Automated Malware Analysis Management Report for https://kezenelectric.ca/First-America

Overview

General Information

Sample URL:	https://kezenelectric.ca/First-America
Analysis ID:	432851
Infos:
Most interesting Screenshot:

Detection

HTMLPhisher

Score:	64
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Yara detected HtmlPhish10

HTML body contains low number of good links

HTML title does not match URL

Suspicious form URL found

Classification

Signatures

AV Detection:

Antivirus / Scanner detection for submitted sample

Source: https://kezenelectric.ca/First-America

SlashNext: detection malicious, Label: Fake Login Page type: Phishing & Social Engineering

Antivirus detection for URL or domain

Source: https://kezenelectric.ca/First-America/

SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

Yara detected HtmlPhish10

Source: Yara match

File source: 84161.pages.csv, type: HTML

HTML body contains low number of good links

Source: https://kezenelectric.ca/First-America/	HTTP Parser: Number of links: 1
Source: https://kezenelectric.ca/First-America/	HTTP Parser: Number of links: 1

HTML title does not match URL

Source: https://kezenelectric.ca/First-America/	HTTP Parser: Title: First American Title Company - Office365 does not match URL
Source: https://kezenelectric.ca/First-America/	HTTP Parser: Title: First American Title Company - Office365 does not match URL

Suspicious form URL found

Source: https://kezenelectric.ca/First-America/	HTTP Parser: Form action: index2.php
Source: https://kezenelectric.ca/First-America/	HTTP Parser: Form action: index2.php

Source: https://kezenelectric.ca/First-America/	HTTP Parser: No <meta name="author".. found
Source: https://kezenelectric.ca/First-America/	HTTP Parser: No <meta name="author".. found

Source: https://kezenelectric.ca/First-America/	HTTP Parser: No <meta name="copyright".. found
Source: https://kezenelectric.ca/First-America/	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 104.129.24.42:443 -> 192.168.2.4:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.154.247.12:443 -> 192.168.2.4:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.70.177.74:443 -> 192.168.2.4:49783 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.70.177.74:443 -> 192.168.2.4:49866 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.208.111.117:443 -> 192.168.2.4:49909 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.208.111.117:443 -> 192.168.2.4:49910 version: TLS 1.2

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: kezenelectric.caConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.9Accept-Encoding: gzip, deflateAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2018/11/LOGO-300x179.jpg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: kezenelectric.ca
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2018/11/CCC.jpg HTTP/1.1Host: kezenelectric.caConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36Accept: image/avif,image/webp,image/apng,image/,/*;q=0.8Accept-Encoding: gzip, deflateAccept-Language: en-GB,en-US;q=0.9,en;q=0.8
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2018/11/index-300x117.png HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: kezenelectric.ca
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2018/11/CCC.jpg HTTP/1.1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36Host: kezenelectric.ca

Source: unknown

DNS traffic detected: queries for: kezenelectric.ca

Source: 77EC63BDA74BD0D0E0426DC8F8008506.1.dr	String found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
Source: Current Session.0.dr	String found in binary or memory: http://kezenelectric.ca/
Source: History-journal.0.dr	String found in binary or memory: http://kezenelectric.ca/Kezen
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, manifest.json0.0.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://accounts.google.com
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, manifest.json0.0.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://apis.google.com
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json0.0.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr	String found in binary or memory: https://content-autofill.googleapis.com
Source: manifest.json0.0.dr	String found in binary or memory: https://content.googleapis.com
Source: Reporting and NEL.1.dr	String found in binary or memory: https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
Source: 3085c1ef-01c8-4cfa-a8dd-fb9b1ffb49ad.tmp.1.dr, 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr, 9a88bfbb-e9d5-4757-8815-bb24bda897a2.tmp.1.dr	String found in binary or memory: https://dns.google
Source: manifest.json0.0.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://fonts.googleapis.com
Source: Network Action Predictor.0.dr	String found in binary or memory: https://fonts.googleapis.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://fonts.gstatic.com
Source: Network Action Predictor.0.dr	String found in binary or memory: https://fonts.gstatic.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: 5278677776ece701_0.0.dr	String found in binary or memory: https://google.com/;
Source: manifest.json0.0.dr	String found in binary or memory: https://hangouts.google.com/
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr	String found in binary or memory: https://kezenelectric.ca
Source: 06aba3ef4a05b1d3_0.0.dr	String found in binary or memory: https://kezenelectric.ca/
Source: Current Session.0.dr, History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America
Source: Current Session.0.dr, Favicons-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America/
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America/(First
Source: History Provider Cache.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America/2(First
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America/First
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America/index2.php
Source: History Provider Cache.0.dr	String found in binary or memory: https://kezenelectric.ca/First-America2(First
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/First-AmericaFirst
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/First-AmericaM
Source: Favicons-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/First-Americak
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/First-Americal
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/Kezen
Source: c27291f84aa51d71_0.0.dr	String found in binary or memory: https://kezenelectric.ca/Wc
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/exec/fd_helpWin?topic=8
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/exec/fd_helpWin?topic=8#main
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/exec/fd_helpWin?topic=8#maintHZQ
Source: Favicons-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/favicon.ico
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/About
Source: Current Session.0.dr, Favicons-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/accreditations-certifications/
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/accreditations-certifications/Accreditations
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/accreditations-certifications/c
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/meet-our-team/
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/about-us/meet-our-team/Meet
Source: Current Session.0.dr, History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/contact-us/
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/contact-us/Contact
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/home/contact-us/testamonials/
Source: History.0.dr	String found in binary or memory: https://kezenelectric.ca/home/contact-us/testamonials/Testamonials
Source: Current Session.0.dr	String found in binary or memory: https://kezenelectric.ca/home/past-projects/
Source: History-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/home/past-projects/Past
Source: 229c73a4fe442ea3_0.0.dr	String found in binary or memory: https://kezenelectric.ca/k
Source: 75ddb2c602fd7877_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.5.6
Source: 75ddb2c602fd7877_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/plugins/wp-customer-reviews/js/wp-customer-reviews.js?ver=3.5.6a
Source: 5da3893660e7a47a_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/hoot.theme.js?ver=1.9.14
Source: 5da3893660e7a47a_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/hoot.theme.js?ver=1.9.14aD
Source: 1d1b2948d4525464_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.fitvids.js?ver=1.1
Source: 1d1b2948d4525464_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.fitvids.js?ver=1.1aD
Source: d9852fc8edfab566_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.lightSlider.js?ver=1.1.1
Source: d9852fc8edfab566_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.lightSlider.js?ver=1.1.1aD
Source: 786b0adb2bd9c037_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.parallax.js?ver=1.4.2
Source: 786b0adb2bd9c037_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.parallax.js?ver=1.4.2aD
Source: 8ed7979f48ca3039_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.superfish.js?ver=1.7.5
Source: 8ed7979f48ca3039_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/jquery.superfish.js?ver=1.7.5aD
Source: 06aba3ef4a05b1d3_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/modernizr.custom.js?ver=2.8.3
Source: 06aba3ef4a05b1d3_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/themes/metrolo/js/modernizr.custom.js?ver=2.8.3aD
Source: Favicons-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/uploads/2018/09/cropped-LOGO-3-32x32.jpg
Source: Favicons-journal.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-content/uploads/2018/09/cropped-LOGO-3-32x32.jpg(
Source: ee05b7802d222e35_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/hoverIntent.min.js?ver=1.8.1
Source: ee05b7802d222e35_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/hoverIntent.min.js?ver=1.8.1a
Source: ee05b7802d222e35_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/hoverIntent.min.js?ver=1.8.1aD
Source: a8d7eb2cedf7692b_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
Source: a8d7eb2cedf7692b_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2aD
Source: b92b2c27ad669878_0.0.dr, c27291f84aa51d71_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
Source: b92b2c27ad669878_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/jquery/jquery.min.js?ver=3.5.1aD
Source: 229c73a4fe442ea3_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/wp-embed.min.js?ver=5.7.2
Source: 229c73a4fe442ea3_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/wp-embed.min.js?ver=5.7.2aD
Source: bda3c198988ffc1a_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/wp-emoji-release.min.js?ver=5.7.2
Source: bda3c198988ffc1a_0.0.dr	String found in binary or memory: https://kezenelectric.ca/wp-includes/js/wp-emoji-release.min.js?ver=5.7.2aD
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://ogs.google.com
Source: manifest.json.0.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://play.google.com
Source: 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://r5---sn-h0jeln7l.gvt1.com
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://redirector.gvt1.com
Source: manifest.json.0.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr	String found in binary or memory: https://ssl.google-analytics.com
Source: 200e0abd4ba2ff0b_0.0.dr	String found in binary or memory: https://ssl.google-analytics.com/ga.js
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://ssl.gstatic.com
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: bda3c198988ffc1a_0.0.dr	String found in binary or memory: https://twemoji.maxcdn.com/v/13.0.1/
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr	String found in binary or memory: https://wallpaperaccess.com
Source: 000003.log6.0.dr	String found in binary or memory: https://wphoot.com
Source: a431c1478c67bc32_0.0.dr	String found in binary or memory: https://wphoot.com/
Source: 6c75240678e5e01e_0.0.dr	String found in binary or memory: https://wphoot.com/;
Source: 6485724e45ee2243_0.0.dr	String found in binary or memory: https://wphoot.com/_
Source: timesi.ttf.0.dr	String found in binary or memory: https://wphoot.com/k
Source: Current Session.0.dr	String found in binary or memory: https://wphoot.com/themes/metrolo/
Source: History.0.dr	String found in binary or memory: https://wphoot.com/themes/metrolo/Metrolo
Source: 80a193e1143879d7_0.0.dr	String found in binary or memory: https://wphoot.com/wp-content/plugins/easy-digital-downloads/assets/js/edd-ajax.min.js?ver=2.9.26
Source: 6485724e45ee2243_0.0.dr	String found in binary or memory: https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/contact-form-7.min.js?ver=5.3.2
Source: 9e21f8aa16d21fc2_0.0.dr	String found in binary or memory: https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/fitvids.min.js?ver=1.1
Source: 002445640ee1de89_0.0.dr	String found in binary or memory: https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/hoot-theme.min.js?ver=2.12
Source: f597f914edb8e129_0.0.dr	String found in binary or memory: https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/megamenu.min.js?ver=2.9.2
Source: timesi.ttf.0.dr	String found in binary or memory: https://wphoot.com/wp-content/uploads/siteground-optimizer-assets/modernizr.min.js?ver=2.8.3
Source: 05a632044e49ec3d_0.0.dr	String found in binary or memory: https://wphoot.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1
Source: a431c1478c67bc32_0.0.dr	String found in binary or memory: https://wphoot.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
Source: f22d5e331d7c4eab_0.0.dr	String found in binary or memory: https://wphoot.com/wp-includes/js/wp-embed.min.js?ver=5.7.2
Source: 05a632044e49ec3d_0.0.dr	String found in binary or memory: https://wphoot.com/x
Source: Current Session.0.dr	String found in binary or memory: https://wphoot.comh
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr	String found in binary or memory: https://www.dwdtechgroup.com
Source: dc6462b65c6623d5_0.0.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: 000003.log6.0.dr	String found in binary or memory: https://www.google.com
Source: manifest.json.0.dr, 000003.log0.0.dr	String found in binary or memory: https://www.google.com/
Source: Current Session.0.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdXhLgZAAAAAApDk1usB-6gn8C_jiuIVL8OTDth&co=aHR0
Source: manifest.json0.0.dr	String found in binary or memory: https://www.google.com;
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: 7646c7fe-eb7f-4111-baed-47a93160456f.tmp.1.dr, 02be7372-55df-4983-b6ff-7018cbaa805c.tmp.1.dr	String found in binary or memory: https://www.gstatic.com
Source: 6c75240678e5e01e_0.0.dr, 5278677776ece701_0.0.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/CdDdhZfPbLLrfYLBdThNS0-Y/recaptcha__en.js
Source: manifest.json0.0.dr	String found in binary or memory: https://www.gstatic.com;

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866

Source: unknown	HTTPS traffic detected: 104.129.24.42:443 -> 192.168.2.4:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.154.247.12:443 -> 192.168.2.4:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.70.177.74:443 -> 192.168.2.4:49783 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 66.70.177.74:443 -> 192.168.2.4:49866 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.208.111.117:443 -> 192.168.2.4:49909 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.208.111.117:443 -> 192.168.2.4:49910 version: TLS 1.2

Source: classification engine

Classification label: mal64.phis.win@43/213@11/9

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-60C261B1-1938.pma

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\6bebe0bf-2ac4-40bc-910f-bd8906a292c6.tmp

Jump to behavior

Source: QuotaManager.0.dr

Binary or memory string: CREATE TABLE HostQuotaTable(host TEXT NOT NULL, type INTEGER NOT NULL, quota INTEGER DEFAULT 0, UNIQUE(host, type));

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://kezenelectric.ca/First-America'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1528,13816511049468976980,9988846167183782253,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1700 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1528,13816511049468976980,9988846167183782253,131072 --lang=en-GB --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1700 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

IP	Domain	Country	ASN	ASN Name	Malicious
104.154.247.12	dwdtechnology.wpengine.com	United States	15169	GOOGLEUS	false
104.129.24.42	gofirstam.com	United States	8100	ASN-QUADRANET-GLOBALUS	false
142.250.180.225	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
35.208.111.117	wphoot.com	United States	19527	GOOGLE-2US	false
172.67.7.204	wallpaperaccess.com	United States	13335	CLOUDFLARENETUS	false
66.70.177.74	kezenelectric.ca	Canada	16276	OVHFR	false
239.255.255.250	unknown	Reserved	unknown	unknown	false

Domain

Country

Flag

ASN

ASN Name

Malicious

104.154.247.12

dwdtechnology.wpengine.com

United States

15169

GOOGLEUS

false

104.129.24.42

gofirstam.com

United States

8100

ASN-QUADRANET-GLOBALUS

false

142.250.180.225

googlehosted.l.googleusercontent.com

United States

15169

GOOGLEUS

false

35.208.111.117

wphoot.com

United States

19527

GOOGLE-2US

false

172.67.7.204

wallpaperaccess.com

United States

13335

CLOUDFLARENETUS

false

66.70.177.74

kezenelectric.ca

Canada

16276

OVHFR

false

239.255.255.250

unknown

Reserved

unknown

false

IP
192.168.2.1
127.0.0.1

192.168.2.1

127.0.0.1

Name

Active

kezenelectric.ca

66.70.177.74

true

wallpaperaccess.com

172.67.7.204

true

gofirstam.com

104.129.24.42

true

dwdtechnology.wpengine.com

104.154.247.12

true

s.w.org

192.0.77.48

true

googlehosted.l.googleusercontent.com

142.250.180.225

true

wphoot.com

35.208.111.117

true

clients2.googleusercontent.com

unknown

www.dwdtechgroup.com

unknown

Name

Malicious

Antivirus Detection

Reputation

https://kezenelectric.ca/First-America/

true

SlashNext: Fake Login Page type: Phishing & Social Engineering

unknown

https://wphoot.com/themes/metrolo/

false

high

https://kezenelectric.ca/home/past-projects/

true

unknown

http://kezenelectric.ca/wp-content/uploads/2018/11/LOGO-300x179.jpg

false

Avira URL Cloud: safe

unknown

https://kezenelectric.ca/

true

unknown

http://kezenelectric.ca/

false

Avira URL Cloud: safe

unknown

http://kezenelectric.ca/wp-content/uploads/2018/11/CCC.jpg

false

Avira URL Cloud: safe

unknown

https://kezenelectric.ca/home/about-us/

true

unknown

https://kezenelectric.ca/home/about-us/accreditations-certifications/

true

unknown

https://kezenelectric.ca/home/about-us/meet-our-team/

true

unknown

https://kezenelectric.ca/exec/fd_helpWin?topic=8#main

true

unknown

https://kezenelectric.ca/exec/fd_helpWin?topic=8

true

unknown

http://kezenelectric.ca/wp-content/uploads/2018/11/index-300x117.png

false

Avira URL Cloud: safe

unknown

https://kezenelectric.ca/home/contact-us/testamonials/

true

unknown

https://kezenelectric.ca/home/contact-us/

true

unknown

Name	Type	MD5	SHA1	SHA256
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506	Microsoft Cabinet archive data, 60080 bytes, 1 file	6045BACCF49E1EBA0E674945311A06E6	379C6234849EECEDE26FAD192C2EE59E0F0221CB	65830A65CB913BEE83258E4AC3E140FAF131E7EB084D39F7020C7ACC825B0A58
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506	data	8BDFE20E18281A76BC3C987FE651E496	EB1D6F64D8D317ABFB5B7455AB0B31A5F86B3B95	F6DB33F0782B6C6A6C9BC6CD97717E88612E7EFEBE1648994A065E31DC85CC68
C:\Users\user\AppData\Local\Google\Chrome\User Data\0a1a5bbe-8aa9-4dc8-8139-02fc0a5e7de4.tmp	ASCII text, with very long lines, with no line terminators	F4F18F9651E9CD1F8AEE84A8F31315AD	19AE7D01314FCFB7575CFFF4512E685149E7ED81	263F3BDBC5418EB7FDD49B09D55755406F598EA7D97D863771631BE67780DC05
C:\Users\user\AppData\Local\Google\Chrome\User Data\76da7b8b-f094-4fb5-b0c0-393127c4b8ba.tmp	ASCII text, with very long lines, with no line terminators	2359E6E16190AD4C84070731EECEC524	BD7263D2B30D2876EBDA7E875DA0C002518F3427	6DB3152AC2734C68296B27A673009A226D3A319037C284AB8C3C3C11B6106BCE
C:\Users\user\AppData\Local\Google\Chrome\User Data\9548abb1-5605-427d-b54b-4fedc2fe2c35.tmp	SysEx File -	F7E21A47F193D74BD07DA83D03809E00	DD39332CE4CE9C807E8EA6E9A6A0D3BF236FA542	EABE0C19BCD77DA23D0EAF4936A886A6EDDBA70002799079F2C18987D49D2C77
C:\Users\user\AppData\Local\Google\Chrome\User Data\9c7b99d7-f559-43b7-a91c-0ac609b76ef8.tmp	data	5561C7B3F66AB9C12E73DDF051205793	5076E6DAFD4AAB702C37963E9BBC489C678ABD0F	BCF6B5772ABF3DEFB58CF0A5E28502E4280E90F2A074D5DF291A934A123E856E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	E6C1693D9F0F6B6E878D098FBFD4C92A	D9D2708143B4A3BA5D14DFED59DCB6B88DF172D9	E9DA6B8F6549D084D8740EB4C25755989B057EBF4F36B5E526F34DFFAB7500CF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\02be7372-55df-4983-b6ff-7018cbaa805c.tmp	ASCII text, with very long lines, with no line terminators	494384A177157C36E9017D1FFB39F0BF	CE5D9754A70CD84CEE77C9180DB92C69715BE105	07CF0A5189FAD30A4AA721F4F6DA1B15100991115833EACFA1E2DC84A1B54337
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1288b324-97f1-48f3-bcfc-db67dedd2185.tmp	ASCII text, with very long lines, with no line terminators	C998D9210ED638B6036BD4CFA085F3FE	77D25FB2EE5D2361263109DF98F978D49F0EB2FD	86056C2AA6C67F745DC95C6C1D4B507AF560F4D7F0841877025E2963EF8061EE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1e072769-31fe-439b-9f52-047825c17262.tmp	ASCII text, with very long lines, with no line terminators	56DF2F4EFC5AB026B42CD7A814BD8DD1	59BF7F02531760999EFFC0BAD45373E367047422	26ABB73F58D4022F2833673A82B2CDCBD1D9100F95CDAE02C037E3859C2749BA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\71e4fe4e-990f-4b98-aff1-06858d9696bd.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	7DFEC4C5A127D923F7E3E768FD8236CC	CE06950A0789B8B86BCA8CD72E55051D6B22D6AA	18EA735FD8EFA90C02029EAD1A706D4152E7FE6AAF6900B3E5F2F9CBFE91B923
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\734753a9-f224-42a9-a38d-289cb990c9ac.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7646c7fe-eb7f-4111-baed-47a93160456f.tmp	ASCII text, with very long lines, with no line terminators	52E802E0DB18D45B5619FA722C3C68CB	620276E1FD8A378B70250DEC6A3D63756F9754A8	39DC053FD252A26FB8D8563200A71D4C20426289D1720E8D1F7AEA49385E2A7B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7ce2b011-7949-43fa-aaba-66550c560841.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	8267DDF9306C6F258ACF71CA80964C8E	827890DFE3AE763977210296D23BD6BAC8545EDF	50F82A21876BEAC200FDC22311C283D760B72F5B86FC6E0F8615BD97D82A99D6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9516885b-c89d-4b07-9f59-157c5e4b9756.tmp	ASCII text, with very long lines, with no line terminators	A097E5E24661C158095C4FFCFF0431C7	66E9999FC5D9C5409310CE547111F334F8CB76AD	3A6159F4CFCAAD8693BD1DD851A582113204E204D52FD66E2DFE4E7357CEB850
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	BB56950367F6C76794008EE7C2A83797	02CDAE2CB6324906E38C41D92EE804D293981670	DAE1950386D84ECCC9482945B1BDBBFC612C59BE9F02A732BEC1DCB1BF08554A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	81C9B2DAB9EAB7A3F26DD8956FDE2C2C	B4305EBB207259E24B293FA7200070363FFF94C7	5E2E4E7AF189CC23E10A815E7F3B908684963F51102D76143FFE03A27F628B72
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\002445640ee1de89_0	data	3823F69558D90E5E80E8268F65AADB9C	63A2BAF33F4E66547047B93DB82760E86435F15F	7C1354CF78E43AB9EA696FD9CCDF0693B29ED4941E4330F1A046DF319468F8BE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\05a632044e49ec3d_0	data	9A5E0F049DB36EB3AB3CE9120ED56761	FFE1C9A806AA0DAAD9E00CAACF3B78AD203FE2EC	A76CEA0E85663F4F35B728233804FCEC0218B51EB3177F1043057D349D8BC279
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\06aba3ef4a05b1d3_0	data	E19F952C0E4100C7D01872EA3142D01F	3CE46F4B497D67F1B07F7CC2D07C262E440415C4	400AE96B04AE97754A92E448050DBC84574D0C5AC3AFCF2DB8E9E9E680C7A5AA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1d1b2948d4525464_0	data	0C39AC5DECED5CE11C9E9BC6DB62E86A	03FE60BD8A1CA866E50094B597F8D4F1E00D4C9E	FDE44DCAAB340F85DC09394A2085F0269CD6FC99CB925080DE96D67F9889ED06
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\200e0abd4ba2ff0b_0	data	A89F5B00134D2DCAB41795B61E3E0FFD	3476B0265B014F8E41BD407EA4DE7746AEFD0FD1	5DFC44688CE9368E18E1985C6077FBDDFA43E1FD21FF7D8C9F78A405DE6EFD0E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\229c73a4fe442ea3_0	data	DE9F7787FB065C7C5139F516FFE65E5B	2730FDCA4558D0EE753931C461D0B61C07CA7C73	CB5FB57D2A69594BA4985CEF13808D143B2ADBA8B89DB5C9F112C383256F42D0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5278677776ece701_0	data	8BA5B69DB720FCD94B83EF0D83976D65	5694AB738EDA8A1E0DD1E43240FD4F846FC141B9	ECE4870FC5EAB4334351AAB4A55A169B333AC915C39A2A595A3914C646FB0AD8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5da3893660e7a47a_0	data	81DBEFAF31C6B6DCD29330869CDC966E	756513380A3DB9503833CA3950CAD73728653CC5	5E76482B37337EB069A28347659FB6B29D9199291E7280E9BE34C65DA94D4CDA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6485724e45ee2243_0	data	8A97B4CA62F1945E3F9E8EAC19804947	91DE57CE0197D71F2C2F2F28BA0DDA79A51634B1	302ADB89776349FC3F60B252BCCE8BC9A61551B31E7A25F925AD42C6684D8491
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6c75240678e5e01e_0	data	B1C11B345F3BD24353604373620CEC63	64D65C791C960FBBD07D7ACA9F664AEEB0CFE16F	5D0878DC7FE2BF4C2F0CE5CC69D3579B75C17208849773C8C405B3349AAC09B1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75ddb2c602fd7877_0	data	476E6EC2CD26E9D0C5860A4C40E5CE1B	DE030238E2D70A50D58174C3128B565B3312FC48	9FF6DB73BC0B39D813E2E801121AEF9969FB2F67F8E0C38A6A600C9864EDDE50
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\786b0adb2bd9c037_0	data	C802CFA55919B977E70BB385A9E8A98D	281257A327986DB12FC7921B07E712C5DB316D59	427ACED1C0FFF534C9CD67DA43CB65DB02A71E0C5C0A35B0654160364D37210A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\80a193e1143879d7_0	data	F06BB81E0AD9392C86EBAA526471129F	11368A4F8516E11A600DD1B687871626C2E7A1A4	43A1357EBC9C28939D990AE31D757E1B05F5A67BB82B93E0D72AC83B8061C93D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8ed7979f48ca3039_0	data	26781ECF879BFC628A7376992739635E	E21D63FE3F79016B8F79CB73FEA640ACFA11EB73	5D6B31CE220A6756CDB856B572EBFB44ADF3C70F57A73A9FF5F1A31C3DA252C0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9e21f8aa16d21fc2_0	data	56A0C909F184389E11692F3D446A06C4	6F6D3854A2DA39F1D5D3EE27E676872EBAF79CEB	A3AD7BE842B4CD9B65D9384DB60327CAD2272C1D0D05EE251ABA3D08717BA064
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a431c1478c67bc32_0	data	D6733FC6380494FE5CEC072ECC815CF4	965C63973319B0A477DC72219613064F006F1338	74ACD2C2F6127B91EA116FB90B1C525F334E4BD48BF7051D0A7B97CD1855FD0A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a8d7eb2cedf7692b_0	data	64818930BC3F322172DAFA69E5E0CBB0	1802104150484B73CAC8F80CE7E52B4E2A4D3BB9	78146DB9BA8CCF16D42664FBE70C5741455ACF709A9B449477A7708674AC41EA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b92b2c27ad669878_0	data	963D8E9E12E430E1C1801347E043589E	2D825ECB4C6605E9E720B9A9C263DF23142EFCF0	1CF52EF839F78F7DAF58CC3918B9ED7C8BE40BE0C5340FA749E77295574F2A86
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bda3c198988ffc1a_0	data	5E6FCF83E1D7799A4B261F3E1D80EBE2	3A804056786FCCBD0F301735BAB190047878B910	29360909E738F65C325BD63848917A8E78400097C94C113A6FB9E8F7E5504106
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c27291f84aa51d71_0	data	43506692DEEAA5E4039A84C6EE89F407	1782C6E8A9F3CB812E7FD2285D3AA57A1386BAB8	936C78BD2281DED653E00794F606E0902FD80EDB86F9170E65316E8B59CFC50F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d9852fc8edfab566_0	data	3D903828811A900D1B6F49DE77D3759E	C6C460BFCFE4D89436CF5F6160CC8C026962EF5C	DE844844B9FE141C6FBEAA0B903B35A142CA0FCE37F975ABFA08981208680A86
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dc6462b65c6623d5_0	data	6194EFC7D88E73B9431AF6C3051EE085	1E3FC131831A58FEC94D2E81FE678A5F77D8D9E5	6B0E1895BB2D394807F5DC13E832CEEECD0B7979F2DAC920C69E3BB10BA62F3D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ee05b7802d222e35_0	data	CAD3700B78AF4EE52D78E36955A4EB56	FC0E0E75D2ABEFD6D0BB9E228114E895EB7F1A29	6FF1995A07EC1E2EBC57FACD38436008A2C10E3C6662EE8A31C0276266E8DA6D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f22d5e331d7c4eab_0	data	9D412E7AFA1AC283044BDD4E1155940C	BE40403B0B4C836AA3B7AC248C758EE828FFC117	F575E048570623EE4880FE1B9A251860C7B2FD1E7C854278C94849A8130CFC23
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f597f914edb8e129_0	data	00831FE8B31383D26997A9C29CE44547	0439B9855F10CF58C88DD27A9F8C6A38A90A7530	BFAF6F02810D03080194E8EE5E15C30A055C13418E84C8AD45E70CED01CEE4E0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	1C0EAEEE6463CAE33B7A7CD9D9DF4DA5	FBC6A28A1501E40154FDC0A9D0C2F34A5F88AA65	ED8AE7C5E6885874A39F4E86258F552670352A18D29BE1FF4D372A2F4CD06C8A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	4BA19F8A513C6A185E8A5A35B3756FF4	E294A3E2DE5DB3BF27C95F9B8DA2EC5A366EDE6E	ACC3A114B701B099D9A1254A22778A2CF635B3F2B3EC91D65714A0F3F9A81927
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	4AE8F3525AD7BBFCC01BA8C27470DDA9	2D737F93DC2C7AA704D3BC11CA7A77872D9934D4	5EDD32C65F695E61974BA8893285187B4793CE2EDC6899CDDCDD905B80F537A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	0686D6159557E1162D04C44240103333	053E9DB58E20A67D1E158E407094359BF61D0639	3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	0A906A9A542CDF08FF50DAAF1D1E596E	B97D6274196F40874A368C265799F5FA78C52893	EB9CABBF5FDA1AD535300B0110EAA4068A083248BA928A631C9278545935426D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	DEF0143787AA92CE6434349DAEC6A652	E55EAFB926E2F1F32271602B1E991871B6B03FA2	1B11497F12F3AED067B8195519224DF0772E082636192A7D0262735E9C325A97
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	D4BA0AE0BB0B9FAFF3DA6F35FDBC3C8A	FB3E9DEC7F35A9B1D94E54A5659DD0DE484055E7	99DEF1B557F19F04C1AFFC6F247D0451F33FC10EC42E73792223C3215AC98BE6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	71984B347D1199525B4A9512C3F3EB70	DBEA13F97A87CB2995324009FD8657E6B5B88118	E1FEEC435730231B38AC946D2A29EF0F6A7087F536C5F7400DA64240F3D8E78B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	90F880064A42B29CCFF51FE5425BF1A3	6A3CAE3996E9FFF653A1DDF731CED32B2BE2ACBF	965203D541E442C107DBC6D5B395168123D0397559774BEAE4E5B9ABC44EF268
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	6AE2135EA4583C2F06CDEBEA4AE70FA4	DCEB26C7F02D53B5F214305F4C75B4A33A79CDC2	03AA1944CB3C4F39E20B6361571BC45DFBEBD3FFDA3D8F148CC6ECB29958F903
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	2CCE539D52FDE5A94215249CE41493A6	26E67A332884B285A78592C0A082E69D4896A5BF	03B6944684F5F9B509E73C419FB744116DC7BB6E05F0AC52FD46A4A6F667873C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	9DC733F3BEA37388D882D28A5D414B2A	4AB2B19A061142920B45864E10461BADE0FE8DDE	39D2BB9FDB794FA4FF012229075F1F9C9C0425A270DF081A34F3B554DECE2880
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	0407B455F23E3655661BA46A574CFCA4	855CB7CC8EAC30458B4207614D046CB09EE3A591	AB5C71347D95F319781DF230012713C7819AC0D69373E8C9A7302CAE3F9A04B7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	DD93CEF8BBF7471479CF11181A55EB8F	5FA439FCE4CA3AB065D9EDEA7B0318405DB95893	C2B94C44E335EF0FFF2F081F368722AAA5BD2D5587DF7F64E985C9AB30C323D2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	5E1DF63C4A9D02F6095292A76E5612C0	7E797D7320BF68AA45CAE854410C4F44AB477330	1B4CACCB521547429DAD69CE5BCE30EE9043E4B61C156B98F08F16F8E78D3332
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000001.dbtmp	ASCII text	46295CAC801E5D4857D09837238A6394	44E0FA1B517DBF802B18FAF0785EEEA6AC51594B	0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000003.log	data	7E6074135B54581D9C9A50EC25141C6A	362BE82BA04A240771813665F436B0EF9D24C35F	8A14329F2C4F6E9CD07FDABA314C1F29FDE90C936695F0E95118778B2E0CD7A2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG	ASCII text	6D6A29A6A87E55E0728ED06395069B91	E029D265D0F1B9883440ABF1D219D0B693B7E37B	7FD1556EC47BFC52751FE7A66BFC127992E4B0B13FC8CFDE2D2A367F1DB07479
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000001	PGP\011Secret Key -	5AF87DFD673BA2115E2FCF5CFDB727AB	D5B5BBF396DC291274584EF71F444F420B6056F1	F9D31B278E215EB0D0E9CD709EDFA037E828F36214AB7906F612160FEAD4B2B4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	2AD402C77F9703C55F6046F7D4C867D7	13AC9E6B0F0AA9CE4B1C8237C4E577FC6C32F7D3	8DF27F674434A063B98C0E1B897FCE50A6C6D7E37BBD2FE408622D5DD4E1E8D4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	C5496384EC4091974859216FEF7E86BA	99A448AC429D9172330B1B1F0441842590EF27CA	6997A8456FDE4C3DE51CB9AC8B7B93486FE602DC1913DF95CFFC30CB593F0447
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	2A80FCAAF5DE7FC1348B01417FEC845F	ABEF18C8C68B7890F18877437BF2922A243A2DC4	DD87CA5CCDBCF11E4EB78C063536E0460AE74E511B23B5B39B608139FAC95FD9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	44079C9295AE113F65A0C5E3C72B2A43	B5B67DA96FD0F6A30EE9C8FB09CA21A41AED3429	945942AE8268ACC7E0943C88500F91289350B49B52A8A3CDADCE30F88592883B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	8D94E9BF917219B4388AA330504FD6CB	A9029F8A8B0C7897D82AA2187DC9F3ACD3391CE9	01F0DB92E8383032D8542AF2CD286A73FF8C51C9308821DD2C513E4B12E0D8D7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	6C84C36CE976FAF42EC8BC30AE016818	E587A19613B3D82D3F78632F3864226B9B3085DB	320E225225730367C6D021696E06E2951971205C1069AC0A224839735BA1A7C2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	4F8DA80267757208B4D18F53119AD2DA	F40ECB5F699C5FD8A930D049B7A8C135E0B667D7	E8A905C2533F526E6C8B6DB813C96C10D6804BB9F30C3CBC7E705EEB4D0CFE4E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	21AC81A042A95449F7C76F34167FD74F	28C949AF75749576EFA1E6829340456DC4171ADE	A5FEB945EB0AB946958A0B55D3C42A09F0E00A366F2BE28E7A94C5917D12547D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	286A4885B1C78963356C610659F97117	38D88BA6199DACD95F3E7DC05B36D98CAD58357E	EBB19612AC0B71FE2D2429F49E39C6F324D9D0F9FDF1FA3CBBDAFBE7F370B256
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager	SQLite 3.x database, last written using SQLite version 3032001	DDC1F7FC68A5177438E7C01DE312606D	4DCA224B74B46D928D62140D5531B155BDC172AE	3B02C2DC7E07BC74D914284428336BEA95F7A69A37098313BE7217548AD4C555
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal	data	FC97A42865FCF239AC439471D33E246F	A87E5CDE0DDF949C9BA656BFE54960FE2E296A3F	072DF53017C6F2BFFB01CA5CC11941D5DED2467B3CEF21B1AD4CF7C3663CCF23
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3032001	3537C445426E66F88247B3DE03237824	4F58D5DBB3C41FC4A6A80A05E83C143C3B06565F	162D9910232CA03F384801AFDE0FE557B3DC0C383F760F3CCE4EAB49CB9579DE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal	data	AC4E69C1C4DAD83084335457063DD295	71D2574CC907A8F965C35829DC26A5D010278F95	E33BF32592774D801597A051A2FBF2D10113CA8A784BD9E8218FB906C9BA9F66
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	1AF0D6A4625C5F3DDF8DFF7B220B3702	0F0101459F54E95D372FAB0684767ADD79EBF5E5	EFF86CD6C162CF97A7E375D3692E8B6AC0E49A4CC5367F015CA9788FEC10F040
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	96736CE75E83E18627074E7683DBCC2F	17ED29CC5DF47D1758BC10FA20D18600C8C98463	ED7A1878222FCB315E9DCE49ABF465AAF04D139E09846246758678F369EBEF53
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	A120E583C00762E5ECFA0A77C4AEC071	8363B924689F08F840E856FC5A1208D231AFBAE0	E069AF671CD648F0CA88B3C305ACA2AF3978428C4899905C97F8540A9382B92F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\3085c1ef-01c8-4cfa-a8dd-fb9b1ffb49ad.tmp	ASCII text, with very long lines, with no line terminators	8CA9278965B437DFC789E755E4C61B82	5776B6C90CA1D2DDC765ED673B5E6DC8E167F0D6	A57D9231244C1FBDE58A1BF50CAD3A1E3EA28D042BFA272782B65139446E7C51
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	A10D584703DD42C6D2BB5FAB3B1C1988	BF323D430AE90A93615011A1A6EC08B1BE6C0C50	9199DD523AC56CF9A43755B951D7CF3C288FA829FA65C8D703A0A484152ED9C9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	AE2B6356F8AF21E842BE8D7EECD5F766	D91EFF47681EAFEDD3556780AFD73B298E54F371	39538EC7E0F71E21A812A220BA56E13B8E7E51DF5AE4FD8D3914E51B4CA43428
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	8449B7AF0CDBAF7B6DB350C684EEB018	D582513CDA0EA77BBE4035FF1E11749698E32D3A	9D6071FA7FEC19EC3F930DC028737C658B6CC3AE02B6F36A79BF5D08DD3BBFF9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\9a88bfbb-e9d5-4757-8815-bb24bda897a2.tmp	ASCII text, with very long lines, with no line terminators	B0429187E1BE99DE4D548DC5B2EDEA0A	B3E07BEE5D753BF1B613BD2DE665C7C21E8184F6	D8DABBF936DAB4F17437ECA255020EA847D76D6B789F9486010C95E995CFED03
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	2D8F61CBA80E2E9828582B87A9F8FEE4	D2BA8C6C550886F49DEF4ED8B46D203CAC60ABB4	BAFC4C5D63CD710F75463F7ADBA015BE21322D87569F3C20793B082FA171CD13
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	ED299182AC9616DD6A1A72F353A2F895	4060248AF6C1BCEF43BBE63D1F7EB7C2F09DFA51	A6754EA19E9D5CCCAE67B53B90DF4C4588E71172CB774E514132C233A3292937
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	E5018ED9794A2A80215DCB3098C4E8CF	212B5F74E01B128913B5EEA2A5C96A0F071737E2	917EAB78B270EAA435E763E806BCAE8071D9AF344362A5C881241A92BEF786C7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	45A8ECA4E5C4A6B1395080C1B728B6C9	8A97BB0E599775D9A10C0FC53C4EDB29AA4CEB4E	DB320AB28DFF27CDA0A7F87B82F2F8E61B3178A6DE8503753D76F1172D32E08E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	4D1A6CA2F8093B6D5AF09EAF4B7D3B22	8738FB8EA653D7ABDC088D9459875E634F369DB3	60A028427187C618AE6CB146B7EEC3E836D765220DC134E9087A4B93B9F6F81F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	D60B2B71EAAF3DA3CB670DCFB300C0B6	F2987B5FD562A5B1F1AD3A585D0A7D2847AADA27	6B9BA7706F94A106CB55DF20366B1103F32E6B973F40FB1524E9A94B85236594
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	2F8871227D78137AFD900BCD110C18DC	40C8FBC7FD9FE98F47124FDB9F5E7E50B917ED7C	D6B538A937F81120073BEAE59564A58FD26EDA7977EC0FF362F351011FC139D6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a61a9d9e-1da0-4847-b7aa-e3cdf777b186.tmp	ASCII text, with very long lines, with no line terminators	816F31E90AF311383F7C1CD37BA94FFE	C3E60754109B60A1894B1B6A153A330BB77C5C62	AD7B955E4B96FDA740A220EA50B2171A8B97EF846F62EE4FEBD3D974889F27DD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c1652dca-5907-4397-b613-cde51acd4b2f.tmp	ASCII text, with very long lines, with no line terminators	E9730C2036656456F67AA608855957B4	9E6F821407764394A63AB4F589164501FCAC87B8	A1B470D2FC85C40B8E258CAE05FC40A90E7A3D4B44F17F2197317D4048D0EC28
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c4005ad4-7ef8-4b7e-960e-ad09a8a8c684.tmp	ASCII text, with very long lines, with no line terminators	C83DC660F26218BC0F0A8D7F75D6A6EF	8BB0AC616FB0833C8CC7160537B04B22D609EE72	04BF95784489394F4C6E32BC675AA49393B028647CAC0875FED85A802E325C8F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cba595f5-4b38-4568-8eda-aa17998e16b3.tmp	ASCII text, with very long lines, with no line terminators	B99727BB3BE82D864D443AC4E998C81B	2E2CD2B97F8AB8C2E6DEDD8B1D2A8755BCFA8079	24C7A457B0D60749B5790E908336F7BC79D2F81B031FC9503115257BF0A4BA41
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cf03e488-4006-4aed-a42e-31e7dd0c0a39.tmp	ASCII text, with very long lines, with no line terminators	932088854F1E30AE0B7F971ED8475B47	043B6A8462746D95293FE041199D3936A626ABF9	D8C3BEA38ABC1E0E1200D35D71BA5640A05734718D688E56BA53F8B3B5944C31
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	6752A1D65B201C13B62EA44016EB221F	58ECF154D01A62233ED7FB494ACE3C3D4FFCE08B	0861415CADA612EA5834D56E2CF1055D3E63979B69EB71D32AE9AE394D8306CD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	0F16B8691DAF61B3F08BCFB39F64D54A	B61CCDB928B894D5BFF4FCD0B9010666C29FF3BD	5EA54C98087077492016AF319801CD245088B4DA081CE569297C92B51289ED0C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	031D6D1E28FE41A9BDCBD8A21DA92DF1	38CEE81CB035A60A23D6E045E5D72116F2A58683	B51BC53F3C43A5B800A723623C4E56A836367D6E2787C57D71184DF5D24151DA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e0ca1c89-5eb5-4916-9177-1082a9223bbe.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	1AAD4BAD00BC9C6F57647A0B1ABAED30	813CCEB0F96F282F5404053A740D335C80780126	5F6A95C0CF7DEF2CDEFD624D129D42FF36DD76290FA69C24E4429C7C99D7837B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e29a2a5c-75ce-4776-bc18-3ed36aa0b849.tmp	ASCII text, with very long lines, with no line terminators	2E5AEA079919C77DE58F53DE7D9D3BF6	F2A14EAB9204C743010DB05453E1FE934D1D09DE	A1541F00D0B2FB5AED09161A930C3A3B1E6A5E280F3C2F6FCF0C92FC2FB7905A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	812B29F752A774157A9C38791ABAC95A	3615EF09BD1B813CA7D3EBFA52A6A647A65FF44C	CD6CA7959F406D878E09D9985D86135E7BAB928BDAC569B78DC28F020882EA46
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	DE9EF0C5BCC012A3A1131988DEE272D8	FA9CCBDC969AC9E1474FCE773234B28D50951CD8	3615498FBEF408A96BF30E01C318DAC2D5451B054998119080E7FAAC5995F590
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	C422F72BA41F662A919ED0B70E5C3289	AAD27C14B27F56B6E7C744A8EC5B1A7D767D7632	02E71EB4C587FEB7EE00CE8600F97411C2774C2FC34CB95B92D5538E7F30DA59
C:\Users\user\AppData\Local\Google\Chrome\User Data\aaa72626-de97-4922-bb08-bf1849aeb9cd.tmp	ASCII text, with very long lines, with no line terminators	991B6EAB66ECAC6C4052BD95BBC495E5	E3DF20F6CC192A85FAF87124B22F2A4BEC97F27A	FE2D9A6A988190707601A57233AB4697E034878FC588FB2F49F5D6EAD0E3E753
C:\Users\user\AppData\Local\Google\Chrome\User Data\b0494455-4893-4af3-9197-7485c0b4f56e.tmp	data	6D157BF386D5D7E6BA9B6D102325648E	4E1CE567233368FD94F12B78D381C460A1074D8C	EDF8E29AE268223AF16D8B54C6A44222160B07D3D02CAB9051270A8199C49D2B
C:\Users\user\AppData\Local\Google\Chrome\User Data\c9287eaa-d22b-49aa-af79-0f794f0463c5.tmp	ASCII text, with very long lines, with no line terminators	77DE324765A2C021155174B23F1AAB36	3C673F6EA566D6176BF75E7E20FB5D1153E57B2A	567E8B9C2140ED9C15E45BB9EF441FC341DE1F7E8AA8AC27CBAEC097ED609370
C:\Users\user\AppData\Local\Google\Chrome\User Data\cc6d00fc-945c-4e9e-a1f8-ca54ab1c6c37.tmp	ASCII text, with very long lines, with no line terminators	BB8FD4232C4EE0B9D8A75329E35ECE1E	9129ABE92563EBE85AD56CC6E90E9DA3C4FCA1B2	B06FD8D399F4046BFFFFB13945EEE6C5821D08332E2E6AEECDC9030BCFCA4235
C:\Users\user\AppData\Local\Google\Chrome\User Data\e2d55278-6188-4db9-8ebc-616e2df7e45a.tmp	ASCII text, with very long lines, with no line terminators	042A72963373566E0390595A290943E6	6099451704636917CC36E5E01B5C154522DD7922	033896388107F5EA5E167059128735022D515805EB9C33BF8EA1B1B2A4B93CB6
C:\Users\user\AppData\Local\Google\Chrome\User Data\f36d9e0a-8ab5-492b-893c-90a336f48c0f.tmp	ASCII text, with very long lines, with no line terminators	CA5467791EF2F52AE19BD044E41093C5	021278570941021166025C9905E2EABD7604EC14	82C7B883635B1B5E89B16ED8CDA5A946EBEA319A3036A19F771E54EC159C24E4
C:\Users\user\AppData\Local\Temp\0625af07-2896-4943-b0e3-5868486ac129.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\50916eb0-12e5-474c-9088-bc60f2581c83.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\5ee018e4-4128-4b30-9909-86c222451472.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\6bebe0bf-2ac4-40bc-910f-bd8906a292c6.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log	ASCII text	47FC3C1EE0B433EF7BB64CA74B552D30	F8FE8CC80AB85453D1B9641B991BBECF51B65228	3607E654E9E676BC5A8229E4B0996E8CFE795983B10CF0E2B7B8B4FEA8554C3D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\6bebe0bf-2ac4-40bc-910f-bd8906a292c6.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	6F8E288A9AD5B1ED8633B430E2B4D4CA	F671D3D4BEFA431D1946D706F4192D44E29B6F08	A114E2783D0E9B12155017323BA70838F0F82A71C7EE8DC1F115AE36991241F8
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	1FDAFC926391BD580B655FBAF46ED260	C95743C3F43B2B099FEBEBC5BD850F0C20E820AC	C67898B67F9C9209EAFDA6532B62D5789863CFB855998DD6A70E7775316CEC20
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	76DEC64ED1556180B452A13C83171883	CFB1E56FD587BCDC459C1D9A683B71F9849058F9	32290D69A90E6BAAC428B10382C99221B12773BB9A184F3B93DFB48A4F6D7A40
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	238B97A36E411E42FF37CEFAF2927ED1	4E47AC90BA24C8F4724D9293FA40CFD4ADA66FE0	4977D4A053542FF66967FAED6B06585DD70E68E20BFEB533B66FE3287F9655D9
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B3E916E8C1991AA0453CBA00FEDCAAA	D6366D15912E40CA107FD42BFE9579C3336A51F9	A62FFAB910E31531758EEE48B2CC71A8857BEC3021DEAD50B668CBA3C8667053
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	05C437A322C1148B5F78B2F341339147	AB53003A678E44A170E73711FBD9949833BBF3AA	A052C32B4FCAC61152EB0ADB2C260FB6A8256AD104AA0013DB93E9798D41A070
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\en_GB\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	82719BD3999AD66193A9B0BB525F97CD	41194D511F1ACC16C1CA828AC81C18C8C6B47287	4DB9B2721E625C18B9E05C04B31AF5D9694712F1CAAF6219ABE34BB08E5DB1C7
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B2583D8D1C147E36A69A88009CBEBC7	4D4DEEB4BE6AA0181825F3371A761ABC5B4D5937	6659BC3705311D7641A73995DCFEA80C7734F2F4EBBC3787B3892A240348324F
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	CFF6CB76EC724B17C1BC920726CB35A7	14ED068251D65A840F00C05409D705259D329FFC	C85800BF45942FCC7FD6B1DF929C25F9CC2A977A6678966BD03D4B6B69889AFD
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	3A01FEE829445C482D1721FF63153D16	F3EAAADDC03F943FC88B30B67F534AA13E3336DD	0BDE54B20845124113383B6EB81E43A0F05E4EB0C44BEE3C1DFAC4CC5FEC2836
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	57AF5B654270A945BDA8053A83353A06	EEEF7A4F869F97CF471A05D345E74F982D15E167	EC002ED92359F67818B49455DFC579E140368E6A004080AF022FD4F57F6B03F2
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8D11C90F44A6585B57B933AB38D1FFF8	3F9D44EA8807069A32AACA2AAAD02FD892E6CC90	599491F8C52B945C16C441ADF45BFD45AFAE046DA07757D97C56AF4DE75ED3B5
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	E376D757C8FD66AC70A7D2D49760B94E	1525C5B1312D409604F097768503298EC440CC4D	8106D98C4F8DA16DB698444409558E29CC96735E188BFA303C333A5D99231C1D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8185D0490C86363602A137F9A261CC50	5BD933B874441CEACB9201CCC941FF67BAED6DC0	A2B2EC359A9DD9DCCCE02859CE1E738BD30FAA4A05F1DC522893FFDF722BBC15
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	85609CF8623582A8376C206556ED2131	1E16EB70DB5E59BB684866FF3E3925C2DEF25A12	32A249749F12ADB6A220BF9ADC272C7E5D9AD5497A38B0086D961E3ABA17FBC6
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	EAB2B946D1232AB98137E760954003AA	60BDC2937905B311D2C9844DF2D639D7AC9F7F67	C6E8800450602DE0F39FE9F6854472383813FB454B08ABAE7E25A9167CE004C3
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	A328EEF5E841E0C72D3CD7366899C5C8	2851ED658385804E87911643F5A4200B1FB26E13	CD891C45F7586FB4A2514205A11F260E4A6D4482FA03D901909DD9F57BE0536D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	9B3A5D473C3F2BBFAEECE94A07A940B8	61BACA342CF766BBA15C7B4D892A0E7DAC9405AA	706312A4A2AEF3317223F141EB2B82685345B7EED444F16BB4DF3A272716DA1F
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	9F6B4D82A70C74CA751E2EAE70FAB5CF	0534F125FFCE8222277CF2BE3401C59DAF9217F8	D1467B8D037114403E8F4EFC52E88C4A7FEB96126BE4CFF883FEFF1084EF7E68
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	4CA644F875606986A9898D04BDAE3EA5	722A10569E93975129D67FBDB75B537D9D622AD1	7C311AB751D840D750C11553C083785813E079C1D464FE568A98C9E3EF3DB96C
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF line terminators	C5CE2C51391EAFD3DA9E4C71549A3C28	1F67FF6EF6E90C0CE3AAF56ED543A3EFD381574D	1FA1DF2CA8516DEF490FB8484E9AA498ACFF80EEF5C9258FFE42D3678E6C7DED
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with CRLF line terminators	93C459A23BC6953FF744C35920CD2AF9	162F884972103A08ADB616A7EB3598431A2924C5	2CD700AEB57D89C2E73333D0702556EE3FF3863516170F85669BC680FCBDC4E0
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	7A8F9D0249C680F64DEC7650A432BD57	53477198AEE389F6580921B4876719B400A23CA1	92BE7C2DC9CFBE5A65E9CE6488D364C8D7EC19E7B67A31E4D43C1CB2B169671C
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	0E6194126AFCCD1E3098D276A7400175	E8127B905A640B1C46362FA6E1127BE172F4A40F	E2699F98C511B18A2AFB82EAE9A4804B646C4FF1077D80E77C17A3943A6373C2
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	86A2B91FA18B867209024C522ED665D5	63DEC245637818C76655E01FCB6D59784BC7184E	6374880FDD1F8AF1EE8AEA6A06B73BE0AB265AFCEB4FE6F08BDE3B3989264B21
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	750A4800EDB93FBE56495963F9FB3B94	8BFB915488A4EB3CB33D68E2E59F1F8447DB7D61	C1C94F65FABAF17DEF98A8587711A56D61B1E5607500E9B01F2824DB109F9E83
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	98D43E4B1054A65DF3FA3CC40AB6FB6D	46E0A21C4DA2BB5D4D8F837AE211C1B6FA26E7E2	113A13900CBA62FE8AED06751971C23A80A99B47F9BE219CF884D57DB19611D9
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	DB2EDF1465946C06BD95C71A1E13AE64	FB4F3ECE9ECECEBBC6CA2A592A15FB9C1FDFB811	FBAF22CE6E16DE174CED8CB5EA3098CCA1C3426A2111FF33BD3E64DA64ED67AB
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF215D1EFBDABB175CCDD68ED8DCB0A	2B374462137A38589A73FDD00A84CBDC7E50F9F4	7FA16AF97E6CFC52EC6008EB679D3F30E7E0C24F9EF2D18A9228EAF4DED9D63B
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	3943FA2A647AECEDFD685408B27139EE	0129DD19D28373359530B3B477FE8A9279DABB7D	18AFF072EE0DF7C3495045435C752A805606E6D5D462EF2321C443F1773F4B3A
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	D485DF17F085B6A37125694F85646FD0	24D51D8642CDC6EFD5D8D7A4430232D8CDE25108	7FFDE34C58E7C376C042DE64DEF6481DAE32BE8B70F0B18EDF536290CBE0C818
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	D372B8204EB743E16F45C7CBD3CAAF37	C96C57219D292B01016B37DCF82E7C79AD0DD1E8	B8BA77E0089B0676545EC16D32468B727812B444F90B33A7A5B748E6C36C4388
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	83E2D1E97791A4B2C5C69926EFB629C9	429600425CB0F196DDD717F940E94DBD8BFF2837	2FECA577F43D97BAEEA464741D585892103585208FD0A935B810A03BDCE83C88
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	2CEAE0567B6BB1D240BBAD690A98CA3B	5944346FBD4A0797B13223895995CAB58E9ECD23	A7CB86F30C9C31FE5540282C308BA96ADB4EC16EF98C87129EB88105E5BEF5FC
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	AB0B56120E6B38C42CC3612BE948EF50	8B3F520E5713D9F116D68E71DAEED1F6E8D74629	68ABA284751EB9C856032062EF9B1651E2A1E5CE5FDA0977FFC97D63BA7BED9E
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	7EBB677FEAD8557D3676505225A7249A	F161B4B6001AEAEAB246FF8987F4D992B48D47BE	051F96ED874C11C4A13589B5F68964E4F5B03B52DDA223D56524F2CA23760C04
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	BB73BF561BB79F89D9BF7C67C5AE5C65	2FADD3A1959B29C44830033A35C637D0311A8C9C	D804F2A040D21D7511EFD5213D8E1721D64964A1A0DBB48E21622CEEDC9D967E
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FF50C673CC0C661D615F0CFD0E6DCA0	60DFF98DEAB9C4746B288BDD9C94B3BCAE5EAA85	C6F8C640F3353A7B9B1432A0C139C1AEEC40133800E6C9B467B63991AD660308
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\user\AppData\Local\Temp\scoped_dir6456_1661387247\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	01334FB9D092AF2AA46C4185E405C627	47AD3C0E82362FFE5B881DF8D71D6F79AB7F5796	F52714812D68C577A445169D11E84DF6751C2D6886BC429643072BB5D61C6C27
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\50916eb0-12e5-474c-9088-bc60f2581c83.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\am\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	26330929DF0ED4E86F06C00C03F07CE3	478F3B7E7A7E007BEE182B89C2EF6FFE6045E92C	621B5139ED199022BB6529AF18ED4DC312AE9F3E90ECAF3B2C9E1D12114F5B22
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ar\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	44325A88063573A4C77F6EF943B0FC3E	78908D766F3E7A0E4545E7BD823C8ED47C7164EB	67A439A08804EF4BEF261BDBADD8F0FEFD51729167D01EDCA99DD4AF57D6108B
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6911CE87E8C47223F33BEF9488272E40	980398F076BB7D451B18D7FDE2DE09041B1F55AD	273DEF0F67F0FA080802B85EF6F334DE50A19408F46BDF41F0F099B1F5501EEA
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\bn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F9DDF525C07251282A3BFFCEE9A09ABB	A343A078E804AF400A8F3E1891E3390DA754A5CD	C69C6C90F7EB8F10685CD815AF1F6F1B87CF30C4E8D95DF1D577DE1105AAD227
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A90CF7930E7C3BEC61EE252DEFAD574A	F630CA01114A7BDD39607CB84B8280CCE218A5C6	A533740E17559E2ADF40B4555C60F21EEC84E92C09CDBC19EED033A0B4DD2474
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	17E753EE877FDED25886D5F7925CA652	8E4EC969777CC0CEB7C12D0C1B9D87EBBB9C4678	C562FCCFCE374D446BFAC30AC9B18FF17E7A3EF101C919FF857104917F300382
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F08A313C78454109B629B37521959B33	3D585D52EC8B4399F66D4BE88CED10F4A034FCCC	23BF7E5EDF70291CA6D8F4A64788C5B86379EECB628E3DFA7DD83344612F7564
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	980FB419ED6ED94AD75686AFFB4E4C2E	871BFBCA6BCBA9197811883A93C50C0716562D57	585C7814AFD2453232BC940252D4AE821D6E6CBCFD74A793F78E5DB8BA5342F1
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	40EB778339005A24FF9DA775D56E02B7	B00561CC7020F7FE717B5F692884253C689A7C61	F56BF7C171AA20038EE30B754478B69A98F3014C89362779B0A8788C7B9BEEE1
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\en\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8351AF4EA9BDD9C09019BC85D25B0016	F6EC1FFD291C8632758E01C9EE837B1AD18D4DCF	F41C82D8A4F0E9B645656D630C882BE94A0FB7F8CEC0FE864B57298F0312B212
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8A70C18BB1090AA4D500DE9E8E4A00EF	8AFC097FA956C1317DB0835348B2DA19F0789669	FF173D1CEF665B1234E02F11070ABD2B65230318150734579A03C7F31B4AE3F4
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A62F12BCBA6D2C579212CA2FF90F8266	F7E964A2D9BBDA364252BCE5CFBA3FD34FDD825E	3EB3EB0B3B4A8E5A477D1B3C3A3891CCC7DC6B8879ECE243A7BD7C478068273D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\fa\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	852BD3CFF960F1BC3A2AAB3CB3874EF9	C9F6F3C776542889FE3B67971D65ACFE048A3A0A	D87597B6C10364501B98AA42524843F109009CCEF022D8E0170440D7F144F4C6
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3902581B6170D0CEA9B1ECF6CC82D669	C8208AC2B1DD6D4F8BDAAE01C8BD71FFFA5A732B	D2A8180225A83A423BB6E17343DFA8F636D517154944002ED9240411B8C0C5E1
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\fil\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	59483AD798347B291363327D446FA107	C069F29BB68FA7BA2631B0BF5BBF313346AC6736	DD47530EAE96346CD4DC3267A0BB1091BB17B704803A93CDA2E3E81551B94F12
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9B416146FE4F1403C2AACAC4DCF1A5C3	616F055C9FAD4CE972DF82EC8A9B2F4EDA3E7FAD	7C7F5758F54008190ACCDDBD1761CBD980FB5FE0847E992874498228D2571DBC
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\gu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	68B03519786F71A426BAC24DECA2DD52	B8E6608932EC5CEC4BC3C5475BFC3E312D2E2E7D	C77A4D27E9E6CA25B9290056D93A656E3EBE975957E4C2EE9F0FB11B133D5CD4
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	20C86E04B1833EA7F21C07361061420A	617C0D70E162CF380005E9780B61F650B7A39F9B	C2C27CA242DBDE600BA3AA7782156BC2B190A64D8A1B51EDC8007BDECA139553
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3ED90E66789927D80B42346BB431431E	2B061E3271DF4255B1FFC47BDB207CDEC0D9724F	0B41E3C42414F72C9A12C05F8772597F9685115366A774C66018467AD4B71A74
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8E9FF7E49473C5734A2F6F0812E12EB3	A4F10DDD1580582533D5EB59EDF6D8048F887C81	6CDD2FB39ADECE00E88B989E464B05ED1414092D0492F6D0AE58D549BFD1A46A
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\id\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	7ADF9F2048944821F93879336EB61A78	C3DA74FB544684D5B250767BB0CB66FFB7C58963	3630947E1075E3663AD3E4824D0BE42CB47C0D615D8053E83B9595047C8BA9BE
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	BB3041A2B485B900F623E57459AE698A	502F5EA89F9FB0287E864B240EA39889D72053A4	025737EF8FA06706B3F26D0F52B4844244A6D33DAE1D82FEF2931A14C003D57E
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6F2CC1A6B258DF45F519BA24149FABDC	8A58C7880C6D22765DCBB6BCE22A192C1B109AE1	42ECFEE727CFC4F2845FEFDACE5EDC2E0A40AFAD69973A3B950CE653A7633342
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\kn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2E3239FC277287810BC88D93A6691B09	FC5D585DA00ADC90BF79109C7377BD55E6653569	5FC705AD19761204D8604EA069936A23731B055D51E7836CAAF16AC7719FBEEA
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	E303CD63AD00EB3154431DED78E871C4	3B1E5B8E2CF5EBDF5D33656EF80A46563F751783	FDE602BFDB1AFD282682DA5338C4F91D8A2F6CB5411DB8F62F4583D629CE67A6
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	93BBBE82F024FBCB7FB18E203F253429	83F4D80F64FA2ADCE6C515C5F663BD38A76C51DB	E7A8570922CCC4F2CA3721C4E61F426158C4E7BC90274FBC8BE4040FF8B6CA9B
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	388590CE5E144AE5467FD6585073BD11	61228673A400A98D5834389C06127589F19D3A30	05CA14196CA5D90B228C0F03684E03EBE403A3E7B513AE0A059244AE12B51164
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ml\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2AF93901DE80CA49DA869188BCDA9495	E60DF4F2FB12BD3F1CA869DAD9F6BDE0C17CEB11	329E80AEE1212F634E180DEF7E16D6E38D9C9FDA9AC9DB1D99B8AE1626EF304E
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\mr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	659F5B4ACA112D3ECBB6EC1613DDE824	5DEE35FCD260554999F8DDEC489FBA9F81FA8EEE	C8B765E7A07578BC078A952E151E3B866506959E15E79E9E5E1DBB98F9C4008F
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ms\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	09D75141E0D80FBD3E9E92CE843DA986	B24EAB4B1242C31B69514D77BC1DB36A3F648F40	8F1DBDEFD910AD88BEEC7956619CDB34391D6E69254C3A7497E8F87134AE8B5C
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	ED99169537909291BCC1ED1EA7BB63F0	5F72D51B6DBE8C622EF33D2B2AEBD7E9E20DAFB3	65B6598225ADA1E14EE9CB76CA863708E8F9EE0724B4EDC8F9508532BD631BAB
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\nl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	E9236F0B36764D22EEC86B717602241E	DE82B804B18933907095DEF3F2EF164C1BB5F9B6	300F4F7C45EBE39EAAF40776C28D0A399A710699AAB58E9A8D43A6FD2DD00376
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8254020C39A5F6C1716639CC530BB0D6	A97A70427581ADA902CA73C898825F7B4B4FAC8F	2F4E4FC6AEB4A8E7F0E0DCE220D66E763F4EBF1FA79985834D636C6692FEA3E8
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\pt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FABD5D64267F0E6D7BE6983AB8704F8C	D4DAAD0FF5C461C51E6C1FD22B86AFC5B13E123F	D82DCA262FF005668B252B478DEDAAC4A5C1E417AF9DE57C22F169A6680183AE
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	75E16A8FB75A9A168CFF86388F190C99	C27CE4C1DB3DF2D232925C73DC9AC1FA24DAD396	9C4716FF42A730F1E7725F0D9E703F311E79FDA31F85B4BB0B8863FC3C27AB9D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8EF94823972EA8D2FC9BB7EC09AB1846	4171DC9CE9D82FDA5A280517A1FE58C907D75CE3	1009DB9FFA64E411B31E0780EBA43B9C9F8B05B5AC8CCA9A38514650261ABB0A
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C314FAC15AFF6A2EE9C732C64AB5A66D	D51F3362B5FDD2F3756DE42D7D6227DC818C6344	8EE2A25A09D6D0F89063FAA34BA2BC4DB505DD31FE6D5064C5D6E1E153721484
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F60AB4E9A79FD6F32909AFAC226446B3	07C9E383D4488BEBE316CA86966FC728F55A2E32	CDE581E6E7CF0136B003B45549E3BBEE7B67B74ADD786A8D5607BFDAD1DE7B87
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	4E233461D805CA7E54B0B394FFF42CAB	77F30833FC73A4C02C652C9E5A6EAFE9C3988A30	E1E1C64213EBF2CFEB7BA83E51B697CEA449B3A8B279B1024B859228DE869879
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	897DAE6B0CF0FDE42648F0B47CB26E06	E1F5F5F65AF34FF9484AB2B01E571EAF19BA23D0	52656C24F6F6D0F3B3FC01E9504C4D5CEB85624F1B22E974CA675DD0E94EB82D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\sw\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	EC233129047C1202D87DC140F7BA266D	537E4C887428081365D028F32C53E3C92F29AAA6	28EDBC5C4858217811D45CAA215710E452C8926E4DE99F810001AD664D08BE0D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\ta\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C50C5D2EDFC79DBDCBD5A58A027A3231	14314D760A18C39F06CD072CF5843832AFB86689	EEB0E89D5AD92B80FF08F88533A111DB3416D7C3860C64227D1CC8B7C2B58298
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\te\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F740F25488BE253FCF5355D5A7022CEE	203A8DF19BA5A602A43DE18E99A6615D950C450E	5B9C96CB5D62510836B321EB9CEEF23865BB9D4DC4DE7716E90A858E00701FDF
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9F926FCB8BAEA23453B99EA162CCDEA1	04D1E45591C0435A39DCA00A81E83E68585E8B64	100463C587F549C964A4EB21EA38EA1B4ADEF11E927FAC8FF884623B77202C02
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	B0420F071E7C6C2DE11715A0BF026C63	F41CC696786B18805DB8DC9E1E476146C0D6BE90	309F946F753DF6AF5C255D772EA0D429462152F78ABA4A96A2E369707A2C6B67
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FF06E78C06E8DFF4A422EA24F0AB3760	A434D1CE22DE0D2FD1842E94F5815F7B1972D1EE	E209FDEF12CCEC03B4E0D5B9464F90D527E62C5BC4DD565C680661D7F282AB02
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C3A40E8433D96D7E766C011D9EC7502B	EAB7BFAE48B1D29B95A8AE040DE94D3500824EE3	BD3D0F8CF100C96415B224011F550082D4516593CBD3631347748B7D6AD5B85A
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\zh\messages.json	UTF-8 Unicode text, with CRLF line terminators	D4513639FFC58664556B4607BF8A3F19	65629BC4CBBACA498F4082DD5884C8D3D7DDDC8A	C6D49997A9B4FF7FE701EC3644B1A523679A27778FB4BD39B7DBCA9F1ACCE595
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	494CE2ACB21A426E051C146E600E7564	D045ECC2A69C963D5D34A148FE4A7939DE6A1322	A1053F9496ED7FA3C625C94347F07A5E760F514FD8EE142EC9EE64E86B9C063D
C:\Users\user\AppData\Local\Temp\scoped_dir6456_451601126\CRX_INSTALL\manifest.json	ASCII text, with very long lines, with CRLF line terminators	F76238944C3D189174DD74989CF1C0C6	85CE141EC8867B699668A5F5A48F404C84FCEB04	2EF48A1CF322DE356E8844DD2FD3431E8E7ACD04770649B6507EACA5ABDB53A7
C:\Windows\Fonts\timesi.ttf	data	555D6E22C78BD6F61A6D39EF34A95634	09015CD97237D36ED5E5158E00FBF16BA0A48143	70CD5ECABA71441E218363186854074FD8CDBD5A5A7B7EB34CC44EAEFE60EB35

ID:	432851
Product:	CloudBasic
Start time:	21:01:19
Start date:	10.06.2021
Cookbook:	browseurl.jbs
System description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Architecture:	WINDOWS

Analysis Report https://kezenelectric.ca/First-America

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection:

Phishing:

Compliance:

Networking:

System Summary:

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs