Automated Malware Analysis Management Report for http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf@asdf.de

Overview

General Information

Sample URL:	http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf@asdf.de
Analysis ID:	345054
Most interesting Screenshot:

Detection

HTMLPhisher

Score:	76
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Phishing site detected (based on favicon image match)

Yara detected HtmlPhish_10

Phishing site detected (based on logo template match)

Form action URLs do not match main URL

HTML body contains low number of good links

HTML title does not match URL

Suspicious form URL found

URL contains potential PII (phishing indication)

Classification

Signatures

AV Detection:

Antivirus / Scanner detection for submitted sample

Source: http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf@asdf.de

SlashNext: detection malicious, Label: Fake Login Page type: Phishing & Social Engineering

Antivirus detection for URL or domain

Source: https://7388r.csb.app/?#asdf@asdf.de	SlashNext: Label: Fake Login Page type: Phishing & Social Engineering
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	SlashNext: Label: Fake Login Page type: Phishing & Social Engineering
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

Phishing site detected (based on favicon image match)

Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de

Matcher: Template: microsoft matched with high similarity

Yara detected HtmlPhish_10

Source: Yara match	File source: 78395.pages.csv, type: HTML
Source: Yara match	File source: 16641.pages.csv, type: HTML

Phishing site detected (based on logo template match)

Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	Matcher: Template: microsoft matched
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	Matcher: Template: microsoft matched

Form action URLs do not match main URL

Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php amazonaws xsmtp0auth
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php amazonaws xsmtp0auth
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php amazonaws xsmtp0auth
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php amazonaws xsmtp0auth

HTML body contains low number of good links

Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: Number of links: 0
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Number of links: 0
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Number of links: 0
Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: Number of links: 0
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Number of links: 0
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Number of links: 0

HTML title does not match URL

Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: Title: Sign into your account does not match URL
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Title: Log-In does not match URL
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Title: Log-In does not match URL
Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: Title: Sign into your account does not match URL
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Title: Log-In does not match URL
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Title: Log-In does not match URL

Suspicious form URL found

Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: Form action: https://xsmtp0auth.com/ytp/login.php

URL contains potential PII (phishing indication)

Source: http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf@asdf.de

Sample URL: PII: asdf@asdf.de

Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: No <meta name="author".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: No <meta name="author".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: No <meta name="author".. found
Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: No <meta name="author".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: No <meta name="author".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: No <meta name="author".. found

Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: No <meta name="copyright".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: No <meta name="copyright".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: No <meta name="copyright".. found
Source: https://7388r.csb.app/?#asdf@asdf.de	HTTP Parser: No <meta name="copyright".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#	HTTP Parser: No <meta name="copyright".. found
Source: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de	HTTP Parser: No <meta name="copyright".. found

Compliance:

Creates a directory in C:\Program Files

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 52.219.100.16:443 -> 192.168.2.3:49755 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.219.100.16:443 -> 192.168.2.3:49756 version: TLS 1.2

Networking:

Source: global traffic

HTTP traffic detected: GET /goto/https://7388r.csb.app HTTP/1.1Host: lib.tnua.edu.twConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: unknown

DNS traffic detected: queries for: lib.tnua.edu.tw

Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: http://cacerts.digicert.com/CloudflareIncECCCA-3.crt0
Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: http://crl3.digicert.com/CloudflareIncECCCA-3.crl07
Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: http://crl3.digicert.com/Omniroot2025.crl0m
Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: http://crl4.digicert.com/CloudflareIncECCCA-3.crl0L
Source: 77EC63BDA74BD0D0E0426DC8F8008506.1.dr	String found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
Source: History-journal.0.dr, Favicons-journal.0.dr	String found in binary or memory: http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf
Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: http://ocsp.digicert.com0
Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: http://ocsp.digicert.com0:
Source: 000003.log3.0.dr, 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://36cv9.csb.app/index.html
Source: Current Session.0.dr	String found in binary or memory: https://7388r.csb.app
Source: 000003.log4.0.dr	String found in binary or memory: https://7388r.csb.app/
Source: index.txt.tmp.0.dr	String found in binary or memory: https://7388r.csb.app/$$$
Source: index.txt.tmp.0.dr	String found in binary or memory: https://7388r.csb.app/$$$$$$inactive$$$
Source: 000003.log4.0.dr	String found in binary or memory: https://7388r.csb.app/0
Source: Current Session.0.dr	String found in binary or memory: https://7388r.csb.app/?
Source: History-journal.0.dr, Favicons-journal.0.dr	String found in binary or memory: https://7388r.csb.app/?#asdf
Source: Favicons.0.dr	String found in binary or memory: https://7388r.csb.app/favicon.ico
Source: 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://7388r.csb.app/frame.html?_sw-precache=358bc62ccbd9155c9f01d203199f04da
Source: 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://7388r.csb.app/frame.html?_sw-precache=358bc62ccbd9155c9f01d203199f04daH
Source: 000003.log4.0.dr	String found in binary or memory: https://7388r.csb.app/sandbox-service-worker.js
Source: 2cc80dabc69f58b6_1.0.dr	String found in binary or memory: https://7388r.csb.app/sandbox-service-worker.jsaD
Source: manifest.json0.0.dr, c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://accounts.google.com
Source: manifest.json0.0.dr, c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://apis.google.com
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.0.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: 17af122e5462afff_0.0.dr	String found in binary or memory: https://code.jquery.com/jquery-3.3.1.min.js
Source: 9a84336bbf206ea2_0.0.dr	String found in binary or memory: https://codesandbox.io/static/browserfs8/browserfs.min.js
Source: 000005.ldb.0.dr	String found in binary or memory: https://codesandbox.io/static/js/7.a39df6d6b.chunk.
Source: 2b34a4a96b383c83_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/7.a39df6d6b.chunk.js
Source: cb22034d7c8bc530_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/7.a39df6d6b.chunk.jsH
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/7.a39df6d6b.chunk.jsX
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/7.a39df6d6b.chunk.jsc#7
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/7.a39df6d6b.chunk.jsm
Source: 000003.log3.0.dr, 71155808921bfc20_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/72.2c983ea22.chunk.js
Source: 02ffbff9939db27c_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/72.2c983ea22.chunk.jsH
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/72.2c983ea22.chunk.jsY
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/72.2c983ea22.chunk.jso
Source: 000003.log3.0.dr, 7b92c1431104de88_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/76.c312409fb.chunk.js
Source: 134c91c98518603b_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/76.c312409fb.chunk.jsH
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/76.c312409fb.chunk.jsQDY
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/76.c312409fb.chunk.jsY
Source: 000003.log3.0.dr	String found in binary or memory: https://codesandbox.io/static/js/76.c312409fb.chunk.jso
Source: edce4b4068efcfbc_0.0.dr, 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/common-sandbox.71780db40.chunk.js
Source: 184390d23e1bf4f4_0.0.dr, dbecaed5c01c2696_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/default~app~embed~sandbox.39603aef6.chunk.js
Source: 1f763c5512ce4f99_0.0.dr, 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/sandbox-startup.81d8a90a0.js
Source: 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/sandbox.81e0de32a.js
Source: 52567c5dc82a84ca_0.0.dr, 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/vendors~app~codemirror-editor~monaco-editor~sandbox.e68dd7bee.chunk
Source: 184390d23e1bf4f4_0.0.dr, 563dfe3e2ee44651_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/vendors~app~embed~sandbox-startup.10f5f18b4.chunk.js
Source: bad56957642addd2_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/vendors~app~sandbox.3a7b80a48.chunk.js
Source: 24f0ea9236843cef_0.0.dr, 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/vendors~sandbox.ee783573a.chunk.js
Source: 184390d23e1bf4f4_0.0.dr, 7238af54101ad45e_0.0.dr	String found in binary or memory: https://codesandbox.io/static/js/watermark-button.d47e1de20.js
Source: manifest.json0.0.dr	String found in binary or memory: https://content.googleapis.com
Source: 24f0ea9236843cef_0.0.dr, 7238af54101ad45e_0.0.dr	String found in binary or memory: https://csb.app/
Source: 2b34a4a96b383c83_0.0.dr	String found in binary or memory: https://csb.app/-
Source: bad56957642addd2_0.0.dr	String found in binary or memory: https://csb.app/8
Source: dbecaed5c01c2696_0.0.dr	String found in binary or memory: https://csb.app/D
Source: 7b92c1431104de88_0.0.dr	String found in binary or memory: https://csb.app/o
Source: 29c850d9-9905-47ac-90ad-fa7859b5efa4.tmp.1.dr, c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr, cce6abd3-2504-455b-9fef-4752af18a5fa.tmp.1.dr	String found in binary or memory: https://dns.google
Source: 000005.ldb.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.
Source: Current Session.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com
Source: Network Action Predictor.0.dr, 17af122e5462afff_0.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/
Source: Favicons.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/0ridjsskfrivncxmssjf.ico
Source: Favicons.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/0ridjsskfrivncxmssjf.ico%
Source: 000003.log3.0.dr, 184390d23e1bf4f4_0.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html
Source: History-journal.0.dr	String found in binary or memory: https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo
Source: manifest.json0.0.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://fonts.googleapis.com
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://fonts.gstatic.com
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: manifest.json0.0.dr	String found in binary or memory: https://hangouts.google.com/
Source: 2cc80dabc69f58b6_1.0.dr	String found in binary or memory: https://new.codesandbox.io/frame.html
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://ogs.google.com
Source: manifest.json.0.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://play.google.com
Source: ab425f50d67661ba_0.0.dr	String found in binary or memory: https://prod-packager-packages.codesandbox.io/v2/packages/
Source: 2cc80dabc69f58b6_0.0.dr, 134c91c98518603b_0.0.dr, 184390d23e1bf4f4_0.0.dr, ab425f50d67661ba_0.0.dr	String found in binary or memory: https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct
Source: manifest.json.0.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://ssl.gstatic.com
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 2cc80dabc69f58b6_0.0.dr	String found in binary or memory: https://www.digicert.com/CPS0
Source: manifest.json0.0.dr, c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://www.google.com
Source: manifest.json.0.dr	String found in binary or memory: https://www.google.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://www.google.com;
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp.1.dr	String found in binary or memory: https://www.gstatic.com
Source: manifest.json0.0.dr	String found in binary or memory: https://www.gstatic.com;

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443

Source: unknown	HTTPS traffic detected: 52.219.100.16:443 -> 192.168.2.3:49755 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.219.100.16:443 -> 192.168.2.3:49756 version: TLS 1.2

System Summary:

Source: classification engine

Classification label: mal76.phis.win@30/215@11/10

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-601205E2-1738.pma

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\6ebd6dba-0136-4f69-9869-fb4e17a19fdd.tmp

Jump to behavior

Source: QuotaManager.0.dr

Binary or memory string: CREATE TABLE HostQuotaTable(host TEXT NOT NULL, type INTEGER NOT NULL, quota INTEGER DEFAULT 0, UNIQUE(host, type));

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized 'http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf@asdf.de'
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1584,11749481043944155124,6311535833497222460,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1668 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1584,11749481043944155124,6311535833497222460,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1668 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Next
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Next
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Next
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Next

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Domain

Country

Flag

ASN

ASN Name

Malicious

203.71.172.211

unknown

Taiwan; Republic of China (ROC)

1659

ERX-TANET-ASN1TaiwanAcademicNetworkTANetInformationC

false

172.217.22.225

unknown

United States

15169

GOOGLEUS

false

104.18.27.114

unknown

United States

13335

CLOUDFLARENETUS

false

148.251.96.176

unknown

Germany

24940

HETZNER-ASDE

false

52.219.100.16

unknown

United States

16509

AMAZON-02US

false

239.255.255.250

unknown

Reserved

unknown

false

104.18.22.207

unknown

United States

13335

CLOUDFLARENETUS

false

143.204.11.11

unknown

United States

16509

AMAZON-02US

false

192.168.2.1

127.0.0.1

Name

Active

d26p066pn2w0s0.cloudfront.net

143.204.11.11

true

codesandbox.io

104.18.22.207

true

prod-packager-packages.codesandbox.io

104.18.23.207

true

s3-r-w.us-east-2.amazonaws.com

52.219.100.16

true

googlehosted.l.googleusercontent.com

172.217.22.225

true

lib.tnua.edu.tw

203.71.172.211

true

7388r.csb.app

104.18.27.114

true

col.csbops.io

148.251.96.176

true

elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com

unknown

clients2.googleusercontent.com

unknown

code.jquery.com

unknown

cdn.jsdelivr.net

unknown

logo.clearbit.com

unknown

Name

Malicious

Antivirus Detection

Reputation

https://7388r.csb.app/?#asdf@asdf.de

true

SlashNext: Fake Login Page type: Phishing & Social Engineering

unknown

https://elasticbeanstalk-us-east-2-95newbeie.s3.us-east-2.amazonaws.com/index.html?auth=30%40ohixyzo80aNC4yMTIxXzIzNTgwNF8yNTQ1MzcuMDU4NTkwMDAwLCNGI1MjMTcxNDEjRQ%3D%3D%3Aver-UID=8c60cf39e11d1659051190bdc1f1a8a8#asdf@asdf.de

false

SlashNext: Fake Login Page type: Phishing & Social Engineering

high

false

SlashNext: Fake Login Page type: Phishing & Social Engineering

high

http://lib.tnua.edu.tw/goto/https://7388r.csb.app

false

Avira URL Cloud: safe

unknown

Name	Type	MD5	SHA1	SHA256
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	A78AD14E77147E7DE3647E61964C0335	CECC3DD41F4CEA0192B24300C71E1911BD4FCE45	0D6803758FF8F87081FAFD62E90F0950DFB2DD7991E9607FE76A8F92D0E893FA
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, 59134 bytes, 1 file	E92176B0889CC1BB97114BEB2F3C1728	AD1459D390EC23AB1C3DA73FF2FBEC7FA3A7F443	58A4F38BA43F115BA3F465C311EAAF67F43D92E580F7F153DE3AB605FC9900F3
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	58C4D4994B051B641386DA59DA792A74	908F5DAF2514C4D7A486DBDA11FEA5E08F61220A	70B7207017912DC06D1DE261C500753F65C4F9FF782D1C08C6EBA761393C4D9C
C:\Users\user\AppData\Local\Google\Chrome\User Data\24088231-11b8-44cb-bd3b-7ab43f0cce8b.tmp	ASCII text, with very long lines, with no line terminators	F8F783863E2337C8086AF011D78BEB8D	E0BC79994F5ADDB84C3D59EAACEB9FFFC759B60E	7A9BAC3E312E23881C7A7C0B8B3D851F89BE22A8DA1F8E9F6747E7860233043F
C:\Users\user\AppData\Local\Google\Chrome\User Data\5ed046cb-c87a-4378-bba4-142d12427331.tmp	ASCII text, with very long lines, with no line terminators	E407A26C29D947DF9D33ECEE54A4DDD5	DE50A123BD94762CB5E8438DF63FD1EFA931D0D3	2232FBB115753CA8C9FC3594712EA88E5C23C7E17CDF19B5803EF6D022371D0C
C:\Users\user\AppData\Local\Google\Chrome\User Data\6cc5e2c2-3a75-4c3a-9b3b-845e7e5afa7e.tmp	ASCII text, with very long lines, with no line terminators	324A13D6EC9A11915DECAFA6BF08EC73	80950C938A559D906CEB73023A16369EDF824728	B51171ED0C28E75EF0194220BC9381E73D32C3442A26BBA6038481F731DE69CE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	E9224A19341F2979669144B01332DF59	F7F760C7104457DF463306A7F7BAE0142EFCEB5B	47DD519C226D23F203ACAE0EC44DF9BB6208828E24F726E1602EA52F63C3E2BE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\13a4e645-0175-4073-bb96-e9cd67b10f44.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2f1a7a5a-7baf-4b03-8268-d36fa57ee0c2.tmp	ASCII text, with very long lines, with no line terminators	26F5545E676FA93DDA19A0BDADB02CCE	F4B17DC09DBB814C2616AEB2985233F69D343A7A	A2289D6694AE054AF91BACB81C073834C56B7D089DBB63D090FA2DB85C7AA5DF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3ab124b5-02e9-4da4-b7cf-849eb294bc01.tmp	ASCII text, with very long lines, with no line terminators	226A778304DA86EB6D9387562437F164	6D95DBEF52260C21B5B1267DFC8B2720C35AF9C5	604F7405545D095EDE78D70C278A357A24DFF9B18D31778E1436B5DE1F788E86
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5c72dd94-bf2d-48f6-b4eb-e130ac62a04f.tmp	ASCII text, with very long lines, with no line terminators	45672076D4F3CE2B90FACE0BF121B167	C6AF8CE573832C2078D14729BC463C089A475EE3	B51A7C7C1323A028883EFCFABDF49E1584C093353C8C98A0A34E59C23F119BEF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9ffb5d1f-061a-420b-a849-e864a9b16ee6.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	B9EC56203AF2E69421E50009F74DEC4E	18C46A9C1730102E7B65FD97364A134B95CC7890	D586143CC3CCB44F275683754F5B3F496B9AE58E5B28F2B4901040F6194A563D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	B0CBF91AE2CBD83389A672239327743F	347B1C3B9E187203194B78B67B983BF93030C99C	2C1CDCB547E7D8E4F53189DD74852AD83F28F2D72DDA1FAB0C470141B897DA1B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	353620C9CD1D5A81E122C903D3A024D5	59DD6FE1BC3A6805C8901E3CA1005C47FCB705E8	F070CAE82DB52703ED6DDFF5CF60979542BDF4CAB0DB2E00BF50C2F3CF9718B1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\17af122e5462afff_0	data	1E2A1EF870871EACF5B7881D8EAA7D3B	99FAE36602A9D1F015DD72F623CFE2D430332A67	4F1829E67830FD47872837056C883E768E0514C08E85EA8D391A33146FDE2500
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1f763c5512ce4f99_0	data	ABA2998C55930A680FB3F285AEB4BF07	5ACE53403BA29C2FEBC635D87C850BF6273F2D9C	9F27E95AEA9584320F1621F91EFE7F19BADB098C44A7E72BC0FEDAF9DB815587
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\24f0ea9236843cef_0	data	AAC49DCEFBBDC9A4ADA6802F9BB7DF61	B34C7EC734C80433AEE58779B3111674A0701714	B70019D73B470CDFC69FAB005AE3333B00811CE612C312DD21A6B1BC62C8CD8B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2b34a4a96b383c83_0	data	0D62DE75EE67F5CF94833E3B182878E2	B5C99A68B1D32E989198C6C704208DAE7925392B	DE46E0FE55F481470523D7A142B0D277AC1AE63EC75B34557758EE180D5D483F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52567c5dc82a84ca_0	data	317180366E6A799D58F93E436E420ECF	83B7515CB050D0F365D13948887B96E236C6C310	A8FE6D84A6373B46EE06674F0F2160B0655113FABA494FDCC50E72E3FB59C006
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\563dfe3e2ee44651_0	data	60E4B4E5D4DDA0DE8E381B5630473F86	6C3C53D76F6048AD6A9CCC77D07C80210E9A7D11	7730628AF9A4F8FC5140A7E69287168590C0B9647544AAA6DDC299393BBD2ED9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\71155808921bfc20_0	data	3FAA0617235D3842C84FF89710EA662A	34A4EFD39179DC711189A2E560C429F9ED55F14F	8B6718EDF31FA503BD1059B6C6E230716453D0E909B1B0A0DB11803B8AE76E91
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7238af54101ad45e_0	data	E52EBC719EB8B22DD5739B2C4440D1D8	8904F59B19C8D32D5DAFDCCDCD8CBD558E4D4BAE	E426C80646FD9707BCAC76E98C12C818D2B15032F3C12355DA6B5B0F3257A6A2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\787b4a320a9acceb_0	data	969308CA93C877D42E9A580AE3E6069B	9447FF954DDB334B4FD00D7719A746A8DDC4165F	7435C37F877ADB2A60CD0616DFBD1A19F2E593752D534F8FC2FC207E5BC1D1A9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7b92c1431104de88_0	data	BADC79E0645BBBED7A6975BCC3DF842D	EF1053E0E7A49A92717BAF9D79EE92B7BE56DBD5	417C973DB21398EDC0089B23E3E1426498933DA2DF332BB5E66917C8AEB20E06
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9a84336bbf206ea2_0	data	344868C3AB969E70D33F1E4A9D42F96F	B51020296B990B8E1C82247C43A6C0EE4B3B5333	01FEB053D0D78B157C1DD832D0891F32034B132D90F2D8AD81B0373D59B054E3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bad56957642addd2_0	data	332E851B7AA39DD4F5CF926443B728CB	30D1631A0D72858AC454352ACE1CB3AFFBE95133	CC1560D2125A09DFB0A2B695430670CCB58B7B1F5EF0987E173FB1804DC9878A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dbecaed5c01c2696_0	data	4ED36DD4F34BFA21185C733985A34C64	E3ED509B4EB3632FB70CD1B153F3EDBDCB703893	22780F3FAACB5719F2C59B10C070F6EAC330136EA31450D2C22FB72CC81CDE58
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\edce4b4068efcfbc_0	data	CA8782100D8793AC611CBA65619015F2	429EA986E6230E35DD69DECE26FF606BE7894585	3C06048D5F4984A2AA2E0622C5190A40544ADE2BBCFC75696E5266C0903648E8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index	data	016D1E7D77913FF2791B3A91D7DABF74	3CE83475F2CFD2658131E1AD9AE98466320E9D75	1527D16A54064F7CF41F85D7D86B6DF50F8608EDBB578F473ECC014A5B639CAD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	8ADBC07F51E2B4221B1D2EE6173103CA	82B869EA56D522F9505941737DC8BAC036C3B5C2	80ADE94386E05465356775B7239F5B35615FC35B2AEC72B3EC62182C5D744B32
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	2158037BDADECEF0952F331F691E6EC2	33A3DFA667269A6A824214E0B653E398C91CB31F	FCFFF5989485C6AD3D6449DD6E54B29B5B89FB58B8C4F5E1E8C7A89CCA13EFB8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	6D471870802B7C8DDB1E91DFCE73C605	16E45DB2EBD0E8AF7EBC613C4BAE9C064950E701	C56B0AED33D3768CE8DCF0D674F1185A88503B37BBDA01B2F44FD67E5E9AF099
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	0686D6159557E1162D04C44240103333	053E9DB58E20A67D1E158E407094359BF61D0639	3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	0A906A9A542CDF08FF50DAAF1D1E596E	B97D6274196F40874A368C265799F5FA78C52893	EB9CABBF5FDA1AD535300B0110EAA4068A083248BA928A631C9278545935426D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	A30FE0D91CD834277D61F111403954E5	8994C8C2EB94056F72F0213EB74F493BFCE0CBC9	C24EA2407353B44563DE1ED03A518861FFDD3778A627F58D95DCEFCC55231FB2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	D4BA0AE0BB0B9FAFF3DA6F35FDBC3C8A	FB3E9DEC7F35A9B1D94E54A5659DD0DE484055E7	99DEF1B557F19F04C1AFFC6F247D0451F33FC10EC42E73792223C3215AC98BE6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	AC5F6442B1B1112F57106BD55149F1CB	0F2D4B6EE31045069668291BF31E4EC4A0920208	94DD456332196C6A8652B5EADC8D3E3938DA9EC96F22F364A96C6D9DD373C2F1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	58E0F46E53B12F255C9DCFD2FC198362	24E3904DED013ED70FFC033CFA4855FBB6C41C19	F82EEF4F80D86F5DEF0F40F91FFB6453E1706CA5FD8A7172EDB19C4B17E2F330
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	6AE2135EA4583C2F06CDEBEA4AE70FA4	DCEB26C7F02D53B5F214305F4C75B4A33A79CDC2	03AA1944CB3C4F39E20B6361571BC45DFBEBD3FFDA3D8F148CC6ECB29958F903
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	8718596C87C1EB7075F7FA59AF28E328	66E1EB670D7A0084C3304FAA2E42892CBFCA4A88	0FE523B52BE904EDEB20B28D54864F5437F23638A6FF2FB441A9AE2E280A7AC3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	D58B69D9D4D00FED7EF4ADF5DBD97E6A	ACC9C567DBFF3487FD3CDB423C28343723F84A70	355B8F9F6CA68135925D8A44433767E325978C542E8E647F1A8CF6434FD786A0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	0407B455F23E3655661BA46A574CFCA4	855CB7CC8EAC30458B4207614D046CB09EE3A591	AB5C71347D95F319781DF230012713C7819AC0D69373E8C9A7302CAE3F9A04B7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	C3AFC991C3F8DAC3FD5C6D04F4D9E5FC	D904EFB02432934CA027DE0EE922F59E19E8EA1F	E38A2EC234EA96D85C54FD4144533EE6B3077FE6A4934A0900621A5667326578
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	55E9645E9521A6239B760F78BB0342AB	C98C89B271D0DBAB2AA7E69826771DF58EB613AD	5774414AF2461E622294C5B2CBBE7A85996B03FD5D60AB5481AEAE77820AC298
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	42E8A69C49D64D400612B895B1F931FA	C8885856747D5CD97FC94967D43108392C0C7B71	3E7AD8EF743AE89313DAEB7CCA9AB3BDA5D7E8A413C1D8E21044C94C34A50018
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	214416EF768B0A91CC49C11C75E94056	D1F0893CF3A43B66EF6EF737D8AE3F88A71F6013	4402240F1A9D6828427C6AE6EBC00ED0E1E04F18DDED784DF0C435B5363028EC
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	F27055AFA34BCC0AA17D40284499A38E	AAC6B23A11FC18B6D85147CD54FAEB8069C0E2B9	B7BB742E64D17A7E256ED6BBFF1972A93B72DF02B2C27FABA62703E9E71D1027
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	8BE224B772ACA680BC33F9A11F528866	3828576582CF25884A542C30CE408D24F0851D7E	B3CA61FB892765C0A0F438428A92DB48E6BBA6966E07C4BC1B76E3D875C29D06
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_7388r.csb.app_0.indexeddb.leveldb\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_7388r.csb.app_0.indexeddb.leveldb\000003.log	data	0871AED94DC9586EE0340B0CE565D85E	E57F225A3E720F7B62A41320AE4A0A58C501598F	0B0AC2619501E97496621B5DFBEBB846924A87A775C5F69928F8D6BB3B786E61
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_7388r.csb.app_0.indexeddb.leveldb\000005.ldb	data	37CD013776B86D03AC1BB9C49FD3548A	DC3C4EAC319042AD07EC41BE48628FF79601D615	31B5C15947F6524437F08BE7BC9BE730FB59C6F059298647FC151AEF91FCA8A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_7388r.csb.app_0.indexeddb.leveldb\LOG	ASCII text	438FDF3ABE8535AEC062AE657FD614F7	7C921BE1145C83EE38F1F0E3DEC16490A10A3B23	B8DAFA7EDAB7F14D2864B6470E3FDED2854BAE7F433139797663149E383B6677
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_7388r.csb.app_0.indexeddb.leveldb\MANIFEST-000001	data	0CD174437BFECC35D4C02C60D7FA9631	C8F358E9BD4B62D7941F78760EAF99C4360737CD	2CFCAAD01B89DE8EDEE3F07EFBA489B2F2B210555543BF2603185B3AA669B12C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	DOS executable (COM, 0x8C-variant)	93DB686F9DFD1EC262A99A091CF65AF8	778F014625C73F30B99C656DC4306E7B421A5103	027949EDC8BA3B7B8B778CD6014EA8AC8C431D069F38DB920CC4D3FE1D8BDA95
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	44B3332806F0A534CBBC04A8688E6560	9BF91D628667CAD5B00825B4FA881AD921287E83	2E11DD54E11A689C7740EE0EA1E5149B328205C1BC1E5A33B9F4E802D0D519D8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	0EC709F0EFF4D5CE8F17AD30B1BAF4A8	F4F2162F5C380A98BA0B9315F7E44469F507BD46	855E0690B4504E5BEED7944520AD1BC28F652C431640AFFD9B2D294E34466245
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	291D126EB79078DABF84A5AAE8CCC6BE	58153AE63A6412E9905C3B17175712C44A995A15	8459962315AFA6E7695C724767F7F179711CBB0A7E3F4CC793E1C568E5C74383
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	A2962EB1AC72CABB6AC4C8C979D64E96	6D4B9D29869AC41DE5D625A8D845DA42D0620A40	C5E654E40FDF7AF18ED869830CD0858456ACDC8A7C3632B6D23BA5EAFE9C1FBB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager	SQLite 3.x database, last written using SQLite version 3032001	F14B55DE007A7741A2961C79FC29B540	511228943B9C9D3A694405500E427BFA0E0A3996	CA9BB635478844F1FD40EE1692D167F44EA95CE7146766F173025548123495E8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal	data	BCFACA6FE544AFC941201AA1EF75DE27	17A673B8C8989336CBECEFD22AB856CAE1A88AB3	311032F2E467BA19ABE9CC4D33E82517B8B1A1CDA015CFC52DEE13FFA1F3E232
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\65f01577-c1a0-4567-b7fb-a01c7243529c\index	ISO-8859 text, with no line terminators, with escape sequences	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\65f01577-c1a0-4567-b7fb-a01c7243529c\index-dir\temp-index	data	6F8CB7D51DB98D2EE09A35ED0592C3D3	B105E771EF13144D41F07728527FB32B8C2ACF6C	28032EA04CD7D6D4A58E2E4CFE4C9A47ECF0ACD0CF682BB337BF5370A252436F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\76da32e7-664a-43eb-9d38-effd3e5276ac\184390d23e1bf4f4_0	data	7009AA24384D32F06CBCC240CB823F73	B6797517DE4B1FB1B2EDEFE5940F07DC154C2F3D	4598329456EF5F02398C97EBD4F888AAA2B1A329897204F5C51B5CFDB62DA27D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\76da32e7-664a-43eb-9d38-effd3e5276ac\index	ISO-8859 text, with no line terminators, with escape sequences	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\76da32e7-664a-43eb-9d38-effd3e5276ac\index-dir\temp-index	data	78EE3EFFCD38D7528DA5747F739FC07B	4447B066F2E32E81408F5B2D07FFE179E0C54E09	7C63C75BAFD9B9C863FEDC662350AC58378CB6FF8466BB520A5F9AA10B3F8E02
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\8e4a827a-f74e-4188-9806-1faa63a29ef1\02ffbff9939db27c_0	data	9B4EB5A8F7360821EC6250E42BEE77F3	3CCBCC7C31BEB84298479B5801818C3C71FCC43E	62B3228BCE12D4588AD415674AAC9DBC6F2EE028AAC76A384397015DDC57A31F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\8e4a827a-f74e-4188-9806-1faa63a29ef1\134c91c98518603b_0	data	177EA7688626C6C40A1F19226CE774DD	8DFC7B28D140F40ADBB90B4EF24A9F42CFC9DF92	F2104CE3C1C9A252E0B0928E59C768A74B099A55D4BCA45488E468414F250901
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\8e4a827a-f74e-4188-9806-1faa63a29ef1\cb22034d7c8bc530_0	data	1A5F83B494C696173E832924D5BC5930	A1694535670D061200DF5CBEBACCB42D3FA58850	D68D6DFF08CC590F09D11EA0C6FCDD44858A7EEEC926679BE19953AC4C54E269
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\8e4a827a-f74e-4188-9806-1faa63a29ef1\index	ISO-8859 text, with no line terminators, with escape sequences	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\8e4a827a-f74e-4188-9806-1faa63a29ef1\index-dir\temp-index	data	895AE1D3C526A7EB8CC68EAADFCB305E	EEFB2425C142054A0D442EA12887FE1848A7E035	8B9B6E3D1ABFEAB1FB7D3BAA8B185697472582E797F4E29B4AA593F332A1AB88
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\91ddbac4-f65e-4942-ab83-8c3d87875c40\index	ISO-8859 text, with no line terminators, with escape sequences	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\91ddbac4-f65e-4942-ab83-8c3d87875c40\index-dir\temp-index	data	30D309C790EF7D74CA173AE5E1DE71CC	956CEC2A9D8F3278A15D4A42E2D20E1FDC2AE6FD	9ADAD508807409B2DFE060CE5BC88CCA391776BD61E15A42C3532088C1A0BD0E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\eb1235d8-795c-4853-9125-823d3fcb9821\ab425f50d67661ba_0	data	0C4AD2848A99E14A21E22C805D20F8C4	B5535A70E652E67703971E0611E7E8F64101B077	B7379B9C9AECD54EDC57382AB8E8A88BA12F64698460BE05D15CD89F677C8623
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\eb1235d8-795c-4853-9125-823d3fcb9821\index	ISO-8859 text, with no line terminators, with escape sequences	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\eb1235d8-795c-4853-9125-823d3fcb9821\index-dir\temp-index	data	70ACB515B8E82EFFEA56C60FCFC05B5B	76A5851265013265DC98D5C411F942B5683B362E	6D51F6B04D135397C12F12462D6604819CF279104A5C74A39BFA07CD1EEA86BE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\7ccb655c42ac4a48d40d852bfc245bb9eb5df148\index.txt.tmp	data	5F3C106AE5D5CF6E05A320FB8586935A	A87EAF4BDD741FB310EDBA4E0A4D64DE65546DFB	4CF2AEFA23894BC11F6C8FE053DF9C5A6C78BBB1630E4999D478D6541A636BE5
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000003.log	data	D31E943395D7E890E5B29B9ED6E308C1	352368588EB62CEA8891F1ACA4725DEF67AEB880	86241096815ED075D6F3724FDE2D7C9CD64F961D9CA00C24982C82125B653E6A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG	ASCII text	CCF035CE66E3D33936E196F33525A420	82D349E7D8900C837254877D3B5F3EC299AB06A2	DED281188A7BD0565D99A8C63E97CBB8E8F7DFCE37FE417C9D81313E3B57EA2F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001	PGP\011Secret Key -	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0	data	3E83F0630ED7B5B660BBAA27D4A17C99	304BC7F9766EF28FEABD5755DA948F8EC88AFA74	4E49646490F38BA878C94E0B64FEB5353CE9AB13E70AAD8ABDB07EBE2D6B4CE7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_1	data	515F193452F849E5D199105A95A1C66F	C88947C68DE63ED5323C1E59394BA43405C13376	DBCEF333D72A9C331A870EDAC68F8D21358EF12B1869E93ADAACF3EB640AF2DD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index	ISO-8859 text, with no line terminators, with escape sequences	54CB446F628B2EA4A5BCE5769910512E	C27CA848427FE87F5CF4D0E0E3CD57151B0D820D	FBCFE23A2ECB82B7100C50811691DDE0A33AA3DA8D176BE9882A9DB485DC0F2D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index	data	35569D698465CDD06BB067D4FA740292	3793038BF1AC123060295B3C77C067641C3B224C	9DB9B981F268246FB3B504AA579D9A5052DF27AC86B82D47773073F523A32E44
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	1B4FA89099996CE3C9E5A0A9768230E8	9026E1E0906E3B3FE0E414EE814CC5A042807A04	537818AAFD0902A8B2D58B483674391E33E762B5E1E8CD226D873098CCE9C8F9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	A73A95532EAB78798F228C8D4FF2C68E	EEF2439E5802727D97405BE45247C594DC415C58	1AC580EEF60BBC93C343209DB49CD5D6D1C4405E8569F961BE5CB4EF66CD9AC3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	271D62F905D6AE427B56AD06D7557605	0176534DE3F9859059A2549F9FE6D10C9AFB05B7	9CCB985118BD271D1638147B8EE35B9081EB49AB45B5C444C1C4C7CC93A4DC5D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\29c850d9-9905-47ac-90ad-fa7859b5efa4.tmp	ASCII text, with very long lines, with no line terminators	C401B619D9D8E0ADABC25A47EE49CFBA	C9D3B816DD3FBCD98E9C0A32CEC7B501EFC0BBDA	8F5D75F5EF9876E8D30CE477509F735B50C4D87DBEDB433BE8EDBE6D4B3CB82F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	C5D9731C1A1A0FCF52D5AB5874E93F77	8AA3AAEBED8B696C73E22094E5D59606087FC549	0176CEA2A2F88294ACBE044412C92932B16947A12E19EAB41E9CA8DEE73610BA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	DC03DF2744D6C8FFD8C538CD7873272A	61F168DE609A2A110D4051948218E04083A92928	340AF5FA18574C4BA26938B12CBB43D8FD2B4A0FED9E2C9A81E1F33A7302C8B9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	2BB9D767EF504E00CE9FE188BD23C744	5E9DF30B6794697F073B22FB481390E54FAA411C	98309FC6FA15A438ACBA2B23B9090516ECAA6ED88991BF5035BE28E3693C617A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	3C88D4711FE7AAAFB4815655FA6D02BB	85352EFBEBA963B3390E2FD0C0C51984A45F6B3E	B270D100A25E9AA8BF1FB4B8364CC5C9A414538EC2CD9EECAE9D78E1BFAA30FA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	6712D87EF387D701031DC9CB753B33E8	4922F3FCEC0312D60412A1D1D932CFE75FC4A388	79F6F89B410AF61284AE1A5B1A3770CF9CC61CDA7BF272EF84FB77D86A131327
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	E286D3BBA1CBD1C4B9E29880B2F7A077	D1BDCFAF05384E32CF60E3FDE3ABC60A87F8FC7B	6D43331F7202D9C27A51FAAAD0EBD925427F08192E629F24C09D297C12BC64A3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\cce6abd3-2504-455b-9fef-4752af18a5fa.tmp	ASCII text, with very long lines, with no line terminators	F4FEFEEEC722772F9DC0FCE1B52D79B5	00EECFA3B37113D30E7D43BE4383C540F3D93D4D	D33E13C12004A700F246D8C73709114A881609D658E045D54DE36874728D07F0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	45A8ECA4E5C4A6B1395080C1B728B6C9	8A97BB0E599775D9A10C0FC53C4EDB29AA4CEB4E	DB320AB28DFF27CDA0A7F87B82F2F8E61B3178A6DE8503753D76F1172D32E08E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	FD2AF543B707ECD6EBC57E424C4D6C23	85105885B126287313C9E3F4B325E61AACF339CA	BB9C1053B063D84138F7748531C30398292814D14A8873E295303879F84E3A07
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	1992F4B5D7ABDB86D6D84F88DECC94D3	8E6033B3897B8C07AA0A8E2746DC2D7CE0930D58	CF9515D6ED45136DBDC4A71254634554178868A87FC119B321EDC798481C5E52
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	662E96CD13B3E324CF4F759F3E8C78EB	29DBE521E21E1288A332AB879DBFCAFEC541C681	2D922E1459FB350F6611DAE39D067F3783E43A99E41AE148E12351D71660F66E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c25ecedc-fdc1-4244-ad4b-ef66ded4d381.tmp	ASCII text, with very long lines, with no line terminators	EDC4A4E22003A711AEF67FAED28DB603	977E551B9ED5F60D018C030B0B4AA2E33B954556	DD2C9F43F622F801FCC213CDE8E3E90EF1D0D26665AE675449A94CEC7EB1D453
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c455ede2-f4a2-49e8-bcfa-f9d9a3c20073.tmp	ASCII text, with very long lines, with no line terminators	D4ED8DA8E85D6FE03A75D62D0DD17645	331891B7B4ACC14AF99EB4D15BB9C84B1017D69C	4771445F71F1C83BDFBA0C66F7E9B3F5B5EDB7075189DC7E9B8FE871E5827F33
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	6752A1D65B201C13B62EA44016EB221F	58ECF154D01A62233ED7FB494ACE3C3D4FFCE08B	0861415CADA612EA5834D56E2CF1055D3E63979B69EB71D32AE9AE394D8306CD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	B31D800ACB489E7ADF8BA16ADD868F24	366458CA5676F73791184F719C7DC630C0DF7E95	6117A24B8311126F0CB9B798E351C7113FB0789FF8ED5E64A08FA2C3C454A999
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	031D6D1E28FE41A9BDCBD8A21DA92DF1	38CEE81CB035A60A23D6E045E5D72116F2A58683	B51BC53F3C43A5B800A723623C4E56A836367D6E2787C57D71184DF5D24151DA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db	SQLite 3.x database, last written using SQLite version 3032001	089C02B21909DD4D739ADC2F093231BF	B33D36CAF38B5B342ACD0EFA9DC0F6F6C37D5F85	184814D16B8115D3929672ABCFBAD21D2440E3F41257AAC26429764340FA19EA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal	data	D426B425782DC3173CB4BD90323285E4	F95295BCD1358361320EB0D659449489EAA11A5F	F9B401E5BB33E580B36537BDB0D1EB8BA12A2250DC7B71D081BB915C8AFFB071
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dc6ba242-f6d7-4e26-a8ef-c04b3389fa5f.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	8398DCA3CF67DABD3EE44CA79B1B4A5A	EBD40515CBDB9159CF71BEC20FCBD587ABE14B00	FD5FFAAF0C41C1A5F3FB8739103FADE54EFA1BE667DEBEA15394F2B24D16858F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\df7fc025-d783-410c-a16f-7d8113f596e2.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	C29E4C578A28AB8C2254A8137E45E70B	B100FBC728837E5B39FAA9B648F1582083452836	0BB6D93547A046B6AB7427B84E0A63D717D0EDF5ECE7150A883CD9D456115DAF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	2A118A7CBB78EB485993C4CDF8D4D816	5DCE010001235953B5B67142A57DF8716998F41A	4130F309091E84E7D3238A1E0E3196F1CAA1A057B79FDD20C20E2B40A618C48F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	DE9EF0C5BCC012A3A1131988DEE272D8	FA9CCBDC969AC9E1474FCE773234B28D50951CD8	3615498FBEF408A96BF30E01C318DAC2D5451B054998119080E7FAAC5995F590
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	C422F72BA41F662A919ED0B70E5C3289	AAD27C14B27F56B6E7C744A8EC5B1A7D767D7632	02E71EB4C587FEB7EE00CE8600F97411C2774C2FC34CB95B92D5538E7F30DA59
C:\Users\user\AppData\Local\Google\Chrome\User Data\c56d703a-bd16-488d-ae52-6e84fc3eb856.tmp	data	82F10F26C404E79E7075228453E8CE72	42CCBE125FB6291B92E67ED11C765AEB104797D1	61E342C0F4C38FADC62A5C578CE17FCF39CB3EDEDE8E0D0EA56AAAFF53BFD4B5
C:\Users\user\AppData\Local\Temp\2f726f7b-586a-4c43-9269-7e236a58c6fe.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\6ebd6dba-0136-4f69-9869-fb4e17a19fdd.tmp	Google Chrome extension, version 3	1FE8E0AEB768437A23CEEAE6053E5822	5529A275644B729009E22035F6125879450F4ABB	25A2F515CEC98CF2ACF11B34C59723D76820A4B5734E223D7EBEA55E5A851468
C:\Users\user\AppData\Local\Temp\93ce7357-3aea-45da-8a81-23b3a1daed22.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\e5862ea7-a2e7-42d0-a032-00df4de1a0d4.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\93ce7357-3aea-45da-8a81-23b3a1daed22.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\am\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	26330929DF0ED4E86F06C00C03F07CE3	478F3B7E7A7E007BEE182B89C2EF6FFE6045E92C	621B5139ED199022BB6529AF18ED4DC312AE9F3E90ECAF3B2C9E1D12114F5B22
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ar\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	44325A88063573A4C77F6EF943B0FC3E	78908D766F3E7A0E4545E7BD823C8ED47C7164EB	67A439A08804EF4BEF261BDBADD8F0FEFD51729167D01EDCA99DD4AF57D6108B
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6911CE87E8C47223F33BEF9488272E40	980398F076BB7D451B18D7FDE2DE09041B1F55AD	273DEF0F67F0FA080802B85EF6F334DE50A19408F46BDF41F0F099B1F5501EEA
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\bn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F9DDF525C07251282A3BFFCEE9A09ABB	A343A078E804AF400A8F3E1891E3390DA754A5CD	C69C6C90F7EB8F10685CD815AF1F6F1B87CF30C4E8D95DF1D577DE1105AAD227
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A90CF7930E7C3BEC61EE252DEFAD574A	F630CA01114A7BDD39607CB84B8280CCE218A5C6	A533740E17559E2ADF40B4555C60F21EEC84E92C09CDBC19EED033A0B4DD2474
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	17E753EE877FDED25886D5F7925CA652	8E4EC969777CC0CEB7C12D0C1B9D87EBBB9C4678	C562FCCFCE374D446BFAC30AC9B18FF17E7A3EF101C919FF857104917F300382
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F08A313C78454109B629B37521959B33	3D585D52EC8B4399F66D4BE88CED10F4A034FCCC	23BF7E5EDF70291CA6D8F4A64788C5B86379EECB628E3DFA7DD83344612F7564
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	980FB419ED6ED94AD75686AFFB4E4C2E	871BFBCA6BCBA9197811883A93C50C0716562D57	585C7814AFD2453232BC940252D4AE821D6E6CBCFD74A793F78E5DB8BA5342F1
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	40EB778339005A24FF9DA775D56E02B7	B00561CC7020F7FE717B5F692884253C689A7C61	F56BF7C171AA20038EE30B754478B69A98F3014C89362779B0A8788C7B9BEEE1
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\en\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8351AF4EA9BDD9C09019BC85D25B0016	F6EC1FFD291C8632758E01C9EE837B1AD18D4DCF	F41C82D8A4F0E9B645656D630C882BE94A0FB7F8CEC0FE864B57298F0312B212
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8A70C18BB1090AA4D500DE9E8E4A00EF	8AFC097FA956C1317DB0835348B2DA19F0789669	FF173D1CEF665B1234E02F11070ABD2B65230318150734579A03C7F31B4AE3F4
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A62F12BCBA6D2C579212CA2FF90F8266	F7E964A2D9BBDA364252BCE5CFBA3FD34FDD825E	3EB3EB0B3B4A8E5A477D1B3C3A3891CCC7DC6B8879ECE243A7BD7C478068273D
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\fa\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	852BD3CFF960F1BC3A2AAB3CB3874EF9	C9F6F3C776542889FE3B67971D65ACFE048A3A0A	D87597B6C10364501B98AA42524843F109009CCEF022D8E0170440D7F144F4C6
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3902581B6170D0CEA9B1ECF6CC82D669	C8208AC2B1DD6D4F8BDAAE01C8BD71FFFA5A732B	D2A8180225A83A423BB6E17343DFA8F636D517154944002ED9240411B8C0C5E1
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\fil\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	59483AD798347B291363327D446FA107	C069F29BB68FA7BA2631B0BF5BBF313346AC6736	DD47530EAE96346CD4DC3267A0BB1091BB17B704803A93CDA2E3E81551B94F12
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9B416146FE4F1403C2AACAC4DCF1A5C3	616F055C9FAD4CE972DF82EC8A9B2F4EDA3E7FAD	7C7F5758F54008190ACCDDBD1761CBD980FB5FE0847E992874498228D2571DBC
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\gu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	68B03519786F71A426BAC24DECA2DD52	B8E6608932EC5CEC4BC3C5475BFC3E312D2E2E7D	C77A4D27E9E6CA25B9290056D93A656E3EBE975957E4C2EE9F0FB11B133D5CD4
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	20C86E04B1833EA7F21C07361061420A	617C0D70E162CF380005E9780B61F650B7A39F9B	C2C27CA242DBDE600BA3AA7782156BC2B190A64D8A1B51EDC8007BDECA139553
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3ED90E66789927D80B42346BB431431E	2B061E3271DF4255B1FFC47BDB207CDEC0D9724F	0B41E3C42414F72C9A12C05F8772597F9685115366A774C66018467AD4B71A74
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8E9FF7E49473C5734A2F6F0812E12EB3	A4F10DDD1580582533D5EB59EDF6D8048F887C81	6CDD2FB39ADECE00E88B989E464B05ED1414092D0492F6D0AE58D549BFD1A46A
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\id\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	7ADF9F2048944821F93879336EB61A78	C3DA74FB544684D5B250767BB0CB66FFB7C58963	3630947E1075E3663AD3E4824D0BE42CB47C0D615D8053E83B9595047C8BA9BE
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	BB3041A2B485B900F623E57459AE698A	502F5EA89F9FB0287E864B240EA39889D72053A4	025737EF8FA06706B3F26D0F52B4844244A6D33DAE1D82FEF2931A14C003D57E
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6F2CC1A6B258DF45F519BA24149FABDC	8A58C7880C6D22765DCBB6BCE22A192C1B109AE1	42ECFEE727CFC4F2845FEFDACE5EDC2E0A40AFAD69973A3B950CE653A7633342
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\kn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2E3239FC277287810BC88D93A6691B09	FC5D585DA00ADC90BF79109C7377BD55E6653569	5FC705AD19761204D8604EA069936A23731B055D51E7836CAAF16AC7719FBEEA
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	E303CD63AD00EB3154431DED78E871C4	3B1E5B8E2CF5EBDF5D33656EF80A46563F751783	FDE602BFDB1AFD282682DA5338C4F91D8A2F6CB5411DB8F62F4583D629CE67A6
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	93BBBE82F024FBCB7FB18E203F253429	83F4D80F64FA2ADCE6C515C5F663BD38A76C51DB	E7A8570922CCC4F2CA3721C4E61F426158C4E7BC90274FBC8BE4040FF8B6CA9B
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	388590CE5E144AE5467FD6585073BD11	61228673A400A98D5834389C06127589F19D3A30	05CA14196CA5D90B228C0F03684E03EBE403A3E7B513AE0A059244AE12B51164
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ml\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2AF93901DE80CA49DA869188BCDA9495	E60DF4F2FB12BD3F1CA869DAD9F6BDE0C17CEB11	329E80AEE1212F634E180DEF7E16D6E38D9C9FDA9AC9DB1D99B8AE1626EF304E
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\mr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	659F5B4ACA112D3ECBB6EC1613DDE824	5DEE35FCD260554999F8DDEC489FBA9F81FA8EEE	C8B765E7A07578BC078A952E151E3B866506959E15E79E9E5E1DBB98F9C4008F
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ms\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	09D75141E0D80FBD3E9E92CE843DA986	B24EAB4B1242C31B69514D77BC1DB36A3F648F40	8F1DBDEFD910AD88BEEC7956619CDB34391D6E69254C3A7497E8F87134AE8B5C
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	ED99169537909291BCC1ED1EA7BB63F0	5F72D51B6DBE8C622EF33D2B2AEBD7E9E20DAFB3	65B6598225ADA1E14EE9CB76CA863708E8F9EE0724B4EDC8F9508532BD631BAB
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\nl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	E9236F0B36764D22EEC86B717602241E	DE82B804B18933907095DEF3F2EF164C1BB5F9B6	300F4F7C45EBE39EAAF40776C28D0A399A710699AAB58E9A8D43A6FD2DD00376
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8254020C39A5F6C1716639CC530BB0D6	A97A70427581ADA902CA73C898825F7B4B4FAC8F	2F4E4FC6AEB4A8E7F0E0DCE220D66E763F4EBF1FA79985834D636C6692FEA3E8
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\pt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FABD5D64267F0E6D7BE6983AB8704F8C	D4DAAD0FF5C461C51E6C1FD22B86AFC5B13E123F	D82DCA262FF005668B252B478DEDAAC4A5C1E417AF9DE57C22F169A6680183AE
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	75E16A8FB75A9A168CFF86388F190C99	C27CE4C1DB3DF2D232925C73DC9AC1FA24DAD396	9C4716FF42A730F1E7725F0D9E703F311E79FDA31F85B4BB0B8863FC3C27AB9D
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8EF94823972EA8D2FC9BB7EC09AB1846	4171DC9CE9D82FDA5A280517A1FE58C907D75CE3	1009DB9FFA64E411B31E0780EBA43B9C9F8B05B5AC8CCA9A38514650261ABB0A
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C314FAC15AFF6A2EE9C732C64AB5A66D	D51F3362B5FDD2F3756DE42D7D6227DC818C6344	8EE2A25A09D6D0F89063FAA34BA2BC4DB505DD31FE6D5064C5D6E1E153721484
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F60AB4E9A79FD6F32909AFAC226446B3	07C9E383D4488BEBE316CA86966FC728F55A2E32	CDE581E6E7CF0136B003B45549E3BBEE7B67B74ADD786A8D5607BFDAD1DE7B87
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	4E233461D805CA7E54B0B394FFF42CAB	77F30833FC73A4C02C652C9E5A6EAFE9C3988A30	E1E1C64213EBF2CFEB7BA83E51B697CEA449B3A8B279B1024B859228DE869879
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	897DAE6B0CF0FDE42648F0B47CB26E06	E1F5F5F65AF34FF9484AB2B01E571EAF19BA23D0	52656C24F6F6D0F3B3FC01E9504C4D5CEB85624F1B22E974CA675DD0E94EB82D
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\sw\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	EC233129047C1202D87DC140F7BA266D	537E4C887428081365D028F32C53E3C92F29AAA6	28EDBC5C4858217811D45CAA215710E452C8926E4DE99F810001AD664D08BE0D
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\ta\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C50C5D2EDFC79DBDCBD5A58A027A3231	14314D760A18C39F06CD072CF5843832AFB86689	EEB0E89D5AD92B80FF08F88533A111DB3416D7C3860C64227D1CC8B7C2B58298
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\te\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F740F25488BE253FCF5355D5A7022CEE	203A8DF19BA5A602A43DE18E99A6615D950C450E	5B9C96CB5D62510836B321EB9CEEF23865BB9D4DC4DE7716E90A858E00701FDF
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9F926FCB8BAEA23453B99EA162CCDEA1	04D1E45591C0435A39DCA00A81E83E68585E8B64	100463C587F549C964A4EB21EA38EA1B4ADEF11E927FAC8FF884623B77202C02
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	B0420F071E7C6C2DE11715A0BF026C63	F41CC696786B18805DB8DC9E1E476146C0D6BE90	309F946F753DF6AF5C255D772EA0D429462152F78ABA4A96A2E369707A2C6B67
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FF06E78C06E8DFF4A422EA24F0AB3760	A434D1CE22DE0D2FD1842E94F5815F7B1972D1EE	E209FDEF12CCEC03B4E0D5B9464F90D527E62C5BC4DD565C680661D7F282AB02
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C3A40E8433D96D7E766C011D9EC7502B	EAB7BFAE48B1D29B95A8AE040DE94D3500824EE3	BD3D0F8CF100C96415B224011F550082D4516593CBD3631347748B7D6AD5B85A
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\zh\messages.json	UTF-8 Unicode text, with CRLF line terminators	D4513639FFC58664556B4607BF8A3F19	65629BC4CBBACA498F4082DD5884C8D3D7DDDC8A	C6D49997A9B4FF7FE701EC3644B1A523679A27778FB4BD39B7DBCA9F1ACCE595
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	494CE2ACB21A426E051C146E600E7564	D045ECC2A69C963D5D34A148FE4A7939DE6A1322	A1053F9496ED7FA3C625C94347F07A5E760F514FD8EE142EC9EE64E86B9C063D
C:\Users\user\AppData\Local\Temp\scoped_dir5944_1060525795\CRX_INSTALL\manifest.json	ASCII text, with very long lines, with CRLF line terminators	F76238944C3D189174DD74989CF1C0C6	85CE141EC8867B699668A5F5A48F404C84FCEB04	2EF48A1CF322DE356E8844DD2FD3431E8E7ACD04770649B6507EACA5ABDB53A7
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\6ebd6dba-0136-4f69-9869-fb4e17a19fdd.tmp	Google Chrome extension, version 3	1FE8E0AEB768437A23CEEAE6053E5822	5529A275644B729009E22035F6125879450F4ABB	25A2F515CEC98CF2ACF11B34C59723D76820A4B5734E223D7EBEA55E5A851468
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	0F604F138A921EE7270C45E520621C30	E2BA940AF44609BEAC49B603EB1C379E43F4AAEB	A149D52858570C9544E33B183915556230B7F66CF4ABAD4DDB00B1409476FBE1
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	DDD77BA67108D8D88D66E35AA72A8048	F9C217728E756728B788C969F5101484D0557065	3DB4D2B1586C020EC679C09148DB226DBB23857D326BECBB6CC48976036C391F
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	B587AF92ECD087AAE3EF210364960844	AD78B31888863D3F0EC0D8CDCA316EDE9EBD7543	9796A230BA459EF31E3D102B02575B73D6F1C812BF11F4D1E55B17C17891D2C5
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	639CEF5231701AE13F81DBB67730BB95	E249FE0C70B0F85B033730719B6D1B30F0B04431	6C71F9D37006245D0E2E956D6D2C1815FFEB43236DD3D427A02F8DD348AC93C5
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6E1B49ABC0AA5C1E2764E48EB1EA256A	604E76C89D4763C002C51908CEFE8C11AF7CBBE5	B692DB1A249223E62E62DE9725334039419B5942AF715669F0F0F4BDEDAC5733
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	41BB0DB6EC99E4664C6E2247EC704151	BF2268F9A77218384F1F73951F98829296318452	90FC75C419D7359C2241F54562177252655526F3074E7E419E36F5C473843842
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	64CBD0878A320F70E8F9DC2AD540C8DE	E95BC23E053C078BA4C269B2F75C22159450C2F2	E99F26D0540E2C71802716B24668D9B4611E9BC429CD681606963E095D18EDFD
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\en_GB\messages.json	ASCII text, with CRLF line terminators	64CBD0878A320F70E8F9DC2AD540C8DE	E95BC23E053C078BA4C269B2F75C22159450C2F2	E99F26D0540E2C71802716B24668D9B4611E9BC429CD681606963E095D18EDFD
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	B4B479436878DA0B032F1B656B310637	F525EDB5B376CE665280DB32EFE3684CE6DC10DC	3B3DEB56AD7A5F85ED5AB944172B715A5F5F49E3C5A0F7915DB879BF8ACCFEE0
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	807730218B74CA040AD8DD01E5B2E0D8	ADA0042296C448DCD5C2B22F520C9304526FE9AD	2823F6DDBF6905D9F4459091A85073644E64B5F7AAAA7FC435495C50DC5ECE68
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	B5DF9CEA0A2FEAE9816F8D41470D744E	65C86CD677A68FF7E11A789EAB078FB932A9E157	AD75B59775C8F6688FFA9F0453868999996E04B9EE9645721765D1C731D04578
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	50EF678CECF0C82675B9DF64CC3CF72E	F9D9A994530C86C1A99B6D104E86666AB56AD4DA	7F5B921E0D0B01D8D3287D3293729BFFF07ABC7DBCB1227134823A404DF29E83
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	0CA8EE1D816E684D781E7DF18C18455D	F711596B4049CBAA99296AD3755CCC0E79D47051	CA9739F4FA8514C8669AE6221842B1F5D148BD80492888CECBA7410CB32225A8
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	BE3C2C2BF4551641D84A60EC9F1E6E15	AAB0C8097A5B35FA40F2B137E1889677CB105B40	DDDDAA9A83C34BF2874CBBE0214351C15E2620C0DC3863B2B79C4ACF9C2A4637
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	8CFF82EB516A180F2BFA22DA0B18D9E7	87053836FFDB4103302D17D221BC76C8DB842A28	EA0020B530B3E047559248C076B54E90EFEF6A233DA130D5F43445C25BCB2008
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	5A777479C6072C009FF6EEEDD167B205	D4B509E3AD07A7EABEB32E7EF06166D5A60D4B54	1650A45BF772FA06F99EB68015FD356B8BCC1DD4AEE0A4213C626BA2216D9D43
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	C3AD6A15FC6370A3D3E18A313AB22237	E1FB9248DA5E0607882DBCC1819DE5B67F8614F5	F895E3D151B52E817531C21F877689109B92EC2DA5F0F1A677CC8219A6315373
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	8B27E83CA394C9D73B58C33910881F01	007F3DFA6CACB4D96D5C057930A8D45241F9908F	EE050F8DE5EC6F49D4B8E5CE1A432BDE43B4EAFA0963C045D8A097AB622D96E8
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	DCA488BB7ACBBDC0FF63246899F85933	9408CEF9B8C2EB24E66700E7CD6405A232803EDE	43267C5F695BCD2A31360D6B03699EFD27D9F53215479042642F42F8612EB7BB
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FB01096BE49765965AE2148455ADD74	BA73186A0A0D81A20D2830432DEDA52A0527C9A1	C6BE17C57BB3500A02F98F8A218B120F63D4F29BAE2A960210DC14656D37CBE3
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	087B93BE3016C3C7CBB1753C38E337EF	01F9EAB9C8E614DDAC5AE7CAEB564E4803586753	F49A563FD4545BE61DBB720325E4DF86E2C6674F9EBC53C24E190F291E44E364
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	FC774504DD2DCE69B8DD55AFC02AF58D	1D31DC3F3DA200AC24026B2F542BB30B52CE6B16	6F976F9ED367A7B85CE9B1DE0CB3B228E9E983E3FBBA4D3CD35A59BCA58EDBBC
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF line terminators	4FDBF2298A69836E8F76B3374E20DDA7	445DFC32C1D748D3B100D1211D2A2ABCD26C5834	5E3FEFF17B28742EE0D5882D94C7A31D13CDB1D9C1524FE69F045AB109B2A173
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF502C935CB5F2C61F7B9EFD6426CF5	31D25CF9B1DC6CDBA07203C107AA1233987D6FFF	AB56E763119222142A2A69B694238E7C2069F03D909623B7DA25BEAB87494A8A
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	F7739EB95F617BFC907FD1D245B49329	D7E6850E8EE0743726BB9CBFE0CDC68F2272D188	D614E1F67703BC80B0DBEB0896C87E31466E3E3E668A41364EEA7478A8049CB2
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	B0329570F687126C3D9D26FD4279A107	DCF852F8E558C9445AE3598B814226D8C756932B	9A50EB2C558B250F198F3D1EED232056D3BF8C4463DCEFF37D99579381C84118
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	F39681D5543FB19D168EEBE59277C73B	B279538A6B837A0930CD4CD86200792B58E10454	619631AA6317854DF7FE928288E3A13B2AEAEFAB2F2B46F019F68856E1B02B1E
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	EFCAC911642CA7FAF70B8807891387D4	9F603B7AE7A06D83540B4C6B2EF5955C8ECB7C26	0327B23F28CEC110209093E1305FF1EFE550C04AE977C31A3E1D5AFB2098BD7F
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	AC696B33EC1AFDAE3A4A3E2029E92CCB	2B1D6F49C25A082C876E98C71DF96CAF4D1A1681	E7829B9A2FC8F518340A97A09C537608DB005EB265B670581682728E0FB0DA41
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	7A151C71B963B0547E30005DF632B5A2	AB9D0B08786AF05AEAE7DAD971934B82C21D38D5	6FE9E5A1B0C425766582273747F85911C40D8EE125CD609209BA1E3C706EF6E8
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	C3DC2B3DC1DFF033F0687C6FF017BA39	E50BBB328E2A500BED3590DBBC1F7378443A7C03	E2CD4F04332E33D5C733CACEADE0512ADDC1401A0EC36549FC53B066BB99A220
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	E9FD187A41491AB6CB1A62D1FB704C31	F158189AB73A614C84FA42C0CA21595591A1D418	744BE9A108C755A6FBCADF571F8A319B75E9076F47BA0C62A1354134DD78DDFE
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	903D486DA74BB1A637D94C8ABF8A3462	4036AEDC1823F9EC05BF3B0CBC5594C86AC26065	0EF65E44921254DDEEEB7DC1DDC8A9ED8A9E0F5B7B8152EE9A0121E2023932D4
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	79733424BB4B9547D18D8395A4221CBF	28B49907E1DB3D1FB5850DA4167A010E2288D082	401FF6EE0C8B1EB757F78890D00456054C844609C4C5E5F02489AF731199AB9F
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	D59DE8DC9C5331BD40CE319F89F71BE0	93EF48DBAD9870C892E70CB6CD12B9550BA7627C	450702399CCDB6E9E70B493032BA20C953FAE351337C1A9B4EBE633AA45FC965
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	060C95DFAFF0EF7D6F54FD0F8423A10F	C48DD8EE033E7FFDEA9B64A802C8772F6353674C	CCE914437100AD00567D4434FEA53E5326FB1AE851969AD60554C2A95FAC525F
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	999FD8B9760D9C9EBA2DDF945807074D	371F1E2B036820DE2E4ACEC50C2D9817B7C0E178	52AABBCACEAA834BE4003C4A8C1EF0B6B56444C6035DC560765D348F66118589
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	AFDA308D47CA0C53158DDEAE46E7E75C	911EE2485C1D1736DF3A7FDC3E443CB40539495B	86E2E942BFC23A205E0D7C04466A4D63CE29DF5A7D94652A2533499BEE998FB7
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	59D0FC29DEC89BAE9C1F62B281D18AAF	33047B47BFEF3A2D29E27709DCD8A1EAA7E76436	8E05F6A2F0F355AF3CC56CAD5D93DE9661E340BAF11EC224BBCB2B9ECD39D938
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	105797173F0759A38104A71AC9AA8514	4F57A7151387EAA2CDDFA7476F9945476EE6C568	84768D8AE07657B123AAF1A070FAA3B11FFE835D59444E11FF38C93F9E9137B3
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\user\AppData\Local\Temp\scoped_dir5944_669121014\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	2297666E99750869AFDD49638EEAF95B	A867CC74FFFC3469D19D3EA6B2206DE69FB5FF98	6159461884E738A585EEB550CD2B84734557606AFF29F5D1AD34D9DFA202F1D3

ID:	345054
Product:	CloudBasic
Start time:	16:30:40
Start date:	27.01.2021
Cookbook:	browseurl.jbs
System description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Architecture:	WINDOWS

Analysis Report http://lib.tnua.edu.tw/goto/https://7388r.csb.app#asdf@asdf.de

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection:

Phishing:

Compliance:

Networking:

System Summary:

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs