICENSE.txt.0.drfalse
                    		unknown
                    https://reshim.orgsets.json.0.drfalse
                    • URL Reputation: safe
                    		unknown
                    https://nourishingpursuits.comsets.json.0.drfalse
                    • URL Reputation: safe
                    		unknown
                    https://medonet.plsets.json.0.drfalse
                    • URL Reputation: safe
                    		unknown
                    https://unotv.comsets.json.0.drfalse
                    • URL Reputation: safe
                    		unknown
                    https://mercadoshops.com.brsets.json.0.drfalse
                    • URL Reputation: safe
                    		unknown
                    https://joyreactor.ccsets.json.0.drfalse
                      		unknown
                      https://zdrowietvn.plsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://johndeere.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://songstats.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://baomoi.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://supereva.itsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://elfinancierocr.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://bolasport.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://rws1nvtvt.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://desimartini.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://hearty.appsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://hearty.giftsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://mercadoshops.comsets.json.0.drfalse
                      • URL Reputation: safe
                      		unknown
                      https://www.fontsquirrel.com/license/league-spartanchromecache_182.2.drfalse
                        		unknown
                        https://heartymail.comsets.json.0.drfalse
                        • URL Reputation: safe
                        		unknown
                        https://nlc.husets.json.0.drfalse
                          		unknown
                          https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff)chromecache_185.2.drfalse
                            		unknown
                            https://p106.netsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://radio2.besets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://finn.nosets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://hc1.comsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://kompas.tvsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://mystudentdashboard.comsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://songshare.comsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://smaker.plsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://mercadopago.com.mxsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://p24.husets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://talkdeskqaid.comsets.json.0.drfalse
                            • URL Reputation: safe
                            		unknown
                            https://24.husets.json.0.drfalse
                              		unknown
                              https://mercadopago.com.pesets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://cardsayings.netsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://text.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://mightytext.netsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://pudelek.plsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://hazipatika.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://joyreactor.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://cookreactor.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://wildixin.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://eworkbookcloud.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://cognitiveai.rusets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://nacion.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://chennien.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://drimer.travelsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://deccoria.plsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://mercadopago.clsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://talkdeskstgid.comsets.json.0.drfalse
                              • URL Reputation: safe
                              		unknown
                              https://naukri.comsets.json.0.drfalse
                                		unknown
                                https://interia.plsets.json.0.drfalse
                                  		unknown
                                  https://bonvivir.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://carcostadvisor.besets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://salemovetravel.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://sapo.iosets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://wpext.plsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://welt.desets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://poalim.sitesets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://drimer.iosets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://infoedgeindia.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://blackrockadvisorelite.itsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://cognitive-ai.rusets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://cafemedia.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://graziadaily.co.uksets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://thirdspace.org.ausets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://mercadoshops.com.arsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://smpn106jkt.sch.idsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://elpais.uysets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://landyrev.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://the42.iesets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://commentcamarche.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://tucarro.com.vesets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://rws3nvtvt.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://eleconomista.netsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://helpdesk.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://mercadolivre.com.brsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://clmbtech.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://standardsandpraiserepurpose.comsets.json.0.drfalse
                                  • URL Reputation: safe
                                  		unknown
                                  https://07c225f3.onlinesets.json.0.drfalse
                                    		unknown
                                    https://salemovefinancial.comsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://mercadopago.com.brsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://commentcamarche.netsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://etfacademy.itsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://mighty-app.appspot.comsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://hj.rssets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://hearty.mesets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://mercadolibre.com.gtsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://timesinternet.insets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://indiatodayne.insets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://idbs-staging.comsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown
                                    https://blackrock.comsets.json.0.drfalse
                                    • URL Reputation: safe
                                    		unknown

                                    World Map of Contacted IPs

                                    • No. of IPs < 25%
                                    • 25% < No. of IPs < 50%
                                    • 50% < No. of IPs < 75%
                                    • 75% < No. of IPs

                                    Public IPs

                                    IPDomainCountryFlagASNASN NameMalicious
                                    3.121.64.201
                                    		isteam.wsimg.comUnited States
                                    		16509AMAZON-02USfalse
                                    216.58.212.164
                                    		www.google.comUnited States
                                    		15169GOOGLEUSfalse
                                    13.248.243.5
                                    		mata0msk_logiusa.godaddysites.comUnited States
                                    		16509AMAZON-02USfalse
                                    239.255.255.250
                                    		unknownReserved
                                    		unknownunknownfalse

                                    Private

                                    IP
                                    192.168.2.4
                                    192.168.2.6

                                    General Information

                                    Joe Sandbox version:41.0.0 Charoite
                                    Analysis ID:1521854
                                    Start date and time:2024-09-29 04:45:51 +02:00
                                    Joe Sandbox product:CloudBasic
                                    Overall analysis duration:0h 3m 21s
                                    Hypervisor based Inspection enabled:false
                                    Report type:full
                                    Cookbook file name:browseurl.jbs
                                    Sample URL:https://mata0msk_logiusa.godaddysites.com/
                                    Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                    Number of analysed new started processes analysed:8
                                    Number of new started drivers analysed:0
                                    Number of existing processes analysed:0
                                    Number of existing drivers analysed:0
                                    Number of injected processes analysed:0
                                    Technologies:
                                    • HCA enabled
                                    • EGA enabled
                                    • AMSI enabled
                                    Analysis Mode:default
                                    Analysis stop reason:Timeout
                                    Detection:MAL
                                    Classification:mal48.win@23/122@16/6
                                    EGA Information:Failed
                                    HCA Information:
                                    • Successful, ratio: 100%
                                    • Number of executed functions: 0
                                    • Number of non-executed functions: 0

                                    Warnings

                                    • Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
                                    • Excluded IPs from analysis (whitelisted): 172.217.18.3, 216.58.206.78, 108.177.15.84, 34.104.35.123, 172.217.16.138, 142.250.185.67, 23.38.98.78, 23.38.98.114, 2.18.64.8, 2.18.64.27, 104.102.33.222, 20.12.23.50, 93.184.221.240, 192.229.221.95, 13.95.31.18, 142.250.184.195
                                    • Excluded domains from analysis (whitelisted): e8843.dsca.akamaiedge.net, e40258.g.akamaiedge.net, slscr.update.microsoft.com, clientservices.googleapis.com, wu.azureedge.net, clients2.google.com, ocsp.digicert.com, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, global-wildcard.wsimg.com.sni-only.edgekey.net, wu-b-net.trafficmanager.net, csp.secureserver.net.edgekey.net, glb.sls.prod.dcat.dsp.trafficmanager.net, fonts.googleapis.com, fs.microsoft.com, accounts.google.com, fonts.gstatic.com, ctldl.windowsupdate.com.delivery.microsoft.com, wu.ec.azureedge.net, wildcard-sni-only.api.secureserver.net.edgekey.net, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, e64861.dsca.akamaiedge.net, clients.l.google.com
                                    • Not all processes where analyzed, report is missing behavior information
                                    • Report size getting too big, too many NtSetInformationFile calls found.
                                    • VT rate limit hit for: https://mata0msk_logiusa.godaddysites.com/

                                    Simulations

                                    Behavior and APIs

                                    No simulations

                                    LLM Input / Output

                                    InputOutput
                                    URL: https://mata0msk_logiusa.godaddysites.com/ Model: jbxai
                                    {
"brand":["METAMASK"],
"contains_trigger_text":false,
"trigger_text":null,
"prominent_button_name":"Download",
"text_input_field_labels":["unknown"],
"pdf_icon_visible":false,
"has_visible_captcha":false,
"has_urgent_text":false,
"has_visible_qrcode":false}

                                    Joe Sandbox View / Context

                                    IPs

                                    No context

                                    Domains

                                    No context

                                    ASNs

                                    No context

                                    JA3 Fingerprints

                                    No context

                                    Dropped Files

                                    No context

                                    Created / dropped Files

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\LICENSE

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:dropped
                                    Size (bytes):1558
                                    Entropy (8bit):5.11458514637545
                                    Encrypted:false
                                    SSDEEP:48:OBOCrYJ4rYJVwUCLHDy43HV713XEyMmZ3teTHn:LCrYJ4rYJVwUCHZ3Z13XtdUTH
                                    MD5:EE002CB9E51BB8DFA89640A406A1090A
                                    SHA1:49EE3AD535947D8821FFDEB67FFC9BC37D1EBBB2
                                    SHA-256:3DBD2C90050B652D63656481C3E5871C52261575292DB77D4EA63419F187A55B
                                    SHA-512:D1FDCC436B8CA8C68D4DC7077F84F803A535BF2CE31D9EB5D0C466B62D6567B2C59974995060403ED757E92245DB07E70C6BDDBF1C3519FED300CC5B9BF9177C
                                    Malicious:false
                                    Reputation:low
                                    Preview:// Copyright 2015 The Chromium Authors. All rights reserved..//.// Redistribution and use in source and binary forms, with or without.// modification, are permitted provided that the following conditions are.// met:.//.// * Redistributions of source code must retain the above copyright.// notice, this list of conditions and the following disclaimer..// * Redistributions in binary form must reproduce the above.// copyright notice, this list of conditions and the following disclaimer.// in the documentation and/or other materials provided with the.// distribution..// * Neither the name of Google Inc. nor the names of its.// contributors may be used to endorse or promote products derived from.// this software without specific prior written permission..//.// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS.// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT.// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR.// A PARTICULAR

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\_metadata\verified_contents.json

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JSON data
                                    Category:dropped
                                    Size (bytes):1864
                                    Entropy (8bit):6.021127689065198
                                    Encrypted:false
                                    SSDEEP:48:p/hUI1atAdI567akUmYWEFw/3+ovGJ4F3jkZUbvzk98g5m7:RnYQI47avYUwvVGJ41jkZIzxgA7
                                    MD5:68E6B5733E04AB7BF19699A84D8ABBC2
                                    SHA1:1C11F06CA1AD3ED8116D356AB9164FD1D52B5CF0
                                    SHA-256:F095F969D6711F53F97747371C83D5D634EAEF21C54CB1A6A1CC5B816D633709
                                    SHA-512:9DC5D824A55C969820D5D1FBB0CA7773361F044AE0C255E7C48D994E16CE169FCEAC3DE180A3A544EBEF32337EA535683115584D592370E5FE7D85C68B86C891
                                    Malicious:false
                                    Reputation:low
                                    Preview:[{"description":"treehash per file","signed_content":{"payload":"eyJjb250ZW50X2hhc2hlcyI6W3siYmxvY2tfc2l6ZSI6NDA5NiwiZGlnZXN0Ijoic2hhMjU2IiwiZmlsZXMiOlt7InBhdGgiOiJMSUNFTlNFIiwicm9vdF9oYXNoIjoiUGIwc2tBVUxaUzFqWldTQnctV0hIRkltRlhVcExiZDlUcVkwR2ZHSHBWcyJ9LHsicGF0aCI6Im1hbmlmZXN0Lmpzb24iLCJyb290X2hhc2giOiIyNXB3SWdtQWU2QTVoeDVVTG9OV0laODBLbzJjbktOTHpacUdjbjlLT2c4In0seyJwYXRoIjoic2V0cy5qc29uIiwicm9vdF9oYXNoIjoiOWVza0FuRlBsM3VCQzkwUmFWakxNaVI3NXZIQi0wQUVmMmg0RzU3ZXNpcyJ9XSwiZm9ybWF0IjoidHJlZWhhc2giLCJoYXNoX2Jsb2NrX3NpemUiOjQwOTZ9XSwiaXRlbV9pZCI6ImdvbnBlbWRna2pjZWNkZ2JuYWFiaXBwcGJtZ2ZnZ2JlIiwiaXRlbV92ZXJzaW9uIjoiMjAyNC44LjEwLjAiLCJwcm90b2NvbF92ZXJzaW9uIjoxfQ","signatures":[{"header":{"kid":"publisher"},"protected":"eyJhbGciOiJSUzI1NiJ9","signature":"dU2MmRUQSugaJAJvEN4uaQHx-KXdOkjj0yK8_aH4Afr3kN7DPOZRt6yLTS3UchBE5M-dgPPPBuKADj4KEK4B22SO6WQquL5J27AUPqQBGgr44-iFGVJdOLLlfirFlJmcYv6DUFRYiPsQFGMr1JFqInj19jgkOxzR6qqcNuTCB0wGEMeTU80r-igCjeQG6TIzPro7yKd_-UxsxO6OGAySmlIJIoU54X0p0ATNoZyAfkhb8kb0oN8unOU

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\manifest.fingerprint

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with no line terminators
                                    Category:dropped
                                    Size (bytes):66
                                    Entropy (8bit):3.9159446964030753
                                    Encrypted:false
                                    SSDEEP:3:Sq5TQRaELVHecsUDBAeHD5k:Sq5gJ+csHej5k
                                    MD5:CFB54589424206D0AE6437B5673F498D
                                    SHA1:D1EF6314F0F68EFDD0BA8F6CA9E59BFF863B1609
                                    SHA-256:285AC183C35350B4B77332172413902F83726CA8F53D63859B5DA082FD425A1C
                                    SHA-512:70FDCA4A1E6B7A5FFED3414E2DB74FECA7E0FD17482B8CB30393DFEE20AB9AD2B0B00FF0C590DD0E8D744D0EAD876CE8844519AF66618ED14666BCA56DF2DA21
                                    Malicious:false
                                    Reputation:low
                                    Preview:1.dbf288588465463a914bdfc5e86d465fb3592b2f1261dc0e40fcc5c1adc8e7e4

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\manifest.json

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JSON data
                                    Category:dropped
                                    Size (bytes):85
                                    Entropy (8bit):4.4533115571544695
                                    Encrypted:false
                                    SSDEEP:3:rR6TAulhFphifFCmMARWHJqS1tean:F6VlM8aRWpqS1ln
                                    MD5:C3419069A1C30140B77045ABA38F12CF
                                    SHA1:11920F0C1E55CADC7D2893D1EEBB268B3459762A
                                    SHA-256:DB9A702209807BA039871E542E8356219F342A8D9C9CA34BCD9A86727F4A3A0F
                                    SHA-512:C5E95A4E9F5919CB14F4127539C4353A55C5F68062BF6F95E1843B6690CEBED3C93170BADB2412B7FB9F109A620385B0AE74783227D6813F26FF8C29074758A1
                                    Malicious:false
                                    Reputation:low
                                    Preview:{. "manifest_version": 2,. "name": "First Party Sets",. "version": "2024.8.10.0".}

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_1222265573\sets.json

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JSON data
                                    Category:dropped
                                    Size (bytes):9748
                                    Entropy (8bit):4.629326694042306
                                    Encrypted:false
                                    SSDEEP:96:Mon4mvC4qX19s1blbw/BNKLcxbdmf56MFJtRTGXvcxN43uP+8qJq:v5C4ql7BkIVmtRTGXvcxBsq
                                    MD5:EEA4913A6625BEB838B3E4E79999B627
                                    SHA1:1B4966850F1B117041407413B70BFA925FD83703
                                    SHA-256:20EF4DE871ECE3C5F14867C4AE8465999C7A2CC1633525E752320E61F78A373C
                                    SHA-512:31B1429A5FACD6787F6BB45216A4AB1C724C79438C18EBFA8C19CED83149C17783FD492A03197110A75AAF38486A9F58828CA30B58D41E0FE89DFE8BDFC8A004
                                    Malicious:false
                                    Reputation:low
                                    Preview:{"primary":"https://bild.de","associatedSites":["https://welt.de","https://autobild.de","https://computerbild.de","https://wieistmeineip.de"],"serviceSites":["https://www.asadcdn.com"]}.{"primary":"https://blackrock.com","associatedSites":["https://blackrockadvisorelite.it","https://cachematrix.com","https://efront.com","https://etfacademy.it","https://ishares.com"]}.{"primary":"https://cafemedia.com","associatedSites":["https://cardsayings.net","https://nourishingpursuits.com"]}.{"primary":"https://caracoltv.com","associatedSites":["https://noticiascaracol.com","https://bluradio.com","https://shock.co","https://bumbox.com","https://hjck.com"]}.{"primary":"https://carcostadvisor.com","ccTLDs":{"https://carcostadvisor.com":["https://carcostadvisor.be","https://carcostadvisor.fr"]}}.{"primary":"https://citybibleforum.org","associatedSites":["https://thirdspace.org.au"]}.{"primary":"https://cognitiveai.ru","associatedSites":["https://cognitive-ai.ru"]}.{"primary":"https://drimer.io","asso

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\Filtering Rules

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:data
                                    Category:dropped
                                    Size (bytes):74272
                                    Entropy (8bit):5.535436646838848
                                    Encrypted:false
                                    SSDEEP:1536:GB9Cdg51kGLmOSe1pEQHdPr4l0TmmJ2I7CwguaRZrgMQUavJX5vwKf:Sok1RLtb1ptdPrYk1J2IPguangMQ3X5P
                                    MD5:B23DD5B6ECCB460003EA37BA0F5E3730
                                    SHA1:FD444553CB7699F84CE7E5664232771673DCF67D
                                    SHA-256:7F7F432C27D97DEE184DCD3EA20F731674C008BE849C0136F9C5358E359F3EA9
                                    SHA-512:7E47BD172C4BD4C65F063A8FA3FB33ED47F29156EB20E42D4E8EA73C6F02526A30FFE907BE5B7C1406D4EAA71FBEC7C0D557C376DCCD0A1A961E2F61B3431181
                                    Malicious:false
                                    Reputation:low
                                    Preview:............0.8.@.R.-728x90...........0.8.@.R.adtdp.com^..........0.8.@.R.yomeno.xyz^..........0.8.@.R.yellowblue.io^..........0.8.@.R.thubanoa.com^..........0.8.@.R.ad999.biz^..........0.8.@.R._468_60...........0.8.@.R.adrecover.com^..........0.8.@.R.pemsrv.com^..........0.8.@.R.mnaspm.com^..........0.8.@.R..ar/ads/."......0.8.@.R./plugins/cactus-ads/.,........0.8.@.R.mysmth.net/nForum/*/ADAgent_.>........*...worldstar.com0.8.@.R.js.assemblyexchange.com/wana...........0.8.@.R.indoleads.com^.%......0.8.@.R.discordapp.com/banners/.(........0.8.@.R.looker.com/api/internal/.#........0.8.@.R.broadstreetads.com^.(........0.8.@.R.shikoku-np.co.jp/img/ad/..........0.8.@.R./banner.cgi?..........0.8.@.R./in/track?data=.!......0.8.@.R.linkbucks.com/tmpl/..........0.8.@.R.clicktripz.com^..........0.8.@.R.-ad-manager/..........0.8.@.R./page-links-to/dist/new-tab.js........0.8.@.R.files.slack.com^.$........0.8.@.R.admitad-connect.com^.2........0.8.@.R"cloudfront.net/js/common/invoke.js..........0.8

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\LICENSE.txt

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with CRLF line terminators
                                    Category:dropped
                                    Size (bytes):24623
                                    Entropy (8bit):4.588307081140814
                                    Encrypted:false
                                    SSDEEP:384:mva5sf5dXrCN7tnBxpxkepTqzazijFgZk231Py9zD6WApYbm0:mvagXreRnTqzazWgj0v6XqD
                                    MD5:D33AAA5246E1CE0A94FA15BA0C407AE2
                                    SHA1:11D197ACB61361657D638154A9416DC3249EC9FB
                                    SHA-256:1D4FF95CE9C6E21FE4A4FF3B41E7A0DF88638DD449D909A7B46974D3DFAB7311
                                    SHA-512:98B1B12FF0991FD7A5612141F83F69B86BC5A89DD62FC472EE5971817B7BBB612A034C746C2D81AE58FDF6873129256A89AA8BB7456022246DC4515BAAE2454B
                                    Malicious:false
                                    Reputation:low
                                    Preview:EasyList Repository Licences.... Unless otherwise noted, the contents of the EasyList repository.. (https://github.com/easylist) is dual licensed under the GNU General.. Public License version 3 of the License, or (at your option) any later.. version, and Creative Commons Attribution-ShareAlike 3.0 Unported, or.. (at your option) any later version. You may use and/or modify the files.. as permitted by either licence; if required, "The EasyList authors.. (https://easylist.to/)" should be attributed as the source of the.. material. All relevant licence files are included in the repository..... Please be aware that files hosted externally and referenced in the.. repository, including but not limited to subscriptions other than.. EasyList, EasyPrivacy, EasyList Germany and EasyList Italy, may be.. available under other conditions; permission must be granted by the.. respective copyright holders to authorise the use of their material.......Creative Commons Attribut

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\_metadata\verified_contents.json

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JSON data
                                    Category:dropped
                                    Size (bytes):1529
                                    Entropy (8bit):5.990179229242317
                                    Encrypted:false
                                    SSDEEP:24:pZRj/flTHYe1DxxpTkYbKCCojeT31zkaoX63wMHF48I31RwCCyqoX6kyKlklyJqw:p/h4YDxxlbKlTlkakgPLI3hCyqkwnlKD
                                    MD5:2FF08C4B4128F634CBBFEA0C1C44AA2E
                                    SHA1:45D11E57DDF29E843AC8545C7D06CDDB5DF3E962
                                    SHA-256:33B6F2ECD5FB7F9FAF538F29808716EFA337A653809943A8E4B5E450B734DA09
                                    SHA-512:14BD9E921E1DB9AC8720C1177897DB624292865D29B976ED9CCCEE572726D7D123A8F39E470987DF796AE0552861FBAE056CDB395F0CB8B0E699C28F5E221999
                                    Malicious:false
                                    Reputation:low
                                    Preview:[{"description":"treehash per file","signed_content":{"payload":"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","signatures":[{"header":{"kid":"publisher"},"protected":"eyJhbGciOiJSUzI1NiJ9","signature":"ifBoq-woYhqxB78EqRoo2fPRIEfkuykYMlD9kWeeG2QS6-R5YvGNJ9n5OljLXGjvK5U3MDFRLi-UCguxuUaoFjU_QeSCiOLxvDS5JHdk8Bbba8fCW6ZKnH_fvocQD8W7Hj0reH3gOPmD7sIraz8IvG86GRuGPqsxbgc_BRtOCa5KRgqaxfjt7tKlOtaUoO3_qsNlf_8F8k0tNZh131RRIEaXw53z3ZzGpWtgYC0u6s0JKag8l

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\manifest.fingerprint

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with no line terminators
                                    Category:dropped
                                    Size (bytes):66
                                    Entropy (8bit):3.8568101737886993
                                    Encrypted:false
                                    SSDEEP:3:SWcgK7GtszDAAnHT:SWc97GWzDlnHT
                                    MD5:6DBEDE254AF8A23D6CB2ABAEA8D2E38F
                                    SHA1:A827D46FA5D53CB7B134F143CC15A30BA015ED21
                                    SHA-256:376ED55CD5AB45C0F7BAA1AF0AC2637C33DEA6D1D4683B729AE7CE764F70DAA1
                                    SHA-512:0F28FD8AF582C18ECCCC1321B94902501D31C4B6C1D11684780DED6217C14E1B313F58A644516F37AE69232F1C2861915337A4D84185E18124F40C629A50B7F9
                                    Malicious:false
                                    Reputation:low
                                    Preview:1.3651711652892acf34795b2c7e4d401ed2274c20e952f65cf52deeeef5bbf9b5

                                    C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping5288_14320310\manifest.json

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JSON data
                                    Category:dropped
                                    Size (bytes):114
                                    Entropy (8bit):4.547350270682037
                                    Encrypted:false
                                    SSDEEP:3:rR6TAulhFphifFHXG7LGMdv5HcDKhtUJKS1KPYn:F6VlMZWuMt5SKPS1eY
                                    MD5:3448D97DA638C7EF0FBCA9B6949FFC8F
                                    SHA1:36D8434F26F0316FAB4627F7856FCA7291FE8ADF
                                    SHA-256:1700A11FD1E58367B450A41B2AE5FD26ECB5CDB459869C796C7DDE18F1D30F73
                                    SHA-512:9BF9055B2EF82BD1D2A1E94009FED2D3481FE2DC336D306FA0DB786658EFA5B72C9A9A214A829B9FCC4222476051871FF012009C64F09B9109072ABDF3DEF8CC
                                    Malicious:false
                                    Reputation:low
                                    Preview:{. "manifest_version": 2,. "name": "Subresource Filtering Rules",. "ruleset_format": 1,. "version": "9.51.0".}

                                    Chrome Cache Entry: 151

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (442)
                                    Category:downloaded
                                    Size (bytes):486
                                    Entropy (8bit):5.227340053777477
                                    Encrypted:false
                                    SSDEEP:12:HDSk+nBSyD8Dgu4dKsVfIoD3PS22hTHr+pWrY:ek+nBLD8DN4sog+iHrIcY
                                    MD5:5F10DF611C856F376981BE4DFBD17753
                                    SHA1:4463A27419B2FDFDBD81770C74DEE2E74BE948E0
                                    SHA-256:EBD2BA2A0E879AE2CEC7D513324E04346153A581BE3AA202662E6C9D5B1CE6E1
                                    SHA-512:F5911E08ED8B57B2E4B10C8AC622C4E7A82AEEC7D5B1AFED9C064A2975F41E211149CE1692FCF2F9497508E7ECDF678E48EC2CFA1D8C9112507950748146D5D8
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-e542c4f1.js
                                    Preview:define("@wsb/guac-widget-shared/lib/components/Recaptcha/badge-e542c4f1.js",["exports"],(function(e){"use strict";class a extends(global.React||guac.react).Component{render(){return(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX.Style,null,".grecaptcha-badge { visibility: hidden; }")}}e.default=a,Object.defineProperty(e,"__esModule",{value:!0})})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=badge-e542c4f1.js.map.

                                    Chrome Cache Entry: 152

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (1352)
                                    Category:downloaded
                                    Size (bytes):1400
                                    Entropy (8bit):5.307032039583678
                                    Encrypted:false
                                    SSDEEP:24:c6BLQZSwXZSUcUxQAQId+06QyyU+bHJRWIFSPhXCoiCUPGyTiKNPR138IHrIYf:j+SwJSxAQ0H0OpwUSPhXCoiCUeuiKNPd
                                    MD5:5CC6B93D41889C0A55C6C4FCD2D89713
                                    SHA1:51A59C1DAE337817C4EBAC39FBE61C232705A893
                                    SHA-256:8671CFDFA128168DB2136D7C17F55BA98DDBA221CDD1ACBBE559D4969280FD51
                                    SHA-512:8BCAAB1399B6D4D7475C4CF1DC45B0477A9D2AD37578DFCCF23C0C9303716DA1DECD5FBA858D5DD609CB89BCC784E04B72A0D7136BC6EE60DC3EF69CAB977C33
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-87bd33e6.js
                                    Preview:define("@widget/LAYOUT/c/bs-index2-87bd33e6.js",["exports"],(function(t){"use strict";t.a=function(){let t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"medium";return{"> :nth-child(n)":{marginBottom:t}," > :last-child":{marginBottom:"0 !important"}}},t.b=function(){let t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"medium";return{"> :nth-child(n)":{marginRight:t}," > :last-child":{marginRight:"0 !important"}}},t.c=function(t){const e=function(t){if("string"!=typeof t||"{"!==t[0])return null;try{return JSON.parse(t)}catch(t){return null}}(t)||{};let n=0;return e.blocks&&e.blocks.forEach((t=>{const e=t.text.length;n+=(global._||guac.lodash).clamp(e,25,Math.max(e,25))})),n},t.g=()=>{const t=document.getElementsByClassName("ux-scaled");let e=1;return t&&t.length>0&&(e=t[0].getAttribute("data-scale")),e},t.r=t=>{let{count:e=0,fontSizeMap:n={},defaultFontSize:r}=t;const i=(global._||guac.lodash).reduce(n,((t,e,n)=>{let[r,i=Number.MAX_VALUE]=e;return t.push({range:[r,i],

                                    Chrome Cache Entry: 153

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (905)
                                    Category:dropped
                                    Size (bytes):960
                                    Entropy (8bit):5.203352394673048
                                    Encrypted:false
                                    SSDEEP:24:pzBLgJHHVvC+dKbywqIN6ttVFRJB1i/uwBrV7DtZHrIvyU:zSkjbQxz3+uQ7RxrIx
                                    MD5:62A914B2C847D4D02B76164D7A2A54C6
                                    SHA1:20D9F49A90A51FA6C8420640610DF77F7A96D919
                                    SHA-256:B08C2864EC27736C507B1CA4B3A225A19147841B861CD8494DAF95FA370FE639
                                    SHA-512:E67D3D9F68EF3151D93DEDAA3530DF89F0C957F08561E93134B219DEC23C2A1FE0D109AC666619526742C5411E4636ECE416A3AD1148C1AD0861F0050B41D3DE
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js",["exports"],(function(e){"use strict";var n="undefined"!=typeof globalThis?globalThis:"undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:{};e.a=n,e.b=function(e){if(e.__esModule)return e;var n=Object.defineProperty({},"__esModule",{value:!0});return Object.keys(e).forEach((function(t){var r=Object.getOwnPropertyDescriptor(e,t);Object.defineProperty(n,t,r.get?r:{enumerable:!0,get:function(){return e[t]}})})),n},e.c=function(e,n,t){return e(t={path:n,exports:{},require:function(e,n){return function(){throw new Error("Dynamic requires are not currently supported by @rollup/plugin-commonjs")}(null==n&&t.path)}},t.exports),t.exports},e.g=function(e){return e&&e.__esModule&&Object.prototype.hasOwnProperty.call(e,"default")?e.default:e}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=_commonjsHelpers-67085353.js.map.

                                    Chrome Cache Entry: 154

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (651)
                                    Category:downloaded
                                    Size (bytes):698
                                    Entropy (8bit):5.240081353203154
                                    Encrypted:false
                                    SSDEEP:12:HniBSys8YpBynnHW7Y9VZWZbWpTEnTHr+pW6+:HiBLstpBy27GZWZbWSTHrIN+
                                    MD5:7B01FCDF2048E82F4DF741791CD44F61
                                    SHA1:D1D126931B5D6937B1496E7950342D6A06F361B9
                                    SHA-256:CBC04C06117804A9A97013C97A0714B027DF8279C5F1D0FD0478756A0944AEE6
                                    SHA-512:3D16B5D5D68C92C6098534C10E57B5FAF389BA31D3DB8D004927410657895F147BBB1AF23A20509AC6834F66B6D98ED0DFBA944756D8EE419D73437CCAEBD897
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-0a7e72c6.js
                                    Preview:define("@wsb/guac-widget-shared/lib/common/constants/traffic2-0a7e72c6.js",["exports"],(function(a){"use strict";const e="click",o="pandc.vnext";var n,i,s=(n=o,i={editor_preview:{submit_contact_form:e,messaging_fab_open:e,messaging_fab_close:e,messaging_webApp_appstore:e,conversations_learn_more:e},shop_widget:{click_pagination_back_arrow:e,click_pagination_forward_arrow:e,click_pagination_number:e}},(global._||guac.lodash).mapValues(i,((a,e)=>(global._||guac.lodash).mapValues(a,((a,o)=>[n,e,o,a].join("."))))));a.TRAFFIC_PREFIX=o,a.default=s,Object.defineProperty(a,"__esModule",{value:!0})})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=traffic2-0a7e72c6.js.map.

                                    Chrome Cache Entry: 155

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (1352)
                                    Category:dropped
                                    Size (bytes):1400
                                    Entropy (8bit):5.307032039583678
                                    Encrypted:false
                                    SSDEEP:24:c6BLQZSwXZSUcUxQAQId+06QyyU+bHJRWIFSPhXCoiCUPGyTiKNPR138IHrIYf:j+SwJSxAQ0H0OpwUSPhXCoiCUeuiKNPd
                                    MD5:5CC6B93D41889C0A55C6C4FCD2D89713
                                    SHA1:51A59C1DAE337817C4EBAC39FBE61C232705A893
                                    SHA-256:8671CFDFA128168DB2136D7C17F55BA98DDBA221CDD1ACBBE559D4969280FD51
                                    SHA-512:8BCAAB1399B6D4D7475C4CF1DC45B0477A9D2AD37578DFCCF23C0C9303716DA1DECD5FBA858D5DD609CB89BCC784E04B72A0D7136BC6EE60DC3EF69CAB977C33
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-index2-87bd33e6.js",["exports"],(function(t){"use strict";t.a=function(){let t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"medium";return{"> :nth-child(n)":{marginBottom:t}," > :last-child":{marginBottom:"0 !important"}}},t.b=function(){let t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"medium";return{"> :nth-child(n)":{marginRight:t}," > :last-child":{marginRight:"0 !important"}}},t.c=function(t){const e=function(t){if("string"!=typeof t||"{"!==t[0])return null;try{return JSON.parse(t)}catch(t){return null}}(t)||{};let n=0;return e.blocks&&e.blocks.forEach((t=>{const e=t.text.length;n+=(global._||guac.lodash).clamp(e,25,Math.max(e,25))})),n},t.g=()=>{const t=document.getElementsByClassName("ux-scaled");let e=1;return t&&t.length>0&&(e=t[0].getAttribute("data-scale")),e},t.r=t=>{let{count:e=0,fontSizeMap:n={},defaultFontSize:r}=t;const i=(global._||guac.lodash).reduce(n,((t,e,n)=>{let[r,i=Number.MAX_VALUE]=e;return t.push({range:[r,i],

                                    Chrome Cache Entry: 156

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (6969)
                                    Category:downloaded
                                    Size (bytes):7039
                                    Entropy (8bit):5.2361798012427245
                                    Encrypted:false
                                    SSDEEP:192:oLb1MP+fzUiru5feyeCVL+izwhVQ9iPzmHFnYJsvIFO/Esh:oLxmCUiru5fneCVL+izwhVQ9ibmHFnYK
                                    MD5:DAD318033A09F6ABA68D6EE66F1CDACE
                                    SHA1:F538D0C3973677A6CDF14E9223AFB432FCF1CF8C
                                    SHA-256:E8FCFB1552D918B5D9FD715F711255465D6DD4348B4DCEDD362CB00DF9D3DBEF
                                    SHA-512:6024483003089661D9799000202895EC4ACA6CDEC816BDBC786F6800536AA8E6B93D8B8CA81E1EB6B8122C72CD14172C94C6C49953FFA536E49D71DD7F47499F
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout13-Theme-publish-Theme-7252afe2.js
                                    Preview:define("@widget/LAYOUT/bs-layout13-Theme-publish-Theme-7252afe2.js",["exports","~/c/bs-_rollupPluginBabelHelpers","~/c/bs-index3","~/c/bs-themeOverrides","~/c/bs-legacyOverrides","~/c/bs-humanisticFilled","~/c/bs-defaultSocialIconPack","~/c/bs-loaders","~/c/bs-index","~/c/bs-overlayTypes"],(function(e,t,r,o,a,n,i,s,l,g){"use strict";const{colorPackCategories:d,buttons:c}=(global.Core||guac["@wsb/guac-widget-core"]).constants,{LIGHT:u,LIGHT_ALT:m,LIGHT_COLORFUL:h,DARK:p,DARK_ALT:y,DARK_COLORFUL:f,COLORFUL:b,MVP:x}=(global.Core||guac["@wsb/guac-widget-core"]).constants.paintJobs,I={[g.F]:"category-overlay",[g.b]:"category-overlay",[g.I]:"category-solid",[g.B]:"category-overlay",[g.L]:"category-overlay"},S={defaultHeaderTreatment:g.F,imageTreatments:I,heroContentItems:["tagline","tagline2","cta"],nonHeroContentItems:["phone"]};var C={id:"layout13",name:"modern",packs:{color:"005",font:"league-spartan"},logo:{font:"primary"},packCategories:{color:d.ACCENT},headerProperties:{alignmentOption

                                    Chrome Cache Entry: 157

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (65536), with no line terminators
                                    Category:dropped
                                    Size (bytes):242257
                                    Entropy (8bit):5.517949479561666
                                    Encrypted:false
                                    SSDEEP:3072:7u8xUu8gpdmSOvTdTK4Tn9TnatTn9TnApfeVH0pdmSO3iTIT7JlDnDQj3jPGIXSQ:Y3A/6hbCxJFxKhUc
                                    MD5:55BAF821A59FAD53AA754C85AE19D0EA
                                    SHA1:B1662F5F5B119836E5E9C91C5E4A448BCD6CCC6D
                                    SHA-256:D26724E378F16CC4135849CCABF5A1BA738C3F4BA952950ACB34E73F24869E83
                                    SHA-512:791B8AA2E321324B55731B5F69239F86A0602F19FEB833BFC492D525EA132BC23D1C6A3907957992C655742F38AEDD7819A585E6B7A7F3C68126E0DC739DFC1B
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-index3-55bc27af.js",["radpack","exports","~/c/bs-_rollupPluginBabelHelpers","~/c/bs-overlayTypes","~/c/bs-index2","~/c/bs-index","~/c/bs-dataAids","@wsb/guac-widget-shared@^1/lib/components/ColorSwatch","@wsb/guac-widget-shared@^1/lib/components/Carousel","~/c/bs-navigationDrawer","~/c/bs-searchFormLocations"],(function(e,t,a,r,o,l,n,i,c,s,g){"use strict";class p extends((global.Core||guac["@wsb/guac-widget-core"]).UX2.utils.createElement("Background")){}a._(p,"propTypes",{className:(global.PropTypes||guac["prop-types"]).string,backgroundSize:(global.PropTypes||guac["prop-types"]).string,backgroundPosition:(global.PropTypes||guac["prop-types"]).string,style:(global.PropTypes||guac["prop-types"]).object,imageData:(global.PropTypes||guac["prop-types"]).object,mobileWidthMultiplier:(global.PropTypes||guac["prop-types"]).number,desktopWidthMultiplier:(global.PropTypes||guac["prop-types"]).number,blur:(global.PropTypes||guac["prop-types"]).bool}),a._(p,"defaultPr

                                    Chrome Cache Entry: 158

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (23126)
                                    Category:downloaded
                                    Size (bytes):23189
                                    Entropy (8bit):4.539345073526186
                                    Encrypted:false
                                    SSDEEP:384:7UuK/6kvTqLYddu4bV/yiAhSs1hiAhAiSeG3dvBRU+SMkc6e:QuJ5wI45/c1+ipG3TJSMkU
                                    MD5:3D092EF4ABA019B14F01C40747E40554
                                    SHA1:1C26145272FCF4CA91AF501288CCE84B1BFFD38B
                                    SHA-256:B4C48B77BBE6BBACF7D16BDAA81F5509FB8EA0FBFDDFBF2D12307F7A88518846
                                    SHA-512:F7180D3D98CF17556E27D62EF719DD9E35041679BAB74BD49BD898EB0FB62018EF6C6B64D06E9E0CAC4A646154DB93A1D35096B098DDCFF7B02CD6889A29DA0A
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js
                                    Preview:define("@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js",["exports"],(function(a){"use strict";const e=(global.React||guac.react).createElement("path",{d:"M12 2C6.477 2 2 6.477 2 12s4.477 10 10 10 10-4.477 10-10A10 10 0 0 0 12 2zM7.055 13.745a.97.97 0 0 1-.073-.509l.182-2.072a.687.687 0 0 1 .29-.364c.182-.11.582.036.582.036l2.619 1.31s.4.181.4.509c-.037.436-.219.436-.364.509l-3.055.654s-.436.146-.581-.073zm4.945.473l-.036 3.018s.036.437-.219.51c-.144.02-.291.02-.436 0l-2.036-.655a.6.6 0 0 1-.291-.364c-.073-.218.182-.545.182-.545l2.036-2.255s.327-.29.582-.145c.254.145.254.436.218.436zm-.364-3.236a.687.687 0 0 1-.581-.182l-2.51-3.418s-.363-.4-.181-.691a.64.64 0 0 1 .363-.291l2.4-.873c.11-.036.218-.145.582.073.255.145.291.655.291.655l.036 4.145s-.072.51-.4.582zm1.419.582l1.636-2.582s.145-.364.436-.327c.152.002.29.085.364.218l1.382 1.636a.676.676 0 0 1 .072.473c-.072.218-.472.363-.472.363l-2.91.837s-.4.073-.545-.182c-.145-.255 0-.51.037-.436zm3.781 3.309L15.6 16.655a.815.815 0 0 1-.4

                                    Chrome Cache Entry: 159

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (21556)
                                    Category:downloaded
                                    Size (bytes):21592
                                    Entropy (8bit):5.118279269599776
                                    Encrypted:false
                                    SSDEEP:384:/z+lhnKuowsx9pGxw57yty3eOHenS934osy:JioFP934Y
                                    MD5:1C56940A864F144FAE2EB40EE952CB94
                                    SHA1:EBFC754CE962A1F9025853F2995B3987F0383D87
                                    SHA-256:3C37A4AA3CF6AAAE6921A4B750C0E4F81FD338D6878BE90B0FAF2F921039CB23
                                    SHA-512:AEF4B08A01D56BD8855653499B375DB11D8FD7D67C4BCDC74323236BADC47B70DDFEDC14CE89828736C63FFE147BF71C14311580296D41B59F11A3305993ADDD
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/signals/js/clients/tti/tti.min.js
                                    Preview:!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define("tti",[],e):"object"==typeof exports?exports["tti"]=e():t["tti"]=e()}(window,function(){return n=[function(t,e){var n=function(){return this}();try{n=n||Function("return this")()}catch(t){"object"==typeof window&&(n=window)}t.exports=n},function(t,e,n){"use strict";e.__esModule=!0,e.setCustomProperties=e._sendWebVitalsData=e._collectVitals=e.calculateTTI=void 0,n(2);function i(){0<s.timeToInteractive&&setTimeout(function(){window._expDataLayer=window._expDataLayer||[],window._expDataLayer.push({schema:"add_perf",version:"v1",data:window._tccInternal?{type:"pageperf",properties:s,custom_properties:c}:{timing_object:s,is_hard_navigation:!0,custom_properties:c}})},0)}function r(){var t,e,n=(r=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{}).name,r=r.value;s[n]="CLS"===n?r:Math.round(r),"timeToInteractive"===n&&(s.hasOwnProperty("FID")?i():(t=0,e=setInt

                                    Chrome Cache Entry: 160

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:GIF image data, version 89a, 1 x 1
                                    Category:dropped
                                    Size (bytes):43
                                    Entropy (8bit):3.0314906788435274
                                    Encrypted:false
                                    SSDEEP:3:CUkwltxlHh/:P/
                                    MD5:325472601571F31E1BF00674C368D335
                                    SHA1:2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A
                                    SHA-256:B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
                                    SHA-512:717EA0FF7F3F624C268ECCB244E24EC1305AB21557ABB3D6F1A7E183FF68A2D28F13D1D2AF926C9EF6D1FB16DD8CBE34CD98CACF79091DDDC7874DCEE21ECFDC
                                    Malicious:false
                                    Reputation:low
                                    Preview:GIF89a.............!.......,...........D..;

                                    Chrome Cache Entry: 161

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:RIFF (little-endian) data, Web/P image
                                    Category:downloaded
                                    Size (bytes):658
                                    Entropy (8bit):6.61730029867641
                                    Encrypted:false
                                    SSDEEP:12:iNol07G5AaTycUlH5xxaicnZdBospuGM+eG1DRPb3SkEl9e:moKfblZxUiIUOu1+RB2l
                                    MD5:879C1943149C92DC59978AB1CEA144BA
                                    SHA1:2AA9F610A73F6CFE16772B1D81A9C9E53B72CC05
                                    SHA-256:E8CF82C58502F0958CA150370689B6FC2E5E41852E2310EB4404F4922FDB8376
                                    SHA-512:BD025AE3DBF5697CC2305E34BDE71F1146667A71D8CF829F402FAE04B62A8435F1DB64C3025759FA6308A4D2C5EE6397C8E9C16CF4E2618BB6BC24261B15B1D6
                                    Malicious:false
                                    Reputation:low
                                    URL:"https://img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:32,h:32,m"
                                    Preview:RIFF....WEBPVP8X........... ..VP8 .........* .!.>e(.E."....@.D..V.^.#..6............i_3....`.2k0.w.v..n................+..}~?...7L...5c.._..W.NXw........v..Q3......p....6..?.Z...e...i..Bn.;_UQ...zZ.2.}.W....$..E..]......JO)...c...C..,.'..UXy..K..S..G..0..V......#.1....k9.I...L...D.<'...c.'(s......z...P3.W.`........n.I...Dns.V....5-..j......eN...}..F...N.r.4..T........./[.0Z).(...IB...S."...C*jp..[I..J.....J*."......H0.5.......u.......EXIF....Exif..II*...........................V...........^...(.......................i.......f.......8c......8c................0210....................0100.................... ...........!.......

                                    Chrome Cache Entry: 162

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 192x197, components 3
                                    Category:dropped
                                    Size (bytes):4905
                                    Entropy (8bit):7.837991298914067
                                    Encrypted:false
                                    SSDEEP:96:tBDV0BWiQGXygvWufN0vyTOxvoS15q6D0Ltg1kx97lJhZYAg:tBDV0BW0xxfqvyS9fTwKkDrg
                                    MD5:E364BB31615893F66BF32A4454469314
                                    SHA1:17289F323B65841A3C0F898AEAE98FE2582E30F9
                                    SHA-256:C4241DAB91548405268EBC6BA27CBF01058F9901D083C4CBEA4DCA9AE34FD74F
                                    SHA-512:786630A1BD2E1E9249D5652200E3086797F10775DBD73D5810E7E3BCE69114BBA88203DAA26FBD03E99423EAD409FA49750E0F9F67837DD5D5529B073EC3D563
                                    Malicious:false
                                    Reputation:low
                                    Preview:......Exif..II*...........................V...........^...(.......................i.......f.......8c......8c................0210....................0100...........................................C.....................................%...#... , #&')*)..-0-(0%()(...C...........(...((((((((((((((((((((((((((((((((((((((((((((((((((..........."........................................A........................!..1Q..Aaq."2......BRT.....#3SUbr.$.4E............................................................!1Q2A."...Ba..RSq.............?..D@......~.[(e..)..'..I...]. y.g5...B.mF=..(>...b.....u.....{.... .....X=OgT.zIh..l0...""...." ...".*h]-D..&..<..Z.[{.%...Kb....:..D..g..Y|*.3mt..J6.('C.Y6...Q%.WCP@.'.N.. ....S..0.\$..",.B" ...v....S.......fc.w..n..t..^....%?....Y..=.\WQ4...4..G....NI...:}..a.^....Zi[,.,x.B......M4..h"...<Z{.-H..Pm...E.kM.Z...m..].r)..u'M.O.Os.)X .A.+..[H.m.+.....\.[Kf...l.7Q..C..C..;...W....Z.+.i.........&.E...].".w..7%>k.s..8.. ..*..;.z...,.[l

                                    Chrome Cache Entry: 163

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:dropped
                                    Size (bytes):324
                                    Entropy (8bit):5.376083689062415
                                    Encrypted:false
                                    SSDEEP:6:FSPl39b4BSyRbjGJlI9kXJ3+V0q1EkmGHr9EJiKWaEt39J:cd39MBSyVz0XkTHr+pWTt39J
                                    MD5:ACD4F2B6117E5054FC9BF848AE8121CA
                                    SHA1:AE4D5F41D854BA8D99A4A1EC6EE6D6C3C0A859B8
                                    SHA-256:66774F89FCFA5674BE9AEF60E3FE3CB81E4DD88246BDE4E5392DF8B99FEFD4DB
                                    SHA-512:906FC9144D4AB81E8000CBE4A7AF7AFF775464347449193337E8738D705888C02B9476E083B3B67BDB3CBC312AAC4644C10737BC1FC5F9F08B38F5F45A2410F9
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-legacyOverrides-42582241.js",["exports"],(function(e){"use strict";e.g=function(e,i,n){let o={};return"MENU"===i&&"h3"===e&&(o={color:"highlight"},"menu3"===n&&(o.fontSize="large")),o}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-legacyOverrides-42582241.js.map.

                                    Chrome Cache Entry: 164

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:GIF image data, version 89a, 1 x 1
                                    Category:downloaded
                                    Size (bytes):43
                                    Entropy (8bit):3.0314906788435274
                                    Encrypted:false
                                    SSDEEP:3:CUkwltxlHh/:P/
                                    MD5:325472601571F31E1BF00674C368D335
                                    SHA1:2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A
                                    SHA-256:B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
                                    SHA-512:717EA0FF7F3F624C268ECCB244E24EC1305AB21557ABB3D6F1A7E183FF68A2D28F13D1D2AF926C9EF6D1FB16DD8CBE34CD98CACF79091DDDC7874DCEE21ECFDC
                                    Malicious:false
                                    Reputation:low
                                    URL:https://events.api.secureserver.net/t/1/tl/event?dh=mata0msk_logiusa.godaddysites.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36&client_name=scc-c2&cv=0.4.7&vg=876861ef-01a4-4cbe-a993-36db3fc6136a&vtg=876861ef-01a4-4cbe-a993-36db3fc6136a&dp=%2F&trace_id=660145cde25d41969be0b5a9696c8519&cts=2024-09-29T02%3A47%3A06.128Z&hit_id=24548577-8ef6-4503-a375-a4fa67f9e6e4&ea=pageperf&ht=perf&eid=traffic.tcc.instrumentation.navigation.timing&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22581d44ea-32e2-4829-9de0-2ba8a5088d97%22%2C%22pd%22%3A%222022-11-23T16%3A11%3A20.049Z%22%2C%22meta.numWidgets%22%3A3%2C%22meta.theme%22%3A%22layout13%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&usrin=wam_site_hasPopupWidget%2Cfalse%5Ewam_site_hasMessagingWidget%2Ctrue%5Ewam_site_headerTreatment%2CFit%5Ewam_site_hasSlideshow%2Cfalse%5Ewam_site_hasFreemiumBanner%2Cfalse%5Ewam_site_businessCategory%2Ceducation%5Ewam_site_theme%2Clayout13%5Ewam_site_locale%2Cen-IN%5Ewam_site_fontPack%2Cleague-spartan%5Ewam_site_cookieBannerEnabled%2Ctrue%5Ewam_site_membershipEnabled%2Ctrue%5Ewam_site_hasHomepageHTML%2Cfalse%5Ewam_site_hasHomepageShop%2Cfalse%5Ewam_site_hasHomepageOla%2Cfalse%5Ewam_site_hasHomepageBlog%2Cfalse%5Ewam_site_hasShop%2Cfalse%5Ewam_site_hasOla%2Cfalse%5Ewam_site_planType%2CbusinessPlus%5Ewam_site_isHomepage%2Ctrue%5Ewam_site_htmlWidget%2Cfalse%5Ewam_site_networkSpeed%2C1.40&ap=IPv2&vci=1538512972&z=1630549816&LCP=3577&timeToInteractive=8420&nav_type=hard
                                    Preview:GIF89a.............!.......,...........D..;

                                    Chrome Cache Entry: 165

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (51547)
                                    Category:dropped
                                    Size (bytes):60612
                                    Entropy (8bit):5.350865870255686
                                    Encrypted:false
                                    SSDEEP:768:RfLoCGFoLM8vvw4xUC/ib7V/Kc5EVoR1eXRC/LkIT8OTGLOumJ66KzWmzlo62OzU:7u1eXRcD8OvumJ66KzxJo62OzmOM
                                    MD5:C693FC811E7C85993C214589D1DB1B81
                                    SHA1:21435AF308BACFC6E3AABEFF7FCFBF9E704D8922
                                    SHA-256:9D8A83091E7266E09C652DB1FA3B78915BF49FE7C0FFDED5574ABB688B566A13
                                    SHA-512:60A20411D0BC53F2498E8FD92CB0AF784F9E026BF4FE541CA1FAF8A466F95ABD391418E7BEAF6AFCCE4957AE3A4F02043B67D1B31D109B3981AD037CBE96393E
                                    Malicious:false
                                    Reputation:low
                                    Preview:navigator&&navigator.connection&&(window.networkInfo=navigator.connection,navigator.connection.addEventListener&&navigator.connection.addEventListener("change",({target:n})=>window.networkInfo=n));.const imageObserver=new IntersectionObserver((e,r)=>{var a=e=>{if(e.hasAttribute("data-lazyimg")){var t=e.getAttribute("data-srclazy");let o=e.getAttribute("data-srcsetlazy")||"";if(t&&(e.src=t),o&&window.networkInfo){var n=window.networkInfo.downlink;const r=[{min:0,max:5,regex:/(.*?(?=, ))/,qMod:!0},{min:5,max:8,regex:/(.*2x)/}];r.forEach(({min:e,max:t,regex:r,qMod:a})=>{e<=n&&n<t&&(r=o.match(r),o=(r&&r.length?r[0]:o)+(a?"/qt=q:"+Math.round((n-e)/(t-e)*100):""))})}e.srcset=o,e.removeAttribute("sizes"),e.removeAttribute("data-lazyimg"),e.removeAttribute("data-srclazy"),e.removeAttribute("data-srcsetlazy")}};e.forEach(e=>{if(e.isIntersecting){const t=e.target;window.networkInfo&&0===window.networkInfo.downlink||([t].concat(Array.from(t.querySelectorAll("[data-lazyimg]"))).forEach(a),r.unobse

                                    Chrome Cache Entry: 166

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (786)
                                    Category:downloaded
                                    Size (bytes):842
                                    Entropy (8bit):5.258991916821592
                                    Encrypted:false
                                    SSDEEP:24:caBL+qMLVRGqawadlH0rVRrkAeT25Z2HrIY/:jKqSVMqzarH0brkAeq5ZSrI+
                                    MD5:31B521136207C11FF1F9985264424E8A
                                    SHA1:9EAF6B9717979CAEB5C7E846E17B2A89A08DC266
                                    SHA-256:C818B56446AE5A8D0466FC9C51D85104584E36F6D8B1C77E08A2D354E845E2CD
                                    SHA-512:DB2A8825F8C67B6361B86F5BB1DEE38089DD57E5E74ECBA335EF7D82D9D5E5AD3F64C07195FCDF700415F6F09B11BDB6A20410462ABAEC443335F19ACF8265B1
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-themeOverrides-e736c017.js
                                    Preview:define("@widget/LAYOUT/c/bs-themeOverrides-e736c017.js",["exports"],(function(e){"use strict";(global.Core||guac["@wsb/guac-widget-core"]).constants;e.a=e=>{let{sectionHeadingHR:t}=e;return t?{sectionHeadingHR:t}:{}},e.b=e=>{let{sectionHeadingColor:t}=e;return{HIGHLIGHT:{style:{color:"highlight"}},HIGH_CONTRAST:{style:{color:"highContrast"}}}[t]||{}},e.c=e=>{let{sectionHeadingSize:t}=e;return t?{style:{fontSize:t}}:{}},e.s=e=>{let{sectionHeadingAlignment:t}=e;return{LEFT:{style:{textAlign:"left","@md":{textAlign:"left"}},alignmentOption:"left"},CENTER:{style:{textAlign:"center","@md":{textAlign:"center"}},alignmentOption:"center"},RIGHT:{style:{textAlign:"right","@md":{textAlign:"right"}},alignmentOption:"right"}}[t]||{}}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-themeOverrides-e736c017.js.map.

                                    Chrome Cache Entry: 167

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (1211)
                                    Category:dropped
                                    Size (bytes):1261
                                    Entropy (8bit):5.340315611373646
                                    Encrypted:false
                                    SSDEEP:24:/BLEQuC0F6lq5lEYwy5WqogVeESgVeId4PXsHrIW:Z4jFYq5lpwW7vdd4PXgrIW
                                    MD5:CB9BFA0FBDD957FBE7F4841B70341DB2
                                    SHA1:9CAD12A3580D3E4D340CB867E88B687C75564C5A
                                    SHA-256:513864FD4EBD1926F3E1E78B436A90C2BC3A5D16835B50415E7B318D7DEEC2A2
                                    SHA-512:DF98C3262F64DA4EA9CACF75FF7CB685D71B69142D89F726AB3E13CF6F25432DC395D7C0950E1632F0E519F135B02FDA0753739189E51F1C9210ACA6692551DD
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js",["exports"],(function(e){"use strict";const o=e=>{let{color:o,isActive:t,inStock:r,isSmall:l}=e;const a=r||void 0===r,c=l?"24px":"38px",n=l?"20px":"32px",i={borderRadius:"50%",borderWidth:"1px",borderStyle:"solid"},s={outer:{...i,display:"flex",alignItems:"center",justifyContent:"center",width:c,height:c,borderColor:t?"lowContrast":"transparent"},inner:{...i,borderColor:"ultraLowContrast",color:"ultraLowContrast",width:n,height:n,background:a?o:`linear-gradient(to left top, ${o} calc(50% - 1px), currentColor, ${o} calc(50% + 1px) )`}};return(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX2.Element.Block,{style:s.outer},(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX2.Element.Block,{style:s.inner}))};o.propTypes={color:(global.PropTypes||guac["prop-types"]).string.isRequired,isActive:(global.PropTypes||guac["prop-types"]).bool,inStock:(

                                    Chrome Cache Entry: 168

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (13449)
                                    Category:dropped
                                    Size (bytes):13500
                                    Entropy (8bit):5.426302310270178
                                    Encrypted:false
                                    SSDEEP:384:xwCUJQw/nfvqr5mu4Oxs1iGbW3DaJxJu74b4iEHj74O84NVXIMvFZucQr:xe/nHG5mu4OxCiGbW32Jfu74b4iEHj7i
                                    MD5:E135455ABAC1E365C75ACB29427BE2BD
                                    SHA1:386B236DC493D0EBE7827B2FD8897CC9DF4FE222
                                    SHA-256:88C66FB773F05F8A1B9EA9092CDE47FD6204EB3D3E5EF91F8223BD8A62339B40
                                    SHA-512:10260309AB241123099D44E175644D4C63C61ABFEB5FB71621DD41534012CD2EA9E662CBFA0B2D67B8CC7A6FD5B4B59FD34F325450E947ADD2B0EB01B5A04122
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/MESSAGING/bs-Component-3fa47963.js",["radpack","exports","@wsb/guac-widget-shared@^1/lib/components/Recaptcha/badge","@wsb/guac-widget-shared@^1/lib/common/constants/traffic2","@wsb/guac-widget-shared@^1/lib/common/constants/form/formIdentifiers"],(function(e,o,a,t,r){"use strict";var l=(global.keyMirror||guac.keymirror)({MESSAGING_FAB:null,MESSAGING_MESSAGE_FLYOUT:null,WELCOME_MESSAGE:null,SEND_MESSAGE_TO:null,EMAIL_OPT_IN_TOGGLE:null,EMAIL_OPT_IN_MESSAGE:null,COLOR_SATURATION_KNOB:null,COLOR_HUE_SLIDER_KNOB:null});const c=(global.React||guac.react).createElement("path",{d:"M0.342304 14.5C7.35025 6.3293 3.35025 0.829295 0 0.0.0 0.0 5.4 2.1 32.3502 0.329295C32.3503 3.8293 -3.13481 20.7261 0.342304 14.5Z"});function s({text:e}){return(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX2.Element.Block,{category:"neutral",section:"overlay",style:{backgroundColor:"neutral",margin:"-medium medium medium medium",borderRadius:"5px",position:

                                    Chrome Cache Entry: 169

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:GIF image data, version 89a, 1 x 1
                                    Category:downloaded
                                    Size (bytes):43
                                    Entropy (8bit):3.0314906788435274
                                    Encrypted:false
                                    SSDEEP:3:CUkwltxlHh/:P/
                                    MD5:325472601571F31E1BF00674C368D335
                                    SHA1:2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A
                                    SHA-256:B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
                                    SHA-512:717EA0FF7F3F624C268ECCB244E24EC1305AB21557ABB3D6F1A7E183FF68A2D28F13D1D2AF926C9EF6D1FB16DD8CBE34CD98CACF79091DDDC7874DCEE21ECFDC
                                    Malicious:false
                                    Reputation:low
                                    URL:https://events.api.secureserver.net/t/1/tl/event?dh=mata0msk_logiusa.godaddysites.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36&client_name=scc-c2&cv=0.4.7&vg=876861ef-01a4-4cbe-a993-36db3fc6136a&vtg=876861ef-01a4-4cbe-a993-36db3fc6136a&dp=%2F&trace_id=660145cde25d41969be0b5a9696c8519&cts=2024-09-29T02%3A46%3A50.287Z&hit_id=58300819-7ece-4c91-8598-67c57e57dc85&ht=pageview&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22581d44ea-32e2-4829-9de0-2ba8a5088d97%22%2C%22pd%22%3A%222022-11-23T16%3A11%3A20.049Z%22%2C%22meta.numWidgets%22%3A3%2C%22meta.theme%22%3A%22layout13%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&ap=IPv2&vci=1538512972&z=2041235504
                                    Preview:GIF89a.............!.......,...........D..;

                                    Chrome Cache Entry: 170

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 32x33, components 3
                                    Category:dropped
                                    Size (bytes):928
                                    Entropy (8bit):6.514004425175416
                                    Encrypted:false
                                    SSDEEP:12:SPb3SkEl9eIc150XyoseXkwUIkbfwtfhQCT0cMh0SWNr3iBKDKYpnxdHkay:/l7c1spXluwh/T0OycDjniV
                                    MD5:9A3E765D56EEAAAF34B32569C5C419FA
                                    SHA1:820E87D6365BBADA92B6DB159060F786A5647108
                                    SHA-256:E88554C4359114D4E8AD7F173FAE6107698EE7F2BBD31357263A12E5BB741865
                                    SHA-512:1B1F8B5CC6A94B490629F0D3BCE84314A565D804CC8E641CBB1EF1AEE8A77B2DB5078C55DE55B22DC7D45467E32F8A30BED28EBEFF7C7110A4DA544BD1181EEA
                                    Malicious:false
                                    Reputation:low
                                    Preview:......Exif..II*...........................V...........^...(.......................i.......f.......8c......8c................0210....................0100.................... ...........!..........C.....................................%...#... , #&')*)..-0-(0%()(...C...........(...((((((((((((((((((((((((((((((((((((((((((((((((((......!. .."...................................../.........................!..."12Q..Aq...$a............................... .......................A.!1Q.............?...n|.6.....q...\Jp4z..r=.;.\..!.bKH.k...|+.....7.X...).-.)..y.NF..~..9k.i......P:v....?..>y.L..c.+.`..b..w.U..9.g...#n........)NIq..$..w.%.6.]$iKiVF.S.s.....L[...Gw.9....#.g.......3|vK......I.!G'#o7...yH."e.."t..H..n..o..>...*...(.....C.={..]T)n....JBc.. ..1....A.C../J......HV..8..S@..[>.'$.T{...V...F...~.\..........%2$..3.....[NP...y.......N.....0iX..p.y.e..Si...8..M..I........U#..*5.STQEYR.E.P...

                                    Chrome Cache Entry: 171

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:Unicode text, UTF-8 text, with very long lines (20947)
                                    Category:downloaded
                                    Size (bytes):24399
                                    Entropy (8bit):5.2375624098374
                                    Encrypted:false
                                    SSDEEP:384:UNoz5VHqeg0VzpiyiwffnnPacVorjFtteVT36FCLCpKe9plq2D:ME5qeg0Rp8wffnPVEjFtteEFiSbbl3D
                                    MD5:753CB19EE1A756E46FAA0F118B1B4E01
                                    SHA1:248885E3BFE7E71989BA9FFFB33B6EFF18166FEC
                                    SHA-256:ED9FFA2FBA5ECC75AF2F99E6EBADD5B927086F258037C2A848E94449CC579991
                                    SHA-512:4482C4D5F2F93DE8E095C549994A7783FA55CD1A6C4C9CC5E697CC2E2F00C98B04D5CB958CC1ADC4D0EF67F300BE014E112AE1D992487F40EB25BC93E8B47AAA
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js
                                    Preview:define("@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js",["exports","~/c/_rollupPluginBabelHelpers","~/c/_commonjsHelpers","~/c/interopRequireDefault","~/c/_react_commonjs-external"],(function(e,t,n,i,r){"use strict";var s=n.c((function(e){function t(n){return e.exports=t="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e},e.exports.__esModule=!0,e.exports.default=e.exports,t(n)}e.exports=t,e.exports.__esModule=!0,e.exports.default=e.exports})),o=n.c((function(e){var t=s.default;function n(e){if("function"!=typeof WeakMap)return null;var t=new WeakMap,i=new WeakMap;return(n=function(e){return e?i:t})(e)}e.exports=function(e,i){if(!i&&e&&e.__esModule)return e;if(null===e||"object"!==t(e)&&"function"!=typeof e)return{default:e};var r=n(i);if(r&&r.has(e))return r.get(e);var s={},o=Object.defineProperty&&Object.getOwnPropertyDescr

                                    Chrome Cache Entry: 172

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:downloaded
                                    Size (bytes):221
                                    Entropy (8bit):5.32955468303281
                                    Encrypted:false
                                    SSDEEP:6:FSPD8WUDDSBSyFbNemGHr9EJiKWaEwI8WUDDn:c5UDGBSyCTHr+pWTwGUDr
                                    MD5:8F12765EB30FBDCFCDC116D13F7FC272
                                    SHA1:506E45B7D3930756EACCE0DAD449A3C8CDB3EAC6
                                    SHA-256:265995EB76326E95613750F6F6570B850F5C22280D262DE9B9632A16CEB98B9B
                                    SHA-512:7AA2F396B105BCCF2B943FD2AC60929D8BF3A0EB8574B77451CB29816DF8ACDCD07694B526D7E4585F849DFDA3A0FE6E95661179E13F682DBF54098D98154BFB
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js
                                    Preview:define("@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js",["exports"],(function(i){"use strict";i.N="-249vw"})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-navigationDrawer-27f5f1f5.js.map.

                                    Chrome Cache Entry: 173

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JSON data
                                    Category:downloaded
                                    Size (bytes):531
                                    Entropy (8bit):5.106858973481735
                                    Encrypted:false
                                    SSDEEP:12:YWGhtXIoWFJsTPXazIAMKXgdfVtUPwTPXazIAMKXgdfVtltPq00PqfSPJg:YZXIoWofa05KXgdfTUPofa05KXgdfTXp
                                    MD5:C7BC05D9277DB61339A9342C68E101F9
                                    SHA1:504B37C1A484F504FA9575784B563B7BE423BBE1
                                    SHA-256:A326630B018084994F53C9385AD04A2C6C0BB1E567A004807CE49316F36742D9
                                    SHA-512:0FCB8C981B6CDBC7F85B38354B4B1CCC58514890D98F37516D83E51334C7602D0CB7FF24C5363126031185E3E8A141F1025B985DB851662A5002526E20F89E6A
                                    Malicious:false
                                    Reputation:low
                                    URL:https://mata0msk_logiusa.godaddysites.com/manifest.webmanifest
                                    Preview:{"scope":"/","start_url":"/","display":"standalone","icons":[{"sizes":"192x192","type":"image/png","src":"//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:192,h:192,m"},{"sizes":"512x512","type":"image/png","src":"//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:512,h:512,m"}],"name":"mata0msk_logiusa","short_name":"mata0msk_logiusa","theme_color":"#c99968","background_color":"#c99968"}

                                    Chrome Cache Entry: 174

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (65536), with no line terminators
                                    Category:downloaded
                                    Size (bytes):107922
                                    Entropy (8bit):5.16833322430428
                                    Encrypted:false
                                    SSDEEP:1536:rrgGXmRRShRLWvm1y+bvdVa/AfVcclozOshAZpXZgiLxdONPam1ZJs6Q8FBirniQ:rrLbba/UEHw
                                    MD5:6A7950CC31489069917BF817B62B2BFE
                                    SHA1:44AAB6E9B8FDBAA23EA297CE69E26422277907C0
                                    SHA-256:1B4DACB0DAFDA81D48EE0890EA113B3B8275BF2D16D5325F971F16EB75F7218A
                                    SHA-512:0329712BC9EC144910DEE414B70181C4FD4145B65C78E2628BEE547A5DBC8D48BACD3BAA350451437C740493875DDD47FEC66C2C9189AA823A7B95DE8E9FA9F4
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/signals/js/clients/scc-c2/scc-c2.min.js
                                    Preview:!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define("scc-c2",[],e):"object"==typeof exports?exports["scc-c2"]=e():t["scc-c2"]=e()}(self,(()=>(()=>{"use strict";var t={d:(e,n)=>{for(var r in n)t.o(n,r)&&!t.o(e,r)&&Object.defineProperty(e,r,{enumerable:!0,get:n[r]})},o:(t,e)=>Object.prototype.hasOwnProperty.call(t,e),r:t=>{"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})}},e={};t.r(e);var n={};t.r(n),t.d(n,{_isDebug:()=>d,debug:()=>O,error:()=>g,info:()=>h,log:()=>h,setDebug:()=>b,warn:()=>w});var r={};t.r(r),t.d(r,{cmdLogEvent:()=>Yo,cmdLogPerf:()=>ti});var o,i,a,c,u,f=(o="",a={document:i=Object.create({get cookie(){return o},set cookie(t){o=t}})},c={},"undefined"==typeof window?{window:a,document:i,navigator:c}:{window:window||a,document:window.document||i,navigator:navigator||c}),s=function(){return f.

                                    Chrome Cache Entry: 175

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (905)
                                    Category:downloaded
                                    Size (bytes):960
                                    Entropy (8bit):5.203352394673048
                                    Encrypted:false
                                    SSDEEP:24:pzBLgJHHVvC+dKbywqIN6ttVFRJB1i/uwBrV7DtZHrIvyU:zSkjbQxz3+uQ7RxrIx
                                    MD5:62A914B2C847D4D02B76164D7A2A54C6
                                    SHA1:20D9F49A90A51FA6C8420640610DF77F7A96D919
                                    SHA-256:B08C2864EC27736C507B1CA4B3A225A19147841B861CD8494DAF95FA370FE639
                                    SHA-512:E67D3D9F68EF3151D93DEDAA3530DF89F0C957F08561E93134B219DEC23C2A1FE0D109AC666619526742C5411E4636ECE416A3AD1148C1AD0861F0050B41D3DE
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js
                                    Preview:define("@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js",["exports"],(function(e){"use strict";var n="undefined"!=typeof globalThis?globalThis:"undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:{};e.a=n,e.b=function(e){if(e.__esModule)return e;var n=Object.defineProperty({},"__esModule",{value:!0});return Object.keys(e).forEach((function(t){var r=Object.getOwnPropertyDescriptor(e,t);Object.defineProperty(n,t,r.get?r:{enumerable:!0,get:function(){return e[t]}})})),n},e.c=function(e,n,t){return e(t={path:n,exports:{},require:function(e,n){return function(){throw new Error("Dynamic requires are not currently supported by @rollup/plugin-commonjs")}(null==n&&t.path)}},t.exports),t.exports},e.g=function(e){return e&&e.__esModule&&Object.prototype.hasOwnProperty.call(e,"default")?e.default:e}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=_commonjsHelpers-67085353.js.map.

                                    Chrome Cache Entry: 176

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (383)
                                    Category:dropped
                                    Size (bytes):437
                                    Entropy (8bit):5.418011449016951
                                    Encrypted:false
                                    SSDEEP:12:cTTgBSyk+Jb8KCjoD3BMXkKbr4Si+THr+pWTDTd:cTTgBL3fCjqMXfr4SiSHrIYDTd
                                    MD5:21AD22788E6CAA18A4E9E57F7372B108
                                    SHA1:50EBDD2452193BEAB7D1899F788FBBF32D90DD55
                                    SHA-256:0FE26F07B9E5D49590F55D31CBC381CA9337850F89B09940E3B384FCD6D26464
                                    SHA-512:4237775466FC3A94FE9FD769B9A186DBF8559FE5E06442EA107872462B1591DA2EBFC2786DD8D05495538428F668D940A4D851AE8E13DAFBBF8B763EAAD2F063
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js",["exports"],(function(e){"use strict";const{headerTreatments:{FILL:n,FIT:t,INSET:o,BLUR:a,LEGACY_BLUR:c}}=(global.Core||guac["@wsb/guac-widget-core"]).constants;e.A="accent",e.B=a,e.C="category",e.F=n,e.I=o,e.L=c,e.N="neutral",e.P="primary",e.a="none",e.b=t,e.c="light_dark"})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-overlayTypes-e1dbe765.js.map.

                                    Chrome Cache Entry: 177

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:downloaded
                                    Size (bytes):304
                                    Entropy (8bit):5.609970428503769
                                    Encrypted:false
                                    SSDEEP:6:FSPOhWNjZTivBSyv5F/kpIdiEjGWF+ktxRmGHr9EJiKWaEkWNjZTiKF:cUZBSyv5ZdihWF+CRTHr+pWTkAF
                                    MD5:DAA79AD7558674F6A12D962ABF47F2F6
                                    SHA1:03EEA0EBEBD11EC14CFA5A651EB0ACA2604829A7
                                    SHA-256:604281887CD770ED21601933E9636A7A9C8A57A30D7D796AE7D760EEF64D5089
                                    SHA-512:B335EBCB0C982398C56D9A5F68F5D4E36A850AB139976BD94354C7CD18F1F370866A74F46FCD399F46E410D59AF7FBA890A17003BB4FD456DD43A6DE531D28F9
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js
                                    Preview:define("@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js",["exports"],(function(o){"use strict";o.D="DESKTOP_NAV_COVER",o.M="MOBILE_NAV",o.N="NAV_DRAWER",o.S="SIDEBAR",o.a="DESKTOP_NAV"})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-searchFormLocations-c86f2a99.js.map.

                                    Chrome Cache Entry: 178

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:GIF image data, version 89a, 1 x 1
                                    Category:downloaded
                                    Size (bytes):43
                                    Entropy (8bit):3.0314906788435274
                                    Encrypted:false
                                    SSDEEP:3:CUkwltxlHh/:P/
                                    MD5:325472601571F31E1BF00674C368D335
                                    SHA1:2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A
                                    SHA-256:B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
                                    SHA-512:717EA0FF7F3F624C268ECCB244E24EC1305AB21557ABB3D6F1A7E183FF68A2D28F13D1D2AF926C9EF6D1FB16DD8CBE34CD98CACF79091DDDC7874DCEE21ECFDC
                                    Malicious:false
                                    Reputation:low
                                    URL:https://events.api.secureserver.net/t/1/tl/event?dh=mata0msk_logiusa.godaddysites.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64)%20AppleWebKit%2F537.36%20(KHTML%2C%20like%20Gecko)%20Chrome%2F117.0.0.0%20Safari%2F537.36&client_name=scc-c2&cv=0.4.7&vg=876861ef-01a4-4cbe-a993-36db3fc6136a&vtg=876861ef-01a4-4cbe-a993-36db3fc6136a&dp=%2F&trace_id=660145cde25d41969be0b5a9696c8519&cts=2024-09-29T02%3A46%3A53.002Z&hit_id=3e42e478-393e-4bbf-90ae-088445cec49e&ea=pageperf&ht=perf&eid=traffic.tcc.instrumentation.navigation.timing&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%22581d44ea-32e2-4829-9de0-2ba8a5088d97%22%2C%22pd%22%3A%222022-11-23T16%3A11%3A20.049Z%22%2C%22meta.numWidgets%22%3A3%2C%22meta.theme%22%3A%22layout13%22%2C%22meta.headerMediaType%22%3A%22Image%22%2C%22meta.isOLS%22%3Afalse%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&ap=IPv2&vci=1538512972&z=70936652&tce=1727578005051&tcs=1727578004548&tdc=1727578012955&tdclee=1727578010311&tdcles=1727578010310&tdi=1727578006894&tdl=1727578005179&tdle=1727578004548&tdls=1727578004548&tfs=1727578004527&tns=1727578004524&trqs=1727578005051&tre=1727578005261&trps=1727578005175&tles=1727578012955&tlee=0&nt=navigate&LCP=3577&nav_type=hard
                                    Preview:GIF89a.............!.......,...........D..;

                                    Chrome Cache Entry: 179

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:GIF image data, version 89a, 1 x 1
                                    Category:dropped
                                    Size (bytes):43
                                    Entropy (8bit):3.0314906788435274
                                    Encrypted:false
                                    SSDEEP:3:CUkwltxlHh/:P/
                                    MD5:325472601571F31E1BF00674C368D335
                                    SHA1:2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A
                                    SHA-256:B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
                                    SHA-512:717EA0FF7F3F624C268ECCB244E24EC1305AB21557ABB3D6F1A7E183FF68A2D28F13D1D2AF926C9EF6D1FB16DD8CBE34CD98CACF79091DDDC7874DCEE21ECFDC
                                    Malicious:false
                                    Reputation:low
                                    Preview:GIF89a.............!.......,...........D..;

                                    Chrome Cache Entry: 180

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (13449)
                                    Category:downloaded
                                    Size (bytes):13500
                                    Entropy (8bit):5.426302310270178
                                    Encrypted:false
                                    SSDEEP:384:xwCUJQw/nfvqr5mu4Oxs1iGbW3DaJxJu74b4iEHj74O84NVXIMvFZucQr:xe/nHG5mu4OxCiGbW32Jfu74b4iEHj7i
                                    MD5:E135455ABAC1E365C75ACB29427BE2BD
                                    SHA1:386B236DC493D0EBE7827B2FD8897CC9DF4FE222
                                    SHA-256:88C66FB773F05F8A1B9EA9092CDE47FD6204EB3D3E5EF91F8223BD8A62339B40
                                    SHA-512:10260309AB241123099D44E175644D4C63C61ABFEB5FB71621DD41534012CD2EA9E662CBFA0B2D67B8CC7A6FD5B4B59FD34F325450E947ADD2B0EB01B5A04122
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js
                                    Preview:define("@widget/MESSAGING/bs-Component-3fa47963.js",["radpack","exports","@wsb/guac-widget-shared@^1/lib/components/Recaptcha/badge","@wsb/guac-widget-shared@^1/lib/common/constants/traffic2","@wsb/guac-widget-shared@^1/lib/common/constants/form/formIdentifiers"],(function(e,o,a,t,r){"use strict";var l=(global.keyMirror||guac.keymirror)({MESSAGING_FAB:null,MESSAGING_MESSAGE_FLYOUT:null,WELCOME_MESSAGE:null,SEND_MESSAGE_TO:null,EMAIL_OPT_IN_TOGGLE:null,EMAIL_OPT_IN_MESSAGE:null,COLOR_SATURATION_KNOB:null,COLOR_HUE_SLIDER_KNOB:null});const c=(global.React||guac.react).createElement("path",{d:"M0.342304 14.5C7.35025 6.3293 3.35025 0.829295 0 0.0.0 0.0 5.4 2.1 32.3502 0.329295C32.3503 3.8293 -3.13481 20.7261 0.342304 14.5Z"});function s({text:e}){return(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX2.Element.Block,{category:"neutral",section:"overlay",style:{backgroundColor:"neutral",margin:"-medium medium medium medium",borderRadius:"5px",position:

                                    Chrome Cache Entry: 181

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (383)
                                    Category:downloaded
                                    Size (bytes):437
                                    Entropy (8bit):5.418011449016951
                                    Encrypted:false
                                    SSDEEP:12:cTTgBSyk+Jb8KCjoD3BMXkKbr4Si+THr+pWTDTd:cTTgBL3fCjqMXfr4SiSHrIYDTd
                                    MD5:21AD22788E6CAA18A4E9E57F7372B108
                                    SHA1:50EBDD2452193BEAB7D1899F788FBBF32D90DD55
                                    SHA-256:0FE26F07B9E5D49590F55D31CBC381CA9337850F89B09940E3B384FCD6D26464
                                    SHA-512:4237775466FC3A94FE9FD769B9A186DBF8559FE5E06442EA107872462B1591DA2EBFC2786DD8D05495538428F668D940A4D851AE8E13DAFBBF8B763EAAD2F063
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js
                                    Preview:define("@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js",["exports"],(function(e){"use strict";const{headerTreatments:{FILL:n,FIT:t,INSET:o,BLUR:a,LEGACY_BLUR:c}}=(global.Core||guac["@wsb/guac-widget-core"]).constants;e.A="accent",e.B=a,e.C="category",e.F=n,e.I=o,e.L=c,e.N="neutral",e.P="primary",e.a="none",e.b=t,e.c="light_dark"})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-overlayTypes-e1dbe765.js.map.

                                    Chrome Cache Entry: 182

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:HTML document, Unicode text, UTF-8 text, with very long lines (6901)
                                    Category:downloaded
                                    Size (bytes):37893
                                    Entropy (8bit):5.522515248150621
                                    Encrypted:false
                                    SSDEEP:768:aTs7s9LgSvab56canyZvABHFaNGHDhY6pbPD/e+IW:97sRgSvab56dnyxpG9RDmbW
                                    MD5:D04656C2EE732478494ED827C84CD9F1
                                    SHA1:2CAE9A74682BA52872049AB0E8B3C329FBF2B982
                                    SHA-256:18BF7F9C68E8CC3F128F93CC2C20078BF848A91ADDE8348EBCA7A29B45654921
                                    SHA-512:FE22A977B16F3740C823109D522BA0B35986765899BE3322C2A76D43C6E4B69835FE9BE4D2D43CB266EC83A9FF4EC3B7B3827EF1F98E8157BE776A1A91E48DC2
                                    Malicious:false
                                    Reputation:low
                                    URL:https://mata0msk_logiusa.godaddysites.com/
                                    Preview:<!DOCTYPE html><html lang="en-IN"><head><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:16,h:16,m" sizes="16x16"/><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:24,h:24,m" sizes="24x24"/><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:32,h:32,m" sizes="32x32"/><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:48,h:48,m" sizes="48x48"/><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:64,h:64,m" sizes="64x64"/><meta charSet="utf-8"/><meta http-equiv="X-UA-Compatible" content="IE=edge"/><meta name="viewport" content="width=d

                                    Chrome Cache Entry: 183

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 16x16, components 3
                                    Category:dropped
                                    Size (bytes):606
                                    Entropy (8bit):5.262782303842354
                                    Encrypted:false
                                    SSDEEP:12:SPb3SkEl9uuG5c150XyoseMj0c/DY0qdKFOFeCFCIcB:/lYc1spoDYpMueCFCII
                                    MD5:FACC24BFF150E07FC2165A551219BEB8
                                    SHA1:9295DD32030798C06B8CC5CAB88DC372511F3E1D
                                    SHA-256:92C0F7F6A4DC075CFE290E2297F6708A670A222980E333F44AFAA36D63F3E41F
                                    SHA-512:91863A9A390B49DE0B2925932466EC9FAA2A350624EBC8BE789C7A4962403C065732C321BAD0C8E90B3BF3C4AAD93AF16FCEB26F6DF08C824B9C0B68B6C97421
                                    Malicious:false
                                    Reputation:low
                                    Preview:......Exif..II*...........................V...........^...(.......................i.......f.......8c......8c................0210....................0100...........................................C.....................................%...#... , #&')*)..-0-(0%()(...C...........(...((((((((((((((((((((((((((((((((((((((((((((((((((..........."..................................#..........................!A.2"q...............................................1....AB..............?.y..y].snl..Wfu...u..&[O.r......*.7:.U<.el<.t... .vU1.....t...k.S5R.(%> .........E.......+.0....gB..jf.......M..h..

                                    Chrome Cache Entry: 184

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:RIFF (little-endian) data, Web/P image
                                    Category:downloaded
                                    Size (bytes):446
                                    Entropy (8bit):5.769182699683439
                                    Encrypted:false
                                    SSDEEP:12:e30kj9cWkXzv4x7kYrdJLsw6Pb3SkEl9uuG:O91kXzQSYrnLVXl
                                    MD5:8948426331E2E4AE6F35A7F4B28301E1
                                    SHA1:C5C385631C91EADEDD57309D59FAEB486E4C7278
                                    SHA-256:CE353002E7EB0DA37CFAB5CAB4575AA7680EC8C2B593C7BAC8E9C24085175425
                                    SHA-512:E2176C5E911CC18FA71F1CB67C51E8BABEFF3425D1D9CE85C723CC280DF3DF92AC50E71AF362F5428D9CF403CBB3862A6E3B898E400BAB614618B2F906E2FA96
                                    Malicious:false
                                    Reputation:low
                                    URL:"https://img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:16,h:16,m"
                                    Preview:RIFF....WEBPVP8X..............VP8 .........*.....@&%..t..&.......\.....g.>.i....F.4.k..a.G...#u..W<<......~m>.9......@...Q...........l.`,.o. .(.T..bm....pr..8..W.....2/.}.}..W.9./2.r!.{..> &...j.<.gvj..r~.....].......H....[....F\?...].sG..D..EXIF....Exif..II*...........................V...........^...(.......................i.......f.......8c......8c................0210....................0100........................................

                                    Chrome Cache Entry: 185

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:downloaded
                                    Size (bytes):330
                                    Entropy (8bit):4.909032600712556
                                    Encrypted:false
                                    SSDEEP:6:0IFFAfYot0+56ZRWHMqh7pYoRPmespQBiTJBifoPmespQBiTJBinNin:jFKfP0O6ZRoMqtp/PSQK+oPSQK0Y
                                    MD5:1E154E5ED919387FF6D969C8D6C56619
                                    SHA1:8E9D50DD4961C69460CF1881232CEA4BACCC6EB4
                                    SHA-256:45FAAA17694E6BA660358AC8005E4A87EEEB817D99BA2A2E8E6684A591EEFDBC
                                    SHA-512:FA84A9EB79CD9294FCAFB3DAF91CA08FC45EDCDE1BDE218D71F1448EBAEF4386ACDBAB4C2DA6D1CFA1036B88D6B89635D71FFFE00A84FD53CE9933440776D1E0
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/font/LeagueSpartan/league-spartan.css
                                    Preview:@font-face {. font-family: 'League Spartan';. font-style: normal;. font-weight: 400;. font-display: swap;. src: local('League Spartan'), url(https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff2) format('woff2'), url(https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff) format('woff');.}.

                                    Chrome Cache Entry: 186

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:dropped
                                    Size (bytes):304
                                    Entropy (8bit):5.609970428503769
                                    Encrypted:false
                                    SSDEEP:6:FSPOhWNjZTivBSyv5F/kpIdiEjGWF+ktxRmGHr9EJiKWaEkWNjZTiKF:cUZBSyv5ZdihWF+CRTHr+pWTkAF
                                    MD5:DAA79AD7558674F6A12D962ABF47F2F6
                                    SHA1:03EEA0EBEBD11EC14CFA5A651EB0ACA2604829A7
                                    SHA-256:604281887CD770ED21601933E9636A7A9C8A57A30D7D796AE7D760EEF64D5089
                                    SHA-512:B335EBCB0C982398C56D9A5F68F5D4E36A850AB139976BD94354C7CD18F1F370866A74F46FCD399F46E410D59AF7FBA890A17003BB4FD456DD43A6DE531D28F9
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js",["exports"],(function(o){"use strict";o.D="DESKTOP_NAV_COVER",o.M="MOBILE_NAV",o.N="NAV_DRAWER",o.S="SIDEBAR",o.a="DESKTOP_NAV"})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-searchFormLocations-c86f2a99.js.map.

                                    Chrome Cache Entry: 187

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (516)
                                    Category:downloaded
                                    Size (bytes):583
                                    Entropy (8bit):5.275794886448015
                                    Encrypted:false
                                    SSDEEP:12:csTLaBSyTUXaPXAbDTc/NeL2QiTj+RVnIYQ2ofXgYFw1THr+pWT0Lv:cTBLTUXaPXAPTc/tTj+Hn/Q2CQYytHrI
                                    MD5:0D42FFB998A9CF7C25824CF365C7D0C9
                                    SHA1:7A95B87AC3B0C813F195EA46EFB9E792023EAFBE
                                    SHA-256:3418AA0FB5D19C3909DD89CCF081C9B59EBAD2A0334EED58373ED395D228487A
                                    SHA-512:EE2711CED0E8936C0DDAE9CFBE1FFAFABF56766C4611DC5B68C50919EDFC6CD1F3C850A0599ED107E8F6555D54BB46B3395B957A74697BEA2A749814C270C0FD
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js
                                    Preview:define("@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js",["exports"],(function(e){"use strict";function n(){return n=Object.assign?Object.assign.bind():function(e){for(var n=1;n<arguments.length;n++){var r=arguments[n];for(var t in r)Object.prototype.hasOwnProperty.call(r,t)&&(e[t]=r[t])}return e},n.apply(this,arguments)}e._=function(e,n,r){return n in e?Object.defineProperty(e,n,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[n]=r,e},e.a=n})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-_rollupPluginBabelHelpers-e83be766.js.map.

                                    Chrome Cache Entry: 188

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:downloaded
                                    Size (bytes):266
                                    Entropy (8bit):5.182741116673583
                                    Encrypted:false
                                    SSDEEP:6:F9oNS2BSyRbWsCJwvYtMe1mGHr9EJiKWaO6SZF:HgS2BSyEsCJB1THr+pWIS7
                                    MD5:8578A331AD09BB2EF6359FEC3916BEFC
                                    SHA1:38B68F5C02CBDB6E29C50F8858710E0392B0B8D6
                                    SHA-256:3D7E7552E3801941A408C504AA732223FE2BED5D12E248680847D772182CB639
                                    SHA-512:B034DDDA04F8DEE0D174651D13A89AF9FE5ED28E1E81FAB229AFA119B9B0A9C418E324FFCE28E909D8D596BEAE98FA1AC0BA09C74E7E7689B945C032088C5E18
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js
                                    Preview:define("@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js",["exports"],(function(e){"use strict";const n=global.React||guac.react;e._=n})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=_react_commonjs-external-a1351e34.js.map.

                                    Chrome Cache Entry: 189

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 1023x560, components 3
                                    Category:dropped
                                    Size (bytes):49720
                                    Entropy (8bit):7.918249646702644
                                    Encrypted:false
                                    SSDEEP:768:rBkWIQ8AGGOLbFC3E1IEST6o7YXIydTq+Q8i6RUUJSi6IAs2V5949:rqYL/25bb+X2HQ8i6RlT6Ns2V59i
                                    MD5:9AC08105D242F6F86FD67C787F651DBE
                                    SHA1:8A057CB0F579EB227EE4D0306765DCF130547DDF
                                    SHA-256:25A2F2D8E1B07C161AAE40AB72D3FECF6F7A88DFDC9A8FB659E65758867F2F3C
                                    SHA-512:9BE5104795F76FB9EB3EA1E32F2547C190425F43D9E549054864A854D615DDBC5DD2974F5E52FBA33BBC8B279569FFB90817FE7A5731F134EDBC0238AB7DE3B6
                                    Malicious:false
                                    Reputation:low
                                    Preview:......Exif..II*...........................J...........R...(...........i.......Z.......8c......8c................0210........0100................................0..........C.....................................%...#... , #&')*)..-0-(0%()(...C...........(...((((((((((((((((((((((((((((((((((((((((((((((((((......0....".........................................^..........................!1..AQa.."q....2RU...#5Bs.....367Sbrtu.......$%C.4Tc..&.'8df.....................................5.......................!1...2AQR."..Ba..#3q...C................?..D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.D@DD.@.SyD.&..**WI....^.5..>...(...n.C..\.<.|.s.<..Z.ut....ZJ...K..k...i%.k......!...z..j.....'.<..W....K....v...##!h.g..ta.[.pHxmo.......W.@z...Z\i.U.T....s.v....0..,..Sr..`....3UN.DE.................................................................................................

                                    Chrome Cache Entry: 190

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (367)
                                    Category:dropped
                                    Size (bytes):421
                                    Entropy (8bit):5.615758069936489
                                    Encrypted:false
                                    SSDEEP:6:F9o1iGhM9WjW84BSyRbZ0ZMC4sXPJu3AdBAerBBecO+mGHr9EJiKWaaM9WjWQ:HnGhM0V4BSyQ0seOBhNTHr+pWBM0j
                                    MD5:401821742DEF46C40D4CF5F0121C8BEC
                                    SHA1:1852305A4F2D7E120F9B7BD185790B98CDF9BFA6
                                    SHA-256:462D8298239BC61418760DB4204CD135D990537E625782D059CB9D3A1D0266A4
                                    SHA-512:38A53048605CF83ADAC562721A2818462EEE8289A79DEF4E02FE5B73B4515D8BC2303A577BADB6A9A55D75F3644459D5652B2AA75390A2CE7A925D3DDA8D6D4D
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/lib/common/constants/form/formIdentifiers-99523055.js",["exports"],(function(e){"use strict";var n=(global.keyMirror||guac.keymirror)({CONTACT_US:null,MESSAGING_EMAIL:null,MESSAGING_CONVERSATIONS:null,JOB_POSTING:null});e.default=n,Object.defineProperty(e,"__esModule",{value:!0})})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=formIdentifiers-99523055.js.map.

                                    Chrome Cache Entry: 191

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (12251)
                                    Category:dropped
                                    Size (bytes):12309
                                    Entropy (8bit):4.691953487987274
                                    Encrypted:false
                                    SSDEEP:192:Y9hgK/4PoduPprRZ14Iwh0DyTDE7JPKSlrZWbFQJJZ7FFS3DQwNp/A+Qd:YoKwodgpehxTMPKSlrAMrLS38UKd
                                    MD5:DFB4BEE7C6378574342CDFCE62FDD1D7
                                    SHA1:75679AE1470880C7209353283879CB58C010621B
                                    SHA-256:BFF3C0C2907BCFFD63DEDC687B8FCA61197E8B783C644B3D665AC3620C383E3C
                                    SHA-512:76C8042532A9F0FF590606A920713515356C9B9C6366A1447C2D184F6AAA4D5880A399570D5764E84100C7619DB5EF061BA6C4E535FA2473E69060F76112DF4B
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-humanisticFilled-91edd0e1.js",["exports"],(function(e){"use strict";const a=(global.React||guac.react).createElement("path",{fillRule:"evenodd",d:"M16.056 8.255a4.254 4.254 0 1 1-8.507 0 4.254 4.254 0 0 1 8.507 0zm3.052 11.71H4.496a.503.503 0 0 1-.46-.693 8.326 8.326 0 0 1 7.766-5.328 8.326 8.326 0 0 1 7.766 5.328.503.503 0 0 1-.46.694z"});var l={__proto__:null,account:a,person:a,magGlass:(global.React||guac.react).createElement("path",{fillRule:"evenodd",d:"M15.659 14.107c1.048.434 3.446 3.209 3.446 3.209a1.263 1.263 0 0 1 0 1.789 1.263 1.263 0 0 1-1.789 0s-2.775-2.371-3.209-3.419c-.077-.185 0-.591 0-.591l-.369-.362a6.111 6.111 0 0 1-3.656 1.211C6.729 15.944 4 13.265 4 9.972 4 6.679 6.729 4 10.082 4c3.354 0 6.082 2.679 6.082 5.972a5.88 5.88 0 0 1-1.466 3.878l.261.257s.483-.09.7 0zm-5.577.546c2.628 0 4.767-2.1 4.767-4.681s-2.139-4.681-4.767-4.681c-2.628 0-4.767 2.1-4.767 4.681s2.139 4.681 4.767 4.681z"}),cart1:(global.React||guac.react).createElement("path",

                                    Chrome Cache Entry: 192

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (651)
                                    Category:dropped
                                    Size (bytes):698
                                    Entropy (8bit):5.240081353203154
                                    Encrypted:false
                                    SSDEEP:12:HniBSys8YpBynnHW7Y9VZWZbWpTEnTHr+pW6+:HiBLstpBy27GZWZbWSTHrIN+
                                    MD5:7B01FCDF2048E82F4DF741791CD44F61
                                    SHA1:D1D126931B5D6937B1496E7950342D6A06F361B9
                                    SHA-256:CBC04C06117804A9A97013C97A0714B027DF8279C5F1D0FD0478756A0944AEE6
                                    SHA-512:3D16B5D5D68C92C6098534C10E57B5FAF389BA31D3DB8D004927410657895F147BBB1AF23A20509AC6834F66B6D98ED0DFBA944756D8EE419D73437CCAEBD897
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/lib/common/constants/traffic2-0a7e72c6.js",["exports"],(function(a){"use strict";const e="click",o="pandc.vnext";var n,i,s=(n=o,i={editor_preview:{submit_contact_form:e,messaging_fab_open:e,messaging_fab_close:e,messaging_webApp_appstore:e,conversations_learn_more:e},shop_widget:{click_pagination_back_arrow:e,click_pagination_forward_arrow:e,click_pagination_number:e}},(global._||guac.lodash).mapValues(i,((a,e)=>(global._||guac.lodash).mapValues(a,((a,o)=>[n,e,o,a].join("."))))));a.TRAFFIC_PREFIX=o,a.default=s,Object.defineProperty(a,"__esModule",{value:!0})})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=traffic2-0a7e72c6.js.map.

                                    Chrome Cache Entry: 193

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:Unicode text, UTF-8 text, with very long lines (63425)
                                    Category:downloaded
                                    Size (bytes):314664
                                    Entropy (8bit):5.468234877621491
                                    Encrypted:false
                                    SSDEEP:3072:OfpdUw9ySK7x5jfw71wUNdFsh0q312hgBQKQYctGfziZo/c0z6iv8W:g8w9yzc71rNVq31JBQKctGfWZoUW
                                    MD5:31E273E89FB56A44D86D206F1BCDCDB4
                                    SHA1:C1D25BAD06F8485EB76D39134C4BEC22A44E5534
                                    SHA-256:9E3C0FE8C9D6F0325C883709CEDE8898CE5D70F0640420ED058E0709C636531B
                                    SHA-512:53EFED1036FCC4F3D88D0269BA1348950DB5813B7B7AFE0548DE536AC7532BBEB7451E0BE3537C4FFBA5FE5A1CB1974243793AF0D958537C060EF01DF000674F
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js
                                    Preview:var Core=function(e){var t={};function n(r){if(t[r])return t[r].exports;var o=t[r]={i:r,l:!1,exports:{}};return e[r].call(o.exports,o,o.exports,n),o.l=!0,o.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)||Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var o in e)n.d(r,o,function(t){return e[t]}.bind(null,o));return r},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,"a",t),t},n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},n.p="//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/",n(n.s=68)}([fun

                                    Chrome Cache Entry: 194

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (65536), with no line terminators
                                    Category:downloaded
                                    Size (bytes):242257
                                    Entropy (8bit):5.517949479561666
                                    Encrypted:false
                                    SSDEEP:3072:7u8xUu8gpdmSOvTdTK4Tn9TnatTn9TnApfeVH0pdmSO3iTIT7JlDnDQj3jPGIXSQ:Y3A/6hbCxJFxKhUc
                                    MD5:55BAF821A59FAD53AA754C85AE19D0EA
                                    SHA1:B1662F5F5B119836E5E9C91C5E4A448BCD6CCC6D
                                    SHA-256:D26724E378F16CC4135849CCABF5A1BA738C3F4BA952950ACB34E73F24869E83
                                    SHA-512:791B8AA2E321324B55731B5F69239F86A0602F19FEB833BFC492D525EA132BC23D1C6A3907957992C655742F38AEDD7819A585E6B7A7F3C68126E0DC739DFC1B
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index3-55bc27af.js
                                    Preview:define("@widget/LAYOUT/c/bs-index3-55bc27af.js",["radpack","exports","~/c/bs-_rollupPluginBabelHelpers","~/c/bs-overlayTypes","~/c/bs-index2","~/c/bs-index","~/c/bs-dataAids","@wsb/guac-widget-shared@^1/lib/components/ColorSwatch","@wsb/guac-widget-shared@^1/lib/components/Carousel","~/c/bs-navigationDrawer","~/c/bs-searchFormLocations"],(function(e,t,a,r,o,l,n,i,c,s,g){"use strict";class p extends((global.Core||guac["@wsb/guac-widget-core"]).UX2.utils.createElement("Background")){}a._(p,"propTypes",{className:(global.PropTypes||guac["prop-types"]).string,backgroundSize:(global.PropTypes||guac["prop-types"]).string,backgroundPosition:(global.PropTypes||guac["prop-types"]).string,style:(global.PropTypes||guac["prop-types"]).object,imageData:(global.PropTypes||guac["prop-types"]).object,mobileWidthMultiplier:(global.PropTypes||guac["prop-types"]).number,desktopWidthMultiplier:(global.PropTypes||guac["prop-types"]).number,blur:(global.PropTypes||guac["prop-types"]).bool}),a._(p,"defaultPr

                                    Chrome Cache Entry: 195

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (330)
                                    Category:downloaded
                                    Size (bytes):390
                                    Entropy (8bit):5.206764812811324
                                    Encrypted:false
                                    SSDEEP:6:F9o8fAX7s4Bszv4yA5FKJyR8aBzzNWLc3oqcqAdfFwC6emGHr9EJiKWayfAX7A:HGs4Bkv4yA5sy+go9Hf+eTHr+pWOA
                                    MD5:C86B7F8224FA45FB1682AC94D8F75AC6
                                    SHA1:9561F67AAE74B14702DB79C22F9C7F9E6F3B3239
                                    SHA-256:010083B88E95F18CEFDB90796ACCE02073E91FC8DFEFB27A7F5F3F75529E4906
                                    SHA-512:B239BAC43D973D0076F4E0C0720906560B0AED76472F50202841B2EABB66C5AD5774E35449007AA2DC3E6A096330AB14D1AA9374645136C89A20B45E4BBDBC52
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js
                                    Preview:define("@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js",["exports","~/c/_commonjsHelpers"],(function(e,o){"use strict";var t=o.c((function(e){e.exports=function(e){return e&&e.__esModule?e:{default:e}},e.exports.__esModule=!0,e.exports.default=e.exports}));e.i=t})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=interopRequireDefault-c83974f7.js.map.

                                    Chrome Cache Entry: 197

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:dropped
                                    Size (bytes):266
                                    Entropy (8bit):5.182741116673583
                                    Encrypted:false
                                    SSDEEP:6:F9oNS2BSyRbWsCJwvYtMe1mGHr9EJiKWaO6SZF:HgS2BSyEsCJB1THr+pWIS7
                                    MD5:8578A331AD09BB2EF6359FEC3916BEFC
                                    SHA1:38B68F5C02CBDB6E29C50F8858710E0392B0B8D6
                                    SHA-256:3D7E7552E3801941A408C504AA732223FE2BED5D12E248680847D772182CB639
                                    SHA-512:B034DDDA04F8DEE0D174651D13A89AF9FE5ED28E1E81FAB229AFA119B9B0A9C418E324FFCE28E909D8D596BEAE98FA1AC0BA09C74E7E7689B945C032088C5E18
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js",["exports"],(function(e){"use strict";const n=global.React||guac.react;e._=n})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=_react_commonjs-external-a1351e34.js.map.

                                    Chrome Cache Entry: 198

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (3043)
                                    Category:dropped
                                    Size (bytes):3092
                                    Entropy (8bit):5.221416224205306
                                    Encrypted:false
                                    SSDEEP:96:/NSXU/vuELNSXtiF7ANSXTJrrBNSXt7X5wqh:VcKncc7ycd3cd5w8
                                    MD5:852CBC5322260E00B44F2C682F88B2C7
                                    SHA1:BCAF229E6134F43EB5F974C9891E4D16FAF1D344
                                    SHA-256:BAE437DBEFE58377D88C9D579DB7C59F4202F3FBF88866D0005FB375BE6B2CD7
                                    SHA-512:F031B43F7FA0DA001F71DDCFFE5E322A94C5F1F52F7C4D67D34880243D9D361AC55C0E5001DD004390867CB31E5DEF5D4D9282E6E2ECB9AEC0E880AA5B786BA3
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-loaders-fffeeba5.js",["exports","~/c/bs-index3"],(function(e,a){"use strict";e.B=function(e){const{SVG:c}=(global.Core||guac["@wsb/guac-widget-core"]).UX2.Element;return this.merge({tag:"div",children:(global.React||guac.react).createElement((global.React||guac.react).Fragment,null,(global.React||guac.react).createElement(c,{viewBox:"0 0 44 44",width:"3em",height:"3em",fill:"currentColor"},(global.React||guac.react).createElement("path",{fillRule:"evenodd",d:"M31.968 23H12.032c-.57 0-1.032-.448-1.032-1 0-.553.462-1 1.032-1h19.936c.57 0 1.032.447 1.032 1 0 .552-.462 1-1.032 1"})),(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX.Style,null,a.k.loaderBalance)),style:{"> svg":{animation:"balance 1s infinite cubic-bezier(.62,.06,.33,.79);",transformOrigin:"center"}}},e)},e.C=function(e){const{SVG:c}=(global.Core||guac["@wsb/guac-widget-core"]).UX2.Element;return this.merge({tag:"div",children:(global.React||guac.react).crea

                                    Chrome Cache Entry: 199

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (21556)
                                    Category:dropped
                                    Size (bytes):21592
                                    Entropy (8bit):5.118279269599776
                                    Encrypted:false
                                    SSDEEP:384:/z+lhnKuowsx9pGxw57yty3eOHenS934osy:JioFP934Y
                                    MD5:1C56940A864F144FAE2EB40EE952CB94
                                    SHA1:EBFC754CE962A1F9025853F2995B3987F0383D87
                                    SHA-256:3C37A4AA3CF6AAAE6921A4B750C0E4F81FD338D6878BE90B0FAF2F921039CB23
                                    SHA-512:AEF4B08A01D56BD8855653499B375DB11D8FD7D67C4BCDC74323236BADC47B70DDFEDC14CE89828736C63FFE147BF71C14311580296D41B59F11A3305993ADDD
                                    Malicious:false
                                    Reputation:low
                                    Preview:!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define("tti",[],e):"object"==typeof exports?exports["tti"]=e():t["tti"]=e()}(window,function(){return n=[function(t,e){var n=function(){return this}();try{n=n||Function("return this")()}catch(t){"object"==typeof window&&(n=window)}t.exports=n},function(t,e,n){"use strict";e.__esModule=!0,e.setCustomProperties=e._sendWebVitalsData=e._collectVitals=e.calculateTTI=void 0,n(2);function i(){0<s.timeToInteractive&&setTimeout(function(){window._expDataLayer=window._expDataLayer||[],window._expDataLayer.push({schema:"add_perf",version:"v1",data:window._tccInternal?{type:"pageperf",properties:s,custom_properties:c}:{timing_object:s,is_hard_navigation:!0,custom_properties:c}})},0)}function r(){var t,e,n=(r=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{}).name,r=r.value;s[n]="CLS"===n?r:Math.round(r),"timeToInteractive"===n&&(s.hasOwnProperty("FID")?i():(t=0,e=setInt

                                    Chrome Cache Entry: 200

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (367)
                                    Category:downloaded
                                    Size (bytes):421
                                    Entropy (8bit):5.615758069936489
                                    Encrypted:false
                                    SSDEEP:6:F9o1iGhM9WjW84BSyRbZ0ZMC4sXPJu3AdBAerBBecO+mGHr9EJiKWaaM9WjWQ:HnGhM0V4BSyQ0seOBhNTHr+pWBM0j
                                    MD5:401821742DEF46C40D4CF5F0121C8BEC
                                    SHA1:1852305A4F2D7E120F9B7BD185790B98CDF9BFA6
                                    SHA-256:462D8298239BC61418760DB4204CD135D990537E625782D059CB9D3A1D0266A4
                                    SHA-512:38A53048605CF83ADAC562721A2818462EEE8289A79DEF4E02FE5B73B4515D8BC2303A577BADB6A9A55D75F3644459D5652B2AA75390A2CE7A925D3DDA8D6D4D
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/form/formIdentifiers-99523055.js
                                    Preview:define("@wsb/guac-widget-shared/lib/common/constants/form/formIdentifiers-99523055.js",["exports"],(function(e){"use strict";var n=(global.keyMirror||guac.keymirror)({CONTACT_US:null,MESSAGING_EMAIL:null,MESSAGING_CONVERSATIONS:null,JOB_POSTING:null});e.default=n,Object.defineProperty(e,"__esModule",{value:!0})})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=formIdentifiers-99523055.js.map.

                                    Chrome Cache Entry: 202

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (330)
                                    Category:dropped
                                    Size (bytes):390
                                    Entropy (8bit):5.206764812811324
                                    Encrypted:false
                                    SSDEEP:6:F9o8fAX7s4Bszv4yA5FKJyR8aBzzNWLc3oqcqAdfFwC6emGHr9EJiKWayfAX7A:HGs4Bkv4yA5sy+go9Hf+eTHr+pWOA
                                    MD5:C86B7F8224FA45FB1682AC94D8F75AC6
                                    SHA1:9561F67AAE74B14702DB79C22F9C7F9E6F3B3239
                                    SHA-256:010083B88E95F18CEFDB90796ACCE02073E91FC8DFEFB27A7F5F3F75529E4906
                                    SHA-512:B239BAC43D973D0076F4E0C0720906560B0AED76472F50202841B2EABB66C5AD5774E35449007AA2DC3E6A096330AB14D1AA9374645136C89A20B45E4BBDBC52
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js",["exports","~/c/_commonjsHelpers"],(function(e,o){"use strict";var t=o.c((function(e){e.exports=function(e){return e&&e.__esModule?e:{default:e}},e.exports.__esModule=!0,e.exports.default=e.exports}));e.i=t})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=interopRequireDefault-c83974f7.js.map.

                                    Chrome Cache Entry: 203

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (51547)
                                    Category:downloaded
                                    Size (bytes):60612
                                    Entropy (8bit):5.350865870255686
                                    Encrypted:false
                                    SSDEEP:768:RfLoCGFoLM8vvw4xUC/ib7V/Kc5EVoR1eXRC/LkIT8OTGLOumJ66KzWmzlo62OzU:7u1eXRcD8OvumJ66KzxJo62OzmOM
                                    MD5:C693FC811E7C85993C214589D1DB1B81
                                    SHA1:21435AF308BACFC6E3AABEFF7FCFBF9E704D8922
                                    SHA-256:9D8A83091E7266E09C652DB1FA3B78915BF49FE7C0FFDED5574ABB688B566A13
                                    SHA-512:60A20411D0BC53F2498E8FD92CB0AF784F9E026BF4FE541CA1FAF8A466F95ABD391418E7BEAF6AFCCE4957AE3A4F02043B67D1B31D109B3981AD037CBE96393E
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/581d44ea-32e2-4829-9de0-2ba8a5088d97/gpub/ca6247f1caf48cf1/script.js
                                    Preview:navigator&&navigator.connection&&(window.networkInfo=navigator.connection,navigator.connection.addEventListener&&navigator.connection.addEventListener("change",({target:n})=>window.networkInfo=n));.const imageObserver=new IntersectionObserver((e,r)=>{var a=e=>{if(e.hasAttribute("data-lazyimg")){var t=e.getAttribute("data-srclazy");let o=e.getAttribute("data-srcsetlazy")||"";if(t&&(e.src=t),o&&window.networkInfo){var n=window.networkInfo.downlink;const r=[{min:0,max:5,regex:/(.*?(?=, ))/,qMod:!0},{min:5,max:8,regex:/(.*2x)/}];r.forEach(({min:e,max:t,regex:r,qMod:a})=>{e<=n&&n<t&&(r=o.match(r),o=(r&&r.length?r[0]:o)+(a?"/qt=q:"+Math.round((n-e)/(t-e)*100):""))})}e.srcset=o,e.removeAttribute("sizes"),e.removeAttribute("data-lazyimg"),e.removeAttribute("data-srclazy"),e.removeAttribute("data-srcsetlazy")}};e.forEach(e=>{if(e.isIntersecting){const t=e.target;window.networkInfo&&0===window.networkInfo.downlink||([t].concat(Array.from(t.querySelectorAll("[data-lazyimg]"))).forEach(a),r.unobse

                                    Chrome Cache Entry: 204

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (516)
                                    Category:dropped
                                    Size (bytes):583
                                    Entropy (8bit):5.275794886448015
                                    Encrypted:false
                                    SSDEEP:12:csTLaBSyTUXaPXAbDTc/NeL2QiTj+RVnIYQ2ofXgYFw1THr+pWT0Lv:cTBLTUXaPXAPTc/tTj+Hn/Q2CQYytHrI
                                    MD5:0D42FFB998A9CF7C25824CF365C7D0C9
                                    SHA1:7A95B87AC3B0C813F195EA46EFB9E792023EAFBE
                                    SHA-256:3418AA0FB5D19C3909DD89CCF081C9B59EBAD2A0334EED58373ED395D228487A
                                    SHA-512:EE2711CED0E8936C0DDAE9CFBE1FFAFABF56766C4611DC5B68C50919EDFC6CD1F3C850A0599ED107E8F6555D54BB46B3395B957A74697BEA2A749814C270C0FD
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js",["exports"],(function(e){"use strict";function n(){return n=Object.assign?Object.assign.bind():function(e){for(var n=1;n<arguments.length;n++){var r=arguments[n];for(var t in r)Object.prototype.hasOwnProperty.call(r,t)&&(e[t]=r[t])}return e},n.apply(this,arguments)}e._=function(e,n,r){return n in e?Object.defineProperty(e,n,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[n]=r,e},e.a=n})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-_rollupPluginBabelHelpers-e83be766.js.map.

                                    Chrome Cache Entry: 205

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (786)
                                    Category:dropped
                                    Size (bytes):842
                                    Entropy (8bit):5.258991916821592
                                    Encrypted:false
                                    SSDEEP:24:caBL+qMLVRGqawadlH0rVRrkAeT25Z2HrIY/:jKqSVMqzarH0brkAeq5ZSrI+
                                    MD5:31B521136207C11FF1F9985264424E8A
                                    SHA1:9EAF6B9717979CAEB5C7E846E17B2A89A08DC266
                                    SHA-256:C818B56446AE5A8D0466FC9C51D85104584E36F6D8B1C77E08A2D354E845E2CD
                                    SHA-512:DB2A8825F8C67B6361B86F5BB1DEE38089DD57E5E74ECBA335EF7D82D9D5E5AD3F64C07195FCDF700415F6F09B11BDB6A20410462ABAEC443335F19ACF8265B1
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-themeOverrides-e736c017.js",["exports"],(function(e){"use strict";(global.Core||guac["@wsb/guac-widget-core"]).constants;e.a=e=>{let{sectionHeadingHR:t}=e;return t?{sectionHeadingHR:t}:{}},e.b=e=>{let{sectionHeadingColor:t}=e;return{HIGHLIGHT:{style:{color:"highlight"}},HIGH_CONTRAST:{style:{color:"highContrast"}}}[t]||{}},e.c=e=>{let{sectionHeadingSize:t}=e;return t?{style:{fontSize:t}}:{}},e.s=e=>{let{sectionHeadingAlignment:t}=e;return{LEFT:{style:{textAlign:"left","@md":{textAlign:"left"}},alignmentOption:"left"},CENTER:{style:{textAlign:"center","@md":{textAlign:"center"}},alignmentOption:"center"},RIGHT:{style:{textAlign:"right","@md":{textAlign:"right"}},alignmentOption:"right"}}[t]||{}}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-themeOverrides-e736c017.js.map.

                                    Chrome Cache Entry: 206

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:Unicode text, UTF-8 text, with very long lines (63425)
                                    Category:dropped
                                    Size (bytes):314664
                                    Entropy (8bit):5.468234877621491
                                    Encrypted:false
                                    SSDEEP:3072:OfpdUw9ySK7x5jfw71wUNdFsh0q312hgBQKQYctGfziZo/c0z6iv8W:g8w9yzc71rNVq31JBQKctGfWZoUW
                                    MD5:31E273E89FB56A44D86D206F1BCDCDB4
                                    SHA1:C1D25BAD06F8485EB76D39134C4BEC22A44E5534
                                    SHA-256:9E3C0FE8C9D6F0325C883709CEDE8898CE5D70F0640420ED058E0709C636531B
                                    SHA-512:53EFED1036FCC4F3D88D0269BA1348950DB5813B7B7AFE0548DE536AC7532BBEB7451E0BE3537C4FFBA5FE5A1CB1974243793AF0D958537C060EF01DF000674F
                                    Malicious:false
                                    Reputation:low
                                    Preview:var Core=function(e){var t={};function n(r){if(t[r])return t[r].exports;var o=t[r]={i:r,l:!1,exports:{}};return e[r].call(o.exports,o,o.exports,n),o.l=!0,o.exports}return n.m=e,n.c=t,n.d=function(e,t,r){n.o(e,t)||Object.defineProperty(e,t,{enumerable:!0,get:r})},n.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},n.t=function(e,t){if(1&t&&(e=n(e)),8&t)return e;if(4&t&&"object"==typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(n.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var o in e)n.d(r,o,function(t){return e[t]}.bind(null,o));return r},n.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return n.d(t,"a",t),t},n.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},n.p="//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/",n(n.s=68)}([fun

                                    Chrome Cache Entry: 207

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (3043)
                                    Category:downloaded
                                    Size (bytes):3092
                                    Entropy (8bit):5.221416224205306
                                    Encrypted:false
                                    SSDEEP:96:/NSXU/vuELNSXtiF7ANSXTJrrBNSXt7X5wqh:VcKncc7ycd3cd5w8
                                    MD5:852CBC5322260E00B44F2C682F88B2C7
                                    SHA1:BCAF229E6134F43EB5F974C9891E4D16FAF1D344
                                    SHA-256:BAE437DBEFE58377D88C9D579DB7C59F4202F3FBF88866D0005FB375BE6B2CD7
                                    SHA-512:F031B43F7FA0DA001F71DDCFFE5E322A94C5F1F52F7C4D67D34880243D9D361AC55C0E5001DD004390867CB31E5DEF5D4D9282E6E2ECB9AEC0E880AA5B786BA3
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js
                                    Preview:define("@widget/LAYOUT/c/bs-loaders-fffeeba5.js",["exports","~/c/bs-index3"],(function(e,a){"use strict";e.B=function(e){const{SVG:c}=(global.Core||guac["@wsb/guac-widget-core"]).UX2.Element;return this.merge({tag:"div",children:(global.React||guac.react).createElement((global.React||guac.react).Fragment,null,(global.React||guac.react).createElement(c,{viewBox:"0 0 44 44",width:"3em",height:"3em",fill:"currentColor"},(global.React||guac.react).createElement("path",{fillRule:"evenodd",d:"M31.968 23H12.032c-.57 0-1.032-.448-1.032-1 0-.553.462-1 1.032-1h19.936c.57 0 1.032.447 1.032 1 0 .552-.462 1-1.032 1"})),(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX.Style,null,a.k.loaderBalance)),style:{"> svg":{animation:"balance 1s infinite cubic-bezier(.62,.06,.33,.79);",transformOrigin:"center"}}},e)},e.C=function(e){const{SVG:c}=(global.Core||guac["@wsb/guac-widget-core"]).UX2.Element;return this.merge({tag:"div",children:(global.React||guac.react).crea

                                    Chrome Cache Entry: 208

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:dropped
                                    Size (bytes):221
                                    Entropy (8bit):5.32955468303281
                                    Encrypted:false
                                    SSDEEP:6:FSPD8WUDDSBSyFbNemGHr9EJiKWaEwI8WUDDn:c5UDGBSyCTHr+pWTwGUDr
                                    MD5:8F12765EB30FBDCFCDC116D13F7FC272
                                    SHA1:506E45B7D3930756EACCE0DAD449A3C8CDB3EAC6
                                    SHA-256:265995EB76326E95613750F6F6570B850F5C22280D262DE9B9632A16CEB98B9B
                                    SHA-512:7AA2F396B105BCCF2B943FD2AC60929D8BF3A0EB8574B77451CB29816DF8ACDCD07694B526D7E4585F849DFDA3A0FE6E95661179E13F682DBF54098D98154BFB
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js",["exports"],(function(i){"use strict";i.N="-249vw"})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-navigationDrawer-27f5f1f5.js.map.

                                    Chrome Cache Entry: 209

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (1211)
                                    Category:downloaded
                                    Size (bytes):1261
                                    Entropy (8bit):5.340315611373646
                                    Encrypted:false
                                    SSDEEP:24:/BLEQuC0F6lq5lEYwy5WqogVeESgVeId4PXsHrIW:Z4jFYq5lpwW7vdd4PXgrIW
                                    MD5:CB9BFA0FBDD957FBE7F4841B70341DB2
                                    SHA1:9CAD12A3580D3E4D340CB867E88B687C75564C5A
                                    SHA-256:513864FD4EBD1926F3E1E78B436A90C2BC3A5D16835B50415E7B318D7DEEC2A2
                                    SHA-512:DF98C3262F64DA4EA9CACF75FF7CB685D71B69142D89F726AB3E13CF6F25432DC395D7C0950E1632F0E519F135B02FDA0753739189E51F1C9210ACA6692551DD
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js
                                    Preview:define("@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js",["exports"],(function(e){"use strict";const o=e=>{let{color:o,isActive:t,inStock:r,isSmall:l}=e;const a=r||void 0===r,c=l?"24px":"38px",n=l?"20px":"32px",i={borderRadius:"50%",borderWidth:"1px",borderStyle:"solid"},s={outer:{...i,display:"flex",alignItems:"center",justifyContent:"center",width:c,height:c,borderColor:t?"lowContrast":"transparent"},inner:{...i,borderColor:"ultraLowContrast",color:"ultraLowContrast",width:n,height:n,background:a?o:`linear-gradient(to left top, ${o} calc(50% - 1px), currentColor, ${o} calc(50% + 1px) )`}};return(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX2.Element.Block,{style:s.outer},(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX2.Element.Block,{style:s.inner}))};o.propTypes={color:(global.PropTypes||guac["prop-types"]).string.isRequired,isActive:(global.PropTypes||guac["prop-types"]).bool,inStock:(

                                    Chrome Cache Entry: 210

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (829)
                                    Category:dropped
                                    Size (bytes):876
                                    Entropy (8bit):5.561256771975726
                                    Encrypted:false
                                    SSDEEP:24:cEBLv5pqMIuHMnH7cmo17Jv0ySaUKdei9hJQE2HrIYpb:f75pqaowmWJcySaUKdTfcrIC
                                    MD5:9219CF782ED219BD3929A51E99503BC2
                                    SHA1:6AAC399854EC0405949566FAFDCA8C121F0CDA58
                                    SHA-256:89388608D7BCECED5AD74231681FFCE822AD580ACB9FD7E492970176E3E38347
                                    SHA-512:D421851026422D46E1561FA852084CE7B41E32C7451DCF85900838265D330F09389DA18F4D8A5FAF3E0A4076508BA7E93EA9C5F8B5B32ACF32205C9B6E65E709
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-index-4e26cd6b.js",["exports"],(function(o){"use strict";const{widgetTypes:e,colorPackCategories:t,themeConstants:n,buttons:l}=(global.Core||guac["@wsb/guac-widget-core"]).constants,s=(global.keyMirror||guac.keymirror)({NONE:null,SMALL_UNDERLINE:null,FULL_UNDERLINE:null,INLINE:null}),i=24,r=n.DEFAULT_OVERLAY_TEXT_SHADOW,a={about4:i,introduction5:i,content5:i,ordering1:i,payment2:i,zillow1:i,reviews1:i,rss1:i,subscribe3:i,mlsSearch1:i,contact10:i,countdown1:i,quote1:i},c={spotlight:{fill:l.fills.SOLID},external:{fill:l.fills.NONE,decoration:l.decorations.NONE,shadow:l.shadows.NONE}};o.A="365px",o.B="24px",o.C=c,o.D=25,o.I=28,o.M=40,o.O="0px 2px 10px rgba(0, 0, 0, 0.3)",o.S=40,o.W={about1:!0},o.a=r,o.b="18px",o.c=a,o.d="600px",o.e=t,o.s=s})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-index-4e26cd6b.js.map.

                                    Chrome Cache Entry: 211

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (23126)
                                    Category:dropped
                                    Size (bytes):23189
                                    Entropy (8bit):4.539345073526186
                                    Encrypted:false
                                    SSDEEP:384:7UuK/6kvTqLYddu4bV/yiAhSs1hiAhAiSeG3dvBRU+SMkc6e:QuJ5wI45/c1+ipG3TJSMkU
                                    MD5:3D092EF4ABA019B14F01C40747E40554
                                    SHA1:1C26145272FCF4CA91AF501288CCE84B1BFFD38B
                                    SHA-256:B4C48B77BBE6BBACF7D16BDAA81F5509FB8EA0FBFDDFBF2D12307F7A88518846
                                    SHA-512:F7180D3D98CF17556E27D62EF719DD9E35041679BAB74BD49BD898EB0FB62018EF6C6B64D06E9E0CAC4A646154DB93A1D35096B098DDCFF7B02CD6889A29DA0A
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js",["exports"],(function(a){"use strict";const e=(global.React||guac.react).createElement("path",{d:"M12 2C6.477 2 2 6.477 2 12s4.477 10 10 10 10-4.477 10-10A10 10 0 0 0 12 2zM7.055 13.745a.97.97 0 0 1-.073-.509l.182-2.072a.687.687 0 0 1 .29-.364c.182-.11.582.036.582.036l2.619 1.31s.4.181.4.509c-.037.436-.219.436-.364.509l-3.055.654s-.436.146-.581-.073zm4.945.473l-.036 3.018s.036.437-.219.51c-.144.02-.291.02-.436 0l-2.036-.655a.6.6 0 0 1-.291-.364c-.073-.218.182-.545.182-.545l2.036-2.255s.327-.29.582-.145c.254.145.254.436.218.436zm-.364-3.236a.687.687 0 0 1-.581-.182l-2.51-3.418s-.363-.4-.181-.691a.64.64 0 0 1 .363-.291l2.4-.873c.11-.036.218-.145.582.073.255.145.291.655.291.655l.036 4.145s-.072.51-.4.582zm1.419.582l1.636-2.582s.145-.364.436-.327c.152.002.29.085.364.218l1.382 1.636a.676.676 0 0 1 .072.473c-.072.218-.472.363-.472.363l-2.91.837s-.4.073-.545-.182c-.145-.255 0-.51.037-.436zm3.781 3.309L15.6 16.655a.815.815 0 0 1-.4

                                    Chrome Cache Entry: 212

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (442)
                                    Category:dropped
                                    Size (bytes):486
                                    Entropy (8bit):5.227340053777477
                                    Encrypted:false
                                    SSDEEP:12:HDSk+nBSyD8Dgu4dKsVfIoD3PS22hTHr+pWrY:ek+nBLD8DN4sog+iHrIcY
                                    MD5:5F10DF611C856F376981BE4DFBD17753
                                    SHA1:4463A27419B2FDFDBD81770C74DEE2E74BE948E0
                                    SHA-256:EBD2BA2A0E879AE2CEC7D513324E04346153A581BE3AA202662E6C9D5B1CE6E1
                                    SHA-512:F5911E08ED8B57B2E4B10C8AC622C4E7A82AEEC7D5B1AFED9C064A2975F41E211149CE1692FCF2F9497508E7ECDF678E48EC2CFA1D8C9112507950748146D5D8
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/lib/components/Recaptcha/badge-e542c4f1.js",["exports"],(function(e){"use strict";class a extends(global.React||guac.react).Component{render(){return(global.React||guac.react).createElement((global.Core||guac["@wsb/guac-widget-core"]).UX.Style,null,".grecaptcha-badge { visibility: hidden; }")}}e.default=a,Object.defineProperty(e,"__esModule",{value:!0})})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=badge-e542c4f1.js.map.

                                    Chrome Cache Entry: 213

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:Unicode text, UTF-8 text, with very long lines (20947)
                                    Category:dropped
                                    Size (bytes):24399
                                    Entropy (8bit):5.2375624098374
                                    Encrypted:false
                                    SSDEEP:384:UNoz5VHqeg0VzpiyiwffnnPacVorjFtteVT36FCLCpKe9plq2D:ME5qeg0Rp8wffnPVEjFtteEFiSbbl3D
                                    MD5:753CB19EE1A756E46FAA0F118B1B4E01
                                    SHA1:248885E3BFE7E71989BA9FFFB33B6EFF18166FEC
                                    SHA-256:ED9FFA2FBA5ECC75AF2F99E6EBADD5B927086F258037C2A848E94449CC579991
                                    SHA-512:4482C4D5F2F93DE8E095C549994A7783FA55CD1A6C4C9CC5E697CC2E2F00C98B04D5CB958CC1ADC4D0EF67F300BE014E112AE1D992487F40EB25BC93E8B47AAA
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js",["exports","~/c/_rollupPluginBabelHelpers","~/c/_commonjsHelpers","~/c/interopRequireDefault","~/c/_react_commonjs-external"],(function(e,t,n,i,r){"use strict";var s=n.c((function(e){function t(n){return e.exports=t="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"==typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e},e.exports.__esModule=!0,e.exports.default=e.exports,t(n)}e.exports=t,e.exports.__esModule=!0,e.exports.default=e.exports})),o=n.c((function(e){var t=s.default;function n(e){if("function"!=typeof WeakMap)return null;var t=new WeakMap,i=new WeakMap;return(n=function(e){return e?i:t})(e)}e.exports=function(e,i){if(!i&&e&&e.__esModule)return e;if(null===e||"object"!==t(e)&&"function"!=typeof e)return{default:e};var r=n(i);if(r&&r.has(e))return r.get(e);var s={},o=Object.defineProperty&&Object.getOwnPropertyDescr

                                    Chrome Cache Entry: 214

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:RIFF (little-endian) data, Web/P image
                                    Category:downloaded
                                    Size (bytes):2910
                                    Entropy (8bit):7.817088326257949
                                    Encrypted:false
                                    SSDEEP:48:6HkbqlZF043dO2ZDS4mFh6EDfCnf/pHoBpjLik6pbS7mP6ja2CY3EgNoJ3JvKPJ:6Hqqlg43dnwFhDc/BMNik6g2e1NoZJCR
                                    MD5:DD02DBB250A270C9D430B6B57D983C49
                                    SHA1:189DFBEE3D21271A68B14E5A8F6E66E78786276F
                                    SHA-256:8B2CD8316D05853621ED2BA8415E887C273AA84A66A54A1193911C0B34A4B6BC
                                    SHA-512:4F77A7F67ECC05EBCD7705D5DA90AEE3E1CF5ECF42CBFC86F2414E87665DA147F01E802F82696EB3F8201E4EDC3AE73FE41FA6A46DA9E3DC22A927B0D683F651
                                    Malicious:false
                                    Reputation:low
                                    URL:"https://img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:192,h:192,m"
                                    Preview:RIFFV...WEBPVP8X..............VP8 v....9...*....>m4.G$#"!*.....M.....Ro..v.C.~ct......O7jS...........?..Y?D...>C.....;.......g...'........<ku..'O....X...u5.@....O...8{.N.?...........s\../..I...a..}w...".".Z.yNI....J.......R>..q..S..H.:..X.`.|.C1...lg3........==,..j.d:'...ZK....G.....).1xb.M.'~L*H9{..*....PS...a.......2/c.A~..p...&h...f.n!.!.1.O..y#l..T.f#2.......>.K!..$.}E.L..U..E..a%;..N~..... ..y.Tg..(..U.~?y.....D..n.6Y...y@.....e..v...._...]k..nt...9.K.1....Q....ZM?.........so.........y...v:/e!.n...I..J..[e+....gP......#.=.-./....u..%.-.f&.v+.M..q.....aq L......5..k..F.q_..e.6_......q.%.2\.dZ...[..........*..K${s.........4....'2.Ct.0F.\.}."6......1..p..*lE.....2.l)..z.?".`..M...&Zv.J.-m.....r...ug.'`.i#x..7.#.E.3b....i.U.YM.4~s...+.+!R...LX.l&pd..n..\....z|..".4/`..@.&.....-.5....u. \.)...)G5...=...<8...{.;.w.`.......:5. ...jqb....)..W..A..U/l..;.......R.c.......Ovjc..p.W.>G..R....w{..(7m..=.g.`0gD97..8.:.......^q...*,.Q.?Y......7j

                                    Chrome Cache Entry: 215

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (522)
                                    Category:downloaded
                                    Size (bytes):586
                                    Entropy (8bit):5.2378887904744955
                                    Encrypted:false
                                    SSDEEP:12:H/QL7ANBSyTUXaPXAbDTc/NeL2QiTj+RVngQ2ofXgYhMYTHr+pWgL7AO:cANBLTUXaPXAPTc/tTj+HngQ2CQY/HrQ
                                    MD5:FADB3719FFA2A9E96CDC64FFEA0220FA
                                    SHA1:B9B00833E59E99ECE036B518D8429AF5EFEC1163
                                    SHA-256:E8A5463FF98210D3017DEEE55D5A287AD01AAA11DBE7DEB7D07F7D15D7F609F2
                                    SHA-512:C6E3581F7676B3204BC0FC8D4DCCF5A383FDE6F17A27D2F855EBEE3D205459BD9866A219808EAB1D4D4B37676D13B516AF546C7125C3FFA22CA74B995A180644
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js
                                    Preview:define("@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js",["exports"],(function(e){"use strict";function n(){return n=Object.assign?Object.assign.bind():function(e){for(var n=1;n<arguments.length;n++){var r=arguments[n];for(var t in r)Object.prototype.hasOwnProperty.call(r,t)&&(e[t]=r[t])}return e},n.apply(this,arguments)}e._=n,e.a=function(e,n,r){return n in e?Object.defineProperty(e,n,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[n]=r,e}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=_rollupPluginBabelHelpers-8ce54c82.js.map.

                                    Chrome Cache Entry: 216

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (32962), with no line terminators
                                    Category:downloaded
                                    Size (bytes):32962
                                    Entropy (8bit):5.234681847882248
                                    Encrypted:false
                                    SSDEEP:768:8QMz7Xi7utc79QusIPgexnKnPxPC7JWU/VHeLNsiQk/c4ur2McV2xdnGYeCjWQTY:si79wq0xPCFWsHuCleZ0j/TsmUP
                                    MD5:88F6BD3916BAC49528CCE0423A6F2574
                                    SHA1:77B89BE08AD73209F57824BA6DB2D59F4923668B
                                    SHA-256:EC6590350362CEF3EDD8D8C70DEE8B08DE4528AD997BE5D4FBD7B543A13747B1
                                    SHA-512:C8185DC570A3536DC96AA04FCE76B244744B75703EDBD2C9E8E994E1A2ED24E0C4EAA4C3EF753B8D3672957A59FAFCD6F729C2A3F1088CE448DE0DFE452F19E2
                                    Malicious:false
                                    Reputation:low
                                    URL:https://mata0msk_logiusa.godaddysites.com/sw.js
                                    Preview:(()=>{"use strict";var e={895:()=>{try{self["workbox:cacheable-response:6.4.1"]&&_()}catch(e){}},259:(e,t,s)=>{s.d(t,{B:()=>a}),s(913);class a{constructor(){this.promise=new Promise(((e,t)=>{this.resolve=e,this.reject=t}))}}},125:(e,t,s)=>{s.d(t,{V:()=>a}),s(913);class a extends Error{constructor(e,t){super(((e,...t)=>{let s=e;return t.length>0&&(s+=` :: ${JSON.stringify(t)}`),s})(e,t)),this.name=e,this.details=t}}},524:(e,t,s)=>{s.d(t,{h:()=>a}),s(125),s(913);const a=null},594:(e,t,s)=>{function a(e,t){const s=new URL(e);for(const e of t)s.searchParams.delete(e);return s.href}async function n(e,t,s,n){const r=a(t.url,s);if(t.url===r)return e.match(t,n);const i=Object.assign(Object.assign({},n),{ignoreSearch:!0}),c=await e.keys(t,i);for(const t of c)if(r===a(t.url,s))return e.match(t,n)}s.d(t,{F:()=>n}),s(913)},536:(e,t,s)=>{s.d(t,{x:()=>r}),s(913);const a={googleAnalytics:"googleAnalytics",precache:"precache-v2",prefix:"workbox",runtime:"runtime",suffix:"undefined"!=typeof registratio

                                    Chrome Cache Entry: 217

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (6969)
                                    Category:dropped
                                    Size (bytes):7039
                                    Entropy (8bit):5.2361798012427245
                                    Encrypted:false
                                    SSDEEP:192:oLb1MP+fzUiru5feyeCVL+izwhVQ9iPzmHFnYJsvIFO/Esh:oLxmCUiru5fneCVL+izwhVQ9ibmHFnYK
                                    MD5:DAD318033A09F6ABA68D6EE66F1CDACE
                                    SHA1:F538D0C3973677A6CDF14E9223AFB432FCF1CF8C
                                    SHA-256:E8FCFB1552D918B5D9FD715F711255465D6DD4348B4DCEDD362CB00DF9D3DBEF
                                    SHA-512:6024483003089661D9799000202895EC4ACA6CDEC816BDBC786F6800536AA8E6B93D8B8CA81E1EB6B8122C72CD14172C94C6C49953FFA536E49D71DD7F47499F
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/bs-layout13-Theme-publish-Theme-7252afe2.js",["exports","~/c/bs-_rollupPluginBabelHelpers","~/c/bs-index3","~/c/bs-themeOverrides","~/c/bs-legacyOverrides","~/c/bs-humanisticFilled","~/c/bs-defaultSocialIconPack","~/c/bs-loaders","~/c/bs-index","~/c/bs-overlayTypes"],(function(e,t,r,o,a,n,i,s,l,g){"use strict";const{colorPackCategories:d,buttons:c}=(global.Core||guac["@wsb/guac-widget-core"]).constants,{LIGHT:u,LIGHT_ALT:m,LIGHT_COLORFUL:h,DARK:p,DARK_ALT:y,DARK_COLORFUL:f,COLORFUL:b,MVP:x}=(global.Core||guac["@wsb/guac-widget-core"]).constants.paintJobs,I={[g.F]:"category-overlay",[g.b]:"category-overlay",[g.I]:"category-solid",[g.B]:"category-overlay",[g.L]:"category-overlay"},S={defaultHeaderTreatment:g.F,imageTreatments:I,heroContentItems:["tagline","tagline2","cta"],nonHeroContentItems:["phone"]};var C={id:"layout13",name:"modern",packs:{color:"005",font:"league-spartan"},logo:{font:"primary"},packCategories:{color:d.ACCENT},headerProperties:{alignmentOption

                                    Chrome Cache Entry: 218

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (12251)
                                    Category:downloaded
                                    Size (bytes):12309
                                    Entropy (8bit):4.691953487987274
                                    Encrypted:false
                                    SSDEEP:192:Y9hgK/4PoduPprRZ14Iwh0DyTDE7JPKSlrZWbFQJJZ7FFS3DQwNp/A+Qd:YoKwodgpehxTMPKSlrAMrLS38UKd
                                    MD5:DFB4BEE7C6378574342CDFCE62FDD1D7
                                    SHA1:75679AE1470880C7209353283879CB58C010621B
                                    SHA-256:BFF3C0C2907BCFFD63DEDC687B8FCA61197E8B783C644B3D665AC3620C383E3C
                                    SHA-512:76C8042532A9F0FF590606A920713515356C9B9C6366A1447C2D184F6AAA4D5880A399570D5764E84100C7619DB5EF061BA6C4E535FA2473E69060F76112DF4B
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-humanisticFilled-91edd0e1.js
                                    Preview:define("@widget/LAYOUT/c/bs-humanisticFilled-91edd0e1.js",["exports"],(function(e){"use strict";const a=(global.React||guac.react).createElement("path",{fillRule:"evenodd",d:"M16.056 8.255a4.254 4.254 0 1 1-8.507 0 4.254 4.254 0 0 1 8.507 0zm3.052 11.71H4.496a.503.503 0 0 1-.46-.693 8.326 8.326 0 0 1 7.766-5.328 8.326 8.326 0 0 1 7.766 5.328.503.503 0 0 1-.46.694z"});var l={__proto__:null,account:a,person:a,magGlass:(global.React||guac.react).createElement("path",{fillRule:"evenodd",d:"M15.659 14.107c1.048.434 3.446 3.209 3.446 3.209a1.263 1.263 0 0 1 0 1.789 1.263 1.263 0 0 1-1.789 0s-2.775-2.371-3.209-3.419c-.077-.185 0-.591 0-.591l-.369-.362a6.111 6.111 0 0 1-3.656 1.211C6.729 15.944 4 13.265 4 9.972 4 6.679 6.729 4 10.082 4c3.354 0 6.082 2.679 6.082 5.972a5.88 5.88 0 0 1-1.466 3.878l.261.257s.483-.09.7 0zm-5.577.546c2.628 0 4.767-2.1 4.767-4.681s-2.139-4.681-4.767-4.681c-2.628 0-4.767 2.1-4.767 4.681s2.139 4.681 4.767 4.681z"}),cart1:(global.React||guac.react).createElement("path",

                                    Chrome Cache Entry: 219

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (1824)
                                    Category:dropped
                                    Size (bytes):1874
                                    Entropy (8bit):4.934407477113311
                                    Encrypted:false
                                    SSDEEP:48:fCEX2kA83zdkJi1lvietWdcy0cy7mdOrxGfrIK:aE33zdkJiDvietWdR0R7mdOFYX
                                    MD5:EDC15AD5DAAC3CFA744BFFDB1E0174BE
                                    SHA1:E314A5CA702D0E77B2C2C023ADDADE266EA223B2
                                    SHA-256:3B54AEACFDA01BE53800632989A82F6F5A7F92E927159A37A4324B38D3DFFEF8
                                    SHA-512:8B8805D67FF993BD406EEB6682B1578537A3D6B7DC6711BE7152120689C77147D8C24351ACEBD2A06AE9B81D858EAED19C44E6792FE3C147EEAF3133C635589B
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@widget/LAYOUT/c/bs-dataAids-6a839d53.js",["exports"],(function(E){"use strict";var R=(global.keyMirror||guac.keymirror)({BACKGROUND_IMAGE_RENDERED:null,HAMBURGER_MENU_LINK:null,HEADER_WIDGET:null,HEADER_SECTION:null,HEADER_VIDEO:null,HEADER_VIDEO_EMBED_WRAPPER:null,HEADER_VIDEO_EMBED:null,HEADER_VIDEO_EMBED_INSET_POSTER:null,HEADER_VIDEO_EMBED_FILL_POSTER:null,HEADER_VIDEO_BACKGROUND:null,HEADER_SLIDESHOW:null,HEADER_SLIDE:null,HEADER_HERO_SLIDE:null,HEADER_PHONE_RENDERED:null,HEADER_PIPE_RENDERED:null,HEADER_ADDRESS_RENDERED:null,HEADER_LOGO_RENDERED:null,HEADER_LOGO_IMAGE_RENDERED:null,HEADER_LOGO_OVERHANG_CONTAINER:null,HEADER_LOGO_TEXT_RENDERED:null,HEADER_TAGLINE_RENDERED:null,HEADER_TAGLINE2_RENDERED:null,HEADER_NAV_RENDERED:null,HEADER_CTA_BTN:null,CART_ICON_RENDER:null,CART_ICON_COUNT:null,CART_ICON_PIPE:null,CART_TEXT:null,CART_DROPDOWN_RENDERED:null,SEARCH_FORM_RENDERED:null,SEARCH_ICON_RENDERED:null,SEARCH_ICON_RENDERED_OPEN:null,SEARCH_CLOSE_RENDERED:null,SEARCH_FI

                                    Chrome Cache Entry: 220

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (829)
                                    Category:downloaded
                                    Size (bytes):876
                                    Entropy (8bit):5.561256771975726
                                    Encrypted:false
                                    SSDEEP:24:cEBLv5pqMIuHMnH7cmo17Jv0ySaUKdei9hJQE2HrIYpb:f75pqaowmWJcySaUKdTfcrIC
                                    MD5:9219CF782ED219BD3929A51E99503BC2
                                    SHA1:6AAC399854EC0405949566FAFDCA8C121F0CDA58
                                    SHA-256:89388608D7BCECED5AD74231681FFCE822AD580ACB9FD7E492970176E3E38347
                                    SHA-512:D421851026422D46E1561FA852084CE7B41E32C7451DCF85900838265D330F09389DA18F4D8A5FAF3E0A4076508BA7E93EA9C5F8B5B32ACF32205C9B6E65E709
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-4e26cd6b.js
                                    Preview:define("@widget/LAYOUT/c/bs-index-4e26cd6b.js",["exports"],(function(o){"use strict";const{widgetTypes:e,colorPackCategories:t,themeConstants:n,buttons:l}=(global.Core||guac["@wsb/guac-widget-core"]).constants,s=(global.keyMirror||guac.keymirror)({NONE:null,SMALL_UNDERLINE:null,FULL_UNDERLINE:null,INLINE:null}),i=24,r=n.DEFAULT_OVERLAY_TEXT_SHADOW,a={about4:i,introduction5:i,content5:i,ordering1:i,payment2:i,zillow1:i,reviews1:i,rss1:i,subscribe3:i,mlsSearch1:i,contact10:i,countdown1:i,quote1:i},c={spotlight:{fill:l.fills.SOLID},external:{fill:l.fills.NONE,decoration:l.decorations.NONE,shadow:l.shadows.NONE}};o.A="365px",o.B="24px",o.C=c,o.D=25,o.I=28,o.M=40,o.O="0px 2px 10px rgba(0, 0, 0, 0.3)",o.S=40,o.W={about1:!0},o.a=r,o.b="18px",o.c=a,o.d="600px",o.e=t,o.s=s})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-index-4e26cd6b.js.map.

                                    Chrome Cache Entry: 221

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (65536), with no line terminators
                                    Category:dropped
                                    Size (bytes):107922
                                    Entropy (8bit):5.16833322430428
                                    Encrypted:false
                                    SSDEEP:1536:rrgGXmRRShRLWvm1y+bvdVa/AfVcclozOshAZpXZgiLxdONPam1ZJs6Q8FBirniQ:rrLbba/UEHw
                                    MD5:6A7950CC31489069917BF817B62B2BFE
                                    SHA1:44AAB6E9B8FDBAA23EA297CE69E26422277907C0
                                    SHA-256:1B4DACB0DAFDA81D48EE0890EA113B3B8275BF2D16D5325F971F16EB75F7218A
                                    SHA-512:0329712BC9EC144910DEE414B70181C4FD4145B65C78E2628BEE547A5DBC8D48BACD3BAA350451437C740493875DDD47FEC66C2C9189AA823A7B95DE8E9FA9F4
                                    Malicious:false
                                    Reputation:low
                                    Preview:!function(t,e){"object"==typeof exports&&"object"==typeof module?module.exports=e():"function"==typeof define&&define.amd?define("scc-c2",[],e):"object"==typeof exports?exports["scc-c2"]=e():t["scc-c2"]=e()}(self,(()=>(()=>{"use strict";var t={d:(e,n)=>{for(var r in n)t.o(n,r)&&!t.o(e,r)&&Object.defineProperty(e,r,{enumerable:!0,get:n[r]})},o:(t,e)=>Object.prototype.hasOwnProperty.call(t,e),r:t=>{"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})}},e={};t.r(e);var n={};t.r(n),t.d(n,{_isDebug:()=>d,debug:()=>O,error:()=>g,info:()=>h,log:()=>h,setDebug:()=>b,warn:()=>w});var r={};t.r(r),t.d(r,{cmdLogEvent:()=>Yo,cmdLogPerf:()=>ti});var o,i,a,c,u,f=(o="",a={document:i=Object.create({get cookie(){return o},set cookie(t){o=t}})},c={},"undefined"==typeof window?{window:a,document:i,navigator:c}:{window:window||a,document:window.document||i,navigator:navigator||c}),s=function(){return f.

                                    Chrome Cache Entry: 222

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (522)
                                    Category:dropped
                                    Size (bytes):586
                                    Entropy (8bit):5.2378887904744955
                                    Encrypted:false
                                    SSDEEP:12:H/QL7ANBSyTUXaPXAbDTc/NeL2QiTj+RVngQ2ofXgYhMYTHr+pWgL7AO:cANBLTUXaPXAPTc/tTj+HngQ2CQY/HrQ
                                    MD5:FADB3719FFA2A9E96CDC64FFEA0220FA
                                    SHA1:B9B00833E59E99ECE036B518D8429AF5EFEC1163
                                    SHA-256:E8A5463FF98210D3017DEEE55D5A287AD01AAA11DBE7DEB7D07F7D15D7F609F2
                                    SHA-512:C6E3581F7676B3204BC0FC8D4DCCF5A383FDE6F17A27D2F855EBEE3D205459BD9866A219808EAB1D4D4B37676D13B516AF546C7125C3FFA22CA74B995A180644
                                    Malicious:false
                                    Reputation:low
                                    Preview:define("@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js",["exports"],(function(e){"use strict";function n(){return n=Object.assign?Object.assign.bind():function(e){for(var n=1;n<arguments.length;n++){var r=arguments[n];for(var t in r)Object.prototype.hasOwnProperty.call(r,t)&&(e[t]=r[t])}return e},n.apply(this,arguments)}e._=n,e.a=function(e,n,r){return n in e?Object.defineProperty(e,n,{value:r,enumerable:!0,configurable:!0,writable:!0}):e[n]=r,e}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=_rollupPluginBabelHelpers-8ce54c82.js.map.

                                    Chrome Cache Entry: 223

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text
                                    Category:downloaded
                                    Size (bytes):324
                                    Entropy (8bit):5.376083689062415
                                    Encrypted:false
                                    SSDEEP:6:FSPl39b4BSyRbjGJlI9kXJ3+V0q1EkmGHr9EJiKWaEt39J:cd39MBSyVz0XkTHr+pWTt39J
                                    MD5:ACD4F2B6117E5054FC9BF848AE8121CA
                                    SHA1:AE4D5F41D854BA8D99A4A1EC6EE6D6C3C0A859B8
                                    SHA-256:66774F89FCFA5674BE9AEF60E3FE3CB81E4DD88246BDE4E5392DF8B99FEFD4DB
                                    SHA-512:906FC9144D4AB81E8000CBE4A7AF7AFF775464347449193337E8738D705888C02B9476E083B3B67BDB3CBC312AAC4644C10737BC1FC5F9F08B38F5F45A2410F9
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-legacyOverrides-42582241.js
                                    Preview:define("@widget/LAYOUT/c/bs-legacyOverrides-42582241.js",["exports"],(function(e){"use strict";e.g=function(e,i,n){let o={};return"MENU"===i&&"h3"===e&&(o={color:"highlight"},"menu3"===n&&(o.fontSize="large")),o}})),"undefined"!=typeof window&&(window.global=window);.//# sourceMappingURL=bs-legacyOverrides-42582241.js.map.

                                    Chrome Cache Entry: 224

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:RIFF (little-endian) data, Web/P image
                                    Category:downloaded
                                    Size (bytes):26920
                                    Entropy (8bit):7.987693388328586
                                    Encrypted:false
                                    SSDEEP:768:po6PiTeru4ek6YffIHR8wNwhzi9l57kiwyUwm2k:po6KTuu4elYa8Bzi9+yNPk
                                    MD5:7C2AFFC55D7EEBD817C6FE64596646C2
                                    SHA1:74FACABC7E710789368605C98154C7E2E6E3A6E9
                                    SHA-256:489A0FBA45E66B44D0627EA601AABE36F1C66068483E0BB9CF39477FEFBBE454
                                    SHA-512:ED36F0E895EEFB548ADDE3FD89604F71D5B0E7720D4275DF20B964FA9D240F761791C643BE54F6E9D25FEAB9B8A176532386419653271710EAC16CA7A4F7339F
                                    Malicious:false
                                    Reputation:low
                                    URL:"https://img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/metamask%20login.jpg/:/rs=w:1535,m"
                                    Preview:RIFF i..WEBPVP8X.........../..VP8 Xh.......*..0.>m6.H.".$".....gn.0.....`.......?..../.....K...~0.5].g..o........U.e|.}........O.;.....w....C...h....2.o...................h...g...?i............q.g....k.1........x.w.#.......?......w....._.?....k.W..n.o...........K...o...U.+.....6?.}..*......?....d.....O.........}...n...........>.+.{..............K.].............._..?..l....Q....*7..R.%F.jZ....mK@.G....D.....TL.d %F.jZ....mK@....*.j>C|cV!.C.x.]..8.....|P{p..-.zc...........H..v..k..?.B..M?.)....;c........1z.$i..~f$0PM..../.....M........@I.............<m..=....|m..S2.....S.TM.I....FY.m....R.B...35+[$........S...Y[......)"p.....I...?.$+.~'C..c`..#.E....pe.<?..$U..X.....%..m...&;k.p..6..~..Db...cF.l..iu2..?W..u...zR........h.Y.7....>..F~.....mj....T.(.......N/@......._.f!e.....:....d %F..59.Hl...u:....nOi.)P.T2...p].-.Tn....J..v..Q....*7..R.%F.jZ....mK@....h..p].-.Tn....J..v..Q....*7..R.%F.jZ....mK@....h..p].-.Tn....J..v..Q....*7..R

                                    Chrome Cache Entry: 225

                                    Download File
                                    Process:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    File Type:ASCII text, with very long lines (1824)
                                    Category:downloaded
                                    Size (bytes):1874
                                    Entropy (8bit):4.934407477113311
                                    Encrypted:false
                                    SSDEEP:48:fCEX2kA83zdkJi1lvietWdcy0cy7mdOrxGfrIK:aE33zdkJiDvietWdR0R7mdOFYX
                                    MD5:EDC15AD5DAAC3CFA744BFFDB1E0174BE
                                    SHA1:E314A5CA702D0E77B2C2C023ADDADE266EA223B2
                                    SHA-256:3B54AEACFDA01BE53800632989A82F6F5A7F92E927159A37A4324B38D3DFFEF8
                                    SHA-512:8B8805D67FF993BD406EEB6682B1578537A3D6B7DC6711BE7152120689C77147D8C24351ACEBD2A06AE9B81D858EAED19C44E6792FE3C147EEAF3133C635589B
                                    Malicious:false
                                    Reputation:low
                                    URL:https://img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js
                                    Preview:define("@widget/LAYOUT/c/bs-dataAids-6a839d53.js",["exports"],(function(E){"use strict";var R=(global.keyMirror||guac.keymirror)({BACKGROUND_IMAGE_RENDERED:null,HAMBURGER_MENU_LINK:null,HEADER_WIDGET:null,HEADER_SECTION:null,HEADER_VIDEO:null,HEADER_VIDEO_EMBED_WRAPPER:null,HEADER_VIDEO_EMBED:null,HEADER_VIDEO_EMBED_INSET_POSTER:null,HEADER_VIDEO_EMBED_FILL_POSTER:null,HEADER_VIDEO_BACKGROUND:null,HEADER_SLIDESHOW:null,HEADER_SLIDE:null,HEADER_HERO_SLIDE:null,HEADER_PHONE_RENDERED:null,HEADER_PIPE_RENDERED:null,HEADER_ADDRESS_RENDERED:null,HEADER_LOGO_RENDERED:null,HEADER_LOGO_IMAGE_RENDERED:null,HEADER_LOGO_OVERHANG_CONTAINER:null,HEADER_LOGO_TEXT_RENDERED:null,HEADER_TAGLINE_RENDERED:null,HEADER_TAGLINE2_RENDERED:null,HEADER_NAV_RENDERED:null,HEADER_CTA_BTN:null,CART_ICON_RENDER:null,CART_ICON_COUNT:null,CART_ICON_PIPE:null,CART_TEXT:null,CART_DROPDOWN_RENDERED:null,SEARCH_FORM_RENDERED:null,SEARCH_ICON_RENDERED:null,SEARCH_ICON_RENDERED_OPEN:null,SEARCH_CLOSE_RENDERED:null,SEARCH_FI

                                    Static File Info

                                    No static file info

                                    Network Behavior

                                    Network Port Distribution

                                    TCP Packets

                                    TimestampSource PortDest PortSource IPDest IP
                                    Sep 29, 2024 04:46:45.810806990 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:45.810857058 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:45.810867071 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:45.810935974 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:45.810937881 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:45.811002016 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:45.811194897 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:45.811208010 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:45.811335087 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:45.811350107 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.310806990 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.311127901 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.311144114 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.312577963 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.312647104 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.313726902 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.313901901 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.313906908 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.355408907 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.419055939 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.419071913 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.437906981 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.437941074 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.437964916 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.437994957 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.438004017 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.438015938 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.438024998 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.438045979 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.438067913 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.438075066 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.438095093 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.438100100 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.438118935 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.465931892 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:46.465948105 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:46.466017962 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:46.466327906 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:46.466342926 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:46.514856100 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519263029 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519285917 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519340038 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519342899 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519360065 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519382000 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519401073 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519403934 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519418955 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519448996 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519459963 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519546986 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519565105 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519594908 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.519742966 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.519799948 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.524055958 CEST49736443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.524075985 CEST4434973613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.622750998 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.622992039 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.623008013 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.624063015 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.624136925 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.624558926 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.624624014 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.666255951 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:46.666265965 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:46.709418058 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:47.185512066 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:47.185875893 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:47.185902119 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:47.187499046 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:47.187565088 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:47.189503908 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:47.189590931 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:47.231981039 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:47.232011080 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:46:47.277092934 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:46:48.145210981 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:48.145253897 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:48.145313978 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:48.145893097 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:48.145912886 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:48.795041084 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:48.795707941 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:48.795726061 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:48.796739101 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:48.796808004 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:49.013958931 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:49.014000893 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:49.014087915 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:49.016264915 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:49.016279936 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:49.263672113 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:49.263822079 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:49.305764914 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:49.305780888 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:49.353627920 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:49.661494017 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:49.661572933 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:49.677660942 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:49.677685022 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:49.678071976 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:49.730055094 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:49.985167980 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:50.031400919 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:50.181641102 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:50.181725025 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:50.181793928 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:50.612237930 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:50.612262964 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:50.612274885 CEST49755443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:50.612281084 CEST44349755184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.001295090 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.001317024 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.001382113 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.002171993 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.002185106 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.641263008 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.641335011 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.660504103 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.660518885 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.660759926 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.665714025 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.707444906 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.918340921 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.918394089 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:51.918514967 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.922269106 CEST49766443192.168.2.4184.28.90.27
                                    Sep 29, 2024 04:46:51.922283888 CEST44349766184.28.90.27192.168.2.4
                                    Sep 29, 2024 04:46:54.282522917 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.285918951 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.285952091 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.286191940 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.287225008 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.287237883 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.327424049 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393296003 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393361092 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393383026 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393399954 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393419981 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.393440962 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393460035 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393466949 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.393480062 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393498898 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393516064 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.393532038 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.393543005 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.435190916 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.477224112 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477236986 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477277040 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477289915 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477309942 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.477318048 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477338076 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477380991 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.477382898 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.477487087 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.478085041 CEST49735443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.478110075 CEST4434973513.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.503962994 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.503995895 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.504085064 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.504493952 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.504506111 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.778845072 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.779454947 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.779467106 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.780491114 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.780554056 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.780975103 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.781040907 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.782855988 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.782861948 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.893816948 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.897247076 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.945173025 CEST49794443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.945188046 CEST4434979413.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.967155933 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.993979931 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:54.993999004 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:54.995333910 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.023736000 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.023998976 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.025536060 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.071408987 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131118059 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131166935 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131189108 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131227970 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131280899 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131283998 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.131305933 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.131335020 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.131365061 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.217710972 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.217761993 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.217837095 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.217849016 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.217873096 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.217880011 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.217894077 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.217899084 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.217928886 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.218056917 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:55.218113899 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.334027052 CEST49806443192.168.2.413.248.243.5
                                    Sep 29, 2024 04:46:55.334053040 CEST4434980613.248.243.5192.168.2.4
                                    Sep 29, 2024 04:46:58.752247095 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:58.752306938 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:46:58.752703905 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:59.141283035 CEST49748443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:46:59.141328096 CEST44349748216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:32.244824886 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:47:32.244847059 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:47:46.879738092 CEST6342853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:47:46.884605885 CEST53634281.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:46.884697914 CEST6342853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:47:46.884797096 CEST6342853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:47:46.889568090 CEST53634281.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:47.004724026 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:47:47.004806042 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:47:47.004877090 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:47:47.349421978 CEST53634281.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:47.364902020 CEST6342853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:47:47.369990110 CEST53634281.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:47.370058060 CEST6342853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:47:48.458594084 CEST49741443192.168.2.43.121.64.201
                                    Sep 29, 2024 04:47:48.458621979 CEST443497413.121.64.201192.168.2.4
                                    Sep 29, 2024 04:47:48.459630013 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:47:48.459676981 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:48.459733009 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:47:48.460059881 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:47:48.460072994 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:49.104649067 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:49.110146999 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:47:49.110193968 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:49.110595942 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:49.111550093 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:47:49.111618042 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:49.165766954 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:47:59.004959106 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:59.005033970 CEST44363431216.58.212.164192.168.2.4
                                    Sep 29, 2024 04:47:59.005093098 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:48:00.655591965 CEST63431443192.168.2.4216.58.212.164
                                    Sep 29, 2024 04:48:00.655617952 CEST44363431216.58.212.164192.168.2.4

                                    UDP Packets

                                    TimestampSource PortDest PortSource IPDest IP
                                    Sep 29, 2024 04:46:44.114876032 CEST53604211.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:44.373359919 CEST53504231.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:45.499036074 CEST53521161.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:45.799860954 CEST5799453192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:45.800105095 CEST5826953192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:45.808342934 CEST53579941.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:45.809498072 CEST53582691.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:46.450102091 CEST53626491.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:46.453187943 CEST6341453192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:46.453313112 CEST6508053192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:46.455216885 CEST5606853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:46.455348969 CEST6509153192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:46.463989973 CEST53560681.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:46.463999033 CEST53650911.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:48.132950068 CEST5466553192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:48.133528948 CEST6524153192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:48.139744043 CEST53546651.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:48.140017033 CEST53652411.1.1.1192.168.2.4
                                    Sep 29, 2024 04:46:48.351922989 CEST6442053192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:48.352380037 CEST6470753192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:54.283894062 CEST6152853192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:54.284200907 CEST5298553192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:54.486726999 CEST6299653192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:54.487032890 CEST5642453192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:55.704776049 CEST4978153192.168.2.41.1.1.1
                                    Sep 29, 2024 04:46:55.705261946 CEST5002953192.168.2.41.1.1.1
                                    Sep 29, 2024 04:47:02.750947952 CEST53614771.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:04.193377972 CEST138138192.168.2.4192.168.2.255
                                    Sep 29, 2024 04:47:21.871882915 CEST53637561.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:43.884835958 CEST53553321.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:44.177179098 CEST53508381.1.1.1192.168.2.4
                                    Sep 29, 2024 04:47:46.879283905 CEST53618571.1.1.1192.168.2.4

                                    ICMP Packets

                                    TimestampSource IPDest IPChecksumCodeType
                                    Sep 29, 2024 04:46:48.389669895 CEST192.168.2.41.1.1.1c27c(Port unreachable)Destination Unreachable

                                    DNS Queries

                                    TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
                                    Sep 29, 2024 04:46:45.799860954 CEST192.168.2.41.1.1.10xaac6Standard query (0)mata0msk_logiusa.godaddysites.comA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:45.800105095 CEST192.168.2.41.1.1.10x39fbStandard query (0)mata0msk_logiusa.godaddysites.com65IN (0x0001)false
                                    Sep 29, 2024 04:46:46.453187943 CEST192.168.2.41.1.1.10x6583Standard query (0)img1.wsimg.comA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:46.453313112 CEST192.168.2.41.1.1.10xb746Standard query (0)img1.wsimg.com65IN (0x0001)false
                                    Sep 29, 2024 04:46:46.455216885 CEST192.168.2.41.1.1.10x4494Standard query (0)isteam.wsimg.comA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:46.455348969 CEST192.168.2.41.1.1.10xe432Standard query (0)isteam.wsimg.com65IN (0x0001)false
                                    Sep 29, 2024 04:46:48.132950068 CEST192.168.2.41.1.1.10x63d5Standard query (0)www.google.comA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:48.133528948 CEST192.168.2.41.1.1.10xaeaStandard query (0)www.google.com65IN (0x0001)false
                                    Sep 29, 2024 04:46:48.351922989 CEST192.168.2.41.1.1.10xebb9Standard query (0)img1.wsimg.comA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:48.352380037 CEST192.168.2.41.1.1.10x30aaStandard query (0)img1.wsimg.com65IN (0x0001)false
                                    Sep 29, 2024 04:46:54.283894062 CEST192.168.2.41.1.1.10x593fStandard query (0)events.api.secureserver.netA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:54.284200907 CEST192.168.2.41.1.1.10xfb90Standard query (0)events.api.secureserver.net65IN (0x0001)false
                                    Sep 29, 2024 04:46:54.486726999 CEST192.168.2.41.1.1.10x28d0Standard query (0)csp.secureserver.netA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:54.487032890 CEST192.168.2.41.1.1.10xc148Standard query (0)csp.secureserver.net65IN (0x0001)false
                                    Sep 29, 2024 04:46:55.704776049 CEST192.168.2.41.1.1.10x3caeStandard query (0)events.api.secureserver.netA (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:55.705261946 CEST192.168.2.41.1.1.10x88e1Standard query (0)events.api.secureserver.net65IN (0x0001)false

                                    DNS Answers

                                    TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                                    Sep 29, 2024 04:46:45.808342934 CEST1.1.1.1192.168.2.40xaac6No error (0)mata0msk_logiusa.godaddysites.com13.248.243.5A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:45.808342934 CEST1.1.1.1192.168.2.40xaac6No error (0)mata0msk_logiusa.godaddysites.com76.223.105.230A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:46.460458994 CEST1.1.1.1192.168.2.40xb746No error (0)img1.wsimg.comglobal-wildcard.wsimg.com.sni-only.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:46.463979959 CEST1.1.1.1192.168.2.40x6583No error (0)img1.wsimg.comglobal-wildcard.wsimg.com.sni-only.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:46.463989973 CEST1.1.1.1192.168.2.40x4494No error (0)isteam.wsimg.com3.121.64.201A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:46.463989973 CEST1.1.1.1192.168.2.40x4494No error (0)isteam.wsimg.com3.64.248.63A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:48.139744043 CEST1.1.1.1192.168.2.40x63d5No error (0)www.google.com216.58.212.164A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:46:48.140017033 CEST1.1.1.1192.168.2.40xaeaNo error (0)www.google.com65IN (0x0001)false
                                    Sep 29, 2024 04:46:48.358892918 CEST1.1.1.1192.168.2.40xebb9No error (0)img1.wsimg.comglobal-wildcard.wsimg.com.sni-only.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:48.389589071 CEST1.1.1.1192.168.2.40x30aaNo error (0)img1.wsimg.comglobal-wildcard.wsimg.com.sni-only.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:54.292475939 CEST1.1.1.1192.168.2.40x593fNo error (0)events.api.secureserver.netwildcard-sni-only.api.secureserver.net.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:54.292496920 CEST1.1.1.1192.168.2.40xfb90No error (0)events.api.secureserver.netwildcard-sni-only.api.secureserver.net.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:54.494841099 CEST1.1.1.1192.168.2.40x28d0No error (0)csp.secureserver.netcsp.secureserver.net.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:54.497042894 CEST1.1.1.1192.168.2.40xc148No error (0)csp.secureserver.netcsp.secureserver.net.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:55.712054968 CEST1.1.1.1192.168.2.40x88e1No error (0)events.api.secureserver.netwildcard-sni-only.api.secureserver.net.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:55.713041067 CEST1.1.1.1192.168.2.40x3caeNo error (0)events.api.secureserver.netwildcard-sni-only.api.secureserver.net.edgekey.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:59.586898088 CEST1.1.1.1192.168.2.40x573cNo error (0)fp2e7a.wpc.2be4.phicdn.netfp2e7a.wpc.phicdn.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:46:59.586898088 CEST1.1.1.1192.168.2.40x573cNo error (0)fp2e7a.wpc.phicdn.net192.229.221.95A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:47:12.791125059 CEST1.1.1.1192.168.2.40xa6bbNo error (0)fp2e7a.wpc.2be4.phicdn.netfp2e7a.wpc.phicdn.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:47:12.791125059 CEST1.1.1.1192.168.2.40xa6bbNo error (0)fp2e7a.wpc.phicdn.net192.229.221.95A (IP address)IN (0x0001)false
                                    Sep 29, 2024 04:47:36.939868927 CEST1.1.1.1192.168.2.40x31baNo error (0)fp2e7a.wpc.2be4.phicdn.netfp2e7a.wpc.phicdn.netCNAME (Canonical name)IN (0x0001)false
                                    Sep 29, 2024 04:47:36.939868927 CEST1.1.1.1192.168.2.40x31baNo error (0)fp2e7a.wpc.phicdn.net192.229.221.95A (IP address)IN (0x0001)false

                                    HTTP Request Dependency Graph

                                    • mata0msk_logiusa.godaddysites.com
                                    • fs.microsoft.com
                                    • https:

                                    HTTPS Proxied Packets

                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                    0192.168.2.44973613.248.243.54435296C:\Program Files\Google\Chrome\Application\chrome.exe
                                    TimestampBytes transferredDirectionData
                                    2024-09-29 02:46:46 UTC676OUTGET / HTTP/1.1
                                    Host: mata0msk_logiusa.godaddysites.com
                                    Connection: keep-alive
                                    sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"
                                    sec-ch-ua-mobile: ?0
                                    sec-ch-ua-platform: "Windows"
                                    Upgrade-Insecure-Requests: 1
                                    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
                                    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
                                    Sec-Fetch-Site: none
                                    Sec-Fetch-Mode: navigate
                                    Sec-Fetch-User: ?1
                                    Sec-Fetch-Dest: document
                                    Accept-Encoding: gzip, deflate, br
                                    Accept-Language: en-US,en;q=0.9
                                    2024-09-29 02:46:46 UTC785INHTTP/1.1 200 OK
                                    Link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js>; rel=preload; as=script; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
                                    Cache-Control: max-age=30
                                    Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.com
                                    Content-Type: text/html;charset=utf-8
                                    Vary: Accept-Encoding
                                    Server: DPS/2.0.0+sha-227ca78
                                    X-Version: 227ca78
                                    X-SiteId: us-east-1
                                    Set-Cookie: dps_site_id=us-east-1; path=/; secure
                                    ETag: d04656c2ee732478494ed827c84cd9f1
                                    Date: Sun, 29 Sep 2024 02:46:46 GMT
                                    Connection: close
                                    Transfer-Encoding: chunked
                                    2024-09-29 02:46:46 UTC15599INData Raw: 39 34 30 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 49 4e 22 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 69 70 2f 35 38 31 64 34 34 65 61 2d 33 32 65 32 2d 34 38 32 39 2d 39 64 65 30 2d 32 62 61 38 61 35 30 38 38 64 39 37 2f 66 61 76 69 63 6f 6e 2f 37 32 66 33 62 63 36 61 2d 32 30 36 30 2d 34 61 35 32 2d 39 35 37 34 2d 36 66 33 35 66 34 32 65 38 35 31 39 2e 70 6e 67 2f 3a 2f 72 73 3d 77 3a 31 36 2c 68 3a 31 36 2c 6d 22 20 73 69 7a 65 73 3d 22 31 36 78 31 36 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f
                                    Data Ascii: 9405<!DOCTYPE html><html lang="en-IN"><head><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:16,h:16,m" sizes="16x16"/><link rel="icon" href="//img1.wsimg.com/
                                    2024-09-29 02:46:46 UTC16384INData Raw: 62 61 38 61 35 30 38 38 64 39 37 2f 6d 65 74 61 6d 61 73 6b 25 32 30 6c 6f 67 69 6e 2e 6a 70 67 2f 3a 2f 72 73 3d 77 3a 31 32 37 39 2c 6d 22 29 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 30 32 34 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 32 37 39 70 78 29 20 61 6e 64 20 28 2d 77 65 62 6b 69 74 2d 6d 69 6e 2d 64 65 76 69 63 65 2d 70 69 78 65 6c 2d 72 61 74 69 6f 3a 20 32 29 2c 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 30 32 34 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 32 37 39 70 78 29 20 61 6e 64 20 28 6d 69 6e 2d 72 65 73 6f 6c 75 74 69 6f 6e 3a 20 31 39 32 64 70 69 29 7b 2e 78 20 2e 63 31 2d 31 65 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 3a 6c 69 6e 65 61 72 2d 67 72 61 64 69 65
                                    Data Ascii: ba8a5088d97/metamask%20login.jpg/:/rs=w:1279,m")}}@media (min-width: 1024px) and (max-width: 1279px) and (-webkit-min-device-pixel-ratio: 2), (min-width: 1024px) and (max-width: 1279px) and (min-resolution: 192dpi){.x .c1-1e{background-image:linear-gradie
                                    2024-09-29 02:46:46 UTC5923INData Raw: 3a 5c 22 41 20 70 75 62 6c 69 73 68 20 69 73 20 6e 65 65 64 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 74 68 69 73 20 66 69 72 73 74 20 73 74 65 70 20 6f 66 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 5c 22 2c 5c 22 69 6e 66 6f 50 65 6e 64 69 6e 67 4c 6f 67 69 6e 44 65 73 63 5c 22 3a 5c 22 41 20 74 65 78 74 20 6d 65 73 73 61 67 65 20 68 61 73 20 62 65 65 6e 20 73 65 6e 74 20 74 6f 20 79 6f 75 20 74 6f 20 64 6f 77 6e 6c 6f 61 64 20 74 68 65 20 43 6f 6e 76 65 72 73 61 74 69 6f 6e 73 20 61 70 70 2e 20 50 6c 65 61 73 65 20 64 6f 77 6e 6c 6f 61 64 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 73 65 74 20 75 70 2e 5c 22 2c 5c 22 74 65 72 6d 73 4f 66 53 65 72 69 76 63 65 5c 22 3a
                                    Data Ascii: :\"A publish is needed in order to complete this first step of enabling this feature.\",\"infoPendingLoginDesc\":\"A text message has been sent to you to download the Conversations app. Please download and install to complete set up.\",\"termsOfSerivce\":


                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                    1192.168.2.449755184.28.90.27443
                                    TimestampBytes transferredDirectionData
                                    2024-09-29 02:46:49 UTC161OUTHEAD /fs/windows/config.json HTTP/1.1
                                    Connection: Keep-Alive
                                    Accept: */*
                                    Accept-Encoding: identity
                                    User-Agent: Microsoft BITS/7.8
                                    Host: fs.microsoft.com
                                    2024-09-29 02:46:50 UTC467INHTTP/1.1 200 OK
                                    Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json
                                    Content-Type: application/octet-stream
                                    ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7"
                                    Last-Modified: Tue, 16 May 2017 22:58:00 GMT
                                    Server: ECAcc (lpl/EF67)
                                    X-CID: 11
                                    X-Ms-ApiVersion: Distribute 1.2
                                    X-Ms-Region: prod-neu-z1
                                    Cache-Control: public, max-age=136692
                                    Date: Sun, 29 Sep 2024 02:46:50 GMT
                                    Connection: close
                                    X-CID: 2


                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                    2192.168.2.449766184.28.90.27443
                                    TimestampBytes transferredDirectionData
                                    2024-09-29 02:46:51 UTC239OUTGET /fs/windows/config.json HTTP/1.1
                                    Connection: Keep-Alive
                                    Accept: */*
                                    Accept-Encoding: identity
                                    If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT
                                    Range: bytes=0-2147483646
                                    User-Agent: Microsoft BITS/7.8
                                    Host: fs.microsoft.com
                                    2024-09-29 02:46:51 UTC515INHTTP/1.1 200 OK
                                    ApiVersion: Distribute 1.1
                                    Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json
                                    Content-Type: application/octet-stream
                                    ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7"
                                    Last-Modified: Tue, 16 May 2017 22:58:00 GMT
                                    Server: ECAcc (lpl/EF06)
                                    X-CID: 11
                                    X-Ms-ApiVersion: Distribute 1.2
                                    X-Ms-Region: prod-weu-z1
                                    Cache-Control: public, max-age=136721
                                    Date: Sun, 29 Sep 2024 02:46:51 GMT
                                    Content-Length: 55
                                    Connection: close
                                    X-CID: 2
                                    2024-09-29 02:46:51 UTC55INData Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d
                                    Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}


                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                    3192.168.2.44973513.248.243.54435296C:\Program Files\Google\Chrome\Application\chrome.exe
                                    TimestampBytes transferredDirectionData
                                    2024-09-29 02:46:54 UTC672OUTGET /sw.js HTTP/1.1
                                    Host: mata0msk_logiusa.godaddysites.com
                                    Connection: keep-alive
                                    Cache-Control: max-age=0
                                    Accept: */*
                                    Service-Worker: script
                                    Sec-Fetch-Site: same-origin
                                    Sec-Fetch-Mode: same-origin
                                    Sec-Fetch-Dest: serviceworker
                                    Referer: https://mata0msk_logiusa.godaddysites.com/
                                    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
                                    Accept-Encoding: gzip, deflate, br
                                    Accept-Language: en-US,en;q=0.9
                                    Cookie: dps_site_id=us-east-1; _tccl_visitor=876861ef-01a4-4cbe-a993-36db3fc6136a; _tccl_visit=876861ef-01a4-4cbe-a993-36db3fc6136a; _scc_session=pc=1&C_TOUCH=2024-09-29T02:46:50.285Z
                                    2024-09-29 02:46:54 UTC663INHTTP/1.1 200 OK
                                    Link: <https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
                                    Cache-Control: max-age=30
                                    Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.com
                                    Content-Type: application/javascript
                                    Vary: Accept-Encoding
                                    Server: DPS/2.0.0+sha-227ca78
                                    X-Version: 227ca78
                                    X-SiteId: us-east-1
                                    Set-Cookie: dps_site_id=us-east-1; path=/; secure
                                    ETag: 88f6bd3916bac49528cce0423a6f2574
                                    Date: Sun, 29 Sep 2024 02:46:54 GMT
                                    Connection: close
                                    Transfer-Encoding: chunked
                                    2024-09-29 02:46:54 UTC15721INData Raw: 38 30 63 32 0d 0a 28 28 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 7b 38 39 35 3a 28 29 3d 3e 7b 74 72 79 7b 73 65 6c 66 5b 22 77 6f 72 6b 62 6f 78 3a 63 61 63 68 65 61 62 6c 65 2d 72 65 73 70 6f 6e 73 65 3a 36 2e 34 2e 31 22 5d 26 26 5f 28 29 7d 63 61 74 63 68 28 65 29 7b 7d 7d 2c 32 35 39 3a 28 65 2c 74 2c 73 29 3d 3e 7b 73 2e 64 28 74 2c 7b 42 3a 28 29 3d 3e 61 7d 29 2c 73 28 39 31 33 29 3b 63 6c 61 73 73 20 61 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 29 7b 74 68 69 73 2e 70 72 6f 6d 69 73 65 3d 6e 65 77 20 50 72 6f 6d 69 73 65 28 28 28 65 2c 74 29 3d 3e 7b 74 68 69 73 2e 72 65 73 6f 6c 76 65 3d 65 2c 74 68 69 73 2e 72 65 6a 65 63 74 3d 74 7d 29 29 7d 7d 7d 2c 31 32 35 3a 28 65 2c 74 2c 73 29 3d 3e 7b 73 2e 64 28 74 2c 7b 56 3a
                                    Data Ascii: 80c2(()=>{"use strict";var e={895:()=>{try{self["workbox:cacheable-response:6.4.1"]&&_()}catch(e){}},259:(e,t,s)=>{s.d(t,{B:()=>a}),s(913);class a{constructor(){this.promise=new Promise(((e,t)=>{this.resolve=e,this.reject=t}))}}},125:(e,t,s)=>{s.d(t,{V:
                                    2024-09-29 02:46:54 UTC16384INData Raw: 65 2c 74 29 7c 7c 52 2e 68 61 73 28 65 2c 74 29 7d 2c 73 28 35 35 30 29 3b 63 6f 6e 73 74 20 76 3d 22 63 61 63 68 65 2d 65 6e 74 72 69 65 73 22 2c 62 3d 65 3d 3e 7b 63 6f 6e 73 74 20 74 3d 6e 65 77 20 55 52 4c 28 65 2c 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 29 3b 72 65 74 75 72 6e 20 74 2e 68 61 73 68 3d 22 22 2c 74 2e 68 72 65 66 7d 3b 63 6c 61 73 73 20 78 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 65 29 7b 74 68 69 73 2e 5f 64 62 3d 6e 75 6c 6c 2c 74 68 69 73 2e 5f 63 61 63 68 65 4e 61 6d 65 3d 65 7d 5f 75 70 67 72 61 64 65 44 62 28 65 29 7b 63 6f 6e 73 74 20 74 3d 65 2e 63 72 65 61 74 65 4f 62 6a 65 63 74 53 74 6f 72 65 28 76 2c 7b 6b 65 79 50 61 74 68 3a 22 69 64 22 7d 29 3b 74 2e 63 72 65 61 74 65 49 6e 64 65 78 28 22 63 61 63 68 65 4e 61 6d 65 22 2c 22
                                    Data Ascii: e,t)||R.has(e,t)},s(550);const v="cache-entries",b=e=>{const t=new URL(e,location.href);return t.hash="",t.href};class x{constructor(e){this._db=null,this._cacheName=e}_upgradeDb(e){const t=e.createObjectStore(v,{keyPath:"id"});t.createIndex("cacheName","
                                    2024-09-29 02:46:54 UTC870INData Raw: 6f 75 74 65 29 28 28 28 7b 72 65 71 75 65 73 74 3a 65 7d 29 3d 3e 22 73 74 79 6c 65 22 3d 3d 3d 65 2e 64 65 73 74 69 6e 61 74 69 6f 6e 7c 7c 22 73 63 72 69 70 74 22 3d 3d 3d 65 2e 64 65 73 74 69 6e 61 74 69 6f 6e 29 2c 6e 65 77 20 74 2e 53 74 61 6c 65 57 68 69 6c 65 52 65 76 61 6c 69 64 61 74 65 28 7b 63 61 63 68 65 4e 61 6d 65 3a 22 73 74 61 74 69 63 2d 72 65 73 6f 75 72 63 65 73 22 2c 70 6c 75 67 69 6e 73 3a 5b 6e 65 77 20 61 2e 43 61 63 68 65 61 62 6c 65 52 65 73 70 6f 6e 73 65 50 6c 75 67 69 6e 28 7b 73 74 61 74 75 73 65 73 3a 5b 32 30 30 5d 7d 29 5d 7d 29 29 2c 28 30 2c 65 2e 72 65 67 69 73 74 65 72 52 6f 75 74 65 29 28 28 28 7b 75 72 6c 3a 65 7d 29 3d 3e 22 68 74 74 70 73 3a 2f 2f 66 6f 6e 74 73 2e 67 6f 6f 67 6c 65 61 70 69 73 2e 63 6f 6d 22 3d 3d
                                    Data Ascii: oute)((({request:e})=>"style"===e.destination||"script"===e.destination),new t.StaleWhileRevalidate({cacheName:"static-resources",plugins:[new a.CacheableResponsePlugin({statuses:[200]})]})),(0,e.registerRoute)((({url:e})=>"https://fonts.googleapis.com"==


                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                    4192.168.2.44979413.248.243.54435296C:\Program Files\Google\Chrome\Application\chrome.exe
                                    TimestampBytes transferredDirectionData
                                    2024-09-29 02:46:54 UTC570OUTGET /manifest.webmanifest HTTP/1.1
                                    Host: mata0msk_logiusa.godaddysites.com
                                    Connection: keep-alive
                                    sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"
                                    sec-ch-ua-mobile: ?0
                                    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
                                    sec-ch-ua-platform: "Windows"
                                    Accept: */*
                                    Sec-Fetch-Site: same-origin
                                    Sec-Fetch-Mode: cors
                                    Sec-Fetch-Dest: manifest
                                    Referer: https://mata0msk_logiusa.godaddysites.com/
                                    Accept-Encoding: gzip, deflate, br
                                    Accept-Language: en-US,en;q=0.9
                                    2024-09-29 02:46:54 UTC666INHTTP/1.1 200 OK
                                    Link: <https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
                                    Cache-Control: max-age=30
                                    Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.com
                                    Content-Type: application/manifest+json
                                    Vary: Accept-Encoding
                                    Server: DPS/2.0.0+sha-227ca78
                                    X-Version: 227ca78
                                    X-SiteId: us-east-1
                                    Set-Cookie: dps_site_id=us-east-1; path=/; secure
                                    ETag: c7bc05d9277db61339a9342c68e101f9
                                    Date: Sun, 29 Sep 2024 02:46:54 GMT
                                    Connection: close
                                    Transfer-Encoding: chunked
                                    2024-09-29 02:46:54 UTC543INData Raw: 32 31 33 0d 0a 7b 22 73 63 6f 70 65 22 3a 22 2f 22 2c 22 73 74 61 72 74 5f 75 72 6c 22 3a 22 2f 22 2c 22 64 69 73 70 6c 61 79 22 3a 22 73 74 61 6e 64 61 6c 6f 6e 65 22 2c 22 69 63 6f 6e 73 22 3a 5b 7b 22 73 69 7a 65 73 22 3a 22 31 39 32 78 31 39 32 22 2c 22 74 79 70 65 22 3a 22 69 6d 61 67 65 2f 70 6e 67 22 2c 22 73 72 63 22 3a 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 69 70 2f 35 38 31 64 34 34 65 61 2d 33 32 65 32 2d 34 38 32 39 2d 39 64 65 30 2d 32 62 61 38 61 35 30 38 38 64 39 37 2f 66 61 76 69 63 6f 6e 2f 37 32 66 33 62 63 36 61 2d 32 30 36 30 2d 34 61 35 32 2d 39 35 37 34 2d 36 66 33 35 66 34 32 65 38 35 31 39 2e 70 6e 67 2f 3a 2f 72 73 3d 77 3a 31 39 32 2c 68 3a 31 39 32 2c 6d 22 7d 2c 7b 22 73 69 7a 65 73 22 3a 22
                                    Data Ascii: 213{"scope":"/","start_url":"/","display":"standalone","icons":[{"sizes":"192x192","type":"image/png","src":"//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:192,h:192,m"},{"sizes":"


                                    Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                    5192.168.2.44980613.248.243.54435296C:\Program Files\Google\Chrome\Application\chrome.exe
                                    TimestampBytes transferredDirectionData
                                    2024-09-29 02:46:55 UTC650OUTGET / HTTP/1.1
                                    Host: mata0msk_logiusa.godaddysites.com
                                    Connection: keep-alive
                                    Pragma: no-cache
                                    Cache-Control: no-cache
                                    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36
                                    Accept: */*
                                    Sec-Fetch-Site: same-origin
                                    Sec-Fetch-Mode: cors
                                    Sec-Fetch-Dest: empty
                                    Referer: https://mata0msk_logiusa.godaddysites.com/sw.js
                                    Accept-Encoding: gzip, deflate, br
                                    Accept-Language: en-US,en;q=0.9
                                    Cookie: dps_site_id=us-east-1; _tccl_visitor=876861ef-01a4-4cbe-a993-36db3fc6136a; _tccl_visit=876861ef-01a4-4cbe-a993-36db3fc6136a; _scc_session=pc=1&C_TOUCH=2024-09-29T02:46:50.285Z
                                    2024-09-29 02:46:55 UTC785INHTTP/1.1 200 OK
                                    Link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js>; rel=preload; as=script; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
                                    Cache-Control: max-age=30
                                    Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.com
                                    Content-Type: text/html;charset=utf-8
                                    Vary: Accept-Encoding
                                    Server: DPS/2.0.0+sha-227ca78
                                    X-Version: 227ca78
                                    X-SiteId: us-east-1
                                    Set-Cookie: dps_site_id=us-east-1; path=/; secure
                                    ETag: d04656c2ee732478494ed827c84cd9f1
                                    Date: Sun, 29 Sep 2024 02:46:55 GMT
                                    Connection: close
                                    Transfer-Encoding: chunked
                                    2024-09-29 02:46:55 UTC15599INData Raw: 39 34 30 35 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 49 4e 22 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 69 70 2f 35 38 31 64 34 34 65 61 2d 33 32 65 32 2d 34 38 32 39 2d 39 64 65 30 2d 32 62 61 38 61 35 30 38 38 64 39 37 2f 66 61 76 69 63 6f 6e 2f 37 32 66 33 62 63 36 61 2d 32 30 36 30 2d 34 61 35 32 2d 39 35 37 34 2d 36 66 33 35 66 34 32 65 38 35 31 39 2e 70 6e 67 2f 3a 2f 72 73 3d 77 3a 31 36 2c 68 3a 31 36 2c 6d 22 20 73 69 7a 65 73 3d 22 31 36 78 31 36 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f
                                    Data Ascii: 9405<!DOCTYPE html><html lang="en-IN"><head><link rel="icon" href="//img1.wsimg.com/isteam/ip/581d44ea-32e2-4829-9de0-2ba8a5088d97/favicon/72f3bc6a-2060-4a52-9574-6f35f42e8519.png/:/rs=w:16,h:16,m" sizes="16x16"/><link rel="icon" href="//img1.wsimg.com/
                                    2024-09-29 02:46:55 UTC16384INData Raw: 62 61 38 61 35 30 38 38 64 39 37 2f 6d 65 74 61 6d 61 73 6b 25 32 30 6c 6f 67 69 6e 2e 6a 70 67 2f 3a 2f 72 73 3d 77 3a 31 32 37 39 2c 6d 22 29 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 30 32 34 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 32 37 39 70 78 29 20 61 6e 64 20 28 2d 77 65 62 6b 69 74 2d 6d 69 6e 2d 64 65 76 69 63 65 2d 70 69 78 65 6c 2d 72 61 74 69 6f 3a 20 32 29 2c 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 30 32 34 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 32 37 39 70 78 29 20 61 6e 64 20 28 6d 69 6e 2d 72 65 73 6f 6c 75 74 69 6f 6e 3a 20 31 39 32 64 70 69 29 7b 2e 78 20 2e 63 31 2d 31 65 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 3a 6c 69 6e 65 61 72 2d 67 72 61 64 69 65
                                    Data Ascii: ba8a5088d97/metamask%20login.jpg/:/rs=w:1279,m")}}@media (min-width: 1024px) and (max-width: 1279px) and (-webkit-min-device-pixel-ratio: 2), (min-width: 1024px) and (max-width: 1279px) and (min-resolution: 192dpi){.x .c1-1e{background-image:linear-gradie
                                    2024-09-29 02:46:55 UTC5923INData Raw: 3a 5c 22 41 20 70 75 62 6c 69 73 68 20 69 73 20 6e 65 65 64 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 74 68 69 73 20 66 69 72 73 74 20 73 74 65 70 20 6f 66 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 5c 22 2c 5c 22 69 6e 66 6f 50 65 6e 64 69 6e 67 4c 6f 67 69 6e 44 65 73 63 5c 22 3a 5c 22 41 20 74 65 78 74 20 6d 65 73 73 61 67 65 20 68 61 73 20 62 65 65 6e 20 73 65 6e 74 20 74 6f 20 79 6f 75 20 74 6f 20 64 6f 77 6e 6c 6f 61 64 20 74 68 65 20 43 6f 6e 76 65 72 73 61 74 69 6f 6e 73 20 61 70 70 2e 20 50 6c 65 61 73 65 20 64 6f 77 6e 6c 6f 61 64 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 73 65 74 20 75 70 2e 5c 22 2c 5c 22 74 65 72 6d 73 4f 66 53 65 72 69 76 63 65 5c 22 3a
                                    Data Ascii: :\"A publish is needed in order to complete this first step of enabling this feature.\",\"infoPendingLoginDesc\":\"A text message has been sent to you to download the Conversations app. Please download and install to complete set up.\",\"termsOfSerivce\":


                                    Statistics

                                    CPU Usage

                                    Click to jump to process

                                    Memory Usage

                                    Click to jump to process

                                    Behavior

                                    Click to jump to process

                                    System Behavior

                                    General

                                    Target ID:0
                                    Start time:22:46:39
                                    Start date:28/09/2024
                                    Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    Wow64 process (32bit):false
                                    Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
                                    Imagebase:0x7ff76e190000
                                    File size:3'242'272 bytes
                                    MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
                                    Has elevated privileges:true
                                    Has administrator privileges:true
                                    Programmed in:C, C++ or other language
                                    Reputation:low
                                    Has exited:false

                                    General

                                    Target ID:2
                                    Start time:22:46:41
                                    Start date:28/09/2024
                                    Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    Wow64 process (32bit):false
                                    Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2288 --field-trial-handle=2204,i,7253217964030355801,18320007836951237884,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
                                    Imagebase:0x7ff76e190000
                                    File size:3'242'272 bytes
                                    MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
                                    Has elevated privileges:true
                                    Has administrator privileges:true
                                    Programmed in:C, C++ or other language
                                    Reputation:low
                                    Has exited:false

                                    General

                                    Target ID:3
                                    Start time:22:46:44
                                    Start date:28/09/2024
                                    Path:C:\Program Files\Google\Chrome\Application\chrome.exe
                                    Wow64 process (32bit):false
                                    Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://mata0msk_logiusa.godaddysites.com/"
                                    Imagebase:0x7ff76e190000
                                    File size:3'242'272 bytes
                                    MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
                                    Has elevated privileges:true
                                    Has administrator privileges:true
                                    Programmed in:C, C++ or other language
                                    Reputation:low
                                    Has exited:true

                                    Disassembly

                                    No disassembly