Automated Malware Analysis Management Report for https://faxfax.zizera.com/remittanceadvice

Overview

General Information

Sample URL:	https://faxfax.zizera.com/remittanceadvice
Analysis ID:	321356
Most interesting Screenshot:

Detection

HTMLPhisher

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for URL or domain

Yara detected HtmlPhish_10

HTML body contains low number of good links

HTML title does not match URL

Suspicious form URL found

Classification

Signatures

AV Detection:

Antivirus detection for URL or domain

Source: https://yelphaiku.com/office/mfile/

SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

Yara detected HtmlPhish_10

Source: Yara match

File source: 358075.pages.csv, type: HTML

HTML body contains low number of good links

Source: https://yelphaiku.com/office/mfile/	HTTP Parser: Number of links: 0
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: Number of links: 0

HTML title does not match URL

Source: https://yelphaiku.com/office/mfile/	HTTP Parser: Title: Sharing Link Validation does not match URL
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: Title: Sharing Link Validation does not match URL

Suspicious form URL found

Source: https://yelphaiku.com/office/mfile/	HTTP Parser: Form action: mai.php
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: Form action: mai.php

Source: https://www.godaddy.com/contact-us	HTTP Parser: No <meta name="author".. found
Source: https://www.godaddy.com/contact-us	HTTP Parser: No <meta name="author".. found
Source: https://www.godaddy.com/	HTTP Parser: No <meta name="author".. found
Source: https://www.godaddy.com/	HTTP Parser: No <meta name="author".. found
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: No <meta name="author".. found
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: No <meta name="author".. found
Source: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blank	HTTP Parser: No <meta name="author".. found
Source: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blank	HTTP Parser: No <meta name="author".. found

Source: https://www.godaddy.com/contact-us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.godaddy.com/contact-us	HTTP Parser: No <meta name="copyright".. found
Source: https://www.godaddy.com/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.godaddy.com/	HTTP Parser: No <meta name="copyright".. found
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: No <meta name="copyright".. found
Source: https://yelphaiku.com/office/mfile/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blank	HTTP Parser: No <meta name="copyright".. found
Source: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blank	HTTP Parser: No <meta name="copyright".. found

Source: global traffic

HTTP traffic detected: GET /8923bsuydn HTTP/1.1Host: x.coConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: 4f0802021d44bc50_0.0.dr	String found in binary or memory: /_keyhttps://www.youtube.com/s/player/8b85eac2/www-widgetapi.vflset/www-widgetapi.js equals www.youtube.com (Youtube)
Source: 6dc6a15fa209a9ca_0.0.dr	String found in binary or memory: Ohttps://www.youtube.com/s/player/8b85eac2/www-widgetapi.vflset/www-widgetapi.jsaD` equals www.youtube.com (Youtube)
Source: 4f0802021d44bc50_0.0.dr	String found in binary or memory: _keyhttps://www.youtube.com/s/player/8b85eac2/www-widgetapi.vflset/www-widgetapi.js equals www.youtube.com (Youtube)
Source: 6dc6a15fa209a9ca_0.0.dr	String found in binary or memory: https://www.youtube.com/s/player/8b85eac2/www-widgetapi.vflset/www-widgetapi.js equals www.youtube.com (Youtube)

Source: unknown

DNS traffic detected: queries for: faxfax.zizera.com

Source: ED02812CD7D061716B0BBE6F31979D00_FAC544846B8B5FE851FF6BF0CF2990220.1.dr	String found in binary or memory: http://certs.godaddy.com/repository/1301
Source: 223DE96EE265046957A660ED7C9DD9E7_EFF9B9BA98DEAA773F261FA85A0B17710.1.dr	String found in binary or memory: http://crl.godaddy.com/repository/0
Source: 223DE96EE265046957A660ED7C9DD9E7_EFF9B9BA98DEAA773F261FA85A0B17710.1.dr	String found in binary or memory: http://crl.godaddy.com/repository/gdroot-g2.crl0J
Source: ED02812CD7D061716B0BBE6F31979D00_FAC544846B8B5FE851FF6BF0CF2990220.1.dr	String found in binary or memory: http://crl.godaddy.com/repository/mastergodaddy2issuing.crl0J
Source: 77EC63BDA74BD0D0E0426DC8F8008506.1.dr	String found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
Source: 223DE96EE265046957A660ED7C9DD9E7_EFF9B9BA98DEAA773F261FA85A0B1771.1.dr	String found in binary or memory: http://ocsp.godaddy.com//MEIwQDA%2BMDwwOjAJBgUrDgMCGgUABBQdI2%2BOBkuXH93foRUj4a7lAr4rGwQUOpqFBxBnKLb
Source: ED02812CD7D061716B0BBE6F31979D00_FAC544846B8B5FE851FF6BF0CF299022.1.dr	String found in binary or memory: http://ocsp.godaddy.com//MEowSDBGMEQwQjAJBgUrDgMCGgUABBS2CA1fbGt26xPkOKX4ZguoUjM0TgQUQMK9J47MNIMwojP
Source: Current Session.0.dr	String found in binary or memory: http://x.co/8923bsuydn
Source: Current Session.0.dr	String found in binary or memory: http://x.co/8923bsuydn%DM
Source: 000003.log6.0.dr	String found in binary or memory: https://:websiteId.onlinestore.godaddy.com/admin/products/new
Source: 000003.log6.0.dr	String found in binary or memory: https://:websiteId.onlinestore.godaddy.com/admin/shipping_methods
Source: Reporting and NEL.1.dr	String found in binary or memory: https://a.nel.cloudflare.com/report?s=6Z505SKohIi4WWmgmXZqMa0Djo%2BXeFR8%2Fks5wSla7rqTs2uUB10IWqnBWY
Source: 069eeec3b24f9036_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/engagement-window/window-confs/249837
Source: 6745a26ff250e255_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/le-campaigns/campaigns/1741658530/eng
Source: 80e4f13fb63695ca_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/le-campaigns/zones?fields=id&fields=z
Source: bb2286b571c6fc01_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/setting/accountproperties/?cb=lpCb212
Source: f562afac76b4b973_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/setting/accountproperties/?cb=lpCb274
Source: ef34c246df0e42bc_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/setting/accountproperties/?cb=lpCb415
Source: 702495c6e2e78b0c_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/setting/accountproperties/?cb=lpCb446
Source: 4d6125cbda70b6f0_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/setting/accountproperties/?cb=lpCb490
Source: 1cb141e79f5601dc_0.0.dr	String found in binary or memory: https://accdn.lpsnmedia.net/api/account/30187337/configuration/setting/accountproperties/?cb=lpCb507
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://account.godaddy.com
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://account.godaddy.com/billing?filter=expires&subFilter=90
Source: 000003.log6.0.dr	String found in binary or memory: https://account.godaddy.com/products
Source: manifest.json0.0.dr, 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://accounts.google.com
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://ajax.aspnetcdn.com/
Source: 0ad5e255cfc99a9c_0.0.dr, 094e2d6bf2abec98_0.0.dr	String found in binary or memory: https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.11.2.min.js
Source: 0ad5e255cfc99a9c_0.0.dr	String found in binary or memory: https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.11.2.min.jsaD
Source: manifest.json0.0.dr, 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://apis.google.com
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://assets.onestore.ms/
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://auth.split.io/api
Source: 001b7dfda48b5f6d_0.0.dr	String found in binary or memory: https://babeljs.io/
Source: Network Action Predictor.0.dr	String found in binary or memory: https://cdn.trackjs.com/
Source: 08b95bf8e6dd7b84_0.0.dr	String found in binary or memory: https://cdn.trackjs.com/agent/v3/latest/t.js
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/
Source: 001b7dfda48b5f6d_0.0.dr, 41c17cabcb7066a9_0.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/babel-core/5.8.23/browser.min.js
Source: 001b7dfda48b5f6d_0.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/babel-core/5.8.23/browser.min.jsaD
Source: 762ca5cdd3b40fce_0.0.dr, 041e202bfc772cc8_0.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js
Source: 041e202bfc772cc8_0.0.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.jsaD
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.0.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: 1056dc81b557cff9_0.0.dr	String found in binary or memory: https://confluence.godaddy.com/display/CKPT/Event
Source: 000003.log6.0.dr	String found in binary or memory: https://contacts.godaddy.com/contacts?website_id=:websiteId
Source: manifest.json0.0.dr	String found in binary or memory: https://content.googleapis.com
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://dcc.godaddy.com
Source: 3f8de413-94c9-4d2d-82ef-fb648f36cc41.tmp.1.dr, 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr, fa580813-37d6-4ab1-be71-3a66ef7a7790.tmp.1.dr	String found in binary or memory: https://dns.google
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://email.godaddy.com
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://events.split.io/api
Source: 2e3d5cdfef0b6238_0.0.dr	String found in binary or memory: https://faxfax.zizera.com/lite/assets/js/app.e1f1e969.js
Source: a1898ca8587555c5_0.0.dr	String found in binary or memory: https://faxfax.zizera.com/lite/assets/js/chunk-vendors.753f9ae2.js
Source: History-journal.0.dr	String found in binary or memory: https://faxfax.zizera.com/remittanceadvice
Source: History-journal.0.dr	String found in binary or memory: https://faxfax.zizera.com/remittanceadvice$
Source: History Provider Cache.0.dr	String found in binary or memory: https://faxfax.zizera.com/remittanceadvice2
Source: History-journal.0.dr	String found in binary or memory: https://faxfax.zizera.com/remittanceadviceremittanceadvice
Source: manifest.json0.0.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://fonts.googleapis.com
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://fonts.gstatic.com
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://gateway.godaddy.com
Source: 001b7dfda48b5f6d_0.0.dr	String found in binary or memory: https://github.com/babel/babel/issues
Source: 02454aa6d8da3fb1_0.0.dr, 1dcc732920861c78_0.0.dr, 406a0f0498fb7a87_0.0.dr, 5100317373070f9f_0.0.dr	String found in binary or memory: https://godaddy.com/
Source: c3de3858c26638d5_0.0.dr	String found in binary or memory: https://godaddy.com/)
Source: 7f58cad8484a3ffb_0.0.dr	String found in binary or memory: https://godaddy.com/1
Source: 9064f3a5056d6bb1_0.0.dr	String found in binary or memory: https://godaddy.com/4
Source: 02454aa6d8da3fb1_0.0.dr	String found in binary or memory: https://godaddy.com/8
Source: f562afac76b4b973_0.0.dr	String found in binary or memory: https://godaddy.com/A
Source: 183955bae54e77e3_0.0.dr	String found in binary or memory: https://godaddy.com/E
Source: 4e7ced3c9971ec86_0.0.dr	String found in binary or memory: https://godaddy.com/JIR
Source: 08b95bf8e6dd7b84_0.0.dr, d6862ab8bd2f679c_0.0.dr	String found in binary or memory: https://godaddy.com/N
Source: 4d6125cbda70b6f0_0.0.dr	String found in binary or memory: https://godaddy.com/V
Source: 3332cf6ef51dd1a9_0.0.dr	String found in binary or memory: https://godaddy.com/c
Source: 406a0f0498fb7a87_0.0.dr	String found in binary or memory: https://godaddy.com/d
Source: 000003.log6.0.dr	String found in binary or memory: https://godaddy.com/help/contact-us
Source: aa261b7c4be61a46_0.0.dr	String found in binary or memory: https://godaddy.com/i
Source: 702495c6e2e78b0c_0.0.dr	String found in binary or memory: https://godaddy.com/kJ
Source: d3eaba701bf0be20_0.0.dr	String found in binary or memory: https://godaddy.com/m
Source: c487f9ceefa38302_0.0.dr	String found in binary or memory: https://godaddy.com/m(
Source: 0995e489bf59c488_0.0.dr	String found in binary or memory: https://godaddy.com/s
Source: 47ccc19b4da77a8d_0.0.dr	String found in binary or memory: https://godaddy.com/u
Source: 80e4f13fb63695ca_0.0.dr	String found in binary or memory: https://godaddy.com/y8
Source: c3de3858c26638d5_0.0.dr	String found in binary or memory: https://godaddy.com/z
Source: manifest.json0.0.dr	String found in binary or memory: https://hangouts.google.com/
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://img1.wsimg.com/
Source: Favicons.0.dr	String found in binary or memory: https://img1.wsimg.com/assets/godaddy.ico
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/03dc69f6-c9ae-40f4-8fbd-dff9b1f9c3b1/CardBg4.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/0b124caa-f0d8-4d86-8e7b-1050053b71f9/CardBg3.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/41664504-2241-4b23-a411-495d4a4d9db0/CardBg5.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/446f7777-b3cc-4f18-98fa-6386e45597fa/GiftCard.
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/5718e628-c8d1-478d-8122-f55c075e6418/OpenWeSta
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/61119dc6-2b69-47e5-b9fc-8ca7652c4466/Product.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/688b7ee2-8381-4523-b5cf-418bcc91fd43/Campaign.
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/70d6d604-9554-4082-98b8-39e2628706cf/Delivery.
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/945eef1c-6161-4bf4-be0d-5d0b2e1b3053/Availabil
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/9cc8b5db-e85f-4c0d-8a8d-774d58a71d2d/GoFundMe.
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/a6b4b9fb-f503-4acc-8331-823ad6d29b9e/Shipping.
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/abf7fd44-9b04-4c2d-9012-c8a9026efb1c/Service.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/b01354f0-5fa2-4ffa-9d22-6a4d2cf4a531/VirtualSe
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/b4b78951-160c-4fbe-b348-b66a42826fbf/Chownow.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/b81bd5b1-f196-4b39-901c-b6111398dfda/Publish.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/bd95841e-1a43-4b6d-80aa-8d30b37fb898/CardBg7.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/c93c372f-0ce5-4232-9ac8-1ea92a4ef47c/CardBg1.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/d9f67fde-f8b1-46ec-a0bd-0a94a4cbf3ad/Paypal.pn
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/e4a8ca06-9bc6-453c-afeb-7baa374845ab/Reminder.
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/f05bc5f4-5704-4a99-a741-df2c5453cc73/CardBg6.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/f0fad963-f54c-47c4-ad93-6c51fc0e0f6b/CardBg2.p
Source: 000003.log6.0.dr	String found in binary or memory: https://img1.wsimg.com/cdn/Image/Mobile/InApp/1/en-US/f8770c13-cfa1-4e1a-ae66-bdfb51d3f11a/DigitalCo
Source: e8081f3cea3392c6_0.0.dr	String found in binary or memory: https://img1.wsimg.com/cms/sales/js/sales-cms-m5dfhHAYxYelydH0TOQilVeHUgw_6MEeM366phtlfb01.min.js
Source: e8081f3cea3392c6_0.0.dr	String found in binary or memory: https://img1.wsimg.com/cms/sales/js/sales-cms-m5dfhHAYxYelydH0TOQilVeHUgw_6MEeM366phtlfb01.min.jsaD
Source: 308b6aa73c0feee0_0.0.dr	String found in binary or memory: https://img1.wsimg.com/dc-assets/help/2.379.18-d325e66/js/flamingo.min.js
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://img1.wsimg.com/dc-assets/live-engage/images/link-icon-hover.png
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://img1.wsimg.com/dc-assets/live-engage/images/link-icon.png
Source: 0995e489bf59c488_0.0.dr	String found in binary or memory: https://img1.wsimg.com/liveengage/v2/tag/3.2.2/liveengage.js
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://img1.wsimg.com/liveengage/v2/tag/3.2.2/liveengage.jsa
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://img1.wsimg.com/liveengage/v2/tag/3.2.2/liveengage.jsaD
Source: e8081f3cea3392c6_0.0.dr	String found in binary or memory: https://img1.wsimg.com/poly/v3/polyfill.min.js?features=IntersectionObserver%2CNodeList.prototype.fo
Source: 1056dc81b557cff9_0.0.dr	String found in binary or memory: https://img1.wsimg.com/wrhs/153b0ee5f69840fe239a01574097118b/splitio.min.js
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://img6.wsimg.com/
Source: Favicons-journal.0.dr	String found in binary or memory: https://img6.wsimg.com/ux/favicon/favicon-32x32.png
Source: 1dcc732920861c78_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/19613ac22420404c34b7162ef50370cf/tti.min.js
Source: 1dcc732920861c78_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/19613ac22420404c34b7162ef50370cf/tti.min.jsaD
Source: d8fbe577ab80525e_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/1cdb971aba0e6f81bcd65741b66a16ea/uxcore2.min.js
Source: ca9e60488bdc5258_0.0.dr, 4e7ced3c9971ec86_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/2a8723002f286c722aab4069a3c0bc9c/utilityheader.min.js
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/2a8723002f286c722aab4069a3c0bc9c/utilityheader.min.jsaD
Source: 47ccc19b4da77a8d_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/3fab94f367d4871640366242ebfff587/vendors~browser-deprecation-banner.head
Source: c487f9ceefa38302_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/5f1d295b85aaaba74af4ee02bdc62854/vendor~uxcore2.min.js
Source: 9812c157ee66a51a_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/a41f55bee6aa8d6c09469d7143ca4f41/helpHeader.min.js
Source: d6862ab8bd2f679c_0.0.dr, 8c4ebfa60d7b4172_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/b0de8fce1ace6e77cf5891d58d0aafc2/uxcore2.min.js
Source: 8c4ebfa60d7b4172_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/b0de8fce1ace6e77cf5891d58d0aafc2/uxcore2.min.jsaD
Source: 1532d62772683cf2_0.0.dr, eec5c79e2dbb46ae_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/bb838831e66ecc31c8d4d38593364457/vendor.min.js
Source: eec5c79e2dbb46ae_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/bb838831e66ecc31c8d4d38593364457/vendor.min.jsaD
Source: 75f1105a42981b97_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/d6c7b1acb132140b70d61ad9ce6bc527/heartbeat.min.js
Source: 75f1105a42981b97_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/d6c7b1acb132140b70d61ad9ce6bc527/heartbeat.min.jsaD
Source: ff6d0be77341b55e_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/dffbab4b36fb049029b7ac907a90f8c7/vendors~browser-deprecation-banner.head
Source: 1056dc81b557cff9_0.0.dr, b1e45d6786b73622_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/e099922f63ddb7a5d4027821f53ee78f/tcc.min.js
Source: 1056dc81b557cff9_0.0.dr	String found in binary or memory: https://img6.wsimg.com/wrhs/e099922f63ddb7a5d4027821f53ee78f/tcc.min.jsaD
Source: 02454aa6d8da3fb1_0.0.dr	String found in binary or memory: https://js-agent.newrelic.com/nr-1184.min.js
Source: 000004.log.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net
Source: 000004.log.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net(_https://lpcdn.lpsnmedia.net
Source: 000003.log0.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/
Source: aa261b7c4be61a46_0.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/le_re/3.43.0.1-release_5028/jsv2/UISuite.js?_v=3.43.0.1-release_5028
Source: 41735a75d71fff99_0.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/le_re/3.43.0.1-release_5028/jsv2/overlay.js?_v=3.43.0.1-release_5028
Source: Current Session.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http
Source: c3de3858c26638d5_0.0.dr, 7f58cad8484a3ffb_0.0.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.js?loc=https%
Source: 183955bae54e77e3_0.0.dr	String found in binary or memory: https://lptag.liveperson.net/lptag/api/account/30187337/configuration/applications/taglets/.jsonp?v=
Source: 9064f3a5056d6bb1_0.0.dr	String found in binary or memory: https://lptag.liveperson.net/tag/tag.js?site=30187337
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://mya.godaddy.com
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://ogs.google.com
Source: 000003.log6.0.dr	String found in binary or memory: https://ola.godaddy.com/:websiteId/services/new
Source: 000003.log6.0.dr	String found in binary or memory: https://ola.godaddy.com/:websiteId/settings/business_hours
Source: 000003.log6.0.dr	String found in binary or memory: https://ola.godaddy.com/:websiteId/settings/communications
Source: manifest.json.0.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://play.google.com
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://pro.godaddy.com
Source: bcf0a187-1b0c-4d07-a305-9eae34e2fd67.tmp.1.dr	String found in binary or memory: https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct
Source: manifest.json.0.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://sdk.split.io/api
Source: Network Action Predictor.0.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/
Source: d3eaba701bf0be20_0.0.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/gpt/pubads_impl_2020111801.js?21068793
Source: 000003.log6.0.dr	String found in binary or memory: https://shortener.godaddy.com
Source: 000003.log0.0.dr	String found in binary or memory: https://shortener.godaddy.com/
Source: QuotaManager.0.dr	String found in binary or memory: https://shortener.godaddy.com//
Source: Current Session.0.dr	String found in binary or memory: https://shortener.godaddy.com/error_40/
Source: Current Session.0.dr	String found in binary or memory: https://shortener.godaddy.com/error_40/N
Source: Current Session.0.dr, Favicons-journal.0.dr	String found in binary or memory: https://shortener.godaddy.com/error_404
Source: Favicons-journal.0.dr	String found in binary or memory: https://shortener.godaddy.com/error_404sM=
Source: 000003.log6.0.dr	String found in binary or memory: https://shortener.godaddy.com1_https://shortener.godaddy.com
Source: 000005.ldb.0.dr	String found in binary or memory: https://shortener.godaddy.com=
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://ssl.gstatic.com
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://sso.godaddy.com
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://sso.godaddy.com/account/create?realm=idp&app=www&path=
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://sso.godaddy.com/cookie/restore/
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://sso.godaddy.com/cookie/switchback/
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://sso.godaddy.com/logout?realm=idp
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://sso.godaddy.com?realm=idp&app=mya&path=
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://statics-marketingsites-wcus-ms-com.akamaized.net/
Source: ffae120ac1988083_0.0.dr	String found in binary or memory: https://streaming.split.io
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 3332cf6ef51dd1a9_0.0.dr	String found in binary or memory: https://tags.tiqcdn.com/utag/godaddy/godaddy/prod/utag.1355.js?utv=ut4.42.202011101205
Source: 3332cf6ef51dd1a9_0.0.dr	String found in binary or memory: https://tags.tiqcdn.com/utag/godaddy/godaddy/prod/utag.1355.js?utv=ut4.42.202011101205aD
Source: 406a0f0498fb7a87_0.0.dr	String found in binary or memory: https://tags.tiqcdn.com/utag/godaddy/godaddy/prod/utag.js
Source: 000003.log6.0.dr	String found in binary or memory: https://websites.godaddy.com/en-US/editor/:websiteId/:homepageId
Source: 000003.log6.0.dr	String found in binary or memory: https://websites.godaddy.com/en-US/editor/:websiteId/:homepageId/edit/:headerWidgetId/mutator/promoB
Source: 000003.log6.0.dr	String found in binary or memory: https://websites.godaddy.com/launch?account_uid=:accountId&path=addsection&sectionType=FUNDRAISING
Source: 000003.log6.0.dr	String found in binary or memory: https://websites.godaddy.com/launch?account_uid=:accountId&path=addsection&sectionType=GIFT_CARD
Source: 000003.log6.0.dr	String found in binary or memory: https://websites.godaddy.com/launch?account_uid=:accountId&path=addsection&sectionType=ORDERING
Source: 000003.log6.0.dr	String found in binary or memory: https://websites.godaddy.com/launch?account_uid=:accountId&path=addsection&sectionType=PAYMENT
Source: 000003.log6.0.dr	String found in binary or memory: https://www.godaddy.com
Source: 000003.log0.0.dr	String found in binary or memory: https://www.godaddy.com/
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/B
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/BDomain
Source: History-journal.0.dr	String found in binary or memory: https://www.godaddy.com/Domain
Source: Favicons-journal.0.dr	String found in binary or memory: https://www.godaddy.com/_
Source: ca9e60488bdc5258_0.0.dr	String found in binary or memory: https://www.godaddy.com/agreements/showdoc.aspx?pageid=PRIVACY
Source: Current Session.0.dr, Favicons-journal.0.dr	String found in binary or memory: https://www.godaddy.com/contact-us
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/contact-us-GoDaddy
Source: History-journal.0.dr	String found in binary or memory: https://www.godaddy.com/contact-usGoDaddy
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/help/search
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/help/shortener-1000035
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/help/shortener-1000035.Oops
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/help/shortener-1000035v
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blank
Source: Favicons-journal.0.dr	String found in binary or memory: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blank3
Source: History-journal.0.dr	String found in binary or memory: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blankPrivacy
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/legal/agreements/privacy-policy?target=_blankTs
Source: 000003.log6.0.dr	String found in binary or memory: https://www.godaddy.com/open-we-stand
Source: Current Session.0.dr	String found in binary or memory: https://www.godaddy.com/p
Source: manifest.json0.0.dr, 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://www.google.com
Source: manifest.json.0.dr	String found in binary or memory: https://www.google.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://www.google.com;
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: 1056dc81b557cff9_0.0.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: Network Action Predictor.0.dr	String found in binary or memory: https://www.googletagservices.com/
Source: fce188cfb0287bd8_0.0.dr	String found in binary or memory: https://www.googletagservices.com/tag/js/gpt.js
Source: 7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp.1.dr	String found in binary or memory: https://www.gstatic.com
Source: 31754e45cfd28c3a_0.0.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/UFwvoDBMjc8LiYc1DKXiAomK/recaptcha__en.js
Source: manifest.json0.0.dr	String found in binary or memory: https://www.gstatic.com;
Source: 4f0802021d44bc50_0.0.dr	String found in binary or memory: https://www.youtube.com/s/player/8b85eac2/www-widgetapi.vflset/www-widgetapi.js
Source: 6dc6a15fa209a9ca_0.0.dr	String found in binary or memory: https://www.youtube.com/s/player/8b85eac2/www-widgetapi.vflset/www-widgetapi.jsaD
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://x.co/
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://yelphaiku.com/
Source: Current Session.0.dr	String found in binary or memory: https://yelphaiku.com/office/mfile/
Source: History-journal.0.dr	String found in binary or memory: https://yelphaiku.com/office/mfile/Sharing
Source: Current Session.0.dr	String found in binary or memory: https://yelphaiku.com/office/mfile/mai.php
Source: a1898ca8587555c5_0.0.dr	String found in binary or memory: https://zizera.com/
Source: 31754e45cfd28c3a_0.0.dr	String found in binary or memory: https://zizera.com/T
Source: 2e3d5cdfef0b6238_0.0.dr	String found in binary or memory: https://zizera.com/f

Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443

Source: classification engine

Classification label: mal56.phis.win@49/259@37/17

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-5FB8BB69-1710.pma

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\55f520c9-2e43-43d6-809f-58f0e738301c.tmp

Jump to behavior

Source: QuotaManager.0.dr

Binary or memory string: CREATE TABLE HostQuotaTable(host TEXT NOT NULL, type INTEGER NOT NULL, quota INTEGER DEFAULT 0, UNIQUE(host, type));

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized 'https://faxfax.zizera.com/remittanceadvice'
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1540,3317695339915788095,555655226975024704,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1736 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1540,3317695339915788095,555655226975024704,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1736 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

IP	Domain	Country	ASN	ASN Name	Malicious
162.241.127.79	unknown	United States	46606	UNIFIEDLAYER-AS-1US	false
104.16.18.94	unknown	United States	13335	CLOUDFLARENETUS	false
184.73.218.177	unknown	United States	14618	AMAZON-AESUS	false
94.31.29.32	unknown	United Kingdom	33438	HIGHWINDS2US	false
13.224.93.109	unknown	United States	16509	AMAZON-02US	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
167.114.119.127	unknown	Canada	16276	OVHFR	false
172.217.16.194	unknown	United States	15169	GOOGLEUS	false
172.217.16.193	unknown	United States	15169	GOOGLEUS	false
208.89.12.87	unknown	United States	11054	LIVEPERSONUS	false
172.217.21.226	unknown	United States	15169	GOOGLEUS	false
142.250.74.194	unknown	United States	15169	GOOGLEUS	false
45.40.140.1	unknown	United States	26496	AS-26496-GO-DADDY-COM-LLCUS	false
13.224.93.31	unknown	United States	16509	AMAZON-02US	false
34.255.187.247	unknown	United States	16509	AMAZON-02US	false

Domain

Country

Flag

ASN

ASN Name

Malicious

162.241.127.79

unknown

United States

46606

UNIFIEDLAYER-AS-1US

false

104.16.18.94

unknown

United States

13335

CLOUDFLARENETUS

false

184.73.218.177

unknown

United States

14618

AMAZON-AESUS

false

94.31.29.32

unknown

United Kingdom

33438

HIGHWINDS2US

false

13.224.93.109

unknown

United States

16509

AMAZON-02US

false

239.255.255.250

unknown

Reserved

unknown

false

167.114.119.127

unknown

Canada

16276

OVHFR

false

172.217.16.194

unknown

United States

15169

GOOGLEUS

false

172.217.16.193

unknown

United States

15169

GOOGLEUS

false

208.89.12.87

unknown

United States

11054

LIVEPERSONUS

false

172.217.21.226

unknown

United States

15169

GOOGLEUS

false

142.250.74.194

unknown

United States

15169

GOOGLEUS

false

45.40.140.1

unknown

United States

26496

AS-26496-GO-DADDY-COM-LLCUS

false

13.224.93.31

unknown

United States

16509

AMAZON-02US

false

34.255.187.247

unknown

United States

16509

AMAZON-02US

false

IP
192.168.2.1
127.0.0.1

192.168.2.1

127.0.0.1

Name	IP	Active
pagead46.l.doubleclick.net	172.217.16.194	true
auth.split.io	184.73.218.177	true
bullet-pandi-1110328995.eu-west-1.elb.amazonaws.com	34.255.187.247	true
va.v.liveperson.net	208.89.12.87	true
cdn.trackjs.netdna-cdn.com	94.31.29.32	true
shortener.godaddy.com	45.40.140.1	true
yelphaiku.com	162.241.127.79	true
partnerad.l.doubleclick.net	172.217.21.226	true
d3cvrokiq7pmri.cloudfront.net	13.224.93.109	true
x.co	45.40.140.1	true
cdnjs.cloudflare.com	104.16.18.94	true
events-prod-1-1033355748.us-east-1.elb.amazonaws.com	34.196.246.142	true
googlehosted.l.googleusercontent.com	172.217.16.193	true
dz87sht31vgqa.cloudfront.net	13.224.93.31	true
usage.trackjs.com	167.114.119.127	true
img1.wsimg.com	unknown	unknown
lpcdn.lpsnmedia.net	unknown	unknown
securepubads.g.doubleclick.net	unknown	unknown
www.googletagservices.com	unknown	unknown
events.split.io	unknown	unknown
assets.onestore.ms	unknown	unknown
ajax.aspnetcdn.com	unknown	unknown
img6.wsimg.com	unknown	unknown
assets-a.zizera.com	unknown	unknown
clients2.googleusercontent.com	unknown	unknown
vikinggenetics-my.sharepoint.com	unknown	unknown
www.godaddy.com	unknown	unknown
yelphaiku.comimages	unknown	unknown
www.youtube.com	unknown	unknown
events.api.godaddy.com	unknown	unknown
gui.godaddy.com	unknown	unknown
bam-cell.nr-data.net	unknown	unknown
sdk.split.io	unknown	unknown
accdn.lpsnmedia.net	unknown	unknown
js-agent.newrelic.com	unknown	unknown
faxfax.zizera.com	unknown	unknown
cdn.trackjs.com	unknown	unknown
googleads.g.doubleclick.net	unknown	unknown
spoprod-a.akamaihd.net	unknown	unknown
tags.tiqcdn.com	unknown	unknown
streaming.split.io	unknown	unknown
lptag.liveperson.net	unknown	unknown

Name

Active

pagead46.l.doubleclick.net

172.217.16.194

true

auth.split.io

184.73.218.177

true

bullet-pandi-1110328995.eu-west-1.elb.amazonaws.com

34.255.187.247

true

va.v.liveperson.net

208.89.12.87

true

cdn.trackjs.netdna-cdn.com

94.31.29.32

true

shortener.godaddy.com

45.40.140.1

true

yelphaiku.com

162.241.127.79

true

partnerad.l.doubleclick.net

172.217.21.226

true

d3cvrokiq7pmri.cloudfront.net

13.224.93.109

true

x.co

45.40.140.1

true

cdnjs.cloudflare.com

104.16.18.94

true

events-prod-1-1033355748.us-east-1.elb.amazonaws.com

34.196.246.142

true

googlehosted.l.googleusercontent.com

172.217.16.193

true

dz87sht31vgqa.cloudfront.net

13.224.93.31

true

usage.trackjs.com

167.114.119.127

true

img1.wsimg.com

unknown

lpcdn.lpsnmedia.net

unknown

securepubads.g.doubleclick.net

unknown

www.googletagservices.com

unknown

events.split.io

unknown

assets.onestore.ms

unknown

ajax.aspnetcdn.com

unknown

img6.wsimg.com

unknown

assets-a.zizera.com

unknown

clients2.googleusercontent.com

unknown

vikinggenetics-my.sharepoint.com

unknown

www.godaddy.com

unknown

yelphaiku.comimages

unknown

www.youtube.com

unknown

events.api.godaddy.com

unknown

gui.godaddy.com

unknown

bam-cell.nr-data.net

unknown

sdk.split.io

unknown

accdn.lpsnmedia.net

unknown

js-agent.newrelic.com

unknown

faxfax.zizera.com

unknown

cdn.trackjs.com

unknown

googleads.g.doubleclick.net

unknown

spoprod-a.akamaihd.net

unknown

tags.tiqcdn.com

unknown

streaming.split.io

unknown

lptag.liveperson.net

unknown

Name

Malicious

Antivirus Detection

Reputation

https://www.godaddy.com/

false

high

https://www.godaddy.com/contact-us

false

high

https://yelphaiku.com/office/mfile/

true

SlashNext: Fake Login Page type: Phishing & Social Engineering

unknown

https://shortener.godaddy.com/error_404

false

high

http://x.co/8923bsuydn

false

Avira URL Cloud: safe

unknown

Name	Type	MD5	SHA1	SHA256
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	A78AD14E77147E7DE3647E61964C0335	CECC3DD41F4CEA0192B24300C71E1911BD4FCE45	0D6803758FF8F87081FAFD62E90F0950DFB2DD7991E9607FE76A8F92D0E893FA
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\223DE96EE265046957A660ED7C9DD9E7_EFF9B9BA98DEAA773F261FA85A0B1771	data	BCB7F0085D0CD8973B81545E507D1594	E7C9F5C6CB5901E13CED4873E06B352A0C4FCF3B	8ECE21D9181E71101530B7F659EF47325030E3CF93FE368976DB65FBC4749516
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, 58936 bytes, 1 file	E4F1E21910443409E81E5B55DC8DE774	EC0885660BD216D0CDD5E6762B2F595376995BD0	CF99E08369397577BE949FBF1E4BF06943BC8027996AE65CEB39E38DD3BD30F5
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\ED02812CD7D061716B0BBE6F31979D00_FAC544846B8B5FE851FF6BF0CF299022	data	3552F544FE2E36344CBA0E31D8CC47C2	15F3BF54C68434F25C41C688DBB0CFC0B3954263	4E5E7FCFD642890D35944DF0FDAD81039F513048672FE47C7F3F13D68D8EBDB1
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\223DE96EE265046957A660ED7C9DD9E7_EFF9B9BA98DEAA773F261FA85A0B1771	data	00196E0D8C0864FC2F06F09AD0B01EDB	27B6E4BBF3EB3395E8B619F9A06E09C7E115A882	4819CBB6DAB59C27187EA11B091F180AF013EC89652C6262B879584ED3A4FC67
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	B49043D1256C9A151F0C1E341810A30B	E18071A206715AD507A894A9FA6CAE21D2936DAE	D4A5C344B8E1F0DB76EACBA06F567B27A0DF722C5EC64D7E584C9A078190C301
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\ED02812CD7D061716B0BBE6F31979D00_FAC544846B8B5FE851FF6BF0CF299022	data	6E1A580F80EBEAC43C416C0929DA5CAB	A6B2608A7CF93CFBBC807C94F09DC9D81D9EC286	5F8C97D00F5077088230819C16B65E163C01D38549134E7916237F1DA619722F
C:\Users\user\AppData\Local\Google\Chrome\User Data\058b77b9-7b11-4235-8b18-1725e27b629e.tmp	ASCII text, with very long lines, with no line terminators	D675FE7CB3D9812D3882AFD796EC72B2	FF6F7E315E58B6DA1814644352825618BCEB69E0	FD1F297E5185E06D0A25D5C44AF21E70A29F54C482C834D55769EA699665F167
C:\Users\user\AppData\Local\Google\Chrome\User Data\08935f9b-1148-4377-85f3-29382f741775.tmp	data	3D7C9CD3FC5FC5830E647C7070D2FF38	EA7C004BD06EE4CA261221B78CECCFA3B48E1BD8	341CB8BF079D59FDECB4C4A7E04D43EE26B1E76912902096EC7B3BD3084B9644
C:\Users\user\AppData\Local\Google\Chrome\User Data\174595ff-5b5e-410a-932a-c531a13135b3.tmp	ASCII text, with very long lines, with no line terminators	69B85EE48006357E28E13FC208FE780F	E8FB2A68A09A9D90E6D8F40627E794C00CDB3B16	2A258908F88B608D59AEACB2D28764850D22687B8A24D520B5C6040E6BCBD4BD
C:\Users\user\AppData\Local\Google\Chrome\User Data\233de033-a5ca-4e8b-a6a9-acc4b5bc13ad.tmp	ASCII text, with very long lines, with no line terminators	0F29E443F5EBA4579AEE55B910612378	5D1636D294BF8D52AE4DDF942D494D1378219364	D3A0838DD1221E598755A28369D678167D6D1D6E820F76FBF1AE0134823FC574
C:\Users\user\AppData\Local\Google\Chrome\User Data\3ec07da2-964a-43d9-b79d-cc9e4cb83b42.tmp	data	029E81DA34A2A9E8C7089D41CE2B0CCC	B8A1483D309EE59FC98390C2B8E7220C2124CE30	0FA34A7D57C9C23C7E4B1BE2CA118EF12459ACB398724B35DC7C31E4B0452B43
C:\Users\user\AppData\Local\Google\Chrome\User Data\85fc3b39-a83a-4f02-a91e-1a9abc8e69de.tmp	data	D0D11E87EEF25B9D6E4D497FFB872C07	2B1A07C172DD35163F907B8180DDDC21F5ACD723	61445DBC4FFAD0DE27BB85D60F05015E6571D11EE1B1E2B60C6A26DD3271AEFE
C:\Users\user\AppData\Local\Google\Chrome\User Data\8f0bc30d-bbf6-479f-bd97-049e4eaeba68.tmp	ASCII text, with very long lines, with no line terminators	F2ADF96847E0A8B9434D0D6AFFFFEA4E	1A5268AD4B7F377B5DA756AC2185CAA3F76748DB	58A05ABEBEA801A730FAC701D7040C21C7C7D7498D001359B59B4292E18C4A79
C:\Users\user\AppData\Local\Google\Chrome\User Data\910ec822-a774-446a-923b-58fdec1c4f78.tmp	ASCII text, with very long lines, with no line terminators	42DB97F72F21DE0469E07930BF9DE1D9	B31704FC20570DED5312FD59B67612EB5DD65B0F	BF1E99260014CD8BE1373E9D844115836CAF4CF21FE56F8472821D017F109725
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	E9224A19341F2979669144B01332DF59	F7F760C7104457DF463306A7F7BAE0142EFCEB5B	47DD519C226D23F203ACAE0EC44DF9BB6208828E24F726E1602EA52F63C3E2BE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2aa3bb6f-4943-4b34-b430-fb8c3a6e69c5.tmp	ASCII text, with very long lines, with no line terminators	26C50755F4B16B62194B7F26E83D4922	14D590E4F008D6D8DAA96DA01E29BC5288417704	371F58AE739BA14C7420E63BF0F4EBFF94025A50C73312AB3B0AF8B766482CD5
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\316a5d9f-5b34-448a-be79-08e6588a464a.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	F61AB5A1FB9AA6FA44F6FD34292D13E5	B6E235855B7EF32F8E33F1A1F1D20DBD912B26FA	E662EE8AE3D045DA67C8F804DE6124866801433C459ADBD5B790751FA8CAC3AE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\37e267a5-87e1-45e5-8590-088deeaf574b.tmp	ASCII text, with very long lines, with no line terminators	C8D69136BB97F24F2BD342528ED16D44	2A59FF368B4DF93AC990E2F15240BEFDA9B9FA66	099619E70DDD46B6E713337F144D3EF1C478CEB23F40EAFC5B3072E0AEFF3E35
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3af1a4e3-fcba-41eb-9ee4-ed2233ae70fd.tmp	ASCII text, with very long lines, with no line terminators	1B38EEA9352F6F8F24F1CFBE4D800B81	26BFA2242F9C9D76E112F172E494D7AF71442CBF	6E7B7559D3CD3E05A8F3A48866A362BE7F1AE119504ED161CBDF5285DF38668A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3e4c45d0-a654-420f-9b6e-70db56b368b3.tmp	ASCII text, with very long lines, with no line terminators	0C459D52180C7158111133677F8293EB	BB3576E605B0460B021ED9DCBD2F812F1E4F7B38	3284296CCC28B3E8C7088E1F4C9BCFE158629BACD513EECF6998252F91B29CA2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\68462b93-fdb1-4b66-a19c-8de8601b71e3.tmp	ASCII text, with very long lines, with no line terminators	3026E323F3227C3CEF66EAB8C23900EE	F1EA71D51E067B4854DFD0482607C127A5ECF6DC	75898F7E2DABEB1CFADEF496DDD131EC48691A52A11D876FDB730F8A208D5180
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6cc68452-46b2-433f-865e-2078f344bfd4.tmp	ASCII text, with very long lines, with no line terminators	F607B1E8CEEA53A6045F611231C8C81F	C44E46234AA1355FF3D7AF3370EC90BB94FB4B3E	721B27183C9B7285881A78DF534E127041CBF78AFA905C4BB63EDBBC4F07F946
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7a3d6950-20cf-47dd-8fc1-27ec1e6bbcfa.tmp	ASCII text, with very long lines, with no line terminators	804DA4F3498C7FC2531B6F3CACB32D98	44D2AEA1D8E199810F5CDC8A676DBA6C37C86034	FA6286A63F7886582CD8187104F6C82535A827C9BE6D9DE2BE4191E95919F3FF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7dca2324-0762-42fa-aa87-27e7dc26b4c8.tmp	ASCII text, with very long lines, with no line terminators	EDC4A4E22003A711AEF67FAED28DB603	977E551B9ED5F60D018C030B0B4AA2E33B954556	DD2C9F43F622F801FCC213CDE8E3E90EF1D0D26665AE675449A94CEC7EB1D453
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\845380e7-b065-4c56-9c2a-2a442fce6c21.tmp	ASCII text, with very long lines, with no line terminators	A728CDE94D9996AFB57A896924FFF7A2	EA59AFC799347A8B129ADDDCBB5CEE2F3ED80E08	7173ABB6E6277F541DDD139DCC4FE922955368FA00A04DE51FB7BF4433896452
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	042898FEF01F63EEF0940FCB9CEEE27A	642B728421FB580DAA951BD3BEC6189EA0B45F28	E4CDAF2351296214809843B22BDF6C73AA6317D27D739FE673F1BB0F0C134CA2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	BBCE732B76E99B2C4F1707C61F85E051	2604FFD0159EA6BD5D56FF253E503F3C4DC1F9BF	683B8F84818EDCEC949B08B5B345CCCBB6F375283747BA78C316AF60AABB2953
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\001b7dfda48b5f6d_0	data	F3EAC19AF2A5B82DDDA6A76F85757FCD	FA241C62B3679CEA317ACCA808EC481381185FFB	9FD882AF7858DBAF1F9E75B5EFB682893D4464608E03C02785FF55306B10A79D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\02454aa6d8da3fb1_0	data	B845FB1D18FC27E32F8923AF5D3A9D8E	AD94E21A1332AD875D56B1733387D36B477E3B6D	E55B33084EAC069CB9C14EFC6D678DB49BDBB6C9778C7B0814444B0F25835F9C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\041e202bfc772cc8_0	data	B620F85483FBAAB5999827000CAA055F	EF555C2B99EDD30079497D4A5D66E1486BDE9E2A	BB1AC8E5BFC71FB268671DCD90B889F3EC8FFC53CFA1C823CD42702E6619408B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\069eeec3b24f9036_0	data	EB421FDACEB74398B4217FA48FEBDBAB	A588CCE6E510D375F73D6D24D81C13921EF18D98	06110D1394E07BF29FC9E83700F676982A6370EA4EB455987DE1C8DC71193F24
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\08b95bf8e6dd7b84_0	data	F8B6968C3F83936A0F8922803F96775C	225BC0DEFAB8DFE04F3F4D4293D66A85F1E34950	4DFDCBAEBF142E0086B2A3A5FFB20C1543DA34AD4038B94842C198FFA92A6543
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\094e2d6bf2abec98_0	data	7FAD9BE66667D9BB9E92CA13D6A3B8D1	7A3CF2B9D977C96019974F1A8785CF9ABEA3DFF0	2682A19C7E4EC7906BB3701115B91EAC134A8DBE609C9D9F95153675ED1BB238
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0995e489bf59c488_0	data	6C34687C8A3D10F094E03BD2AD432416	9981D56AB5933EFD4ED442570BFC10638BEEA930	723F2D9B27BEE098C9875E22B12BAD2B8187D53DC9C63914B81E918C2E59E4D7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ad5e255cfc99a9c_0	data	AD9F00C36B5820974A4CBFB43C3D17F2	990B60FF8CA774A5B167445438494CE34D3853E0	4ED40F1CBB712AC645A8324DACE0543C5E1FB5F690B6DC7702E72C8F9E3A589E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1056dc81b557cff9_0	data	EC9BC35A7E804BEEA087087B328E8532	C83DEAB047DD219B96E0513A786A96F529073D6C	FE95B356968A209AD2BD7F1A287F555BF737ECC2E3691D5F171063CB349F9391
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1532d62772683cf2_0	data	EB781874F9AB68320FCD379AAFE2AF87	79AF0EEA45BB3615530B68DF08461371761409B2	D3E88925C9C319CD6C04E81338A588D7B64E6D673B4CB649EB9716EABBB76FFE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\183955bae54e77e3_0	data	6B9C884C519C0510C57A71B93953DCBC	D3915FD5BEA492D6E4B967F86B927BD5401268B0	F7A789FDEB88A9C40D5EF1E7F8617E52485E40A3BCBAEF49942BE5F7454CDDFB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1cb141e79f5601dc_0	data	4AA459BBB108D7824844E1935A1BC60D	39EC2BB689F1FA7987ECD4E44AA9675A6410BC03	5B8F559F0A0628BD1F4685A4098C8FB918B0109762161C2BA2E1A84287401535
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1dcc732920861c78_0	data	18D5C2C7D16F4B62CE20A607DE80B018	7129F1F3C8C7F3BFCDAE9238F2DF7AEBE91AC18F	891E3278678B7667DC25129647A06E9A5416E3BC6C43DFF66057F1BF602105B9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2e3d5cdfef0b6238_0	data	A11FCD3D5CB12DDFE8EBA192CA293E7D	C600F190C2758685BF0DC03A5AADB2FEEE7FD8E9	B6A4B13AE5BBB85FAC7E4105DDF8F4EF0047FCE8B6CD0887D0E458D621F3E7B8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\308b6aa73c0feee0_0	data	FDE6B5B0D11AFDD1CEDA0A7CB8A7A13F	2B77EE62A6D732DE5F258B7142B2DDDDAFC25696	B427DC74B91D71752307A605392389DEE1604CF147249999BAF5134F1B7941CE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\31754e45cfd28c3a_0	data	FFA099E8864ADDEEF4F98F96ECB3A97C	BCAE63CF05DA442087EABD3DA0DB2CFB4AFEC6A2	2527F52982EE9D55018B27DCB86FE4FFF0B424F94373C931C7123A08DD2955A1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3332cf6ef51dd1a9_0	data	38241E2B18DE3A5293052FEA2AAB4C07	97DAEA082A852E4EBEF83A0251B18B0166BA1237	1A641768E7708364226ADA604C5E5C3BF6FFDA5F877944FB43FD054F4ED2B290
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\406a0f0498fb7a87_0	data	AF080B044CFD1149D2E1C6C8D3B37433	309FA9C0CB6E82B9D08575071A3DE371DCC8B167	BA8FC6262064C2F16CD2789EED6BF2DDB9E3918EC0212724C4467FE69822F827
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\41735a75d71fff99_0	data	795CA504DE9F9B381835B2F46654327A	6B5717C548FD8C68781D44F861910D361B604711	7B27EE55B33B3B38D37A50FB4E439F6C2428AF27211A253DA12FEADE6E37392C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\41c17cabcb7066a9_0	data	7D9072DBF39FED1676F0A14A279336F7	E5BB600BDDA53B2E55ADC383ED2C3CE0E92968CE	A1CDFABECD48083FF938BC592291F8AEA623D654A93E1A717B03F6BBBCBB3EE8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\47ccc19b4da77a8d_0	data	CC252EDB370819E858962A1B2F353321	4D4D9330996937BE12912C8F85C27DCAD3227DFE	E04579EE68423F06AA44E7C4F590B9CDDA1339D2403DB82236C7119596B2196C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4d6125cbda70b6f0_0	data	0ACBAD443D3D603C895E67B12D1B431A	8EFE9D906D796BCE63767A51E01A83EEA216D62E	BA45F66B18DD91FDD752A4E8E45B185AD00FB2424983DBFA53F96FB822985344
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4e7ced3c9971ec86_0	data	780F55A750552581E27FE0F2BB976F0C	491AC25611871E07988D87ECAACED98106E54619	5D3F8CBD894D8E58D75BAFB045943402A652CA46E8A6B02D6C78A27F83E11CF8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4f0802021d44bc50_0	data	E5317F28EE91FF19F27678BC285FE99C	B418C4EA56EABF5B52393AA1411731CB658E67EB	F697A8FFAD614703E6B8BC9E87F07715BFF46C2EB9F54CD647A4BD41765A7C48
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5100317373070f9f_0	data	B72E6AFA4513975D25DD78B1D2EE7AA2	C0F6638C88C9D281610A9717D379F787279F4A6A	7973855E7297A59F6401176E5ADBDDBA1CDDD04F9062F6961CDFF412B2CB13F6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6745a26ff250e255_0	data	6A3E5879356BF637EB06CC0A247233EA	4F2FB9E6C0B68BA19DCB017B7E64A149A0DF6CE1	F013DE021C17DD23FBCA71F12D35AEFE5422073F859566BB315398B4B1A401DD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6dc6a15fa209a9ca_0	data	76952B33FA130BA2DFF00AF6A073C485	68B48D0CFCCF61C540AE02A9B4F540FE4252505F	15795716BC9286371341BBD1DA74E048453B9655A152CB0D89139DBB9BA6D94E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\702495c6e2e78b0c_0	data	5480A44A766006594E4F98C678BA06A9	ED7455C080A7627EFFB05F05C0C681801393F4BB	DBFDD8A6B69A367908C73194E32BCD66EDAAA4767792D7FE9BB68CD6E9686618
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75f1105a42981b97_0	data	0B24EB8B3A08176D0631C4C772A82532	437EDB6C32352896ABC0EC7D83D8C75D03282755	C842938DF904ECE53CB60748DA7D2C5475719C57AEC0D81FED5B3410BDF81497
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\762ca5cdd3b40fce_0	data	5FCDC98323170CC5D1BDDF30070E0B1E	AB160D153DF7B9D7C8EA7627E71EA751BEC8B7FC	EEE89826FDBBB0F29A43CD486806DC41E2AE60300C738738E16376F48625BD16
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7f58cad8484a3ffb_0	data	2772A2690318D95EA1F1972587FD0058	8E14A2F8C8EA5F7856F6352445EDB6EA011C2F63	7F72C14B5F4AFBCA3FAF9D7B6F1856E2B7F0C7893984A88BB296FD66BB4964E9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\80e4f13fb63695ca_0	data	02C6137091BD29A9A273DB4230614A1B	D48D7F32352054DF4E1945C9DB2154B9FA3CEF59	F7F3D319D50CFBA006043B3DAC60462FE5119E448622928A4787AB4DA788F96D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8c4ebfa60d7b4172_0	data	0EC37A38005566C7BAE8497FD0F2748F	B2295907EF12D110E8D650EDECCE5AB9BE1FCC60	F2D394E2582D72D8705C1D0669257694985994C07D6ED71E4B436F7768EF11CB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9064f3a5056d6bb1_0	data	52F3AFD76A961CFEB82772D652214F0E	34444608117EEAC69A7ADD214600A3197E43FDB8	C27A5D4FC6AE023E5673EF16E2BE1574625A6C179C9B0E2DCDA8CE0E2974B509
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\921a520646898d46_0	data	7952CF9377D8CF8F0F6325F064458359	8ED9E1C569E37E6AA0D3AE529BFE5EC68B04B970	7FA17F72595EC199EC4BBF017C87072165CC042438A5C2FE1736F42A8F7438CA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9812c157ee66a51a_0	data	D5A69C11258CA47EDAFAC45B2C3A6790	BF2838CB96B60A836A40B7B62917DB7204F41C94	6BEB9C5DC2F1672634C0B2409EE42F3CCA3485BEDFFADC8061D844774E6BE8C3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a1898ca8587555c5_0	data	82E6656BB695B039EE62765FF46C2C00	7F74016373B24D40CAA34181AF26D35B4463FCC8	4F5ED65896F706C0E84122D669E4C3C1FDA4B5A04D4CDDC9FC6FB2503F39B792
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa261b7c4be61a46_0	data	2409043CDC437EEA37A5794CF805535F	6C600B63F24C527947BDC17918AF0C79E215BC9E	0B31F4930F99ECE3F8125C4C6EAC03EE0A510F0A487CD8D84675456D2978F9E2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b1e45d6786b73622_0	data	8936349C4D0CB89BA7DF247083F16CD6	F2ACC28097774EC62596F3549773C6353469071F	86446FCDCD45592825810216CEDE9F65E5605B09D21A80E624C3A456C6B126E8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b8df2d1d558aabf6_0	data	7F9D514A89FF1F88F32E2D3DBA3CBEB4	1324572EBA510F2CCA21D737EF90B3BEABC323CF	A8E366157B0803F29B128B5C88E4ACF993E0D6937E3FCDCC376E9F00A432F9F1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bb2286b571c6fc01_0	data	7BA09E2C9FD1E67B78B2D4368D644AB1	2EDD0B2B2C0FBA8441FF5DE4A59155D1A8EA2DD7	ED628D0B8252A907EAED5D51E58148FFB533F4EDB6D03FD248CB3F0C4DE6D6D4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c3de3858c26638d5_0	data	EA5EF979016EAAAACE25BB6C5D4F326C	69FC7428A95D2E3C3B8A6FA4AE2E3D0E716867C8	4AF1A627DB37BEC25644A90A1CEE602A170A5ACA8F76CBE4B3FB994D0F483C1F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c487f9ceefa38302_0	data	5AA13106E316D5E4016E9C08214DCDF9	CBF2F84F2E2868AD71A935DFCD3F94436B2E45D2	FD8A57F888C58FD5997E64F0821AC66B44BA1F20BAFD85270D628D9459AECC10
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ca9e60488bdc5258_0	data	C8A215BD241D69CD59B6D1AE5B9D4085	C68582BA57C696B07197EA193A546A47A1C1FDAE	3ED29B263B675EE61CA75DEFC6BC79C9AEB9B2A3432C1DBC077F2F9A3DC36CAE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d3eaba701bf0be20_0	data	6052ABA9442DBE9F95F7F4AFD9567D28	997165453FAB21AD8EA13B4EC61601C8C4C8E65B	E2D1E6598509EE9DC1447D8A21E20CFE2855EC2A8D477CDB1A0533CC64485A70
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d6862ab8bd2f679c_0	data	D3C8A4B6EA10107DFD7C6C9BF5D8F516	E2C0C5B8EDE2383EA70C07CC3EFD78C1AE75BAE5	2154E7FD63688883BF9B570D47141924450BD5D17248736B00007DBC0AF8D9A2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d8fbe577ab80525e_0	data	7538E0294263C1B2C4F120C09F772BA1	4F9B012A942CC2EF4F445F753AA56F3E7CF66A91	8C534F3D436D781554047426E101A95E272312380064F482AFFDA313394565E8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e8081f3cea3392c6_0	data	7549B686428B93DA7F56226281399A24	07F3DAB44E7230F30C877DA271B59A65C6C2B64B	4F720591354D0E44D1CEBDE5F38D7FC696CE7FD930010BF112D1CC1E9F04AB66
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\eec5c79e2dbb46ae_0	data	8CBD4C37F09F199211F98277257A04D8	153DBD8165BA392318C6C2A84C3A5B2707BAEAB2	6D9F7F3EE20FE49A23F35B817C70998E49DAE33628A6FAAC3C4FFFCB9E746083
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ef34c246df0e42bc_0	data	C97AE38DD4BD10FA777934CA28A8814C	E6E63835712C98307416D72BCE1715F3069A3C35	A3F5A1E4BC11355FA30270A98203354884EADD40551DE30AE7538F3E4E6F8D46
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f562afac76b4b973_0	data	9AC9CAFD7967FFF73E865FDB8B00580F	B0D340224AD4F7D52E0DE0FEDBD6869121E61478	F47083A75B68C499EEE3CE4B572FF771B55DAF4DD6B3BA60BB2EE7DE2D0DFF8B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fce188cfb0287bd8_0	data	617FEA6EC25A462071DC9583FBCAAD91	91BBCA5F60A2A5A149BD51A844DE77A701B4F9CC	C8E297B873F5BB188BA6E0E729CF87C3EAC600C0164A4A443EB64F5762D6041C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ff6d0be77341b55e_0	data	E9CD8F2193B4801DEAAF407F841054C6	99F5A4BD3C454E13D321319CC71DA4C3579CA146	9CD23BC1F696FB9F6F1479B4D03FBD333D070B80883B45B17A5872E35FAFE9A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ffae120ac1988083_0	data	67BACF5B766C08A9DDB1A923654A2998	1942DBABF46B60B34E7092488E75703BC6CF080A	9BE3D36468912E8FBDC897A67DDD3E5DE4EF0DCDB3128BF770854CCDF938710B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	2142F7982A5EF577D35E760625EDCAAD	754E37F4F05D8F7BEB3AF9A14519B421B66B1532	12487E0E679A7EAE9CF0C8740C3293D38A8D9AAA16026E45EC6A208A182BB6AB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	34B8F511DED4B7891AB13876290B76DC	EB7EECA1EB94C7A47FDD7EA06E108A7FEE70D3C3	3F0E13755ABC3FCA96FA426A35A17157C315252C92BE2E23C1B197EF16BCB532
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	62FF9A87B854CECC0AB32C2DF9E9DD28	A3D795DEA6B13444DDCC05B068131E1209DBE008	181306BBA546C8FFD850EDDC9BC78AFD903FA55B94BD9D22C4F9D610A9D5F06B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	0686D6159557E1162D04C44240103333	053E9DB58E20A67D1E158E407094359BF61D0639	3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	0A906A9A542CDF08FF50DAAF1D1E596E	B97D6274196F40874A368C265799F5FA78C52893	EB9CABBF5FDA1AD535300B0110EAA4068A083248BA928A631C9278545935426D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	85164477CA20542895B2B2A94F331E82	6DD9E7A7B31C8942FB882D0C9FFD9EE2E5F4A56F	88323A2B24F8E4849710210A5D785C0C308A82D779BA707981D3C56FC706F8C2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	D4BA0AE0BB0B9FAFF3DA6F35FDBC3C8A	FB3E9DEC7F35A9B1D94E54A5659DD0DE484055E7	99DEF1B557F19F04C1AFFC6F247D0451F33FC10EC42E73792223C3215AC98BE6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	B478157CBD41FFE7FAA711B436EAECBB	28673BEF35E5B15067768669621E2760D35FF06C	D68A6A86BA2942A3F2EF3A7AC8FCB33DC6D58CAECB51D89EDBD4495354EA4C3D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	58E0F46E53B12F255C9DCFD2FC198362	24E3904DED013ED70FFC033CFA4855FBB6C41C19	F82EEF4F80D86F5DEF0F40F91FFB6453E1706CA5FD8A7172EDB19C4B17E2F330
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	6AE2135EA4583C2F06CDEBEA4AE70FA4	DCEB26C7F02D53B5F214305F4C75B4A33A79CDC2	03AA1944CB3C4F39E20B6361571BC45DFBEBD3FFDA3D8F148CC6ECB29958F903
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	51EFCC54A50A22C16C8818AC3B61C8CA	B07F9FE2ABA97F0DB8A6106CEEAFCFDB6C1163F7	892A114BB75E001321470CCF23F3341439407F5601B10BF316026035C1E66B08
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	AF676B1531BE9F2B5AA7C4837A0A364A	8994D330CAC3185346B289BBDB6E37D7CE83CBD3	D71DEB2E76F55F28D9E39F4E43C50FD1DAA4D48F4A8672E7D7345138259E48C1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	0407B455F23E3655661BA46A574CFCA4	855CB7CC8EAC30458B4207614D046CB09EE3A591	AB5C71347D95F319781DF230012713C7819AC0D69373E8C9A7302CAE3F9A04B7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	CDF0C28D9E519318DC9E401A344F4389	F767604C5186C906F39238402A1E676E2EC04622	DD2F3316605ACC450A790D6DD55E678C6D61AC2EA8269C50813DE5F7A9AE0E02
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	04BD046DDB601B08671C56FDFD0FF0BD	DA88F3D77830803F1872B985666E987980029DBE	12194436EDA07F7396F24E05C61670AB5BCA798A7972FBF2D8031D3635C37207
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	DC250BB9EA9CEC07CB1332DD5D42F729	2629C1D03F3D22A1E21E68C7AF5DCE883C493901	82568F579B9C6AA98FEDDFA980C2B0DD4ACD45536504B1E8DD70093174122BF4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	BCD3F8E8538439BC331CF837942156A7	C7B4A2C43A387204E47B6C1C10951BB960A547DA	92975A2F0CDD934D6C0BF4B6853175CB1E8FEE534861A6F79DB119F060FFCC54
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	1BFFDEB1CD90E94FF55EEF966CA5B617	8409846EDD7FA91885174F40662578DA8EEA118B	FA944CA49025DECD9D68E5F031D69312B0066A40759E9AAE09EA8315B6154D3F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	6412079114E2D5B93B245BFF3555CF5A	0D9B76091C1C2D0DBC78B7BEF735C7E27B3E7E18	69E1196CF73C167A4783B1471F3C2AC00B1672862A6FDCE9DA5C96BFB0A45CCA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\000003.log	data	C249E39F894F330EC41EA3874C186273	7C5282566D42ED4213482C25D7219D87E3479F9D	1C27FE6F575EDD57860CDA88D33A82D2491E72A4AD6CFF41E18CC6209BA48A75
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\LOG	ASCII text	36498249B51025BA59E0EED9899B5F8F	64E7F9A248FBAD091A39E0F69FA7E6B2894FAD0C	72E6250B8D2F2F4D364B0F59B2D784B75AC75D0BB041890CD59BA6B3A6C91F96
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_lpcdn.lpsnmedia.net_0.indexeddb.leveldb\MANIFEST-000001	data	3FD11FF447C1EE23538DC4D9724427A3	1335E6F71CC4E3CF7025233523B4760F8893E9C9	720A78803B84CBCC8EB204D5CF8EA6EE2F693BE0AB2124DDF2B81455DE02A3ED
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_shortener.godaddy.com_0.indexeddb.leveldb\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_shortener.godaddy.com_0.indexeddb.leveldb\000003.log	data	78302A6DC34F15A111656A1CB306DB89	7F5C2F7F9CB56E7E783B54DCD25A67C1A37A9007	F31758430A597C6BC30F4F8182F0122CDE09CEE73754DF6C5D79AE2615EBBC12
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_shortener.godaddy.com_0.indexeddb.leveldb\LOG	ASCII text	E831741865409F00739CF5D8C0AA4E3C	BDC1505E0119D8A99028C68053F53DB728BCAFB3	649BF15318B19D822BA1AF009ECD9C3F844DEBF6DD10B025F4AAAC865C2E0FCB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_shortener.godaddy.com_0.indexeddb.leveldb\MANIFEST-000001	data	3FD11FF447C1EE23538DC4D9724427A3	1335E6F71CC4E3CF7025233523B4760F8893E9C9	720A78803B84CBCC8EB204D5CF8EA6EE2F693BE0AB2124DDF2B81455DE02A3ED
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.godaddy.com_0.indexeddb.leveldb\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.godaddy.com_0.indexeddb.leveldb\000003.log	data	099771727846A909A8205A8A32F893B6	1EB28EAAE4E7FE3D0D9812AC5D5A6E10ED255736	2CFAE0898CB77B1E6F4AE5B0D1A4813EB4D42034003F32D65439BD11567AD206
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.godaddy.com_0.indexeddb.leveldb\LOG	ASCII text	EB2B523BDD190CC4984EC402945F0DCA	18FBC3606B931AAA535D881C9B6D4B69058EA876	E595C62AE49AD750C15AFD0539830AEB79A802A44D4EBCD080AB3135DC3A619A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.godaddy.com_0.indexeddb.leveldb\MANIFEST-000001	data	3FD11FF447C1EE23538DC4D9724427A3	1335E6F71CC4E3CF7025233523B4760F8893E9C9	720A78803B84CBCC8EB204D5CF8EA6EE2F693BE0AB2124DDF2B81455DE02A3ED
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	ECF04F49E3F6F90AA864B1B8530BB43A	DC1E533C485064F87B0C63E6272CA169B1C27778	830F55203E13AD8F6F700AD6E19EDED2B2D708F9071CBD0818A985ED014D4791
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000004.log	data	AA6B440839CB1D6D21D829E0D35040FA	33BF24B1B7B9FA066C3AE038A1484B4D597FC245	AFE116BF265481BE4B5F89FA6F0797F9510FA961A9AA5E356C7DD58CB868C67B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000005.ldb	data	1025889235EBEE3431A77E933582119E	443E01DDDF2A62F07D20793B89B93FEBC8C21BE8	719632D1EE4E1CFF65A6D037F5822EEE60643BB2F04F11E748605F08E0C39FFE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	7041F24AA40C317E8ED10F6801DED3E8	AA157B028D934F9ACF007091DB81D0C5FD33F7AF	6FAECBBE2D946417C793441AD4FB969E90154512F19D78992CB7104B4B28AFEE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\MANIFEST-000001	data	1CB953D99C688D8D3C0DAA15B9C159D0	49B6AA5DCF9E122CE4CE29F55F101BF4C6BAEAC2	799C356DE1ABFEB7266952469D894DFA93ACCE6915D1EB5AFB72A024BE358252
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	35440AC1D3C2990FB89EFA6D12217B28	9DC4DB827F7F8E854FC45D4D3D581E32274C52BC	1FBAE620562C2738063A459BC7A2675C7192AB2186AA904E0B9E2BE55E3234F5
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	468810B72857EFAE108E0747575B1968	DBEBADB0768B18FAF71B89F0335F334B49CFDAC5	C7ECA8C188FB40A8383D2621C64242A80D3E4C48218366541D55035224D1F421
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	47A2AF103BC95E6C5EAA32B16901C1BB	0C0E113042A993401CF4B3490E592AE59FCA0BBE	6C86FD08BC93159DCDBA75561E9FC60BB4F42B9D895550A1D48A66A74DE129D2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager	SQLite 3.x database, last written using SQLite version 3032001	FE45BD9534DF1FF4A5AEAE50D89A377C	5A876D554CDA9A1A3781DDE0B109F5EC8C535F0B	DDA15370DDE4825A18D0E0603BDAF1101347DDADDA686385DDBA3326A1D745CE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal	data	F08286EF6B82421674A1BB80AC960B5B	6F6173E8DFEC8FE93CBBA9AECAA510C857C82DE5	70A90B7C5E7B155339F63E5512909C8ED86FF71B263D35991C488276B4599B9A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3032001	E255434F4CA40D8D61BCDA07D658E528	7D9D978230EC8A658A50500C2801F2CC829EF491	EF0AD2E5AAAAE87B7830C4EBE36821A094E0116FF9DB69B2DEC24B9B979A6363
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal	data	784424073B0D5DEE9236B071D88FBB1C	45C1E81D5349C8AA930075EA6FB2052229A0212D	D368C315F24038F22F02F3E45639222C58FE5A51C9C108F93489A974A533F856
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	3C8F10B958B26C71DF97BC332D61E3C3	EB13AA40018DEBC6575EBEC78BE2830853921C55	20E4BEB48AD7418C553FCD063C42269C88C873EFF267A55FED85816FBAEB462D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	4B5BF031CAF17084A5535AD11BE061C5	0C28C24BB8F5355C62A7D76940CE0A5BF7A2BAE8	02107E3825F1B2962B3AEBF5EAF8B8A65CBBF974E845B1EF40903DD8ADA7D59E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	2FC788BDE16E37852AA023DC6A893D5D	49CEDD7D8600C8B52BAB6B71ABACDDF8ABDC90AD	ED7142DF6116B410B308F0F7D36D3AE4A4C0F9A67CD5B79E08E9230D95F8137C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	60AEFEBC1C4706525CCA8D488A16CB77	676589F73DAA38CE80450940D1D14D793C99B575	8FEFD7C08D3247FE8E69740F41A0E8EDF841EEDCA3F9F2A2D239A2200E334669
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	88C326A5BE407BD90763CA5AEC7963D1	A6837B6E43028CE15C5DC67123CBB553652B38EE	4EC7857944C22D732C658A9C930BA865E3117E2A563D2F8FA1CD5FD8210EF3A0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	1AA9C2E256AABFA5542209CAE5A64848	C098A5F32DE8DBF2191CAD2D7B8DC0C348ED5151	B6234161260103DAEFF45ED99E94A4096BFC998F916B81F28D10A2A017F1B7C3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\fa580813-37d6-4ab1-be71-3a66ef7a7790.tmp	ASCII text, with very long lines, with no line terminators	C401B619D9D8E0ADABC25A47EE49CFBA	C9D3B816DD3FBCD98E9C0A32CEC7B501EFC0BBDA	8F5D75F5EF9876E8D30CE477509F735B50C4D87DBEDB433BE8EDBE6D4B3CB82F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\3f8de413-94c9-4d2d-82ef-fb648f36cc41.tmp	ASCII text, with very long lines, with no line terminators	F4FEFEEEC722772F9DC0FCE1B52D79B5	00EECFA3B37113D30E7D43BE4383C540F3D93D4D	D33E13C12004A700F246D8C73709114A881609D658E045D54DE36874728D07F0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	9D805F489EC12CA3F29A534B4F88C065	289CB758CD0CA0FA863097AE3B53D69233E4A2F2	3A35F5DE896244A16ADFA0202C4C244B139007AE5CF747B71C60910DE77C7012
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	60B5E203F78AF0FD83881C279A59AE07	32E263AD6863C74508FB99B3E22775264DE3049E	C1BEA93D26613C0BE85FA36F1800227D06824047F94B3F124032E32DB8F5E561
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	188A379B133751292005633ABD47B190	A7D9C33E0BD9D55906AA425CB10DA94EAFE72BA1	FBDA4CD017887C8BCAAADB7EEAE7E030A9350803B285AAF9C52F0BA2688F5326
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	45A8ECA4E5C4A6B1395080C1B728B6C9	8A97BB0E599775D9A10C0FC53C4EDB29AA4CEB4E	DB320AB28DFF27CDA0A7F87B82F2F8E61B3178A6DE8503753D76F1172D32E08E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	A0DD8A54338BA2D03189636A1D0BAEF6	C045ECE06EF6937F095B3A9B037AAC3BDCC29DC7	BBC0A95CFEC2B725C13EBF2904F2B4299114C981A629B8032636527660AA97BA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	A0961D3FFE585D156CCDE9E3619246CF	6BB7178DF36D1489A5CB9D5689E482B84BB8A1BB	16C32B885B561C4954CBDEE43616C53F7988ACEDCC287593E90A7946891AD41B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	5C0D4E795D7443C92D1154824A47CF58	D6535185F41820130279F094BB5B2E3C97C1B1CA	1CDBED3EB5BF236B67F7E1C841DA72E817B246971A4AEDC7B31BD0C2FE92BFCF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a492a249-7de2-4904-814c-559cf41702b6.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	5275143DBDF647AF76AEAF815BABBFA6	AD3126DE6687FD05528A65D909F3AB9DC69380FB	BF9BDAD0099DF4DB01CA97528FE5194CBE111A122B5BCD91355FF9188D5B16AE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\aacdef14-d117-44ab-998c-f093a5536a10.tmp	ASCII text, with very long lines, with no line terminators	7293E84EF7A4D244E81DD61AAB7C4C0D	5583FB44BF064BB9A2E0A5E4AC0448FA0A5960D7	1FB4E27702636A47A12509EF318D11577938EC4BA09D79F8D077AC9A270482D0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b232d1f2-dd33-49bb-a1ac-6a71f989a941.tmp	ASCII text, with very long lines, with no line terminators	D7026FE4B9B2F033D58A01593E5173EE	625B2797A244AB2219C9B488FECFC0EEA31C60F8	3FD7ED7D8713329922F665863A7256005A7A76FE9BE80A9AF3C57EE13DCD558D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bc51aa56-7dbe-4019-b844-117d2911f6e2.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\bcf0a187-1b0c-4d07-a305-9eae34e2fd67.tmp	ASCII text, with very long lines, with no line terminators	582197BB40C5B02730EEE3445A67CC7E	14E92E1DF774AB066C40679760A5C2318E80410F	4CAA2EF2E11A9029879A397271A1759818261865F59B3749D9AB0D20F3EDEB86
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c3ccb126-579d-4d35-a5d2-4be443151718.tmp	ASCII text, with very long lines, with no line terminators	AE921B8BFA0CE6961911E222FCD89709	5C1898D2DF251D8E7CB275A5888223B6D767CD71	EEA961E051EB5DC88C2221AF68F92B7F8B2CD064DC6F196B38912C23F21AA555
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c84d55da-e358-40c5-8880-aef252256194.tmp	ASCII text, with very long lines, with no line terminators	3AADBEEA03F620FE9466F5C71D9BD81E	3205E453FD5D37BB5320483488E7058752DF42AB	5B1A15F2A03A6A7C6809C8722DFAF68CF6961110015019A051F425EADC7357E2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	6752A1D65B201C13B62EA44016EB221F	58ECF154D01A62233ED7FB494ACE3C3D4FFCE08B	0861415CADA612EA5834D56E2CF1055D3E63979B69EB71D32AE9AE394D8306CD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	FD2FC9CDD86AD39E5F17F20D3FD56ACF	478A856AE7D2FE6D5DC17748FFF5E758452FAEEB	C622E25C97EFD8DAD11055A4E58EA76D3A0D4626805809F5674851B2592C1FEA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	031D6D1E28FE41A9BDCBD8A21DA92DF1	38CEE81CB035A60A23D6E045E5D72116F2A58683	B51BC53F3C43A5B800A723623C4E56A836367D6E2787C57D71184DF5D24151DA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db	SQLite 3.x database, last written using SQLite version 3032001	089C02B21909DD4D739ADC2F093231BF	B33D36CAF38B5B342ACD0EFA9DC0F6F6C37D5F85	184814D16B8115D3929672ABCFBAD21D2440E3F41257AAC26429764340FA19EA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal	data	D878AA646281B6B82E34DBF023172CFF	FB7EAD0DC67E0E5D101196E39363AD64D348D9E3	0A29801B35CEDB28F6F8E307000044A95F9408C19C7DC7B46CBA13BC9743E0EA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	DE9EF0C5BCC012A3A1131988DEE272D8	FA9CCBDC969AC9E1474FCE773234B28D50951CD8	3615498FBEF408A96BF30E01C318DAC2D5451B054998119080E7FAAC5995F590
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	C422F72BA41F662A919ED0B70E5C3289	AAD27C14B27F56B6E7C744A8EC5B1A7D767D7632	02E71EB4C587FEB7EE00CE8600F97411C2774C2FC34CB95B92D5538E7F30DA59
C:\Users\user\AppData\Local\Google\Chrome\User Data\ad774632-a78d-4a9e-a0d5-6b54f051b310.tmp	ASCII text, with very long lines, with no line terminators	C36904837D751BDE1D0CC951E0449FF5	39C205652E202714DF31FDBD389B88A15AC9C256	9C9458100AE32C9FEB9A8C06A2CF93A3CC8315A82D9E793C9445135103D341C4
C:\Users\user\AppData\Local\Google\Chrome\User Data\ddef14d1-46cc-41bb-9243-b01a23a66836.tmp	data	C727986C91DA8F8F5B8B55CEF9F6A768	4547864D91F325309999F4014F35BF6A239E8DD3	986F9CB927A007A912DF3060600A57DABDB153454BC53995C0704D118298CB13
C:\Users\user\AppData\Local\Temp\22188759-0904-43d5-ac57-d39597d2c8ca.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\2cecd6f5-5d89-4cc4-8783-6c9418b727e8.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\4ca07c0f-41c2-4abd-b527-96bbbf02d17d.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\55f520c9-2e43-43d6-809f-58f0e738301c.tmp	Google Chrome extension, version 3	1FE8E0AEB768437A23CEEAE6053E5822	5529A275644B729009E22035F6125879450F4ABB	25A2F515CEC98CF2ACF11B34C59723D76820A4B5734E223D7EBEA55E5A851468
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\55f520c9-2e43-43d6-809f-58f0e738301c.tmp	Google Chrome extension, version 3	1FE8E0AEB768437A23CEEAE6053E5822	5529A275644B729009E22035F6125879450F4ABB	25A2F515CEC98CF2ACF11B34C59723D76820A4B5734E223D7EBEA55E5A851468
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	0F604F138A921EE7270C45E520621C30	E2BA940AF44609BEAC49B603EB1C379E43F4AAEB	A149D52858570C9544E33B183915556230B7F66CF4ABAD4DDB00B1409476FBE1
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	DDD77BA67108D8D88D66E35AA72A8048	F9C217728E756728B788C969F5101484D0557065	3DB4D2B1586C020EC679C09148DB226DBB23857D326BECBB6CC48976036C391F
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	B587AF92ECD087AAE3EF210364960844	AD78B31888863D3F0EC0D8CDCA316EDE9EBD7543	9796A230BA459EF31E3D102B02575B73D6F1C812BF11F4D1E55B17C17891D2C5
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	639CEF5231701AE13F81DBB67730BB95	E249FE0C70B0F85B033730719B6D1B30F0B04431	6C71F9D37006245D0E2E956D6D2C1815FFEB43236DD3D427A02F8DD348AC93C5
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6E1B49ABC0AA5C1E2764E48EB1EA256A	604E76C89D4763C002C51908CEFE8C11AF7CBBE5	B692DB1A249223E62E62DE9725334039419B5942AF715669F0F0F4BDEDAC5733
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	41BB0DB6EC99E4664C6E2247EC704151	BF2268F9A77218384F1F73951F98829296318452	90FC75C419D7359C2241F54562177252655526F3074E7E419E36F5C473843842
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	64CBD0878A320F70E8F9DC2AD540C8DE	E95BC23E053C078BA4C269B2F75C22159450C2F2	E99F26D0540E2C71802716B24668D9B4611E9BC429CD681606963E095D18EDFD
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\en_GB\messages.json	ASCII text, with CRLF line terminators	64CBD0878A320F70E8F9DC2AD540C8DE	E95BC23E053C078BA4C269B2F75C22159450C2F2	E99F26D0540E2C71802716B24668D9B4611E9BC429CD681606963E095D18EDFD
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	B4B479436878DA0B032F1B656B310637	F525EDB5B376CE665280DB32EFE3684CE6DC10DC	3B3DEB56AD7A5F85ED5AB944172B715A5F5F49E3C5A0F7915DB879BF8ACCFEE0
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	807730218B74CA040AD8DD01E5B2E0D8	ADA0042296C448DCD5C2B22F520C9304526FE9AD	2823F6DDBF6905D9F4459091A85073644E64B5F7AAAA7FC435495C50DC5ECE68
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	B5DF9CEA0A2FEAE9816F8D41470D744E	65C86CD677A68FF7E11A789EAB078FB932A9E157	AD75B59775C8F6688FFA9F0453868999996E04B9EE9645721765D1C731D04578
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	50EF678CECF0C82675B9DF64CC3CF72E	F9D9A994530C86C1A99B6D104E86666AB56AD4DA	7F5B921E0D0B01D8D3287D3293729BFFF07ABC7DBCB1227134823A404DF29E83
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	0CA8EE1D816E684D781E7DF18C18455D	F711596B4049CBAA99296AD3755CCC0E79D47051	CA9739F4FA8514C8669AE6221842B1F5D148BD80492888CECBA7410CB32225A8
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	BE3C2C2BF4551641D84A60EC9F1E6E15	AAB0C8097A5B35FA40F2B137E1889677CB105B40	DDDDAA9A83C34BF2874CBBE0214351C15E2620C0DC3863B2B79C4ACF9C2A4637
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	8CFF82EB516A180F2BFA22DA0B18D9E7	87053836FFDB4103302D17D221BC76C8DB842A28	EA0020B530B3E047559248C076B54E90EFEF6A233DA130D5F43445C25BCB2008
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	5A777479C6072C009FF6EEEDD167B205	D4B509E3AD07A7EABEB32E7EF06166D5A60D4B54	1650A45BF772FA06F99EB68015FD356B8BCC1DD4AEE0A4213C626BA2216D9D43
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	C3AD6A15FC6370A3D3E18A313AB22237	E1FB9248DA5E0607882DBCC1819DE5B67F8614F5	F895E3D151B52E817531C21F877689109B92EC2DA5F0F1A677CC8219A6315373
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	8B27E83CA394C9D73B58C33910881F01	007F3DFA6CACB4D96D5C057930A8D45241F9908F	EE050F8DE5EC6F49D4B8E5CE1A432BDE43B4EAFA0963C045D8A097AB622D96E8
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	DCA488BB7ACBBDC0FF63246899F85933	9408CEF9B8C2EB24E66700E7CD6405A232803EDE	43267C5F695BCD2A31360D6B03699EFD27D9F53215479042642F42F8612EB7BB
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FB01096BE49765965AE2148455ADD74	BA73186A0A0D81A20D2830432DEDA52A0527C9A1	C6BE17C57BB3500A02F98F8A218B120F63D4F29BAE2A960210DC14656D37CBE3
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	087B93BE3016C3C7CBB1753C38E337EF	01F9EAB9C8E614DDAC5AE7CAEB564E4803586753	F49A563FD4545BE61DBB720325E4DF86E2C6674F9EBC53C24E190F291E44E364
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	FC774504DD2DCE69B8DD55AFC02AF58D	1D31DC3F3DA200AC24026B2F542BB30B52CE6B16	6F976F9ED367A7B85CE9B1DE0CB3B228E9E983E3FBBA4D3CD35A59BCA58EDBBC
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF, LF line terminators	E5C4A166AA21391A6D9E393C4F1817CB	EFDC29A5773127D1D3D23F701E1744563DC3997A	0CE234B837C93528214FA2515DCEED4AF244B45FC8DDBEC8E41986F378C4136D
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF502C935CB5F2C61F7B9EFD6426CF5	31D25CF9B1DC6CDBA07203C107AA1233987D6FFF	AB56E763119222142A2A69B694238E7C2069F03D909623B7DA25BEAB87494A8A
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	F7739EB95F617BFC907FD1D245B49329	D7E6850E8EE0743726BB9CBFE0CDC68F2272D188	D614E1F67703BC80B0DBEB0896C87E31466E3E3E668A41364EEA7478A8049CB2
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	B0329570F687126C3D9D26FD4279A107	DCF852F8E558C9445AE3598B814226D8C756932B	9A50EB2C558B250F198F3D1EED232056D3BF8C4463DCEFF37D99579381C84118
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	F39681D5543FB19D168EEBE59277C73B	B279538A6B837A0930CD4CD86200792B58E10454	619631AA6317854DF7FE928288E3A13B2AEAEFAB2F2B46F019F68856E1B02B1E
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	EFCAC911642CA7FAF70B8807891387D4	9F603B7AE7A06D83540B4C6B2EF5955C8ECB7C26	0327B23F28CEC110209093E1305FF1EFE550C04AE977C31A3E1D5AFB2098BD7F
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	AC696B33EC1AFDAE3A4A3E2029E92CCB	2B1D6F49C25A082C876E98C71DF96CAF4D1A1681	E7829B9A2FC8F518340A97A09C537608DB005EB265B670581682728E0FB0DA41
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	7A151C71B963B0547E30005DF632B5A2	AB9D0B08786AF05AEAE7DAD971934B82C21D38D5	6FE9E5A1B0C425766582273747F85911C40D8EE125CD609209BA1E3C706EF6E8
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	C3DC2B3DC1DFF033F0687C6FF017BA39	E50BBB328E2A500BED3590DBBC1F7378443A7C03	E2CD4F04332E33D5C733CACEADE0512ADDC1401A0EC36549FC53B066BB99A220
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	E9FD187A41491AB6CB1A62D1FB704C31	F158189AB73A614C84FA42C0CA21595591A1D418	744BE9A108C755A6FBCADF571F8A319B75E9076F47BA0C62A1354134DD78DDFE
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	903D486DA74BB1A637D94C8ABF8A3462	4036AEDC1823F9EC05BF3B0CBC5594C86AC26065	0EF65E44921254DDEEEB7DC1DDC8A9ED8A9E0F5B7B8152EE9A0121E2023932D4
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	79733424BB4B9547D18D8395A4221CBF	28B49907E1DB3D1FB5850DA4167A010E2288D082	401FF6EE0C8B1EB757F78890D00456054C844609C4C5E5F02489AF731199AB9F
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	D59DE8DC9C5331BD40CE319F89F71BE0	93EF48DBAD9870C892E70CB6CD12B9550BA7627C	450702399CCDB6E9E70B493032BA20C953FAE351337C1A9B4EBE633AA45FC965
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	060C95DFAFF0EF7D6F54FD0F8423A10F	C48DD8EE033E7FFDEA9B64A802C8772F6353674C	CCE914437100AD00567D4434FEA53E5326FB1AE851969AD60554C2A95FAC525F
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	999FD8B9760D9C9EBA2DDF945807074D	371F1E2B036820DE2E4ACEC50C2D9817B7C0E178	52AABBCACEAA834BE4003C4A8C1EF0B6B56444C6035DC560765D348F66118589
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	AFDA308D47CA0C53158DDEAE46E7E75C	911EE2485C1D1736DF3A7FDC3E443CB40539495B	86E2E942BFC23A205E0D7C04466A4D63CE29DF5A7D94652A2533499BEE998FB7
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	59D0FC29DEC89BAE9C1F62B281D18AAF	33047B47BFEF3A2D29E27709DCD8A1EAA7E76436	8E05F6A2F0F355AF3CC56CAD5D93DE9661E340BAF11EC224BBCB2B9ECD39D938
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	105797173F0759A38104A71AC9AA8514	4F57A7151387EAA2CDDFA7476F9945476EE6C568	84768D8AE07657B123AAF1A070FAA3B11FFE835D59444E11FF38C93F9E9137B3
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1712472930\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	2297666E99750869AFDD49638EEAF95B	A867CC74FFFC3469D19D3EA6B2206DE69FB5FF98	6159461884E738A585EEB550CD2B84734557606AFF29F5D1AD34D9DFA202F1D3
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\2cecd6f5-5d89-4cc4-8783-6c9418b727e8.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\am\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	26330929DF0ED4E86F06C00C03F07CE3	478F3B7E7A7E007BEE182B89C2EF6FFE6045E92C	621B5139ED199022BB6529AF18ED4DC312AE9F3E90ECAF3B2C9E1D12114F5B22
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ar\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	44325A88063573A4C77F6EF943B0FC3E	78908D766F3E7A0E4545E7BD823C8ED47C7164EB	67A439A08804EF4BEF261BDBADD8F0FEFD51729167D01EDCA99DD4AF57D6108B
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6911CE87E8C47223F33BEF9488272E40	980398F076BB7D451B18D7FDE2DE09041B1F55AD	273DEF0F67F0FA080802B85EF6F334DE50A19408F46BDF41F0F099B1F5501EEA
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\bn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F9DDF525C07251282A3BFFCEE9A09ABB	A343A078E804AF400A8F3E1891E3390DA754A5CD	C69C6C90F7EB8F10685CD815AF1F6F1B87CF30C4E8D95DF1D577DE1105AAD227
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A90CF7930E7C3BEC61EE252DEFAD574A	F630CA01114A7BDD39607CB84B8280CCE218A5C6	A533740E17559E2ADF40B4555C60F21EEC84E92C09CDBC19EED033A0B4DD2474
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	17E753EE877FDED25886D5F7925CA652	8E4EC969777CC0CEB7C12D0C1B9D87EBBB9C4678	C562FCCFCE374D446BFAC30AC9B18FF17E7A3EF101C919FF857104917F300382
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F08A313C78454109B629B37521959B33	3D585D52EC8B4399F66D4BE88CED10F4A034FCCC	23BF7E5EDF70291CA6D8F4A64788C5B86379EECB628E3DFA7DD83344612F7564
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	980FB419ED6ED94AD75686AFFB4E4C2E	871BFBCA6BCBA9197811883A93C50C0716562D57	585C7814AFD2453232BC940252D4AE821D6E6CBCFD74A793F78E5DB8BA5342F1
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	40EB778339005A24FF9DA775D56E02B7	B00561CC7020F7FE717B5F692884253C689A7C61	F56BF7C171AA20038EE30B754478B69A98F3014C89362779B0A8788C7B9BEEE1
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\en\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8351AF4EA9BDD9C09019BC85D25B0016	F6EC1FFD291C8632758E01C9EE837B1AD18D4DCF	F41C82D8A4F0E9B645656D630C882BE94A0FB7F8CEC0FE864B57298F0312B212
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8A70C18BB1090AA4D500DE9E8E4A00EF	8AFC097FA956C1317DB0835348B2DA19F0789669	FF173D1CEF665B1234E02F11070ABD2B65230318150734579A03C7F31B4AE3F4
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A62F12BCBA6D2C579212CA2FF90F8266	F7E964A2D9BBDA364252BCE5CFBA3FD34FDD825E	3EB3EB0B3B4A8E5A477D1B3C3A3891CCC7DC6B8879ECE243A7BD7C478068273D
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\fa\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	852BD3CFF960F1BC3A2AAB3CB3874EF9	C9F6F3C776542889FE3B67971D65ACFE048A3A0A	D87597B6C10364501B98AA42524843F109009CCEF022D8E0170440D7F144F4C6
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3902581B6170D0CEA9B1ECF6CC82D669	C8208AC2B1DD6D4F8BDAAE01C8BD71FFFA5A732B	D2A8180225A83A423BB6E17343DFA8F636D517154944002ED9240411B8C0C5E1
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\fil\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	59483AD798347B291363327D446FA107	C069F29BB68FA7BA2631B0BF5BBF313346AC6736	DD47530EAE96346CD4DC3267A0BB1091BB17B704803A93CDA2E3E81551B94F12
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9B416146FE4F1403C2AACAC4DCF1A5C3	616F055C9FAD4CE972DF82EC8A9B2F4EDA3E7FAD	7C7F5758F54008190ACCDDBD1761CBD980FB5FE0847E992874498228D2571DBC
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\gu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	68B03519786F71A426BAC24DECA2DD52	B8E6608932EC5CEC4BC3C5475BFC3E312D2E2E7D	C77A4D27E9E6CA25B9290056D93A656E3EBE975957E4C2EE9F0FB11B133D5CD4
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	20C86E04B1833EA7F21C07361061420A	617C0D70E162CF380005E9780B61F650B7A39F9B	C2C27CA242DBDE600BA3AA7782156BC2B190A64D8A1B51EDC8007BDECA139553
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3ED90E66789927D80B42346BB431431E	2B061E3271DF4255B1FFC47BDB207CDEC0D9724F	0B41E3C42414F72C9A12C05F8772597F9685115366A774C66018467AD4B71A74
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8E9FF7E49473C5734A2F6F0812E12EB3	A4F10DDD1580582533D5EB59EDF6D8048F887C81	6CDD2FB39ADECE00E88B989E464B05ED1414092D0492F6D0AE58D549BFD1A46A
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\id\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	7ADF9F2048944821F93879336EB61A78	C3DA74FB544684D5B250767BB0CB66FFB7C58963	3630947E1075E3663AD3E4824D0BE42CB47C0D615D8053E83B9595047C8BA9BE
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	BB3041A2B485B900F623E57459AE698A	502F5EA89F9FB0287E864B240EA39889D72053A4	025737EF8FA06706B3F26D0F52B4844244A6D33DAE1D82FEF2931A14C003D57E
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6F2CC1A6B258DF45F519BA24149FABDC	8A58C7880C6D22765DCBB6BCE22A192C1B109AE1	42ECFEE727CFC4F2845FEFDACE5EDC2E0A40AFAD69973A3B950CE653A7633342
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\kn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2E3239FC277287810BC88D93A6691B09	FC5D585DA00ADC90BF79109C7377BD55E6653569	5FC705AD19761204D8604EA069936A23731B055D51E7836CAAF16AC7719FBEEA
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	E303CD63AD00EB3154431DED78E871C4	3B1E5B8E2CF5EBDF5D33656EF80A46563F751783	FDE602BFDB1AFD282682DA5338C4F91D8A2F6CB5411DB8F62F4583D629CE67A6
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	93BBBE82F024FBCB7FB18E203F253429	83F4D80F64FA2ADCE6C515C5F663BD38A76C51DB	E7A8570922CCC4F2CA3721C4E61F426158C4E7BC90274FBC8BE4040FF8B6CA9B
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	388590CE5E144AE5467FD6585073BD11	61228673A400A98D5834389C06127589F19D3A30	05CA14196CA5D90B228C0F03684E03EBE403A3E7B513AE0A059244AE12B51164
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ml\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2AF93901DE80CA49DA869188BCDA9495	E60DF4F2FB12BD3F1CA869DAD9F6BDE0C17CEB11	329E80AEE1212F634E180DEF7E16D6E38D9C9FDA9AC9DB1D99B8AE1626EF304E
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\mr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	659F5B4ACA112D3ECBB6EC1613DDE824	5DEE35FCD260554999F8DDEC489FBA9F81FA8EEE	C8B765E7A07578BC078A952E151E3B866506959E15E79E9E5E1DBB98F9C4008F
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ms\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	09D75141E0D80FBD3E9E92CE843DA986	B24EAB4B1242C31B69514D77BC1DB36A3F648F40	8F1DBDEFD910AD88BEEC7956619CDB34391D6E69254C3A7497E8F87134AE8B5C
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	ED99169537909291BCC1ED1EA7BB63F0	5F72D51B6DBE8C622EF33D2B2AEBD7E9E20DAFB3	65B6598225ADA1E14EE9CB76CA863708E8F9EE0724B4EDC8F9508532BD631BAB
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\nl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	E9236F0B36764D22EEC86B717602241E	DE82B804B18933907095DEF3F2EF164C1BB5F9B6	300F4F7C45EBE39EAAF40776C28D0A399A710699AAB58E9A8D43A6FD2DD00376
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8254020C39A5F6C1716639CC530BB0D6	A97A70427581ADA902CA73C898825F7B4B4FAC8F	2F4E4FC6AEB4A8E7F0E0DCE220D66E763F4EBF1FA79985834D636C6692FEA3E8
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\pt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FABD5D64267F0E6D7BE6983AB8704F8C	D4DAAD0FF5C461C51E6C1FD22B86AFC5B13E123F	D82DCA262FF005668B252B478DEDAAC4A5C1E417AF9DE57C22F169A6680183AE
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	75E16A8FB75A9A168CFF86388F190C99	C27CE4C1DB3DF2D232925C73DC9AC1FA24DAD396	9C4716FF42A730F1E7725F0D9E703F311E79FDA31F85B4BB0B8863FC3C27AB9D
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8EF94823972EA8D2FC9BB7EC09AB1846	4171DC9CE9D82FDA5A280517A1FE58C907D75CE3	1009DB9FFA64E411B31E0780EBA43B9C9F8B05B5AC8CCA9A38514650261ABB0A
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C314FAC15AFF6A2EE9C732C64AB5A66D	D51F3362B5FDD2F3756DE42D7D6227DC818C6344	8EE2A25A09D6D0F89063FAA34BA2BC4DB505DD31FE6D5064C5D6E1E153721484
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F60AB4E9A79FD6F32909AFAC226446B3	07C9E383D4488BEBE316CA86966FC728F55A2E32	CDE581E6E7CF0136B003B45549E3BBEE7B67B74ADD786A8D5607BFDAD1DE7B87
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	4E233461D805CA7E54B0B394FFF42CAB	77F30833FC73A4C02C652C9E5A6EAFE9C3988A30	E1E1C64213EBF2CFEB7BA83E51B697CEA449B3A8B279B1024B859228DE869879
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	897DAE6B0CF0FDE42648F0B47CB26E06	E1F5F5F65AF34FF9484AB2B01E571EAF19BA23D0	52656C24F6F6D0F3B3FC01E9504C4D5CEB85624F1B22E974CA675DD0E94EB82D
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\sw\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	EC233129047C1202D87DC140F7BA266D	537E4C887428081365D028F32C53E3C92F29AAA6	28EDBC5C4858217811D45CAA215710E452C8926E4DE99F810001AD664D08BE0D
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\ta\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C50C5D2EDFC79DBDCBD5A58A027A3231	14314D760A18C39F06CD072CF5843832AFB86689	EEB0E89D5AD92B80FF08F88533A111DB3416D7C3860C64227D1CC8B7C2B58298
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\te\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F740F25488BE253FCF5355D5A7022CEE	203A8DF19BA5A602A43DE18E99A6615D950C450E	5B9C96CB5D62510836B321EB9CEEF23865BB9D4DC4DE7716E90A858E00701FDF
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9F926FCB8BAEA23453B99EA162CCDEA1	04D1E45591C0435A39DCA00A81E83E68585E8B64	100463C587F549C964A4EB21EA38EA1B4ADEF11E927FAC8FF884623B77202C02
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	B0420F071E7C6C2DE11715A0BF026C63	F41CC696786B18805DB8DC9E1E476146C0D6BE90	309F946F753DF6AF5C255D772EA0D429462152F78ABA4A96A2E369707A2C6B67
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FF06E78C06E8DFF4A422EA24F0AB3760	A434D1CE22DE0D2FD1842E94F5815F7B1972D1EE	E209FDEF12CCEC03B4E0D5B9464F90D527E62C5BC4DD565C680661D7F282AB02
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C3A40E8433D96D7E766C011D9EC7502B	EAB7BFAE48B1D29B95A8AE040DE94D3500824EE3	BD3D0F8CF100C96415B224011F550082D4516593CBD3631347748B7D6AD5B85A
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\zh\messages.json	UTF-8 Unicode text, with CRLF line terminators	D4513639FFC58664556B4607BF8A3F19	65629BC4CBBACA498F4082DD5884C8D3D7DDDC8A	C6D49997A9B4FF7FE701EC3644B1A523679A27778FB4BD39B7DBCA9F1ACCE595
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	494CE2ACB21A426E051C146E600E7564	D045ECC2A69C963D5D34A148FE4A7939DE6A1322	A1053F9496ED7FA3C625C94347F07A5E760F514FD8EE142EC9EE64E86B9C063D
C:\Users\user\AppData\Local\Temp\scoped_dir5904_1925047006\CRX_INSTALL\manifest.json	ASCII text, with very long lines, with CRLF line terminators	F76238944C3D189174DD74989CF1C0C6	85CE141EC8867B699668A5F5A48F404C84FCEB04	2EF48A1CF322DE356E8844DD2FD3431E8E7ACD04770649B6507EACA5ABDB53A7

ID:	321356
Product:	CloudBasic
Start time:	23:01:14
Start date:	20.11.2020
Cookbook:	browseurl.jbs
System description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Architecture:	WINDOWS

Analysis Report https://faxfax.zizera.com/remittanceadvice

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection:

Phishing:

Networking:

System Summary:

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs