IOC Report
https://click.fidelityinvestments.com/u/?qs=eb5d156ba1e22fcceb1bad2896919db00a2c44759a1704838827b2504e4492adc4380ed5e7dd0ad9726b7ddf70cc502d5c958eb54385e967

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 17:06:03 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 17:06:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 17:06:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 17:06:03 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Tue Oct 1 17:06:02 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
dropped
Chrome Cache Entry: 248
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 249
ASCII text, with very long lines (633)
dropped
Chrome Cache Entry: 250
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 251
JSON data
downloaded
Chrome Cache Entry: 252
ASCII text
downloaded
Chrome Cache Entry: 253
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 254
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 255
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 256
HTML document, ASCII text, with very long lines (625), with CRLF line terminators
dropped
Chrome Cache Entry: 257
Unicode text, UTF-8 text, with CRLF line terminators
dropped
Chrome Cache Entry: 258
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 259
ASCII text
downloaded
Chrome Cache Entry: 260
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 261
ASCII text, with very long lines (582)
dropped
Chrome Cache Entry: 262
ASCII text, with very long lines (65297)
downloaded
Chrome Cache Entry: 263
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 264
JSON data
downloaded
Chrome Cache Entry: 265
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 266
ASCII text
dropped
Chrome Cache Entry: 267
ASCII text, with very long lines (930)
downloaded
Chrome Cache Entry: 268
ASCII text, with very long lines (22502)
dropped
Chrome Cache Entry: 269
ASCII text, with very long lines (1396), with no line terminators
downloaded
Chrome Cache Entry: 270
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 271
ASCII text
downloaded
Chrome Cache Entry: 272
ASCII text, with very long lines (64091)
downloaded
Chrome Cache Entry: 273
ASCII text, with very long lines (64091)
dropped
Chrome Cache Entry: 274
HTML document, ASCII text, with very long lines (991)
downloaded
Chrome Cache Entry: 275
ASCII text, with no line terminators
dropped
Chrome Cache Entry: 276
Unicode text, UTF-8 text, with very long lines (65379)
dropped
Chrome Cache Entry: 277
ASCII text, with very long lines (1396), with no line terminators
downloaded
Chrome Cache Entry: 278
ASCII text, with very long lines (12701)
dropped
Chrome Cache Entry: 279
ASCII text, with very long lines (65297)
dropped
Chrome Cache Entry: 280
PNG image data, 2048 x 1536, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 281
ASCII text, with very long lines (28996)
downloaded
Chrome Cache Entry: 282
ASCII text, with very long lines (619), with CRLF line terminators
dropped
Chrome Cache Entry: 283
ASCII text, with very long lines (589), with CRLF line terminators
downloaded
Chrome Cache Entry: 284
ASCII text, with very long lines (8065)
downloaded
Chrome Cache Entry: 285
ASCII text, with very long lines (22502)
downloaded
Chrome Cache Entry: 286
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 287
HTML document, ISO-8859 text, with very long lines (886), with CRLF, LF line terminators
downloaded
Chrome Cache Entry: 288
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 289
ASCII text
downloaded
Chrome Cache Entry: 290
ASCII text, with very long lines (930)
dropped
Chrome Cache Entry: 291
JSON data
dropped
Chrome Cache Entry: 292
ASCII text, with very long lines (33590), with no line terminators
dropped
Chrome Cache Entry: 293
PNG image data, 3840 x 981, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 294
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 295
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 296
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 297
ASCII text
dropped
Chrome Cache Entry: 298
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 299
ASCII text, with very long lines (553)
dropped
Chrome Cache Entry: 300
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 301
JSON data
downloaded
Chrome Cache Entry: 302
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 303
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 304
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 305
ASCII text, with very long lines (33590), with no line terminators
downloaded
Chrome Cache Entry: 306
ASCII text, with very long lines (33590), with no line terminators
dropped
Chrome Cache Entry: 307
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 308
ASCII text, with very long lines (579)
downloaded
Chrome Cache Entry: 309
ASCII text, with very long lines (1452)
downloaded
Chrome Cache Entry: 310
PNG image data, 1080 x 240, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 311
PNG image data, 116 x 43, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 312
Unicode text, UTF-8 text, with very long lines (1238), with CRLF line terminators
dropped
Chrome Cache Entry: 313
PNG image data, 2048 x 1536, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 314
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 315
ASCII text, with very long lines (553)
downloaded
Chrome Cache Entry: 316
ASCII text, with very long lines (443), with CRLF line terminators
downloaded
Chrome Cache Entry: 317
PNG image data, 3840 x 981, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 318
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 319
ASCII text, with very long lines (563)
dropped
Chrome Cache Entry: 320
HTML document, ASCII text
downloaded
Chrome Cache Entry: 321
ASCII text, with very long lines (10067)
downloaded
Chrome Cache Entry: 322
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 323
ASCII text, with very long lines (10251)
dropped
Chrome Cache Entry: 324
ASCII text, with very long lines (7945)
dropped
Chrome Cache Entry: 325
ASCII text, with very long lines (2884), with no line terminators
dropped
Chrome Cache Entry: 326
PNG image data, 116 x 43, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 327
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 328
JSON data
downloaded
Chrome Cache Entry: 329
ASCII text, with very long lines (619), with CRLF line terminators
downloaded
Chrome Cache Entry: 330
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), default quality", baseline, precision 8, 1920x1080, components 3
dropped
Chrome Cache Entry: 331
ASCII text, with very long lines (579)
dropped
Chrome Cache Entry: 332
ASCII text, with very long lines (18608), with CRLF line terminators
downloaded
Chrome Cache Entry: 333
ASCII text, with very long lines (18608), with CRLF line terminators
dropped
Chrome Cache Entry: 334
ASCII text
dropped
Chrome Cache Entry: 335
JSON data
dropped
Chrome Cache Entry: 336
JSON data
downloaded
Chrome Cache Entry: 337
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 338
ASCII text
downloaded
Chrome Cache Entry: 339
ASCII text, with very long lines (1396), with no line terminators
dropped
Chrome Cache Entry: 340
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 341
JSON data
downloaded
Chrome Cache Entry: 342
ASCII text, with very long lines (1239)
downloaded
Chrome Cache Entry: 343
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 344
PNG image data, 600 x 106, 8-bit colormap, non-interlaced
downloaded
Chrome Cache Entry: 345
Unicode text, UTF-8 text, with very long lines (1238), with CRLF line terminators
downloaded
Chrome Cache Entry: 346
ASCII text, with very long lines (5945)
dropped
Chrome Cache Entry: 347
JSON data
dropped
Chrome Cache Entry: 348
ASCII text, with very long lines (533)
downloaded
Chrome Cache Entry: 349
JSON data
dropped
Chrome Cache Entry: 350
MS Windows icon resource - 5 icons, 32x32, 32x32, 16 colors
dropped
Chrome Cache Entry: 351
ASCII text, with very long lines (6629)
downloaded
Chrome Cache Entry: 352
ASCII text, with very long lines (8065)
dropped
Chrome Cache Entry: 353
ASCII text, with very long lines (633)
downloaded
Chrome Cache Entry: 354
ASCII text, with very long lines (65451)
dropped
Chrome Cache Entry: 355
ASCII text, with very long lines (24745), with no line terminators
dropped
Chrome Cache Entry: 356
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 357
ASCII text
downloaded
Chrome Cache Entry: 358
JSON data
downloaded
Chrome Cache Entry: 359
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 360
JSON data
downloaded
Chrome Cache Entry: 361
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 362
PNG image data, 600 x 106, 8-bit colormap, non-interlaced
dropped
Chrome Cache Entry: 363
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 364
ASCII text, with very long lines (586), with CRLF line terminators
dropped
Chrome Cache Entry: 365
ASCII text
dropped
Chrome Cache Entry: 366
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 367
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 368
PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 369
ASCII text, with CRLF line terminators
dropped
Chrome Cache Entry: 370
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 371
ASCII text, with very long lines (12701)
downloaded
Chrome Cache Entry: 372
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 373
ASCII text, with very long lines (1239)
dropped
Chrome Cache Entry: 374
MS Windows icon resource - 5 icons, 32x32, 32x32, 16 colors
downloaded
Chrome Cache Entry: 375
ASCII text, with very long lines (64779)
downloaded
Chrome Cache Entry: 376
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 377
ASCII text, with very long lines (2884), with no line terminators
downloaded
Chrome Cache Entry: 378
ASCII text
downloaded
Chrome Cache Entry: 379
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 380
HTML document, ASCII text
downloaded
Chrome Cache Entry: 381
data
dropped
Chrome Cache Entry: 382
ASCII text, with very long lines (1420)
downloaded
Chrome Cache Entry: 383
ASCII text, with very long lines (10067)
dropped
Chrome Cache Entry: 384
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 385
HTML document, ASCII text, with very long lines (625), with CRLF line terminators
downloaded
Chrome Cache Entry: 386
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), default quality", baseline, precision 8, 1920x1080, components 3
downloaded
Chrome Cache Entry: 387
JSON data
downloaded
Chrome Cache Entry: 388
ASCII text, with very long lines (505)
downloaded
Chrome Cache Entry: 389
JSON data
dropped
Chrome Cache Entry: 390
ASCII text, with very long lines (586), with CRLF line terminators
downloaded
Chrome Cache Entry: 391
ASCII text
downloaded
Chrome Cache Entry: 392
ASCII text, with very long lines (65451)
dropped
Chrome Cache Entry: 393
ASCII text, with very long lines (533)
dropped
Chrome Cache Entry: 394
ASCII text, with very long lines (302), with CRLF line terminators
downloaded
Chrome Cache Entry: 395
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 396
ASCII text, with very long lines (1452)
dropped
Chrome Cache Entry: 397
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 398
JSON data
downloaded
Chrome Cache Entry: 399
assembler source, ASCII text, with very long lines (306), with CRLF line terminators
downloaded
Chrome Cache Entry: 400
Web Open Font Format (Version 2), TrueType, length 71896, version 4.393
downloaded
Chrome Cache Entry: 401
ASCII text, with very long lines (892), with CRLF line terminators
downloaded
Chrome Cache Entry: 402
ASCII text, with very long lines (10251)
downloaded
Chrome Cache Entry: 403
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 404
HTML document, ASCII text, with very long lines (625)
downloaded
Chrome Cache Entry: 405
ASCII text, with very long lines (589), with CRLF line terminators
dropped
Chrome Cache Entry: 406
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 407
ASCII text
downloaded
Chrome Cache Entry: 408
JSON data
dropped
Chrome Cache Entry: 409
ASCII text, with very long lines (65451)
downloaded
Chrome Cache Entry: 410
ASCII text, with very long lines (64091)
dropped
Chrome Cache Entry: 411
ASCII text, with very long lines (64091)
downloaded
Chrome Cache Entry: 412
ASCII text, with very long lines (308)
downloaded
Chrome Cache Entry: 413
JSON data
dropped
Chrome Cache Entry: 414
PNG image data, 2 x 1, 8-bit/color RGBA, non-interlaced
downloaded
Chrome Cache Entry: 415
Unicode text, UTF-8 text, with very long lines (65379)
downloaded
Chrome Cache Entry: 416
ASCII text, with very long lines (1396), with no line terminators
dropped
Chrome Cache Entry: 417
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 418
ASCII text, with very long lines (33590), with no line terminators
downloaded
Chrome Cache Entry: 419
ASCII text, with very long lines (65536), with no line terminators
dropped
Chrome Cache Entry: 420
ASCII text, with very long lines (1420)
dropped
Chrome Cache Entry: 421
ASCII text, with very long lines (64779)
dropped
Chrome Cache Entry: 422
JSON data
dropped
Chrome Cache Entry: 423
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 424
SVG Scalable Vector Graphics image
dropped
Chrome Cache Entry: 425
SVG Scalable Vector Graphics image
downloaded
Chrome Cache Entry: 426
ASCII text, with very long lines (505)
dropped
Chrome Cache Entry: 427
HTML document, ASCII text, with very long lines (625)
dropped
Chrome Cache Entry: 428
JSON data
dropped
Chrome Cache Entry: 429
ASCII text, with very long lines (563)
downloaded
Chrome Cache Entry: 430
PNG image data, 1080 x 240, 8-bit/color RGBA, non-interlaced
dropped
Chrome Cache Entry: 431
ASCII text, with no line terminators
downloaded
Chrome Cache Entry: 432
ASCII text, with very long lines (5945)
downloaded
Chrome Cache Entry: 433
ASCII text, with very long lines (582)
downloaded
Chrome Cache Entry: 434
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 435
Unicode text, UTF-8 text, with CRLF line terminators
downloaded
Chrome Cache Entry: 436
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 437
ASCII text
downloaded
Chrome Cache Entry: 438
ASCII text, with very long lines (7945)
downloaded
Chrome Cache Entry: 439
ASCII text, with very long lines (65536), with no line terminators
downloaded
Chrome Cache Entry: 440
ASCII text, with very long lines (24745), with no line terminators
downloaded
Chrome Cache Entry: 441
ASCII text, with CRLF line terminators
downloaded
Chrome Cache Entry: 442
ASCII text, with CRLF line terminators
downloaded
There are 192 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2128 --field-trial-handle=1964,i,11857464742877382132,6441809137091131376,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://click.fidelityinvestments.com/u/?qs=eb5d156ba1e22fcceb1bad2896919db00a2c44759a1704838827b2504e4492adc4380ed5e7dd0ad9726b7ddf70cc502d5c958eb54385e967"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6376 --field-trial-handle=1964,i,11857464742877382132,6441809137091131376,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6308 --field-trial-handle=1964,i,11857464742877382132,6441809137091131376,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

URLs

Name
IP
Malicious
https://click.fidelityinvestments.com/u/?qs=eb5d156ba1e22fcceb1bad2896919db00a2c44759a1704838827b2504e4492adc4380ed5e7dd0ad9726b7ddf70cc502d5c958eb54385e967
https://cdn.cookielaw.org/consent/cac59ee3-dbd8-4346-a12b-b2a88c2afe86/cac59ee3-dbd8-4346-a12b-b2a88c2afe86.json
104.18.87.42
https://sb.scorecardresearch.com/c2/plugins/streamsense_plugin_theplatform.js
unknown
https://stats.g.doubleclick.net/g/collect
unknown
https://assets.fidelity.com/virtual-assistant/polyfills.ap119043-bundle.js
unknown
https://facpcs.fmr.com/
unknown
https://login.fidelity.com/ftgw/pages/capability/widget/config/fs-widget.authunp.config.js
unknown
https://www.fidelity.com/viewpoints/investing-ideas/six-tips
unknown
https://nexus.ensighten.com/fidelity/nbprod/code/aa0cefc6f16b6c5e8eeed42cbfd9dc8c.js?conditionId0=46215&conditionId1=422684
65.9.66.72
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/suspiciousemail
unknown
https://wpsacpt.fmr.com/static/common/nb/thirdparty/glance/js/GlanceCobrowseLoader_5.8.5M.js
unknown
http://polymer.github.io/AUTHORS.txt
unknown
https://pcs.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/privacypolicy
unknown
https://workplaceservices.fidelity.com/bin-public/070_NB_IA_Pages/images/icon-color-2fa.svg
unknown
https://cfa.fidelity.com/fp/tags.js?org_id=5h8i3ud8&session_id=E11F63FA05704BE5AE0A73C63E7A5D4F
91.235.133.67
http://picture.responsiveimages.org/#the-img-element
unknown
http://www.opensource.org/licenses/mit-license.php
unknown
https://github.com/twbs/bootstrap/graphs/contributors)
unknown
https://nbacpt.fmr.com/
unknown
https://github.com/scottjehl/picturefill/issues/332
unknown
https://assets.fidelity.com/virtual-assistant/styles.ap119043-bundle.css
unknown
https://workplaceservices.fidelity.com/static/common/nb/js/pl/nb-login.js
unknown
http://farukat.es/
unknown
https://workplaceservices.fidelity.com/bin-public/070_NB_IA_Pages/images/icon-color-login-info.svg
unknown
https://nexus.ensighten.com/fidelity/nbprod/code/6c1d9da3e790769802352c808cc652d9.js?conditionId0=315650
65.9.66.72
https://workplaceservices.fidelity.com/bin-public/070_NB_PreLogin_Pages/images/footer-fidelity-provi
unknown
https://pcs.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/privacypolicy#Cookiesa
unknown
https://cfa.fidelity.com/fp/es.js?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1
91.235.133.67
https://assets.fidelity.com/virtual-assistant/main.ap119043-bundle.js
unknown
https://nexus.ensighten.com/fidelity/nbprod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/fidelity/nbprod/code/&publishedOn=Fri%20Sep%2020%2020:34:49%20GMT%202024&ClientID=65&PageID=https%3A%2F%2Fnb.fidelity.com%2Fpublic%2Fnb%2Fdefault%2Fresourceslibrary_redesign%2Farticles%2Fmyvoice
65.9.66.72
https://www.ensighten.com/products/enterprise-tag-management/privacy/
unknown
https://nexus.ensighten.com/fidelity/nbprod/code/4ff653c921b48ac5f854e5de53450cc7.js?conditionId0=645090
65.9.66.72
https://nb.fidelity.com/public/nbpreloginnav/app/nurdomestic?intent=nur
unknown
https://www.myfidelitysite.com/TTI401k/techtronic-industries/7751
https://www.myfidelitysite.com/TTI401k/techtronic-industries/7758
https://workplaceservices.fidelity.com/static/common/nb/css/pl/content-blocks-section.css
unknown
https://cdn.cookielaw.org/scripttemplates/202407.1.0/otBannerSdk.js
104.18.87.42
https://pcs.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/onlinesecurityatfideli
unknown
https://cfa.fidelity.com/fp/clear3.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&je=32323624246863633d31247067675f7570646174673f273540253032352532302533412735402732324447564941455f5052494e5627303027334325354266636c7365273041273232686b6464676e2532322532413627374625354425324327323236273030273341253542253032636f6e6669706f27303025314125354264616c7367273041253232616865616b626f78253230273041362537442537442732432530303527323225314125354225323253617467664b66496c6425323227334125374064636c736527324327323268696464676c27303025304334253546253744273546
91.235.133.67
http://docs.jquery.com/Plugins/Validation/Methods/url
unknown
https://nb.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/datasecurity
unknown
https://cdn.cookielaw.org/scripttemplates/202407.1.0/assets/v2/otPcCenter.json
104.18.87.42
http://jquery.malsup.com/cycle2/
unknown
https://link.theplatform.com/s/qlVTIC/
unknown
https://www.myfidelitysite.com/css/font-awesome.min.css?v=2024100102
206.128.100.80
https://assets.fidelity.com/virtual-assistant/runtime.ap119043-bundle.js
unknown
http://docs.jquery.com/Plugins/Validation/filled
unknown
http://polymer.github.io/PATENTS.txt
unknown
https://siteintercept.qualtrics.com
unknown
http://docs.jquery.com/Plugins/Validation/Methods/maxlength
unknown
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/onlinesecurityatfidelity
https://2579983.fls.doubleclick.net/activityi;src
unknown
https://workplaceservices.fidelity.com/static/common/nb/css/pl/article-pre-login.css
unknown
https://workplaceservices.fidelity.com/static/common/nb/js/picturefill.js
unknown
http://docs.jquery.com/Plugins/Validation/Methods/range
unknown
http://docs.jquery.com/Plugins/Validation/Methods/required
unknown
https://cfa.fidelity.com/fp/clear3.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&je=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
91.235.133.67
https://nb.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/myvoice
https://cfa.fidelity.com/fp/check.js;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&jb=3539262468716d753d576b6e646d7773266a736f3f556b6c666f75732532303330266a7160773f536166637269246a73623d4368706d6f67273232313137
91.235.133.67
https://w3c.github.io/webappsec/specs/mixedcontent/#restricts-mixed-content
unknown
https://h.online-metrix.net/fp/clear.png?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&gttl=155520000
91.235.132.130
https://workplaceservices.fidelity.com/static/common/nb/js/pl/article-control.js
unknown
https://workplaceservices.fidelity.com/static/common/nb/js/vendor/jquery-ui-validate-modernizer.min.
unknown
https://cfa.fidelity.com/fp/clear.png?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&jac=1&je=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
91.235.133.67
https://workplaceservices.fidelity.com/bin-public/070_NB_IA_Pages/images/icon-phishing-email.svg
unknown
https://login.fidelity.com/
unknown
http://docs.jquery.com/Plugins/Validation/validate
unknown
https://pcs.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/termsofuse
unknown
http://search.yahoo.com/mrss/
unknown
https://github.com/twbs/bootstrap/blob/master/LICENSE)
unknown
https://workplaceservices.fidelity.com/mybenefits/navstation/navigation
unknown
https://workplaceservices.fidelity.com/static/common/nb/css/pl/article-section.css
unknown
https://www.myfidelitysite.com/TTI401k
206.128.100.80
http://projects.scottsplayground.com/iri/
unknown
http://docs.jquery.com/Plugins/Validation/Methods/max
unknown
http://docs.jquery.com/Plugins/Validation/valid
unknown
https://cdn.cookielaw.org/scripttemplates/202407.1.0/assets/otCommonStyles.css
104.18.87.42
https://workplaceservices.fidelity.com/static/common/nb/js/table-drawer.js
unknown
https://www.fidelity.com/bin-public/060_www_fidelity_com/images/css/tab-shadow.png
unknown
https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.18.87.42
https://cfa.fidelity.com/fp/clear1.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&jf=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
91.235.133.67
https://login.fidelity.com/ftgw/pages/retail/html/include/RememberIDInfo.html
unknown
https://nexus.ensighten.com/fidelity/nbprod/code/62bf79c3136912ea56b3d0013cbc067f.js?conditionId0=4915317
65.9.66.72
https://cfa.fidelity.com/fp/clear3.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&je=383026246863613d312660687361653d25374225303072767b7067732532322733412535402730326d6f7773652732322533413927354627304327323270747b70652530302731412532307063273232253744
91.235.133.67
https://cfa.fidelity.com/fp/top_fp.html;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1
91.235.133.67
http://docs.jquery.com/Plugins/Validation/Methods/creditcard
unknown
http://es5.github.com/#x9.11
unknown
https://cfa.fidelity.com/fp/clear3.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&je=363626246863613d3126606873606b3d2535422537402730305a273232253241332532413335303738303430333638313825354427374624606871626b5f696c6465783f32
91.235.133.67
https://cfa.fidelity.com/fp/clear3.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&je=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
91.235.133.67
https://cdn.cookielaw.org
unknown
https://cfa.fidelity.com/fp/clear3.png;CIS3SID=C87EE6D2CA351C95DCEE92A12F558206?org_id=5h8i3ud8&session_id=e11f63fa05704be5ae0a73c63e7a5d4f&nonce=9d720bfb02315416&pageid=1&je=343826247067743d372e33333a332e30303030303840465d4168706f6d653a4a5a3a41503851415f303a41545f333a444d5f34
91.235.133.67
https://sketch.com
unknown
https://www.myfidelitysite.com/images/15/TTI_HealthWorks_Logo_TrnspBkgd_Color.png
206.128.100.80
http://code.google.com/p/episodes/
unknown
https://workplaceservices.fidelity.com/static/common/nb/css/pl/content-block-tile.css
unknown
http://docs.jquery.com/Plugins/Validation/Validator/resetForm
unknown
https://workplaceservices.fidelity.com/bin-public/070_NB_PreLogin_Pages/images/App%20Banner%20Logo.j
unknown
https://www.fidelity.com/pf/buddy
unknown
http://docs.jquery.com/Plugins/Validation/Methods/number
unknown
http://docs.jquery.com/Plugins/Validation
unknown
https://cdn.cookielaw.org/vendorlist/googleData.json
unknown
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
h-5h8i3ud8.online-metrix.net
91.235.133.67
www.myfidelitysite.com
206.128.100.80
d2pz9khpjpljz2.cloudfront.net
65.9.66.72
5h8i3ud8allyuaukur2nqomp26lffbnkioadkdgn9d720bfb02315416am1.e.aa.online-metrix.net
91.235.134.131
edge-geo.nc0.co
3.124.173.63
r.3gl.net
20.8.91.96
www.google.com
142.250.181.228
h64.online-metrix.net
192.225.158.1
click.fidelityinvestments.com
198.245.89.33
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
52.214.203.240
h.online-metrix.net
91.235.132.130
cdn.cookielaw.org
104.18.87.42
geolocation.onetrust.com
104.18.32.137
data.privacy.ensighten.com
unknown
dmt.fidelity.com
unknown
wsclix.fidelity.com
unknown
siteintercept.qualtrics.com
unknown
dpservice.fidelity.com
unknown
assets.fidelity.com
unknown
ds-aksb-a.akamaihd.net
unknown
nb.fidelity.com
unknown
nexus.ensighten.com
unknown
zn0qdvshifwp7t6ey-fmrwi.siteintercept.qualtrics.com
unknown
workplaceservices.fidelity.com
unknown
dpm.demdex.net
unknown
digital.fidelity.com
unknown
login.fidelity.com
unknown
cfa.fidelity.com
unknown
sitecatalyst.fidelity.com
unknown
There are 19 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
52.214.203.240
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com
United States
192.168.2.4
unknown
unknown
192.168.2.5
unknown
unknown
104.18.32.137
geolocation.onetrust.com
United States
65.9.66.72
d2pz9khpjpljz2.cloudfront.net
United States
65.9.66.34
unknown
United States
91.235.134.131
5h8i3ud8allyuaukur2nqomp26lffbnkioadkdgn9d720bfb02315416am1.e.aa.online-metrix.net
Netherlands
198.245.89.33
click.fidelityinvestments.com
United States
104.18.87.42
cdn.cookielaw.org
United States
91.235.133.67
h-5h8i3ud8.online-metrix.net
Netherlands
18.202.109.49
unknown
United States
239.255.255.250
unknown
Reserved
3.124.173.63
edge-geo.nc0.co
United States
20.8.91.96
r.3gl.net
United States
142.250.181.228
www.google.com
United States
192.225.158.1
h64.online-metrix.net
United States
206.128.100.80
www.myfidelitysite.com
United States
91.235.132.130
h.online-metrix.net
Netherlands
127.0.0.1
unknown
unknown
There are 9 hidden IPs, click here to show them.

DOM / HTML

URL
Malicious
https://www.myfidelitysite.com/TTI401k/techtronic-industries/7751
https://www.myfidelitysite.com/TTI401k/techtronic-industries/7758
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/onlinesecurityatfidelity
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/onlinesecurityatfidelity
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/onlinesecurityatfidelity
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/onlinesecurityatfidelity
https://nb.fidelity.com/public/nb/default/resourceslibrary/articles/onlinesecurityatfidelity
https://nb.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/myvoice
https://nb.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/myvoice
https://nb.fidelity.com/public/nb/default/resourceslibrary_redesign/articles/myvoice
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
https://nb.fidelity.com/public/nb/default/home?option=/profile/security
There are 8 hidden doms, click here to show them.