Automated Malware Analysis Management Report for https://2c7.ir/4sv4E

Overview

General Information

Sample URL:	https://2c7.ir/4sv4E
Analysis ID:	491031
Infos:
Most interesting Screenshot:

Detection

HTMLPhisher

Score:	72
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Misleading page title found

Yara detected HtmlPhish10

Antivirus detection for URL or domain

Invalid 'forgot password' link found

HTML body contains low number of good links

Found iframes

No HTML title found

Form action URLs do not match main URL

Classification

Signatures

AV Detection:

Antivirus / Scanner detection for submitted sample

Source: https://2c7.ir/4sv4E

SlashNext: detection malicious, Label: Fake Login Page type: Phishing & Social Engineering

Antivirus detection for URL or domain

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	SlashNext: Label: Fake Login Page type: Phishing & Social Engineering
Source: https://view.genial.ly/614e65ad1f21fe0d7ec3b264	SlashNext: Label: Fake Login Page type: Phishing & Social Engineering

Phishing:

Misleading page title found

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	Page Title: Sign in to Facebook to watch the video
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	Page Title: Sign in to Facebook to watch the video

Yara detected HtmlPhish10

Source: Yara match

File source: 17493.1.pages.csv, type: HTML

Invalid 'forgot password' link found

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: Invalid link: Forgot Password?
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: Invalid link: Forgot Password?

HTML body contains low number of good links

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: Number of links: 0
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: Number of links: 0

Found iframes

Source: https://genial.ly/	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-K3DDDL4
Source: https://genial.ly/	HTTP Parser: Iframe src: https://view.genial.ly/60bdff0f347fbd0d328a8bfe
Source: https://genial.ly/	HTTP Parser: Iframe src: https://view.genial.ly/60bdff0f347fbd0d328a8bfe
Source: https://genial.ly/	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-K3DDDL4
Source: https://genial.ly/	HTTP Parser: Iframe src: https://view.genial.ly/60bdff0f347fbd0d328a8bfe
Source: https://genial.ly/	HTTP Parser: Iframe src: https://view.genial.ly/60bdff0f347fbd0d328a8bfe
Source: https://genial.ly/why-genially/	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-K3DDDL4
Source: https://genial.ly/plans/	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-K3DDDL4
Source: https://auth.genial.ly/login	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-K3DDDL4
Source: https://genial.ly/create/presentations/	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-K3DDDL4
Source: https://genial.ly/create/presentations/	HTTP Parser: Iframe src: https://view.genial.ly/5f6350e779626a0d712891f0
Source: https://genial.ly/create/presentations/	HTTP Parser: Iframe src: https://view.genial.ly/5f6350e779626a0d712891f0

No HTML title found

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: HTML title missing
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: HTML title missing
Source: https://genial.ly/	HTTP Parser: HTML title missing
Source: https://genial.ly/	HTTP Parser: HTML title missing
Source: https://genial.ly/why-genially/	HTTP Parser: HTML title missing
Source: https://genial.ly/plans/	HTTP Parser: HTML title missing
Source: https://auth.genial.ly/login	HTTP Parser: HTML title missing
Source: https://genial.ly/create/presentations/	HTTP Parser: HTML title missing

Form action URLs do not match main URL

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: Form action: https://brau.devsbpr.app/perfiles funnel-preview devsbpr
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: Form action: https://brau.devsbpr.app/perfiles funnel-preview devsbpr

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: No <meta name="author".. found
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: No <meta name="author".. found
Source: https://genial.ly/	HTTP Parser: No <meta name="author".. found
Source: https://genial.ly/	HTTP Parser: No <meta name="author".. found
Source: https://genial.ly/why-genially/	HTTP Parser: No <meta name="author".. found
Source: https://genial.ly/plans/	HTTP Parser: No <meta name="author".. found
Source: https://auth.genial.ly/login	HTTP Parser: No <meta name="author".. found
Source: https://genial.ly/create/presentations/	HTTP Parser: No <meta name="author".. found

Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: No <meta name="copyright".. found
Source: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_at=1c196eecda853ede786dcd07e65b9687v2&track=0&preview=true	HTTP Parser: No <meta name="copyright".. found
Source: https://genial.ly/	HTTP Parser: No <meta name="copyright".. found
Source: https://genial.ly/	HTTP Parser: No <meta name="copyright".. found
Source: https://genial.ly/why-genially/	HTTP Parser: No <meta name="copyright".. found
Source: https://genial.ly/plans/	HTTP Parser: No <meta name="copyright".. found
Source: https://auth.genial.ly/login	HTTP Parser: No <meta name="copyright".. found
Source: https://genial.ly/create/presentations/	HTTP Parser: No <meta name="copyright".. found

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: a mensajes y recibe notificaciones."><meta property="og:image" content="https://www.facebook.com/images/fb_icon_325x325.png"> equals www.facebook.com (Facebook)
Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: a mensajes y..."><link rel="canonical" href="https://www.facebook.com/"><meta property="og:site_name" content="Facebook"><meta property="og:type" content="website"><meta property="og:title" content="Sign in to Facebook to watch the video"><meta property="og:description" content="Crea una cuenta o inicia sesi equals www.facebook.com (Facebook)
Source: Ruleset Data.0.dr	String found in binary or memory: www.facebook.com equals www.facebook.com (Facebook)
Source: Ruleset Data.0.dr	String found in binary or memory: www.facebook.com/ajax/ads/ equals www.facebook.com (Facebook)

Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: http://doitgenially.com/wordpress-genially-embed-plugin/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://1x0i8zw55j.execute-api.eu-west-1.amazonaws.com/staging
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://2c7.ir
Source: Current Session.0.dr, History-journal.0.dr	String found in binary or memory: https://2c7.ir/4sv4E
Source: Favicons-journal.0.dr	String found in binary or memory: https://2c7.ir/4sv4E/
Source: History Provider Cache.0.dr	String found in binary or memory: https://2c7.ir/4sv4E2#Panelfbs
Source: History-journal.0.dr	String found in binary or memory: https://2c7.ir/4sv4EPanelfbs
Source: Favicons-journal.0.dr	String found in binary or memory: https://2c7.ir/4sv4Ez
Source: ac5a61c1cebd2433_0.0.dr	String found in binary or memory: https://4bpr.art/async/?&user=coperola&html=mobile
Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: https://4bpr.art/async?&user=coperola&html=mobile
Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: https://4bpr.art/async?&user=coperola&html=mobileaD
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://9y6d6jo0fl.execute-api.eu-west-1.amazonaws.com/staging
Source: Reporting and NEL.3.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v3?s=Gw9kQqpsWUeort7%2FOEnHkftGTifoUklftiEWPGYpKIecOVr8wPuqfRizE
Source: Reporting and NEL.3.dr	String found in binary or memory: https://a.nel.cloudflare.com/report/v3?s=Y2GaGuh0cmOWRqVQ81kgZfjVK6liDQQ8Q22JkoM9AcKd9%2Bwv2WF6twirV
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://academy.genial.ly/
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, manifest.json0.0.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://accounts.google.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://amq3ezc8t0.execute-api.eu-west-1.amazonaws.com/prod/screenshots/pdf
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://analytics.genial.ly
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://analytics.google.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://api-dev.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://api-gt-dev.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://api-gt-staging.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://api-gt.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://api-staging.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://api.genial.ly
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, manifest.json0.0.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://apis.google.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://app-dev.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://app-dev.genial.ly/editor/
Source: 000003.log4.0.dr	String found in binary or memory: https://app.funnel-preview.com
Source: Network Action Predictor-journal.0.dr, 000003.log0.0.dr	String found in binary or memory: https://app.funnel-preview.com/
Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632328099857?updated_a
Source: History-journal.0.dr	String found in binary or memory: https://app.funnel-preview.com/for_domain/bulmapan0203.clickfunnels.com/optin1632526772591?updated_a
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://app.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://app.genial.ly/editor/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://auth-dev.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://auth-staging.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://auth.genial.ly
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://auth.genial.ly/
Source: Current Session.0.dr	String found in binary or memory: https://auth.genial.ly/login
Source: History-journal.0.dr	String found in binary or memory: https://auth.genial.ly/loginLog
Source: Current Session.0.dr	String found in binary or memory: https://auth.genial.ly/signup
Source: Current Session.0.dr	String found in binary or memory: https://auth.genial.ly/signup$Create
Source: History-journal.0.dr	String found in binary or memory: https://auth.genial.ly/signupCreate
Source: Current Session.0.dr	String found in binary or memory: https://auth.genial.ly/signupKK
Source: Current Session.0.dr, 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: https://brau.devsbpr.app/perfiles
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://btd5phqr3b.execute-api.eu-west-1.amazonaws.com/prod/download
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://cdn.cookielaw.org/
Source: d0083211b2fa0fb8_0.0.dr	String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/6.10.0/otBannerSdk.js
Source: a62ecb0c92916e51_0.0.dr	String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/6.21.0/otBannerSdk.js
Source: 5666ee3ea9348f3e_0.0.dr	String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://clients2.google.com
Source: manifest.json1.0.dr	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://clients2.googleusercontent.com
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://content-autofill.googleapis.com
Source: manifest.json0.0.dr	String found in binary or memory: https://content.googleapis.com
Source: Reporting and NEL.3.dr	String found in binary or memory: https://csp.withgoogle.com/csp/report-to/apps-themes
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://devview.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://devview.genial.ly/Preview/Index/
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 850285b3-1e06-4e56-8c07-5e65b1ccbfdc.tmp.3.dr, 727c50d0-34b1-464c-88c4-636d9862185a.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://dns.google
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://fb.me/react-async-component-lifecycle-hooks
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://fb.me/react-polyfills
Source: manifest.json0.0.dr	String found in binary or memory: https://feedback.googleusercontent.com
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://fonts.googleapis.com
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://fonts.googleapis.com/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://fonts.googleapis.com/css
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.googleapis.com;
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://fonts.gstatic.com
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://fonts.gstatic.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://fonts.gstatic.com;
Source: 9dcde2c2181e9943_0.0.dr	String found in binary or memory: https://funnel-preview.com/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://genial.ly
Source: 000003.log0.0.dr, f2753fb8e762bd2a_0.0.dr	String found in binary or memory: https://genial.ly/
Source: 07e51f63672c940b_0.0.dr	String found in binary or memory: https://genial.ly/#
Source: 99e7b13f2ae86ff9_0.0.dr	String found in binary or memory: https://genial.ly/$
Source: 4518b842394ccec3_0.0.dr, 91588afd058d8eee_0.0.dr	String found in binary or memory: https://genial.ly//
Source: 4062a9b77de09d74_0.0.dr	String found in binary or memory: https://genial.ly/0
Source: 91588afd058d8eee_0.0.dr	String found in binary or memory: https://genial.ly/3
Source: 7a64c2b6d2cf8763_0.0.dr	String found in binary or memory: https://genial.ly/5f7389c2-449255c9f940ae9d3a89.js
Source: 7a64c2b6d2cf8763_0.0.dr	String found in binary or memory: https://genial.ly/5f7389c2-449255c9f940ae9d3a89.jsaD
Source: a62ecb0c92916e51_0.0.dr	String found in binary or memory: https://genial.ly/8L
Source: 22dfad3329087616_0.0.dr	String found in binary or memory: https://genial.ly/B
Source: a62ecb0c92916e51_0.0.dr	String found in binary or memory: https://genial.ly/F
Source: History-journal.0.dr	String found in binary or memory: https://genial.ly/Genially
Source: 91588afd058d8eee_0.0.dr	String found in binary or memory: https://genial.ly/Im
Source: 5666ee3ea9348f3e_0.0.dr	String found in binary or memory: https://genial.ly/M
Source: 91588afd058d8eee_0.0.dr	String found in binary or memory: https://genial.ly/P
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/U
Source: 721ddcae94c88a33_0.0.dr	String found in binary or memory: https://genial.ly/UB
Source: 4518b842394ccec3_0.0.dr	String found in binary or memory: https://genial.ly/Y
Source: 4518b842394ccec3_0.0.dr	String found in binary or memory: https://genial.ly/a
Source: da98a447268a3171_0.0.dr, d0299fcaaada2e6b_0.0.dr	String found in binary or memory: https://genial.ly/app-63bc939329e7aa4c091d.js
Source: d0299fcaaada2e6b_0.0.dr	String found in binary or memory: https://genial.ly/app-63bc939329e7aa4c091d.jsaD
Source: 0635d50b7c9cecbb_0.0.dr	String found in binary or memory: https://genial.ly/commons-3ca65ea7ff019bc1f437.js
Source: 0635d50b7c9cecbb_0.0.dr	String found in binary or memory: https://genial.ly/commons-3ca65ea7ff019bc1f437.jsaD
Source: 499b1763beab5b9c_0.0.dr	String found in binary or memory: https://genial.ly/component---src-views-home-home-tsx-3eece985302584bb8a2d.js
Source: Current Session.0.dr, History-journal.0.dr	String found in binary or memory: https://genial.ly/create/presentations/
Source: History-journal.0.dr	String found in binary or memory: https://genial.ly/create/presentations/Create
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/create/presentations/JCreate
Source: 7a64c2b6d2cf8763_0.0.dr	String found in binary or memory: https://genial.ly/d
Source: f2753fb8e762bd2a_0.0.dr	String found in binary or memory: https://genial.ly/fUk
Source: Favicons-journal.0.dr	String found in binary or memory: https://genial.ly/favicon.svg?v=139efb47551957b17637d267b1170ed2
Source: Favicons-journal.0.dr	String found in binary or memory: https://genial.ly/favicon.svg?v=139efb47551957b17637d267b1170ed2&
Source: 3ccbe2f9f834cd24_0.0.dr	String found in binary or memory: https://genial.ly/framework-b9ed96603d89186697c2.js
Source: 3ccbe2f9f834cd24_0.0.dr	String found in binary or memory: https://genial.ly/framework-b9ed96603d89186697c2.jsaD
Source: 25a59ffe919f7aa9_0.0.dr	String found in binary or memory: https://genial.ly/i
Source: 25a59ffe919f7aa9_0.0.dr	String found in binary or memory: https://genial.ly/k
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/plans/
Source: History-journal.0.dr	String found in binary or memory: https://genial.ly/plans/Choose
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/plans/D
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/plans/DChoose
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/plans/Y
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/t
Source: 721ddcae94c88a33_0.0.dr	String found in binary or memory: https://genial.ly/webpack-runtime-39e5893516543ea0a354.js
Source: 721ddcae94c88a33_0.0.dr	String found in binary or memory: https://genial.ly/webpack-runtime-39e5893516543ea0a354.jsaD
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/why-genially/
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/why-genially/ADiscover
Source: History-journal.0.dr	String found in binary or memory: https://genial.ly/why-genially/Discover
Source: Current Session.0.dr	String found in binary or memory: https://genial.ly/why-genially/I
Source: a62ecb0c92916e51_0.0.dr	String found in binary or memory: https://genial.ly/x
Source: Current Session.0.dr	String found in binary or memory: https://genial.lyh
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://genially-d1c40.firebaseio.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://genially-download-html.genial.ly/download-html
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://genially.blob.core.windows.net/genially/users/#idUser/custom/#font.ttf
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/H6s3QBQC
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/HhOlmC
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/Klitp3
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/L7H7XhOa
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/OJKoPS?source=pricing&corpedu=edu&market=ES
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/VRhre4
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/b5FQ8i?source=pricing&corpedu=corp&market=EN
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/gGPtna
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/hItPwP?source=pricing&corpedu=edu&market=FR
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/i3RLVn?source=pricing&corpedu=edu&market=EN
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/lJhJU4?source=pricing&corpedu=corp&market=FR
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/lx7yB8?source=pricing&corpedu=corp&market=ES
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/nGfdUM
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/nv6KZRvZ
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://geniallyiscool.typeform.com/to/zUHIwo
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://gvv3gujs2j.execute-api.eu-west-2.amazonaws.com/dev
Source: manifest.json0.0.dr	String found in binary or memory: https://hangouts.google.com/
Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: https://i.imgur.com/wCOStwT.png
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/en
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/en/articles/3542502-insert-a-html-code-of-a-genially-in-a-webs
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/en/articles/3542527-insert-a-genially-into-wordpress
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/en/articles/3545818-monitorize-your-audience-s-interactivity-w
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/en/articles/3546201-integrating-google-analytics-with-genially
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/es
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/es/articles/3542502-insertar-codigo-html-de-un-genially-en-una
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/es/articles/3542527-insertar-un-genially-en-wordpress
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/es/articles/3545818-monitorizar-la-interactividad-que-realiza-
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/es/articles/3546201-integracion-de-google-analytics-con-genial
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/fr
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/fr/articles/3545818-monitoriser-l-interactivite-que-realise-vo
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://intercom.help/geniallysupport/fr/articles/3546201-integration-de-google-analytics-avec-genia
Source: aed1d60bed96de03_0.0.dr	String found in binary or memory: https://js-agent.newrelic.com/nr-1210.min.js
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://krne47uno7.execute-api.eu-west-2.amazonaws.com/dev/screenshots/pdf
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://o401qaj0fk.execute-api.eu-west-2.amazonaws.com/dev
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://ogs.google.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://oz780iqafg.execute-api.eu-west-1.amazonaws.com/staging/screenshots/pdf
Source: manifest.json1.0.dr	String found in binary or memory: https://payments.google.com/payments/v4/js/integrator.js
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://play.google.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://ppt.genial.ly/import/ppt
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://preview.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://preview.genial.ly/Preview/Index/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://print.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://q04tggcme9.execute-api.us-east-1.amazonaws.com/prod/log
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://r1---sn-1gi7znes.gvt1.com
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://redirector.gvt1.com
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://resources.genial.ly
Source: manifest.json1.0.dr	String found in binary or memory: https://sandbox.google.com/payments/v4/js/integrator.js
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://ssl.gstatic.com
Source: 024b0b16471e63dc_0.0.dr	String found in binary or memory: https://static.cloudflareinsights.com/beacon.min.js
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://static.genial.ly/
Source: 25a59ffe919f7aa9_0.0.dr	String found in binary or memory: https://static.genial.ly/auth/main.06ed7008d51d7c1e836f.js
Source: Favicons.0.dr	String found in binary or memory: https://static.genial.ly/auth/public/favicon.ico
Source: Favicons.0.dr	String found in binary or memory: https://static.genial.ly/auth/public/favicon.icoE
Source: f2753fb8e762bd2a_0.0.dr	String found in binary or memory: https://static.genial.ly/auth/runtime.90d63aa131fc9ce4976b.js
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://static.genial.ly/resources/error-draft-creation.png
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://static.genial.ly/resources/panel-loader-low.mp4
Source: 5c2fd4777655f0d8_0.0.dr	String found in binary or memory: https://static.xx.fbcdn.net/rsrc.php/v3/ya/r/O2aKM2iSbOw.png
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://statics-view.genial.ly/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view
Source: 99e7b13f2ae86ff9_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/service-worker-genially.js
Source: 577b0b7aba1a39f2_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/charts.d01034ea.chunk.js
Source: c5af2ccf436da566_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/dist/social.0.0.44.min.js
Source: c5af2ccf436da566_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/dist/social.0.0.44.min.jsaD
Source: 4062a9b77de09d74_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/dist/vendors.0.0.44.min.js
Source: 4062a9b77de09d74_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/dist/vendors.0.0.44.min.jsa
Source: 4062a9b77de09d74_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/dist/vendors.0.0.44.min.jsaD
Source: 7312bd0bd68482f6_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/main.fddd20ab.chunk.js
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/main.fddd20ab.chunk.jsa
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/main.fddd20ab.chunk.jsaD
Source: 99e7b13f2ae86ff9_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/runtime-main.c9129696.js
Source: 99e7b13f2ae86ff9_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/runtime-main.c9129696.jsaD
Source: b7c177f399f061b7_0.0.dr	String found in binary or memory: https://statics-view.genial.ly/view/static/js/vendors~charts.612ad434.chunk.js
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://stats.g.doubleclick.net
Source: 9c417454ae605bd9_0.0.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/answer/2998456
Source: messages.json41.0.dr	String found in binary or memory: https://support.google.com/chromecast/troubleshooter/2995236
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://t806zzjvhj.execute-api.eu-west-1.amazonaws.com/prod
Source: b510d5121b6a3bbe_0.0.dr, 9c417454ae605bd9_0.0.dr, 0fb7f5ed12432205_0.0.dr	String found in binary or memory: https://tagassistant.google.com/
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://u0f62tq6q2.execute-api.eu-west-1.amazonaws.com/production/visits-likes
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://use.fontawesome.com/
Source: 0778307c93d4285c_0.0.dr, Current Session.0.dr	String found in binary or memory: https://view.genial.ly
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://view.genial.ly/
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/5a660638621bd0183fdb465b/interactive-content-trivial-quiz-ii
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/5a660638621bd0183fdb465b/interactive-content-trivial-quiz-iiK
Source: History-journal.0.dr	String found in binary or memory: https://view.genial.ly/5a660638621bd0183fdb465b/interactive-content-trivial-quiz-iiTRIVIAL
Source: Favicons-journal.0.dr	String found in binary or memory: https://view.genial.ly/5a660638621bd0183fdb465b/interactive-content-trivial-quiz-iiV
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/5f1a93c2a1a5620d688518a5/interactive-content-dashboard-eng
Source: History-journal.0.dr	String found in binary or memory: https://view.genial.ly/5f1a93c2a1a5620d688518a5/interactive-content-dashboard-engDASHBOARD
Source: Favicons-journal.0.dr	String found in binary or memory: https://view.genial.ly/5f1a93c2a1a5620d688518a5/interactive-content-dashboard-engY
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/5f6350e779626a0d712891f0
Source: Favicons-journal.0.dr	String found in binary or memory: https://view.genial.ly/606c014822dac50cf1b7c835/interactive-content-pastel-color-map
Source: History-journal.0.dr	String found in binary or memory: https://view.genial.ly/606c014822dac50cf1b7c835/interactive-content-pastel-color-mapPASTEL
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/60bdff0f347fbd0d328a8bfe
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/60d968b961dbed0dd1bd2fea/interactive-content-online-shop-guide
Source: History.0.dr	String found in binary or memory: https://view.genial.ly/60d968b961dbed0dd1bd2fea/interactive-content-online-shop-guideONLINE
Source: Current Session.0.dr	String found in binary or memory: https://view.genial.ly/60d968b961dbed0dd1bd2fea/interactive-content-online-shop-guideSZ
Source: Favicons.0.dr	String found in binary or memory: https://view.genial.ly/60d968b961dbed0dd1bd2fea/interactive-content-online-shop-guideX
Source: Current Session.0.dr, Favicons-journal.0.dr	String found in binary or memory: https://view.genial.ly/614e65ad1f21fe0d7ec3b264
Source: History Provider Cache.0.dr	String found in binary or memory: https://view.genial.ly/614e65ad1f21fe0d7ec3b2642#Panelfbs
Source: History-journal.0.dr	String found in binary or memory: https://view.genial.ly/614e65ad1f21fe0d7ec3b264Panelfbs
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://view.genial.ly/Preview/Index/
Source: Favicons-journal.0.dr	String found in binary or memory: https://view.genial.ly/favicon.ico
Source: Favicons-journal.0.dr	String found in binary or memory: https://view.genial.ly/favicon.icoz
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://ws-dev.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://ws-eu-west-1.genial.ly
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://ws.genial.ly
Source: Network Action Predictor-journal.0.dr	String found in binary or memory: https://www.clickfunnels.com/
Source: 9dcde2c2181e9943_0.0.dr	String found in binary or memory: https://www.clickfunnels.com/assets/lander.js
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://www.google-analytics.com
Source: 4518b842394ccec3_0.0.dr, b510d5121b6a3bbe_0.0.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: b510d5121b6a3bbe_0.0.dr	String found in binary or memory: https://www.google-analytics.com/analytics.jsaD
Source: b510d5121b6a3bbe_0.0.dr, 9c417454ae605bd9_0.0.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap
Source: b510d5121b6a3bbe_0.0.dr, 42dc0dfef585eefe_0.0.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: 22dfad3329087616_0.0.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=OPT-NMJDJ9J&t=gtm18&cid=2090427844.1632744494&aip=true
Source: 07e51f63672c940b_0.0.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=OPT-NMJDJ9J&t=gtm4&cid=2090427844.1632744494&aip=true
Source: 9c417454ae605bd9_0.0.dr, 0fb7f5ed12432205_0.0.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://www.google.ch
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, manifest.json0.0.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://www.google.com
Source: manifest.json1.0.dr	String found in binary or memory: https://www.google.com/
Source: 9c417454ae605bd9_0.0.dr, 0fb7f5ed12432205_0.0.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: manifest.json0.0.dr	String found in binary or memory: https://www.google.com;
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://www.googleapis.com
Source: manifest.json1.0.dr	String found in binary or memory: https://www.googleapis.com/
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/calendar.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/cast-edu-messaging
Source: manifest.json1.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore
Source: manifest.json1.0.dr	String found in binary or memory: https://www.googleapis.com/auth/chromewebstore.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/clouddevices
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/hangouts.readonly
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/meetings
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.peopleapi.readwrite
Source: manifest.json1.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierra
Source: manifest.json1.0.dr	String found in binary or memory: https://www.googleapis.com/auth/sierrasandbox
Source: manifest.json0.0.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://www.googletagmanager.com
Source: b510d5121b6a3bbe_0.0.dr, 9c417454ae605bd9_0.0.dr, 0fb7f5ed12432205_0.0.dr, 42dc0dfef585eefe_0.0.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: 6ed0f346afea4b01_0.0.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-HB449G7R47&l=dataLayer&cx=c
Source: 91588afd058d8eee_0.0.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=GTM-K3DDDL4
Source: ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp.3.dr, 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://www.gstatic.com
Source: manifest.json0.0.dr	String found in binary or memory: https://www.gstatic.com;
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://xb4w0gh326.execute-api.eu-west-1.amazonaws.com/dev/download
Source: 0778307c93d4285c_0.0.dr	String found in binary or memory: https://xtpbpnvzn0.execute-api.us-east-1.amazonaws.com/prod/compress
Source: 9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp.3.dr	String found in binary or memory: https://yt3.ggpht.com

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Temp\0d1bdbab-e58e-4f24-80ce-063ceb43824d.tmp

Jump to behavior

Source: classification engine

Classification label: mal72.phis.win@53/321@0/53

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://2c7.ir/4sv4E'
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1560,16086817351805558034,16500979573986469014,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1684 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1560,16086817351805558034,16500979573986469014,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=3108 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1560,16086817351805558034,16500979573986469014,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1684 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe 'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1560,16086817351805558034,16500979573986469014,131072 --lang=en-US --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=3108 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Program Files\Google\Chrome\Application\Dictionaries

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-6151B429-1AB0.pma

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Directory created: C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic			Jump to behavior

IP	Domain	Country	ASN	ASN Name	Malicious
52.218.108.99	unknown	United States	16509	AMAZON-02US	false
13.225.78.68	unknown	United States	16509	AMAZON-02US	false
8.8.8.8	unknown	United States	15169	GOOGLEUS	false
172.217.168.46	unknown	United States	15169	GOOGLEUS	false
104.16.148.64	unknown	United States	13335	CLOUDFLARENETUS	false
13.224.193.77	unknown	United States	16509	AMAZON-02US	false
172.217.168.42	unknown	United States	15169	GOOGLEUS	false
104.16.12.194	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.203.99	unknown	United States	15169	GOOGLEUS	false
162.247.243.147	unknown	United States	13335	CLOUDFLARENETUS	false
13.225.78.110	unknown	United States	16509	AMAZON-02US	false
34.104.35.123	unknown	United States	15169	GOOGLEUS	false
216.58.215.227	unknown	United States	15169	GOOGLEUS	false
104.21.15.175	unknown	United States	13335	CLOUDFLARENETUS	false
82.99.244.238	unknown	Iran (ISLAMIC Republic Of)	60976	POLIR	false
52.49.29.78	unknown	United States	16509	AMAZON-02US	false
172.217.168.1	unknown	United States	15169	GOOGLEUS	false
199.232.194.2	unknown	United States	54113	FASTLYUS	false
54.247.36.38	unknown	United States	16509	AMAZON-02US	false
20.150.83.196	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
172.217.168.13	unknown	United States	15169	GOOGLEUS	false
67.202.94.94	unknown	United States	32748	STEADFASTUS	false
172.217.168.14	unknown	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
52.17.252.170	unknown	United States	16509	AMAZON-02US	false
172.217.168.10	unknown	United States	15169	GOOGLEUS	false
52.218.24.59	unknown	United States	16509	AMAZON-02US	false
104.16.94.65	unknown	United States	13335	CLOUDFLARENETUS	false
13.225.78.40	unknown	United States	16509	AMAZON-02US	false
142.250.203.110	unknown	United States	15169	GOOGLEUS	false
13.225.78.46	unknown	United States	16509	AMAZON-02US	false
157.240.17.15	unknown	United States	32934	FACEBOOKUS	false
172.217.168.67	unknown	United States	15169	GOOGLEUS	false
172.217.168.3	unknown	United States	15169	GOOGLEUS	false
34.247.225.137	unknown	United States	16509	AMAZON-02US	false
172.217.168.4	unknown	United States	15169	GOOGLEUS	false
151.101.112.193	unknown	United States	54113	FASTLYUS	false
104.16.16.194	unknown	United States	13335	CLOUDFLARENETUS	false
104.21.78.7	unknown	United States	13335	CLOUDFLARENETUS	false
13.224.193.104	unknown	United States	16509	AMAZON-02US	false
142.250.203.104	unknown	United States	15169	GOOGLEUS	false
54.155.182.199	unknown	United States	16509	AMAZON-02US	false
151.101.2.137	unknown	United States	54113	FASTLYUS	false
104.16.149.64	unknown	United States	13335	CLOUDFLARENETUS	false
172.217.168.78	unknown	United States	15169	GOOGLEUS	false
142.250.145.156	unknown	United States	15169	GOOGLEUS	false
104.16.13.194	unknown	United States	13335	CLOUDFLARENETUS	false
173.194.160.70	unknown	United States	15169	GOOGLEUS	false
172.217.168.74	unknown	United States	15169	GOOGLEUS	false
13.224.193.86	unknown	United States	16509	AMAZON-02US	false
13.224.193.117	unknown	United States	16509	AMAZON-02US	false

Domain

Country

Flag

ASN

ASN Name

Malicious

52.218.108.99

unknown

United States

16509

AMAZON-02US

false

13.225.78.68

unknown

United States

16509

AMAZON-02US

false

8.8.8.8

unknown

United States

15169

GOOGLEUS

false

172.217.168.46

unknown

United States

15169

GOOGLEUS

false

104.16.148.64

unknown

United States

13335

CLOUDFLARENETUS

false

13.224.193.77

unknown

United States

16509

AMAZON-02US

false

172.217.168.42

unknown

United States

15169

GOOGLEUS

false

104.16.12.194

unknown

United States

13335

CLOUDFLARENETUS

false

142.250.203.99

unknown

United States

15169

GOOGLEUS

false

162.247.243.147

unknown

United States

13335

CLOUDFLARENETUS

false

13.225.78.110

unknown

United States

16509

AMAZON-02US

false

34.104.35.123

unknown

United States

15169

GOOGLEUS

false

216.58.215.227

unknown

United States

15169

GOOGLEUS

false

104.21.15.175

unknown

United States

13335

CLOUDFLARENETUS

false

82.99.244.238

unknown

Iran (ISLAMIC Republic Of)

60976

POLIR

false

52.49.29.78

unknown

United States

16509

AMAZON-02US

false

172.217.168.1

unknown

United States

15169

GOOGLEUS

false

199.232.194.2

unknown

United States

54113

FASTLYUS

false

54.247.36.38

unknown

United States

16509

AMAZON-02US

false

20.150.83.196

unknown

United States

8075

MICROSOFT-CORP-MSN-AS-BLOCKUS

false

172.217.168.13

unknown

United States

15169

GOOGLEUS

false

67.202.94.94

unknown

United States

32748

STEADFASTUS

false

172.217.168.14

unknown

United States

15169

GOOGLEUS

false

239.255.255.250

unknown

Reserved

unknown

false

52.17.252.170

unknown

United States

16509

AMAZON-02US

false

172.217.168.10

unknown

United States

15169

GOOGLEUS

false

52.218.24.59

unknown

United States

16509

AMAZON-02US

false

104.16.94.65

unknown

United States

13335

CLOUDFLARENETUS

false

13.225.78.40

unknown

United States

16509

AMAZON-02US

false

142.250.203.110

unknown

United States

15169

GOOGLEUS

false

13.225.78.46

unknown

United States

16509

AMAZON-02US

false

157.240.17.15

unknown

United States

32934

FACEBOOKUS

false

172.217.168.67

unknown

United States

15169

GOOGLEUS

false

172.217.168.3

unknown

United States

15169

GOOGLEUS

false

34.247.225.137

unknown

United States

16509

AMAZON-02US

false

172.217.168.4

unknown

United States

15169

GOOGLEUS

false

151.101.112.193

unknown

United States

54113

FASTLYUS

false

104.16.16.194

unknown

United States

13335

CLOUDFLARENETUS

false

104.21.78.7

unknown

United States

13335

CLOUDFLARENETUS

false

13.224.193.104

unknown

United States

16509

AMAZON-02US

false

142.250.203.104

unknown

United States

15169

GOOGLEUS

false

54.155.182.199

unknown

United States

16509

AMAZON-02US

false

151.101.2.137

unknown

United States

54113

FASTLYUS

false

104.16.149.64

unknown

United States

13335

CLOUDFLARENETUS

false

172.217.168.78

unknown

United States

15169

GOOGLEUS

false

142.250.145.156

unknown

United States

15169

GOOGLEUS

false

104.16.13.194

unknown

United States

13335

CLOUDFLARENETUS

false

173.194.160.70

unknown

United States

15169

GOOGLEUS

false

172.217.168.74

unknown

United States

15169

GOOGLEUS

false

13.224.193.86

unknown

United States

16509

AMAZON-02US

false

13.224.193.117

unknown

United States

16509

AMAZON-02US

false

192.168.2.1

127.0.0.1

Name

Malicious

Antivirus Detection

Reputation

https://view.genial.ly/5a660638621bd0183fdb465b/interactive-content-trivial-quiz-ii

false

high

https://view.genial.ly/606c014822dac50cf1b7c835/interactive-content-pastel-color-map

false

high

https://view.genial.ly/614e65ad1f21fe0d7ec3b264

false

SlashNext: Fake Login Page type: Phishing & Social Engineering

high

https://auth.genial.ly/login

false

high

https://view.genial.ly/60bdff0f347fbd0d328a8bfe

false

high

https://view.genial.ly/60d968b961dbed0dd1bd2fea/interactive-content-online-shop-guide

false

high

https://auth.genial.ly/signup

false

high

Name	Type	MD5	SHA1	SHA256
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic	data	A78AD14E77147E7DE3647E61964C0335	CECC3DD41F4CEA0192B24300C71E1911BD4FCE45	0D6803758FF8F87081FAFD62E90F0950DFB2DD7991E9607FE76A8F92D0E893FA
C:\Users\user\AppData\Local\Google\Chrome\User Data\2825c0c2-5e81-4ea9-87fe-3355fb78f34f.tmp	SysEx File -	9B2506A9FBB0784DE3E12A3BBAC64885	33CC0E909FD6EF5F6A21B0255DB956CDB96FFCB7	CE1CBD013FDCDDC6BFB63F32D8812FCC3ECD0D3B024EAB6D34D79287217230DE
C:\Users\user\AppData\Local\Google\Chrome\User Data\3460fb31-75e7-4e09-aee1-0643e7da2202.tmp	ASCII text, with very long lines, with no line terminators	04439094DE03A9E9AC695BBAB146611F	3A7845C612967B956AD2292AC9C6AE65A49F0EEE	2B89015D667C94EEC51C7391169B307F645BAFF6040A7EC49AC9F8878AFFA20E
C:\Users\user\AppData\Local\Google\Chrome\User Data\39f16561-0bd6-4487-ab9e-adb35c94f8ab.tmp	ASCII text, with very long lines, with no line terminators	5FC99CBF2A6E8CC7E3A0A5B59176AAEB	EDEAC2981A69E2C8A7F031B46148D72CB350DFAF	18B082FEA67C3A5B52EFCCD265D564BDCD537E7D7DD5873EBF6E0CB0D0741939
C:\Users\user\AppData\Local\Google\Chrome\User Data\5bf9c6bf-6ea2-46c6-9e24-0795278a11e7.tmp	ASCII text, with very long lines, with no line terminators	CE0DBEC589C59DC5764ACFD38471980A	D8587BE453D2CEC7C37B8349CB09B320A53A33F4	14CEECC85D99A8A95E04885C0C6F45F6DCB349643DDE09C5F53E20D29B403AA4
C:\Users\user\AppData\Local\Google\Chrome\User Data\8150e9ef-83df-4936-ab72-f2922e594fbc.tmp	data	2151ED1561F3341CA9AFC7CBA4234AE6	F5932EAAF51B45CAC21892374D1F6C2636901B50	3982531CD6090BC74FF24962612A35C0679BE2906E59B992FCDE772CBE7D3A30
C:\Users\user\AppData\Local\Google\Chrome\User Data\9b977e47-d1e5-4159-969e-254df2089623.tmp	ASCII text, with very long lines, with no line terminators	87AA0C07AE4115C5AE01E32D4E504BE0	C786542E6AECB5442BDC603791C97CC47A2C37D7	AD931A648AFC45A7024922A3C3744C1F4591A75B17F6068C32AA4F0FF16BC7BE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat	data	E9224A19341F2979669144B01332DF59	F7F760C7104457DF463306A7F7BAE0142EFCEB5B	47DD519C226D23F203ACAE0EC44DF9BB6208828E24F726E1602EA52F63C3E2BE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\043db510-4a16-41eb-9808-9c8b3656ffdf.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	AD2E447B1DBFFF752F446D7568F838AE	86C1577B22B68D8DF737D925AA93FA8514B57F50	D500D0D18F0047A8B070C39F3D99E2FA203ABBBE2E98F8F7FD9C6C91771DB8F4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1b089d88-03c5-4b7f-970b-785869ece4cd.tmp	ASCII text, with very long lines, with no line terminators	F47685063A14E6460AD000FD2CC5F3DE	9970197A05F883560E6E2A099309FDAD4DE013DA	F3C84EF74CBBECF6F3658B7E20B03C2F5DD619F13378160556CB1810C74CE81A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\246f7a1b-bbd4-42fa-980d-1041b903d894.tmp	ASCII text, with very long lines, with no line terminators	2D9B2B1629254BB6D2B584D2DD7B508E	67CC5D21026BA871D8A11AE0227B400700DDB7DC	5BDFF8E84999794B6CA18866218A8B4D4A3E37CBD6B6799C91F8439F62A4A253
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\340ebf0b-9218-4cf3-8fe0-4a28f20e2969.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3e377f80-d041-42cc-b704-d6974f10bce3.tmp	ASCII text, with very long lines, with no line terminators	F47685063A14E6460AD000FD2CC5F3DE	9970197A05F883560E6E2A099309FDAD4DE013DA	F3C84EF74CBBECF6F3658B7E20B03C2F5DD619F13378160556CB1810C74CE81A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5a20ce81-84a9-488f-9859-19c495043f8b.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	1CAA486E16727E141BB28BB75A9C7DB9	91012F79CEDC446FC222564E275E5D4CAFE5843C	00864230C7EFC71C524D6EC8910FBAB659F32EE7D4CAF644484FC2CC24FE5DE3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5e5c9e5f-7e65-4e59-8873-8504965f81a5.tmp	ASCII text, with very long lines, with no line terminators	50839FAA8C421AC2D8D964AD240B39B5	0A9E10F9EB2B4A6A70361AFE2DD8B7EB478A0F81	6A250132D6381D0FB284272F3D6F47E80D989A97968F433A0FAA9859BE131248
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6d86b563-a236-4560-90f3-624de31d5ce9.tmp	ASCII text, with very long lines, with no line terminators	63F5E4946C0BA35587BAC6974323A3F4	26362FD99E97DEA8B131EB5D34DE660D739929DC	B352138831B90D6ECE9455E120676C8BEE09D7E87E7E3C0BC5667DF5417081BD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\74c3b569-e034-4e1d-a1c9-5fd763f92c7a.tmp	ASCII text, with very long lines, with no line terminators	3DDCA250083F52DD007356F72509082E	32705162F8540EEB48EB0C73DE39CA3C32B69381	527C49B436F594BC9065D96F327EBDD2520DC20C4C7C96D205BE05EEEC701622
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\776fbebb-9712-4301-b6b5-37682b918d18.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	5BF5792D94D7A7D697EE1702FF69B129	9A7CF0062EA2893F66AA52BDE98C0AD42E7D4D99	2E220C555422052FAAF3365D4EF7002232D6A48A7308E3BF88231EB41617868B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7973353c-e0dd-49e0-bcce-7e35e2aea832.tmp	ASCII text, with very long lines, with no line terminators	A35E9F7AA878D98823969111A46BF6EC	2A398D5BCFEB2C20648984D213701496C7DE6880	2A31FF9D809A841EBB57380FBDDD18DDB3B29349B86930001178AE5115DBF80E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7b1da0ac-123c-4977-976e-38a6a8c1da06.tmp	ASCII text, with very long lines, with no line terminators	099E030F3558BE84AFE69D85E85A4B8C	96AF4F5EC328CD906F2A1E6117DFDAE8E070823D	D998305E8E086D1EF01619E86700BE5579A955FA4BF3FD657E7FCEE2243C891A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\883c7b77-5810-45fc-87cd-9cdc3b6a7e18.tmp	UTF-8 Unicode text, with very long lines, with no line terminators	4EBAFE85DE5FD3FD79AB4759A7B28240	6E626D445F875A6B41B881905FAF16D6F01A8908	2E46F21DC6D0CE8D43C340525E19530F8A838345DB78E100454657F532C76121
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9069b129-4784-4d27-bb48-7ac4fb7b2cae.tmp	ASCII text, with very long lines, with no line terminators	7571A2F70768251878B86190A59D719F	8394D00E6DACFC4C0C2C75673DD3199803A33CD5	E7C3FBC09A324BDA69F5AFBAE40BA5FAE15147D140BF5505D3F34397A2F1737E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG	ASCII text	613EA91962218B6BDF85F1642B42B176	16E86F458EEE8389972C6624712BF57D8048F9D5	C0245D66B556DB893043C8A3788A7106C7BEE9657E3E680EA22464D84198B5F2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.oldNT (copy)	ASCII text	613EA91962218B6BDF85F1642B42B176	16E86F458EEE8389972C6624712BF57D8048F9D5	C0245D66B556DB893043C8A3788A7106C7BEE9657E3E680EA22464D84198B5F2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG	ASCII text	6024B9A93F29749C7942BC0C25BC46B7	A82F7114411CDB20F0AF27A48B600731EE74FBE6	80260ABA3E3D00FD9A59B8D707FA7DAAB2D9C89D3F046C554D5812D7976DB14E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old.R (copy)	ASCII text	6024B9A93F29749C7942BC0C25BC46B7	A82F7114411CDB20F0AF27A48B600731EE74FBE6	80260ABA3E3D00FD9A59B8D707FA7DAAB2D9C89D3F046C554D5812D7976DB14E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\024b0b16471e63dc_0	data	3C67336B89C3FB27B2AC888EFA2BEFAB	B1E26AC2DDC9ABB7BC4EDD752854341D305B4ABD	4A18CF1FC3B7B1221D2485FB2DEB9407369E08BC4C0C2FC68BA752771A10BD85
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0635d50b7c9cecbb_0	data	9DF70C2EEF23A04B620EDDB9644CCD92	91BFA9D9B764576D92994449AD15D0E873609295	F0E11F7A4F1F320EBE0D6FA950F9AB7BC73959737DA11DC02175BB0A927B2F0C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0778307c93d4285c_0	data	141CAE2734F65A9C6BABDB9FBC7C9D1D	27D54EBAA720F301A3167DD3B8B57BC9B36DCFC4	7CA11143560461CC028666FE36BF387AFED966A6C0AE507D63571EFD9DC3F720
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\07e51f63672c940b_0	data	238FBFA891D2E26ED188F8750C47BC1B	B197EC2744C5E7D590BBD3511A9421A4F8336F67	8F4042277B22A7D3FA657572A22CC103FE5198045768A7B776651D0B0BEDAE1A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0fb7f5ed12432205_0	data	AC16E0284BA8E29ACA658AA91961344E	F40FF044759DED4A8B71F84A01D8616CE3C67746	07F13DF33570FC979DFAFFC6FE3955BECF68BDEDC44AF2570E57BF83E61EDB5E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1fa57e55091cc94a_0	data	D92E8A80E69F5C0667C7B56242621BF6	2EADA36C8F00B1BF9777773DCBD1E2CF84573D15	3BB8DA373860FDDC9A410F7F8044EEF7211B98D4BF10BFA0DAD15426C28FB748
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\22dfad3329087616_0	data	4D18F9F5E6B0018CA1FE69C3986ED29F	390CB3E2EEAE92A7BBAFEAE4C953B96B8BB369F2	98CF3E446B0BEEAA915DFF75EECA4F00AC73940A27C78CAD9BF0C0798EB96D32
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25a59ffe919f7aa9_0	data	125B55F656A120591FCD00934F37F493	A9B9A922E84BEECF85D84200F339F9B7DE33DF60	054639B188E8FB7B24E641B8AC5A367AAB5978EA67327DD5BBE51E59C39C62A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3ccbe2f9f834cd24_0	data	C422C77DDC1F9D5BAB9643858C237059	7145DD641CCE319A178A3DA79EB573DC64CE1B61	C276268DC00C98D67067AF145EE737C11F7C3820999CDF3B05FA1BF01B84D9B0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4062a9b77de09d74_0	data	A2C62C3A9D22BD4FCAA8076C91265203	6946DAD7D8D439F2D097752AEB5A93BE65F2B9B7	860B85A1C7515939DEB8EA992CBDB09FB115240F4904A7C6E2CC32AE04BCCAA5
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\42dc0dfef585eefe_0	data	A866E0E84BC108C09E8CBDB22FE098B8	9FD63CBB2F37B35C7610692D6E98382B6FE16A8C	DFA56C46364249F8E5ED90348D68AD6A34325827C4A837E4B0BBBD0F47D1B13F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4518b842394ccec3_0	data	28F3A5A4717A733E0D3A1DCA6B9EF9D7	F1EA7A04C4CB4669DE80E279CAB35E08DDDE980C	EC861510EECE5D3D65C5E34E04EFD7297023A83B77DB20F2DE2BE35D7A978CA6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\499b1763beab5b9c_0	data	7EAFAC42827A165DD301B7C30791756B	C5CC34A5FB7A1FF5A094E46EB0E69ADC45ACFE22	678B8EC3FD1FFA6EF44BE2237FD331DD36BC8C243334B9429B28D9C849089445
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5666ee3ea9348f3e_0	data	A0C2B0B2EBF5EFF30E50CE6A1A31ED19	AD32B7C141D8270B5BA5D16ED937963077C1FF5D	CD05397EE8F0E975DF57B493EFC79D11828AF5E8D9863A8F351562C27286C390
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\577b0b7aba1a39f2_0	data	859D7C6AC58D7697CFD445FCBF99C42A	1E3B191F7C9247313613FD46C93A91799340A267	D8E376AC2F5AA53D74EEB14536741C8BD3A0BC49DDDD7B4824A4925EDCBB3A4E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5c2fd4777655f0d8_0	data	CDFC074BD3A87577AA117FEF246842D5	503E76491CE6FF96CF7415A057EFA3CBCE90D122	DA6BB1E3D1C05E29656D921EEE77CF960D7920BDFF3851FD74245F3173342DC4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\64c4fc2bdcb4e5a9_0	data	798FF3E85D4AEA914F56670703A6EB2E	24A480862F4BB14A2BA35611DF54AE74A730DDF5	E00131F8F379B0C7CD1A61FD56CAD764AA28DCE7E014AAFFB34CACEFFA55596B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6ed0f346afea4b01_0	data	F850538789C350E7C80546AF38BB2235	6DC8E258168FE7D85A2B7B546B31614892E3A3E5	82E0478DDAE7DD2C83DD82371FCB89BEF3D9E42AA375236D00EDFC38151F1243
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\721ddcae94c88a33_0	data	7861A140CD4DA7D71818BC9690864207	C57AA9BEF06FFAEC83813CC5EF263CE140F3BE7F	8B3296BB1A8291831873475898445820069BB2CF843C32BA2FD4A8D7D4A57967
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7312bd0bd68482f6_0	data	DA158D0762D18EA731A56623983141AD	9AA66CFFA26146C39C3A4C09C1C892AE5373AE1E	3386DDF1438AB79E190CC78602D226E2E5AC5106358255AD6B4B520B359C7164
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7a64c2b6d2cf8763_0	data	200AAE09E49ECCB54A26452299353163	5AE9742478F15E7654911E24E002E4E1C898B013	B50598AF76676801986E82F7779D290FA0CE68BC76DB9A445CA3A8833162DB08
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7b0adb650632f145_0	data	B9AF130A98BB3D5E8526FC859D65A9D1	576CC8FB5D43CEAA9BA04C5B55986C2740AB0B2D	FF63A16FBDDF94CF3FB91C46A1C0734AC67BBF5EA9A7565AB76537C05643C572
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\91588afd058d8eee_0	data	4F79420C261783DBD73E4798606189E8	F4A4141424DCA162B2C29529A7ADA1C58B6C4C0F	4C89562662685777D8A294DD8834148E7D6337B652FB8853F6CC97176F795E12
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\99e7b13f2ae86ff9_0	data	200B5D9D01E78FF4712BC78F7DF7A278	C961418959D3B54F3C1DE2BD44E2C7D66BCA5351	868F2F87E16171911C615669548982D1B9C3599D58B88D9B7BC3B2C6D199AE33
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9c417454ae605bd9_0	data	8D6A95E0AAE3CAF74F222380CAA00A87	3C6B71CF8AF3E15CFCDC3EFEB95F2588C401C306	2562CCB302BC9E5B2A7FD979ACE3E97E43EE730F7B0A3448F1AF2D218DCE34EA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9dcde2c2181e9943_0	data	8AA77DF786211F509CB2F5EF4F4E6504	890763ECCC3C4FD8FD4C11AD607D9A7886F22ABE	45C75746008174C0C2115E1454343EE3633A93AD68B8502F0765FF0E2F1CE177
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a62ecb0c92916e51_0	data	DA563028DA9E3C558581FDF61EF2A81F	1CBF125FBE656ACB46BCC5ABB5D8A40C22A966A0	2766D0C5BC0252703442ABA1A8E556B13FCE2A73257795E853BC3478F8D3A59B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ac5a61c1cebd2433_0	data	54BDA24D41D01FD04D8C8EA608D86E09	3B5A9DAA5823E33624BE8ECDF50387574FB0745B	44223D74298213183B49E142E52E809F721B073CD66965EBCD54E35AAFBA99A9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aed1d60bed96de03_0	data	CBB9CF90B1AFD6A38CF0A313680FF963	A69A5E002B33A6BC99F85E02F6D5336BF973DC8B	0002B16B3483AA57BB2741B41F0B9EB9B51DC921FAE7396F38920ED59253815F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b510d5121b6a3bbe_0	data	383994F4263B52BD202C1806E28EAFA0	3ED32416113860B07998AED78D46C09EAB7CC2FA	A1ED6B2617EF5C86DEA3A12676AEE887236590BB2905A787B99336E404ED672F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b7c177f399f061b7_0	data	72CE133EE90EE269B242F02663D5EB44	FB40791AACA57BBD7A260E7C34DB6186766EE63F	8DED07DF3AC97D0ECF75695D0820ECAB934B754C5E11023CFB46A6F0613CEC59
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c5af2ccf436da566_0	data	5B992119F5FA571F8566125FD28CB97F	C89A49F13482C6F8E2D08205A8ED975CC5D748AC	48A4F1DE475D056DC570CD3B5DFAB0C781A13DA4C5D75452CB864B8C5913B669
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d0083211b2fa0fb8_0	data	E3F7818ED2BF3FB40E1D75D1B1E3C74C	77509EF69101825343E74A2C44D325B7D44079AF	6BCF7421819375AF46590FC214B983D1C21DD2B69D58FB733D05A7D1B4726E3F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d0299fcaaada2e6b_0	data	C070B4ECF14A981F13E157BB8149C9DB	E0223E903E16F374FFFF14DC61A7EFB5B1CDA3A7	29B5E7887E60C15055E9FAA3FC4DBA5EA67E9551FF474D081E9C4D0884431F5C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\da98a447268a3171_0	data	EF93F7CE788D328AB33A84B423867BA8	C2FE7DB127AE2B34B8732B45E5D9E31B83F02572	D30FFC3347D343168E57900BA1565F66D66B3D339FC8105B9586A114FB5FBBD5
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ed4671b1367363fc_0	data	644B97B8E2B7C35AA7F9AAF0E74EDBA2	3CF9CA5540C9191529AB48959466262857CEFC29	B4E85DB205DA5212481F56324D43445DC7CE4C84144666DDBA105FEE892F5E3A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f2753fb8e762bd2a_0	data	D497D6325C827A9E9699A091ECF1E55B	458FDC6292110C8C203EC0B2C7975E176F32B86D	DD3914062AD1434BC0555A535A717A4811B58F73D324C897A2F80376099976AF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index	data	3DC525BD4BEFC885EEE0704E1D34E016	0C91C88FFFEB6BF8B817650A17DB959740560A9E	062ED96B17F9255735BB885B3B60AD1F459B0E59B89599AFE8EBC389394767A3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index (copy)	data	3DC525BD4BEFC885EEE0704E1D34E016	0C91C88FFFEB6BF8B817650A17DB959740560A9E	062ED96B17F9255735BB885B3B60AD1F459B0E59B89599AFE8EBC389394767A3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies	SQLite 3.x database, last written using SQLite version 3032001	FCF46446E8421C40B6EF1690C2ED6039	9F5E4C1DC10C57D37375BB99BC97FD4EF860C519	94558CCA4DF16DDD8856456495D87B269356C2FBD3FC8EE724469130B38CC860
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal	data	DE792FB03C246781DB8A8FDD3E250EC3	B58D46D5F396351FC0EBCF89EA5A8C8807EDF5F7	7D68D71BA9C01EE29F631920FE46F8FF1059A8EB4E049CC48EBEEE8981B67546
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session	data	ED0D17DDA046E07B68B6182847FEAB4D	9B894C7B6DE249B2260E5898046644527AD4BB71	3EC8CA045F0F70A0802BA8CA0BCCA4D4B34362FE56C70E1C6785A19B8B51D219
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs	data	0686D6159557E1162D04C44240103333	053E9DB58E20A67D1E158E407094359BF61D0639	3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log	data	7FA0F874EABF1EED31988230680AD210	E71B360F1E8D5C278A051AD03DFB9027ACCF38C3	09E15F8939364145E710C314EBD93FD19BF60C2B6B20BF8023315D617B6B141B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG	ASCII text	AEDD1E20AB134BCD51F6F9B0DE5C2C66	D2C1F6235EB8F8AC64F290642ECD970EBC4D6E42	05CB14B985A640838CAF8776AD260D4F90D8B01B4B7BAC07AED054CAB378DA25
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old\A (copy)	ASCII text	AEDD1E20AB134BCD51F6F9B0DE5C2C66	D2C1F6235EB8F8AC64F290642ECD970EBC4D6E42	05CB14B985A640838CAF8776AD260D4F90D8B01B4B7BAC07AED054CAB378DA25
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log	data	9D7435EA49A80FDD66E4915F513017F9	469F6C6E4B19B85CC1BE497812B2F20864F4FF2C	409D4C47E940688527D730B996E8991E010988C7671565467ED69D640D0947F3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG	ASCII text	AEBF5E1C7AFEB49A1D82E96503CEF0E3	40FC8E62B2820D3F64F2EB5507C36523A7FA06AB	3CE907815749EDD735502F8D49522535FF68CA1BD9A57E074C453A2A222E1D60
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.oldR (copy)	ASCII text	AEBF5E1C7AFEB49A1D82E96503CEF0E3	40FC8E62B2820D3F64F2EB5507C36523A7FA06AB	3CE907815749EDD735502F8D49522535FF68CA1BD9A57E074C453A2A222E1D60
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	90F880064A42B29CCFF51FE5425BF1A3	6A3CAE3996E9FFF653A1DDF731CED32B2BE2ACBF	965203D541E442C107DBC6D5B395168123D0397559774BEAE4E5B9ABC44EF268
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	90F880064A42B29CCFF51FE5425BF1A3	6A3CAE3996E9FFF653A1DDF731CED32B2BE2ACBF	965203D541E442C107DBC6D5B395168123D0397559774BEAE4E5B9ABC44EF268
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json	ASCII text, with very long lines, with no line terminators	6AE2135EA4583C2F06CDEBEA4AE70FA4	DCEB26C7F02D53B5F214305F4C75B4A33A79CDC2	03AA1944CB3C4F39E20B6361571BC45DFBEBD3FFDA3D8F148CC6ECB29958F903
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons	SQLite 3.x database, last written using SQLite version 3032001	66A4899C3F16B9201A3679B27935EF11	77C811EBF156C13749818F08396D5DD57AD4D83C	25A4BE06691F880E5AF2C267ECDA13FC2BC35CD959A5B587ADBA721DC8CACD4E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal	data	21B4A94081BACE292E3C6FC4A6B1916B	2A2AC7E815E96D8534618BE4283EB8D4DDEE1CA7	9DAFF523600A2047948978A6CF49AD5C4B6BF7983A896D9A41CAE1FD231FDBD9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log	data	0407B455F23E3655661BA46A574CFCA4	855CB7CC8EAC30458B4207614D046CB09EE3A591	AB5C71347D95F319781DF230012713C7819AC0D69373E8C9A7302CAE3F9A04B7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG	ASCII text	4D9AB9971E9B6F72E541FDDE48882B7D	DADF04073C7348788D196505EDDCA9EF41516B89	6535B4909AE72775516101B84972D593F7A2934BF4B4B9DA4D7123D4D7C326E6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.oldVN (copy)	ASCII text	4D9AB9971E9B6F72E541FDDE48882B7D	DADF04073C7348788D196505EDDCA9EF41516B89	6535B4909AE72775516101B84972D593F7A2934BF4B4B9DA4D7123D4D7C326E6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG	ASCII text	70E9A01A5ABC3A7B102B437811D26C99	306AD5AFEE4F12624196F8BF55A25B83E58078CC	8B324263067A03BB642A1F50DC75F21A93B0FCDCD03420D04849C39C26760E17
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)	ASCII text	70E9A01A5ABC3A7B102B437811D26C99	306AD5AFEE4F12624196F8BF55A25B83E58078CC	8B324263067A03BB642A1F50DC75F21A93B0FCDCD03420D04849C39C26760E17
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG	ASCII text	25ED491287C4FCB1D9D4CC50AA3A083F	EAAEADF606DDCEFCDC085FD42597FDDD417EB0FA	F1DAD31533E69688A4D92CA7AFF5138609A133F6541181664ECCC875E19AA5AA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)	ASCII text	25ED491287C4FCB1D9D4CC50AA3A083F	EAAEADF606DDCEFCDC085FD42597FDDD417EB0FA	F1DAD31533E69688A4D92CA7AFF5138609A133F6541181664ECCC875E19AA5AA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1	data	3F09117F3AA9FD6B468CC46EBA000872	B27A32B3E1CBA961269522B1A3345B1C8BC91F22	158794AB782549C4FC24D31D700DBE92149E1DB78704A67E94C23AAC4ADED4A8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	SQLite 3.x database, last written using SQLite version 3032001	52A0DA15F09EC11590DBAF20F5AB76CF	EEC9C4EF6C3427B2A9C280400D5A746D5BFD3AC8	EF3F00A2F2171CC0A0DE5637AF46E62038BEF1450094BFC2A53CD5F64FC18E65
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache	data	34520855B55327094949415EC624FEA4	CD425157FFC5BF1FC00A104DDA1DF904106BAC12	4A56493A57D01F3BF62181BF7DD7DFDCEA63C3F0FC8D0CE39B172410E8E648D8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal	data	079F97669266FE398D4986FBCE6E7BEC	BF7A29E2EBF1768E8DC99E94819E320B1F5110EE	3B3E98BF33FD47FEA83F3646DCF05C5C70294B01DC131385589726273E8CA591
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last SessionO (copy)	data	ED0D17DDA046E07B68B6182847FEAB4D	9B894C7B6DE249B2260E5898046644527AD4BB71	3EC8CA045F0F70A0802BA8CA0BCCA4D4B34362FE56C70E1C6785A19B8B51D219
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last TabsOG (copy)	data	0686D6159557E1162D04C44240103333	053E9DB58E20A67D1E158E407094359BF61D0639	3303D5EED881951B0BB52CF1C6BFA758770034D0120C197F9F7A3520B92A86FB
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log	data	6ACC16CA9FAD8562B0BF64A3906ACD47	64B4B486C447583A67A463BDEBA40D3E649F4A3A	638835F1CFE3FAF5F9A4DD066D6A5E9779D899A491EB2C3DD6CAC6EDA49FEB1C
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG	ASCII text	8EC10F0CA87CB6ABE2E1A71C68ABEEAA	2B98CC456C66AD768022DE40371A008ED5D7249F	7F43B5C78259C9DE8C5BAE1314FCD425E2E1960D5B61B4D8982A6124B60AD330
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldea (copy)	ASCII text	8EC10F0CA87CB6ABE2E1A71C68ABEEAA	2B98CC456C66AD768022DE40371A008ED5D7249F	7F43B5C78259C9DE8C5BAE1314FCD425E2E1960D5B61B4D8982A6124B60AD330
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor	SQLite 3.x database, last written using SQLite version 3032001	2536301E8813B460E8F2684AC2307875	53B3C52FC59B8CB08A45A33FEAABA583BC1CF5A8	F15C9D15D9396BE5BCF7C61D4B9EFB1B6648AEB77CFE71E7EA4144C946B5B6CF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal	data	28EA4A235B6799FD2C253B2087A5F906	B6D63C82ABFE081E338E913B4A563DB221EE47AE	63241E88C3CD9B4B6D31D1E4257A18973A57F8C68C6C593169E66015D6D8BD6E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Statea (copy)	ASCII text, with very long lines, with no line terminators	7571A2F70768251878B86190A59D719F	8394D00E6DACFC4C0C2C75673DD3199803A33CD5	E7C3FBC09A324BDA69F5AFBAE40BA5FAE15147D140BF5505D3F34397A2F1737E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent Stated (copy)	ASCII text, with very long lines, with no line terminators	EDC4A4E22003A711AEF67FAED28DB603	977E551B9ED5F60D018C030B0B4AA2E33B954556	DD2C9F43F622F801FCC213CDE8E3E90EF1D0D26665AE675449A94CEC7EB1D453
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG	ASCII text	F88F4BACADD37CB68B7631F937DE5941	F24F093289F3B227665D995CAD1582D4838A1389	DF73259DCEE2A571051F7D018DAA2156E5705B8D2DB35D19569F431A18200446
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old. (copy)	ASCII text	F88F4BACADD37CB68B7631F937DE5941	F24F093289F3B227665D995CAD1582D4838A1389	DF73259DCEE2A571051F7D018DAA2156E5705B8D2DB35D19569F431A18200446
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)	ASCII text, with very long lines, with no line terminators	2D9B2B1629254BB6D2B584D2DD7B508E	67CC5D21026BA871D8A11AE0227B400700DDB7DC	5BDFF8E84999794B6CA18866218A8B4D4A3E37CBD6B6799C91F8439F62A4A253
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)	ASCII text, with very long lines, with no line terminators	F47685063A14E6460AD000FD2CC5F3DE	9970197A05F883560E6E2A099309FDAD4DE013DA	F3C84EF74CBBECF6F3658B7E20B03C2F5DD619F13378160556CB1810C74CE81A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences1] (copy)	ASCII text, with very long lines, with no line terminators	A35E9F7AA878D98823969111A46BF6EC	2A398D5BCFEB2C20648984D213701496C7DE6880	2A31FF9D809A841EBB57380FBDDD18DDB3B29349B86930001178AE5115DBF80E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesR (copy)	ASCII text, with very long lines, with no line terminators	F47685063A14E6460AD000FD2CC5F3DE	9970197A05F883560E6E2A099309FDAD4DE013DA	F3C84EF74CBBECF6F3658B7E20B03C2F5DD619F13378160556CB1810C74CE81A
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesTM (copy)	ASCII text, with very long lines, with no line terminators	FE187156BB97762F7BB02647D4ACEE2B	6CA7F60453D9AD70482927185A3A63D246A79FEA	7B3153E324CCE789E590D695BAD17D6D9CBEFF2114A0CBF003E85CF7B8673421
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL	SQLite 3.x database, last written using SQLite version 3032001	8C061F0D1E7340E199F2D4CCE24F132B	AE06F5B4CE092066B416CA9B056AAF17EC4B21B8	A9BAFC448EA58BADF0D6BCF788EF0FD0C45A477D074EEB2C8833529C753010B2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal	data	84E1E370C79897ADFD7D718B0846B25E	9FC50BB6DDB64D73B926B4E09F8AA7EE4C44E861	ABC77CB83B10138801FDB327C028E525BEE5DC7A446F6D2194C533B2D33233F4
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)	UTF-8 Unicode text, with very long lines, with no line terminators	1CAA486E16727E141BB28BB75A9C7DB9	91012F79CEDC446FC222564E275E5D4CAFE5843C	00864230C7EFC71C524D6EC8910FBAB659F32EE7D4CAF644484FC2CC24FE5DE3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log	data	F6BA3AEDDE05264D6D70B97A58146AC0	72CF3FBFB948963B11A220564459A02C8CE9BA19	66AEE256F772ECC00C3CC9598F7D62FE8ADB2DB311D367B446E2FDCB98280A8D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG	ASCII text	B7AEE68C7E9BB56893045C5AE8AED068	21C30478C33A6C4F67986956DD8C6C1C0AF00414	BB4D5CDBDFFF93E923DDCA220E9BC9D8CFD5AFF62F22D5DE45EB6E089E90271D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)	ASCII text	B7AEE68C7E9BB56893045C5AE8AED068	21C30478C33A6C4F67986956DD8C6C1C0AF00414	BB4D5CDBDFFF93E923DDCA220E9BC9D8CFD5AFF62F22D5DE45EB6E089E90271D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG	ASCII text	951D47F79B182A48A99C6238AAF2541B	11E84B4126DAC0294C6E975A5C90AC3317B80860	4B5E82BF2266AFD38ED6433A09D47BE85C557CBC6531D15901D5790B18213D6B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)	ASCII text	951D47F79B182A48A99C6238AAF2541B	11E84B4126DAC0294C6E975A5C90AC3317B80860	4B5E82BF2266AFD38ED6433A09D47BE85C557CBC6531D15901D5790B18213D6B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\850285b3-1e06-4e56-8c07-5e65b1ccbfdc.tmp	ASCII text, with very long lines, with no line terminators	C401B619D9D8E0ADABC25A47EE49CFBA	C9D3B816DD3FBCD98E9C0A32CEC7B501EFC0BBDA	8F5D75F5EF9876E8D30CE477509F735B50C4D87DBEDB433BE8EDBE6D4B3CB82F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1	data	C4DF0FB10C4332150B2C336396CE1B66	780A76E101DE3DE2E68D23E64AB1A44D47A73207	18FAB4D13CDA7E1DEE12DC091019A110A7304B6A65FC9A1F3E6173046BA38EF6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG	ASCII text	8F1A52F8558840EADFA90453CFED2074	55BD14A57F01841C0931FB6BF18084DAD7A07E28	111292208D83FAAB5628884F0946E9D8B896EF11E03B61D785B14E3E44196C03
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old (copy)	ASCII text	8F1A52F8558840EADFA90453CFED2074	55BD14A57F01841C0931FB6BF18084DAD7A07E28	111292208D83FAAB5628884F0946E9D8B896EF11E03B61D785B14E3E44196C03
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State (copy)	ASCII text, with very long lines, with no line terminators	C401B619D9D8E0ADABC25A47EE49CFBA	C9D3B816DD3FBCD98E9C0A32CEC7B501EFC0BBDA	8F5D75F5EF9876E8D30CE477509F735B50C4D87DBEDB433BE8EDBE6D4B3CB82F
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG	ASCII text	3DE20860418181AADA12E59F8097DFE3	706785D0A4C317B912B2A0A354A3FDA837EBA026	52463DC2DD83AAEB00128103025170C88445AB71C74AEE473D6E9B094AC7FA28
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old (copy)	ASCII text	3DE20860418181AADA12E59F8097DFE3	706785D0A4C317B912B2A0A354A3FDA837EBA026	52463DC2DD83AAEB00128103025170C88445AB71C74AEE473D6E9B094AC7FA28
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log	data	E556F26DF3E95C19DBAECA8F5DF0C341	247A89F0557FC3666B5173833DB198B188F3AA2E	B0A7B19404285905663876774A2176939A6ED75EF3904E44283A125824BD0BF3
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG	ASCII text	FBF5BC77BCBBA408E87CC118C140634E	9D5CF1CB3745E6B9CFC24E3E3ABDB59AFDA25708	5D2C9EFA1B3F71A3E25CD09BB69672FF4C100DA4674CCDB0A8EC352281A1D77B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old (copy)	ASCII text	FBF5BC77BCBBA408E87CC118C140634E	9D5CF1CB3745E6B9CFC24E3E3ABDB59AFDA25708	5D2C9EFA1B3F71A3E25CD09BB69672FF4C100DA4674CCDB0A8EC352281A1D77B
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\727c50d0-34b1-464c-88c4-636d9862185a.tmp	ASCII text, with very long lines, with no line terminators	F4FEFEEEC722772F9DC0FCE1B52D79B5	00EECFA3B37113D30E7D43BE4383C540F3D93D4D	D33E13C12004A700F246D8C73709114A881609D658E045D54DE36874728D07F0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1	data	B505641E5E90B7CF4BC869DD1B4BE451	0EC7B13DC043E054AB48B8F45FE49EF1209C01AA	2755F85F14CF33404CEEBF053D0CB79DC3B98D643A51075737E6A5BE154FE1D9
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG	ASCII text	8773703820FA265B456B02FB04D2F874	ABB71D1131A1FB39B4DFE378FE1A0F5DEA0A72BB	472F0F38503E9707FA48D495AAD08C3E1D8054789AEBE2A4F9EC3AE0EDD86DA7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old (copy)	ASCII text	8773703820FA265B456B02FB04D2F874	ABB71D1131A1FB39B4DFE378FE1A0F5DEA0A72BB	472F0F38503E9707FA48D495AAD08C3E1D8054789AEBE2A4F9EC3AE0EDD86DA7
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent State (copy)	ASCII text, with very long lines, with no line terminators	F4FEFEEEC722772F9DC0FCE1B52D79B5	00EECFA3B37113D30E7D43BE4383C540F3D93D4D	D33E13C12004A700F246D8C73709114A881609D658E045D54DE36874728D07F0
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG	ASCII text	F71A813ED7AC1CBA0729323CA8D72B92	C7F3256CF376ED47E517E8D035696D63EB579AE2	963027150D65D2F8CB9DB67916E4D5D4C14CF6DF4B420A2663D313DB9E020AD8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old (copy)	ASCII text	F71A813ED7AC1CBA0729323CA8D72B92	C7F3256CF376ED47E517E8D035696D63EB579AE2	963027150D65D2F8CB9DB67916E4D5D4C14CF6DF4B420A2663D313DB9E020AD8
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log	data	E9C694B34731BF91073CF432768A9C44	861F5A99AD9EF017106CA6826EFE42413CDA1A0E	01C766E2C0228436212045FA98D970A0AD1F1F73ABAA6A26E97C6639A4950D85
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG	ASCII text	E3A70DE6D9F17159D9249552CE0CE0AE	BC3850A8320BAD7B06E7FC978791A2FC75FCA4C0	3F8E6840A18239BAE2ED1ACACCC3100B202C09284DD9934C3575E601BB0A000D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old (copy)	ASCII text	E3A70DE6D9F17159D9249552CE0CE0AE	BC3850A8320BAD7B06E7FC978791A2FC75FCA4C0	3F8E6840A18239BAE2ED1ACACCC3100B202C09284DD9934C3575E601BB0A000D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log	data	45A8ECA4E5C4A6B1395080C1B728B6C9	8A97BB0E599775D9A10C0FC53C4EDB29AA4CEB4E	DB320AB28DFF27CDA0A7F87B82F2F8E61B3178A6DE8503753D76F1172D32E08E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG	ASCII text	8F7368C205CF9F5A362D453F30419CE0	F010B019AD507C889106D07BBE3E1D57BBB612DD	5E8F8E453EE3F7BF10AE019E11111872A8D7CFBC4402EE9950067BDA7F71C6BF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old.. (copy)	ASCII text	8F7368C205CF9F5A362D453F30419CE0	F010B019AD507C889106D07BBE3E1D57BBB612DD	5E8F8E453EE3F7BF10AE019E11111872A8D7CFBC4402EE9950067BDA7F71C6BF
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG	ASCII text	4A534A70EC76E775E416FB443093E221	41EDC76BFF90717ABFF4496BDFFF59AB9D6E8AB4	08EE1F3992EAB922191ADB36B8456D57731FA251F6D0969A30113DDA184AE4FE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.oldpt (copy)	ASCII text	4A534A70EC76E775E416FB443093E221	41EDC76BFF90717ABFF4496BDFFF59AB9D6E8AB4	08EE1F3992EAB922191ADB36B8456D57731FA251F6D0969A30113DDA184AE4FE
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)	ASCII text, with very long lines, with no line terminators	50839FAA8C421AC2D8D964AD240B39B5	0A9E10F9EB2B4A6A70361AFE2DD8B7EB478A0F81	6A250132D6381D0FB284272F3D6F47E80D989A97968F433A0FAA9859BE131248
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links	data	A92D46324D18DF0A3535DCF07E2A2856	05C0B9C21ABC9DB385859714DBB4C3F8F1D545FF	399F52E503C9FCD5CBA739841937778949BBAE0A9EE52F2E331EF269EBE1E547
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\01bddfe2-a193-46cf-9010-089aaef11be0.tmp	MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel	33EABC19FDF40F3D36B6870EF5861957	CF3EF59C3940B58C314E9F6A1616751553F2D9A2	647D07F37554672865902B2CEE80864B5A5283C372C7263BB1497D5582054E57
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.ico (copy)	MS Windows icon resource - 13 icons, 8x8, 32 bits/pixel, 10x10, 32 bits/pixel	33EABC19FDF40F3D36B6870EF5861957	CF3EF59C3940B58C314E9F6A1616751553F2D9A2	647D07F37554672865902B2CEE80864B5A5283C372C7263BB1497D5582054E57
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_nmmhkkegccagdldgiimedpiccmgmieda\Chrome Web Store Payments.ico.md5	data	61B979ECA159ECAC9C7F8F1D6FD43E9D	0373696351FC2172E811DA8393DEC84036FA34A0	AB05E0A6FF7E8FFF89F924B279D93AFC72ACCE817C4D250C60BB8059CC534303
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ae5498ec-e417-4327-8f03-8515bdeb4b7e.tmp	ASCII text, with very long lines, with no line terminators	EDC4A4E22003A711AEF67FAED28DB603	977E551B9ED5F60D018C030B0B4AA2E33B954556	DD2C9F43F622F801FCC213CDE8E3E90EF1D0D26665AE675449A94CEC7EB1D453
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b806eb9f-73cd-478e-aa3a-77ee57b67462.tmp	ASCII text, with very long lines, with no line terminators	A217AE442550ED62C1780DD0A548BF29	0071E54E62C0C2E1EDB38130C1622D17A55BAD89	275FFC9508BBF315BBD65A56E03557760415285E9F23A61EC87D0A70D4B17708
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp	ASCII text	6752A1D65B201C13B62EA44016EB221F	58ECF154D01A62233ED7FB494ACE3C3D4FFCE08B	0861415CADA612EA5834D56E2CF1055D3E63979B69EB71D32AE9AE394D8306CD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTTM (copy)	ASCII text	6752A1D65B201C13B62EA44016EB221F	58ECF154D01A62233ED7FB494ACE3C3D4FFCE08B	0861415CADA612EA5834D56E2CF1055D3E63979B69EB71D32AE9AE394D8306CD
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG	ASCII text	E134DD4751210CE89092C36065E313EB	2951291CD045DB03F34602CB40102E5C41A0B92C	B7C93EFF7CB288E4F1239F8E176B8DD7B57304237AE3FB35152CC0A319F6ADA1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old. (copy)	ASCII text	E134DD4751210CE89092C36065E313EB	2951291CD045DB03F34602CB40102E5C41A0B92C	B7C93EFF7CB288E4F1239F8E176B8DD7B57304237AE3FB35152CC0A319F6ADA1
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004	MPEG-4 LOAS	031D6D1E28FE41A9BDCBD8A21DA92DF1	38CEE81CB035A60A23D6E045E5D72116F2A58683	B51BC53F3C43A5B800A723623C4E56A836367D6E2787C57D71184DF5D24151DA
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\e203b23e-99ab-40a3-861e-bb0edab1b1a4.tmp	ASCII text, with very long lines, with no line terminators	FE187156BB97762F7BB02647D4ACEE2B	6CA7F60453D9AD70482927185A3A63D246A79FEA	7B3153E324CCE789E590D695BAD17D6D9CBEFF2114A0CBF003E85CF7B8673421
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG	ASCII text	F6547256B63518A6B4B3516C5B63ACD7	A40F8B5DD43426C9A9BF19778C23B22E171ED2CF	2A19A80E5D6CCF459C5B2DDE1D381D537EB53DD035CC5C8AE742A0DE14E23D1D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old0 (copy)	ASCII text	F6547256B63518A6B4B3516C5B63ACD7	A40F8B5DD43426C9A9BF19778C23B22E171ED2CF	2A19A80E5D6CCF459C5B2DDE1D381D537EB53DD035CC5C8AE742A0DE14E23D1D
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser	data	DE9EF0C5BCC012A3A1131988DEE272D8	FA9CCBDC969AC9E1474FCE773234B28D50951CD8	3615498FBEF408A96BF30E01C318DAC2D5451B054998119080E7FAAC5995F590
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version	ASCII text, with no line terminators	C422F72BA41F662A919ED0B70E5C3289	AAD27C14B27F56B6E7C744A8EC5B1A7D767D7632	02E71EB4C587FEB7EE00CE8600F97411C2774C2FC34CB95B92D5538E7F30DA59
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)	ASCII text, with very long lines, with no line terminators	04439094DE03A9E9AC695BBAB146611F	3A7845C612967B956AD2292AC9C6AE65A49F0EEE	2B89015D667C94EEC51C7391169B307F645BAFF6040A7EC49AC9F8878AFFA20E
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateR (copy)	ASCII text, with very long lines, with no line terminators	5FC99CBF2A6E8CC7E3A0A5B59176AAEB	EDEAC2981A69E2C8A7F031B46148D72CB350DFAF	18B082FEA67C3A5B52EFCCD265D564BDCD537E7D7DD5873EBF6E0CB0D0741939
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateTM (copy)	ASCII text, with very long lines, with no line terminators	BF1EC9930DFD0DA27857C6C0FBB1357A	4A18198A36E62E81EC9D0FA818EA48782A3652A9	BD235C2618D5330B7C482B22C5577126A52AC414E0930952AD19C22D30A8C1E6
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StatejU (copy)	ASCII text, with very long lines, with no line terminators	B59FA8E3D108F40094582FB2159B3BD7	150B87BD24798B24DBBCE997264CFDA382B73264	FE86EC2199C77D96C1F2490347B92C977F40E75B05243F731F22AF5A885475C5
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)	data	2151ED1561F3341CA9AFC7CBA4234AE6	F5932EAAF51B45CAC21892374D1F6C2636901B50	3982531CD6090BC74FF24962612A35C0679BE2906E59B992FCDE772CBE7D3A30
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheTM (copy)	data	0EDE7BAD4C4DFD2294B0A4CA123FBC86	5E9A254C1F04B448BE8006D943F9D43C2D98AB91	1CB4FE92227D7F8C3ED696F378FB0398E85443E4D2B0DAEBDF203C3685165DCE
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1	data	96E7CA65BE1AC890C32652D38A9B9FD2	2B5DC2A23F55C0C480242BD92D62F2164AACDF3E	D6AB8F7BBDD2F15C2123468C108F164A0F6CC4A8C6C049D6B8851083F210B4A2
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\9.30.0\Indexing in Progress	empty	D41D8CD98F00B204E9800998ECF8427E	DA39A3EE5E6B4B0D3255BFEF95601890AFD80709	E3B0C44298FC1C149AFBF4C8996FB92427AE41E4649B934CA495991B7852B855
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir6832_1421141907\Ruleset Data	data	CF3E632B2AF9CF2DF74E474897575FF3	57A1F95D817477FE2C7A5D04A476788D322C85C3	41D2FF5C77B413F73FD74964606980CB85B53D0A18C58A5596B0FDFBE7D149DE
C:\Users\user\AppData\Local\Google\Chrome\User Data\a8b02ab3-f466-45e3-a4c6-9db6fe5fe605.tmp	ASCII text, with very long lines, with no line terminators	452048E99361074C66CD91433721872C	4F1F1F6BB54D886F32BC1D7BFBB7493EEF0D84DC	053B461C2A9616C3214B28E99DAC33D0E36DBC4839AB3A71FAC588B18E0B74C6
C:\Users\user\AppData\Local\Google\Chrome\User Data\a9166b19-fc61-4828-b677-ae1fc2930e11.tmp	data	0EDE7BAD4C4DFD2294B0A4CA123FBC86	5E9A254C1F04B448BE8006D943F9D43C2D98AB91	1CB4FE92227D7F8C3ED696F378FB0398E85443E4D2B0DAEBDF203C3685165DCE
C:\Users\user\AppData\Local\Google\Chrome\User Data\c026bccb-123e-49a9-b021-92d3a7f8ed96.tmp	ASCII text, with very long lines, with no line terminators	B59FA8E3D108F40094582FB2159B3BD7	150B87BD24798B24DBBCE997264CFDA382B73264	FE86EC2199C77D96C1F2490347B92C977F40E75B05243F731F22AF5A885475C5
C:\Users\user\AppData\Local\Google\Chrome\User Data\c21f7e55-bd31-4518-8469-cee33dc25e6d.tmp	ASCII text, with very long lines, with no line terminators	BF1EC9930DFD0DA27857C6C0FBB1357A	4A18198A36E62E81EC9D0FA818EA48782A3652A9	BD235C2618D5330B7C482B22C5577126A52AC414E0930952AD19C22D30A8C1E6
C:\Users\user\AppData\Local\Google\Chrome\User Data\c62e122e-4791-4cfe-8095-cabf4a126f09.tmp	ASCII text, with very long lines, with no line terminators	60E267D55470776BD7D6AF8A1B2733CF	97DA66669EB69B1B443CF0863140E8CBB7077F55	6E260F282DEF68ED807B29ABC5B0EF8A968EEBE128DD28B8F7FE95781E4F96F2
C:\Users\user\AppData\Local\Google\Chrome\User Data\d8381f13-c67b-4a1d-be60-f683a2ef97bd.tmp	ASCII text, with very long lines, with no line terminators	CE0DBEC589C59DC5764ACFD38471980A	D8587BE453D2CEC7C37B8349CB09B320A53A33F4	14CEECC85D99A8A95E04885C0C6F45F6DCB349643DDE09C5F53E20D29B403AA4
C:\Users\user\AppData\Local\Temp\0d1bdbab-e58e-4f24-80ce-063ceb43824d.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\user\AppData\Local\Temp\244d6a94-6a30-4d49-9bd5-126eba9b0fd4.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\6832_1915035248\manifest.fingerprint	ASCII text, with no line terminators	B163E5B0E9997EB070FF1398E11A93FD	F53108A0911D6F1B845B0EAE6C8520863806F154	C655EFB58D49B5F10EA19C1D2CDB77054A743112B4CF1BD2B06744E1C08092E4
C:\Users\user\AppData\Local\Temp\6832_55057164\manifest.fingerprint	ASCII text, with no line terminators	0B46A559724C0403EF7FB286B713EC99	D7EBD7D59199305F13474C8E0E18DA72E6373148	B71EC26B0F0FE87A91C47A91B6AFB5C2729478C83337D141FC136C9C02CC6B7D
C:\Users\user\AppData\Local\Temp\6832_673382810\manifest.fingerprint	ASCII text, with no line terminators	0CF8794448514BC0C92C3B1335B9979C	D3BA9AB39D5C0C9FAC9A77F29177862E88041D10	A17B2ABBBDF9CFEE923CF399C0E48E528D927B06829BA3AA378514AD70989542
C:\Users\user\AppData\Local\Temp\84685830-6613-44a9-b6d5-a511e04b1da3.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\9d5979e7-5adb-4220-bb15-07c8334eb9db.tmp	very short file (no magic)	5058F1AF8388633F609CADB75A75DC9D	3A52CE780950D4D969792A2559CD519D7EE8C727	CDB4EE2AEA69CC6A83331BBE96DC2CAA9A299D21329EFB0336FC02A82E1839A8
C:\Users\user\AppData\Local\Temp\b5194ad9-5191-4b8a-8db5-aa9b5f1c03f8.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log	ASCII text	528D431CB6DAD8801D59BE01C1A21AD6	C1F8E3F681D8ADD6B7D1DCC8F1C41BEBDFB047EE	A6C2510C36FDDB7CA63096088C36B39C1641AF8CAA6308F23C9B695F689A0FEE
C:\Users\user\AppData\Local\Temp\ced1818f-2196-4d0c-9bfb-aa1cbb3229dd.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\am\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	26330929DF0ED4E86F06C00C03F07CE3	478F3B7E7A7E007BEE182B89C2EF6FFE6045E92C	621B5139ED199022BB6529AF18ED4DC312AE9F3E90ECAF3B2C9E1D12114F5B22
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ar\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	44325A88063573A4C77F6EF943B0FC3E	78908D766F3E7A0E4545E7BD823C8ED47C7164EB	67A439A08804EF4BEF261BDBADD8F0FEFD51729167D01EDCA99DD4AF57D6108B
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6911CE87E8C47223F33BEF9488272E40	980398F076BB7D451B18D7FDE2DE09041B1F55AD	273DEF0F67F0FA080802B85EF6F334DE50A19408F46BDF41F0F099B1F5501EEA
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\bn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F9DDF525C07251282A3BFFCEE9A09ABB	A343A078E804AF400A8F3E1891E3390DA754A5CD	C69C6C90F7EB8F10685CD815AF1F6F1B87CF30C4E8D95DF1D577DE1105AAD227
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A90CF7930E7C3BEC61EE252DEFAD574A	F630CA01114A7BDD39607CB84B8280CCE218A5C6	A533740E17559E2ADF40B4555C60F21EEC84E92C09CDBC19EED033A0B4DD2474
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	17E753EE877FDED25886D5F7925CA652	8E4EC969777CC0CEB7C12D0C1B9D87EBBB9C4678	C562FCCFCE374D446BFAC30AC9B18FF17E7A3EF101C919FF857104917F300382
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F08A313C78454109B629B37521959B33	3D585D52EC8B4399F66D4BE88CED10F4A034FCCC	23BF7E5EDF70291CA6D8F4A64788C5B86379EECB628E3DFA7DD83344612F7564
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	980FB419ED6ED94AD75686AFFB4E4C2E	871BFBCA6BCBA9197811883A93C50C0716562D57	585C7814AFD2453232BC940252D4AE821D6E6CBCFD74A793F78E5DB8BA5342F1
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	40EB778339005A24FF9DA775D56E02B7	B00561CC7020F7FE717B5F692884253C689A7C61	F56BF7C171AA20038EE30B754478B69A98F3014C89362779B0A8788C7B9BEEE1
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\en\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8351AF4EA9BDD9C09019BC85D25B0016	F6EC1FFD291C8632758E01C9EE837B1AD18D4DCF	F41C82D8A4F0E9B645656D630C882BE94A0FB7F8CEC0FE864B57298F0312B212
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8A70C18BB1090AA4D500DE9E8E4A00EF	8AFC097FA956C1317DB0835348B2DA19F0789669	FF173D1CEF665B1234E02F11070ABD2B65230318150734579A03C7F31B4AE3F4
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	A62F12BCBA6D2C579212CA2FF90F8266	F7E964A2D9BBDA364252BCE5CFBA3FD34FDD825E	3EB3EB0B3B4A8E5A477D1B3C3A3891CCC7DC6B8879ECE243A7BD7C478068273D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\fa\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	852BD3CFF960F1BC3A2AAB3CB3874EF9	C9F6F3C776542889FE3B67971D65ACFE048A3A0A	D87597B6C10364501B98AA42524843F109009CCEF022D8E0170440D7F144F4C6
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3902581B6170D0CEA9B1ECF6CC82D669	C8208AC2B1DD6D4F8BDAAE01C8BD71FFFA5A732B	D2A8180225A83A423BB6E17343DFA8F636D517154944002ED9240411B8C0C5E1
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\fil\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	59483AD798347B291363327D446FA107	C069F29BB68FA7BA2631B0BF5BBF313346AC6736	DD47530EAE96346CD4DC3267A0BB1091BB17B704803A93CDA2E3E81551B94F12
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9B416146FE4F1403C2AACAC4DCF1A5C3	616F055C9FAD4CE972DF82EC8A9B2F4EDA3E7FAD	7C7F5758F54008190ACCDDBD1761CBD980FB5FE0847E992874498228D2571DBC
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\gu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	68B03519786F71A426BAC24DECA2DD52	B8E6608932EC5CEC4BC3C5475BFC3E312D2E2E7D	C77A4D27E9E6CA25B9290056D93A656E3EBE975957E4C2EE9F0FB11B133D5CD4
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	20C86E04B1833EA7F21C07361061420A	617C0D70E162CF380005E9780B61F650B7A39F9B	C2C27CA242DBDE600BA3AA7782156BC2B190A64D8A1B51EDC8007BDECA139553
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	3ED90E66789927D80B42346BB431431E	2B061E3271DF4255B1FFC47BDB207CDEC0D9724F	0B41E3C42414F72C9A12C05F8772597F9685115366A774C66018467AD4B71A74
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8E9FF7E49473C5734A2F6F0812E12EB3	A4F10DDD1580582533D5EB59EDF6D8048F887C81	6CDD2FB39ADECE00E88B989E464B05ED1414092D0492F6D0AE58D549BFD1A46A
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\id\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	7ADF9F2048944821F93879336EB61A78	C3DA74FB544684D5B250767BB0CB66FFB7C58963	3630947E1075E3663AD3E4824D0BE42CB47C0D615D8053E83B9595047C8BA9BE
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	BB3041A2B485B900F623E57459AE698A	502F5EA89F9FB0287E864B240EA39889D72053A4	025737EF8FA06706B3F26D0F52B4844244A6D33DAE1D82FEF2931A14C003D57E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	6F2CC1A6B258DF45F519BA24149FABDC	8A58C7880C6D22765DCBB6BCE22A192C1B109AE1	42ECFEE727CFC4F2845FEFDACE5EDC2E0A40AFAD69973A3B950CE653A7633342
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\kn\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2E3239FC277287810BC88D93A6691B09	FC5D585DA00ADC90BF79109C7377BD55E6653569	5FC705AD19761204D8604EA069936A23731B055D51E7836CAAF16AC7719FBEEA
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	E303CD63AD00EB3154431DED78E871C4	3B1E5B8E2CF5EBDF5D33656EF80A46563F751783	FDE602BFDB1AFD282682DA5338C4F91D8A2F6CB5411DB8F62F4583D629CE67A6
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	93BBBE82F024FBCB7FB18E203F253429	83F4D80F64FA2ADCE6C515C5F663BD38A76C51DB	E7A8570922CCC4F2CA3721C4E61F426158C4E7BC90274FBC8BE4040FF8B6CA9B
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	388590CE5E144AE5467FD6585073BD11	61228673A400A98D5834389C06127589F19D3A30	05CA14196CA5D90B228C0F03684E03EBE403A3E7B513AE0A059244AE12B51164
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ml\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	2AF93901DE80CA49DA869188BCDA9495	E60DF4F2FB12BD3F1CA869DAD9F6BDE0C17CEB11	329E80AEE1212F634E180DEF7E16D6E38D9C9FDA9AC9DB1D99B8AE1626EF304E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\mr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	659F5B4ACA112D3ECBB6EC1613DDE824	5DEE35FCD260554999F8DDEC489FBA9F81FA8EEE	C8B765E7A07578BC078A952E151E3B866506959E15E79E9E5E1DBB98F9C4008F
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ms\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	09D75141E0D80FBD3E9E92CE843DA986	B24EAB4B1242C31B69514D77BC1DB36A3F648F40	8F1DBDEFD910AD88BEEC7956619CDB34391D6E69254C3A7497E8F87134AE8B5C
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	ED99169537909291BCC1ED1EA7BB63F0	5F72D51B6DBE8C622EF33D2B2AEBD7E9E20DAFB3	65B6598225ADA1E14EE9CB76CA863708E8F9EE0724B4EDC8F9508532BD631BAB
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\nl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	E9236F0B36764D22EEC86B717602241E	DE82B804B18933907095DEF3F2EF164C1BB5F9B6	300F4F7C45EBE39EAAF40776C28D0A399A710699AAB58E9A8D43A6FD2DD00376
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8254020C39A5F6C1716639CC530BB0D6	A97A70427581ADA902CA73C898825F7B4B4FAC8F	2F4E4FC6AEB4A8E7F0E0DCE220D66E763F4EBF1FA79985834D636C6692FEA3E8
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\pt\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FABD5D64267F0E6D7BE6983AB8704F8C	D4DAAD0FF5C461C51E6C1FD22B86AFC5B13E123F	D82DCA262FF005668B252B478DEDAAC4A5C1E417AF9DE57C22F169A6680183AE
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	75E16A8FB75A9A168CFF86388F190C99	C27CE4C1DB3DF2D232925C73DC9AC1FA24DAD396	9C4716FF42A730F1E7725F0D9E703F311E79FDA31F85B4BB0B8863FC3C27AB9D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	8EF94823972EA8D2FC9BB7EC09AB1846	4171DC9CE9D82FDA5A280517A1FE58C907D75CE3	1009DB9FFA64E411B31E0780EBA43B9C9F8B05B5AC8CCA9A38514650261ABB0A
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C314FAC15AFF6A2EE9C732C64AB5A66D	D51F3362B5FDD2F3756DE42D7D6227DC818C6344	8EE2A25A09D6D0F89063FAA34BA2BC4DB505DD31FE6D5064C5D6E1E153721484
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F60AB4E9A79FD6F32909AFAC226446B3	07C9E383D4488BEBE316CA86966FC728F55A2E32	CDE581E6E7CF0136B003B45549E3BBEE7B67B74ADD786A8D5607BFDAD1DE7B87
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	4E233461D805CA7E54B0B394FFF42CAB	77F30833FC73A4C02C652C9E5A6EAFE9C3988A30	E1E1C64213EBF2CFEB7BA83E51B697CEA449B3A8B279B1024B859228DE869879
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	897DAE6B0CF0FDE42648F0B47CB26E06	E1F5F5F65AF34FF9484AB2B01E571EAF19BA23D0	52656C24F6F6D0F3B3FC01E9504C4D5CEB85624F1B22E974CA675DD0E94EB82D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\sw\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	EC233129047C1202D87DC140F7BA266D	537E4C887428081365D028F32C53E3C92F29AAA6	28EDBC5C4858217811D45CAA215710E452C8926E4DE99F810001AD664D08BE0D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\ta\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C50C5D2EDFC79DBDCBD5A58A027A3231	14314D760A18C39F06CD072CF5843832AFB86689	EEB0E89D5AD92B80FF08F88533A111DB3416D7C3860C64227D1CC8B7C2B58298
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\te\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	F740F25488BE253FCF5355D5A7022CEE	203A8DF19BA5A602A43DE18E99A6615D950C450E	5B9C96CB5D62510836B321EB9CEEF23865BB9D4DC4DE7716E90A858E00701FDF
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	9F926FCB8BAEA23453B99EA162CCDEA1	04D1E45591C0435A39DCA00A81E83E68585E8B64	100463C587F549C964A4EB21EA38EA1B4ADEF11E927FAC8FF884623B77202C02
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	B0420F071E7C6C2DE11715A0BF026C63	F41CC696786B18805DB8DC9E1E476146C0D6BE90	309F946F753DF6AF5C255D772EA0D429462152F78ABA4A96A2E369707A2C6B67
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	FF06E78C06E8DFF4A422EA24F0AB3760	A434D1CE22DE0D2FD1842E94F5815F7B1972D1EE	E209FDEF12CCEC03B4E0D5B9464F90D527E62C5BC4DD565C680661D7F282AB02
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with very long lines, with CRLF line terminators	C3A40E8433D96D7E766C011D9EC7502B	EAB7BFAE48B1D29B95A8AE040DE94D3500824EE3	BD3D0F8CF100C96415B224011F550082D4516593CBD3631347748B7D6AD5B85A
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\zh\messages.json	UTF-8 Unicode text, with CRLF line terminators	D4513639FFC58664556B4607BF8A3F19	65629BC4CBBACA498F4082DD5884C8D3D7DDDC8A	C6D49997A9B4FF7FE701EC3644B1A523679A27778FB4BD39B7DBCA9F1ACCE595
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	494CE2ACB21A426E051C146E600E7564	D045ECC2A69C963D5D34A148FE4A7939DE6A1322	A1053F9496ED7FA3C625C94347F07A5E760F514FD8EE142EC9EE64E86B9C063D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\CRX_INSTALL\manifest.json	ASCII text, with very long lines, with CRLF line terminators	F76238944C3D189174DD74989CF1C0C6	85CE141EC8867B699668A5F5A48F404C84FCEB04	2EF48A1CF322DE356E8844DD2FD3431E8E7ACD04770649B6507EACA5ABDB53A7
C:\Users\user\AppData\Local\Temp\scoped_dir6832_1137967023\b5194ad9-5191-4b8a-8db5-aa9b5f1c03f8.tmp	Google Chrome extension, version 3	A11D5CAF6BF849AEB84B0C95B1C3B7CF	27F410CCBD75852C01C7464A1FD7EF8C29BE3916	D0E62ACE64AFC334330A7AC3A2CC657914FEB321F1F89AEE11D2A6D0E7D81C31
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\0d1bdbab-e58e-4f24-80ce-063ceb43824d.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	6F8E288A9AD5B1ED8633B430E2B4D4CA	F671D3D4BEFA431D1946D706F4192D44E29B6F08	A114E2783D0E9B12155017323BA70838F0F82A71C7EE8DC1F115AE36991241F8
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	1FDAFC926391BD580B655FBAF46ED260	C95743C3F43B2B099FEBEBC5BD850F0C20E820AC	C67898B67F9C9209EAFDA6532B62D5789863CFB855998DD6A70E7775316CEC20
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	76DEC64ED1556180B452A13C83171883	CFB1E56FD587BCDC459C1D9A683B71F9849058F9	32290D69A90E6BAAC428B10382C99221B12773BB9A184F3B93DFB48A4F6D7A40
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	238B97A36E411E42FF37CEFAF2927ED1	4E47AC90BA24C8F4724D9293FA40CFD4ADA66FE0	4977D4A053542FF66967FAED6B06585DD70E68E20BFEB533B66FE3287F9655D9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B3E916E8C1991AA0453CBA00FEDCAAA	D6366D15912E40CA107FD42BFE9579C3336A51F9	A62FFAB910E31531758EEE48B2CC71A8857BEC3021DEAD50B668CBA3C8667053
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	05C437A322C1148B5F78B2F341339147	AB53003A678E44A170E73711FBD9949833BBF3AA	A052C32B4FCAC61152EB0ADB2C260FB6A8256AD104AA0013DB93E9798D41A070
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\en_GB\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	82719BD3999AD66193A9B0BB525F97CD	41194D511F1ACC16C1CA828AC81C18C8C6B47287	4DB9B2721E625C18B9E05C04B31AF5D9694712F1CAAF6219ABE34BB08E5DB1C7
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B2583D8D1C147E36A69A88009CBEBC7	4D4DEEB4BE6AA0181825F3371A761ABC5B4D5937	6659BC3705311D7641A73995DCFEA80C7734F2F4EBBC3787B3892A240348324F
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	CFF6CB76EC724B17C1BC920726CB35A7	14ED068251D65A840F00C05409D705259D329FFC	C85800BF45942FCC7FD6B1DF929C25F9CC2A977A6678966BD03D4B6B69889AFD
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	3A01FEE829445C482D1721FF63153D16	F3EAAADDC03F943FC88B30B67F534AA13E3336DD	0BDE54B20845124113383B6EB81E43A0F05E4EB0C44BEE3C1DFAC4CC5FEC2836
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	57AF5B654270A945BDA8053A83353A06	EEEF7A4F869F97CF471A05D345E74F982D15E167	EC002ED92359F67818B49455DFC579E140368E6A004080AF022FD4F57F6B03F2
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8D11C90F44A6585B57B933AB38D1FFF8	3F9D44EA8807069A32AACA2AAAD02FD892E6CC90	599491F8C52B945C16C441ADF45BFD45AFAE046DA07757D97C56AF4DE75ED3B5
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	E376D757C8FD66AC70A7D2D49760B94E	1525C5B1312D409604F097768503298EC440CC4D	8106D98C4F8DA16DB698444409558E29CC96735E188BFA303C333A5D99231C1D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8185D0490C86363602A137F9A261CC50	5BD933B874441CEACB9201CCC941FF67BAED6DC0	A2B2EC359A9DD9DCCCE02859CE1E738BD30FAA4A05F1DC522893FFDF722BBC15
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	85609CF8623582A8376C206556ED2131	1E16EB70DB5E59BB684866FF3E3925C2DEF25A12	32A249749F12ADB6A220BF9ADC272C7E5D9AD5497A38B0086D961E3ABA17FBC6
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	EAB2B946D1232AB98137E760954003AA	60BDC2937905B311D2C9844DF2D639D7AC9F7F67	C6E8800450602DE0F39FE9F6854472383813FB454B08ABAE7E25A9167CE004C3
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	A328EEF5E841E0C72D3CD7366899C5C8	2851ED658385804E87911643F5A4200B1FB26E13	CD891C45F7586FB4A2514205A11F260E4A6D4482FA03D901909DD9F57BE0536D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	9B3A5D473C3F2BBFAEECE94A07A940B8	61BACA342CF766BBA15C7B4D892A0E7DAC9405AA	706312A4A2AEF3317223F141EB2B82685345B7EED444F16BB4DF3A272716DA1F
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	9F6B4D82A70C74CA751E2EAE70FAB5CF	0534F125FFCE8222277CF2BE3401C59DAF9217F8	D1467B8D037114403E8F4EFC52E88C4A7FEB96126BE4CFF883FEFF1084EF7E68
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	4CA644F875606986A9898D04BDAE3EA5	722A10569E93975129D67FBDB75B537D9D622AD1	7C311AB751D840D750C11553C083785813E079C1D464FE568A98C9E3EF3DB96C
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF line terminators	C5CE2C51391EAFD3DA9E4C71549A3C28	1F67FF6EF6E90C0CE3AAF56ED543A3EFD381574D	1FA1DF2CA8516DEF490FB8484E9AA498ACFF80EEF5C9258FFE42D3678E6C7DED
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with CRLF line terminators	93C459A23BC6953FF744C35920CD2AF9	162F884972103A08ADB616A7EB3598431A2924C5	2CD700AEB57D89C2E73333D0702556EE3FF3863516170F85669BC680FCBDC4E0
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	7A8F9D0249C680F64DEC7650A432BD57	53477198AEE389F6580921B4876719B400A23CA1	92BE7C2DC9CFBE5A65E9CE6488D364C8D7EC19E7B67A31E4D43C1CB2B169671C
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	0E6194126AFCCD1E3098D276A7400175	E8127B905A640B1C46362FA6E1127BE172F4A40F	E2699F98C511B18A2AFB82EAE9A4804B646C4FF1077D80E77C17A3943A6373C2
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	86A2B91FA18B867209024C522ED665D5	63DEC245637818C76655E01FCB6D59784BC7184E	6374880FDD1F8AF1EE8AEA6A06B73BE0AB265AFCEB4FE6F08BDE3B3989264B21
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	750A4800EDB93FBE56495963F9FB3B94	8BFB915488A4EB3CB33D68E2E59F1F8447DB7D61	C1C94F65FABAF17DEF98A8587711A56D61B1E5607500E9B01F2824DB109F9E83
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	98D43E4B1054A65DF3FA3CC40AB6FB6D	46E0A21C4DA2BB5D4D8F837AE211C1B6FA26E7E2	113A13900CBA62FE8AED06751971C23A80A99B47F9BE219CF884D57DB19611D9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	DB2EDF1465946C06BD95C71A1E13AE64	FB4F3ECE9ECECEBBC6CA2A592A15FB9C1FDFB811	FBAF22CE6E16DE174CED8CB5EA3098CCA1C3426A2111FF33BD3E64DA64ED67AB
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF215D1EFBDABB175CCDD68ED8DCB0A	2B374462137A38589A73FDD00A84CBDC7E50F9F4	7FA16AF97E6CFC52EC6008EB679D3F30E7E0C24F9EF2D18A9228EAF4DED9D63B
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	3943FA2A647AECEDFD685408B27139EE	0129DD19D28373359530B3B477FE8A9279DABB7D	18AFF072EE0DF7C3495045435C752A805606E6D5D462EF2321C443F1773F4B3A
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	D485DF17F085B6A37125694F85646FD0	24D51D8642CDC6EFD5D8D7A4430232D8CDE25108	7FFDE34C58E7C376C042DE64DEF6481DAE32BE8B70F0B18EDF536290CBE0C818
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	D372B8204EB743E16F45C7CBD3CAAF37	C96C57219D292B01016B37DCF82E7C79AD0DD1E8	B8BA77E0089B0676545EC16D32468B727812B444F90B33A7A5B748E6C36C4388
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	83E2D1E97791A4B2C5C69926EFB629C9	429600425CB0F196DDD717F940E94DBD8BFF2837	2FECA577F43D97BAEEA464741D585892103585208FD0A935B810A03BDCE83C88
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	2CEAE0567B6BB1D240BBAD690A98CA3B	5944346FBD4A0797B13223895995CAB58E9ECD23	A7CB86F30C9C31FE5540282C308BA96ADB4EC16EF98C87129EB88105E5BEF5FC
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	AB0B56120E6B38C42CC3612BE948EF50	8B3F520E5713D9F116D68E71DAEED1F6E8D74629	68ABA284751EB9C856032062EF9B1651E2A1E5CE5FDA0977FFC97D63BA7BED9E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	7EBB677FEAD8557D3676505225A7249A	F161B4B6001AEAEAB246FF8987F4D992B48D47BE	051F96ED874C11C4A13589B5F68964E4F5B03B52DDA223D56524F2CA23760C04
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	BB73BF561BB79F89D9BF7C67C5AE5C65	2FADD3A1959B29C44830033A35C637D0311A8C9C	D804F2A040D21D7511EFD5213D8E1721D64964A1A0DBB48E21622CEEDC9D967E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FF50C673CC0C661D615F0CFD0E6DCA0	60DFF98DEAB9C4746B288BDD9C94B3BCAE5EAA85	C6F8C640F3353A7B9B1432A0C139C1AEEC40133800E6C9B467B63991AD660308
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\user\AppData\Local\Temp\scoped_dir6832_420757948\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	01334FB9D092AF2AA46C4185E405C627	47AD3C0E82362FFE5B881DF8D71D6F79AB7F5796	F52714812D68C577A445169D11E84DF6751C2D6886BC429643072BB5D61C6C27
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\bg\messages.json	UTF-8 Unicode text, with CRLF line terminators	6F8E288A9AD5B1ED8633B430E2B4D4CA	F671D3D4BEFA431D1946D706F4192D44E29B6F08	A114E2783D0E9B12155017323BA70838F0F82A71C7EE8DC1F115AE36991241F8
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\ca\messages.json	UTF-8 Unicode text, with CRLF line terminators	1FDAFC926391BD580B655FBAF46ED260	C95743C3F43B2B099FEBEBC5BD850F0C20E820AC	C67898B67F9C9209EAFDA6532B62D5789863CFB855998DD6A70E7775316CEC20
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\cs\messages.json	UTF-8 Unicode text, with CRLF line terminators	76DEC64ED1556180B452A13C83171883	CFB1E56FD587BCDC459C1D9A683B71F9849058F9	32290D69A90E6BAAC428B10382C99221B12773BB9A184F3B93DFB48A4F6D7A40
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\da\messages.json	UTF-8 Unicode text, with CRLF line terminators	238B97A36E411E42FF37CEFAF2927ED1	4E47AC90BA24C8F4724D9293FA40CFD4ADA66FE0	4977D4A053542FF66967FAED6B06585DD70E68E20BFEB533B66FE3287F9655D9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\de\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B3E916E8C1991AA0453CBA00FEDCAAA	D6366D15912E40CA107FD42BFE9579C3336A51F9	A62FFAB910E31531758EEE48B2CC71A8857BEC3021DEAD50B668CBA3C8667053
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\el\messages.json	UTF-8 Unicode text, with CRLF line terminators	05C437A322C1148B5F78B2F341339147	AB53003A678E44A170E73711FBD9949833BBF3AA	A052C32B4FCAC61152EB0ADB2C260FB6A8256AD104AA0013DB93E9798D41A070
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\en\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\en_GB\messages.json	ASCII text, with CRLF line terminators	91F5BC87FD478A007EC68C4E8ADF11AC	D07DD49E4EF3B36DAD7D038B7E999AE850C5BEF6	92F1246C21DD5FD7266EBFD65798C61E403D01A816CC3CF780DB5C8AA2E3D9C9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\es\messages.json	UTF-8 Unicode text, with CRLF line terminators	82719BD3999AD66193A9B0BB525F97CD	41194D511F1ACC16C1CA828AC81C18C8C6B47287	4DB9B2721E625C18B9E05C04B31AF5D9694712F1CAAF6219ABE34BB08E5DB1C7
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\es_419\messages.json	UTF-8 Unicode text, with CRLF line terminators	6B2583D8D1C147E36A69A88009CBEBC7	4D4DEEB4BE6AA0181825F3371A761ABC5B4D5937	6659BC3705311D7641A73995DCFEA80C7734F2F4EBBC3787B3892A240348324F
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\et\messages.json	UTF-8 Unicode text, with CRLF line terminators	CFF6CB76EC724B17C1BC920726CB35A7	14ED068251D65A840F00C05409D705259D329FFC	C85800BF45942FCC7FD6B1DF929C25F9CC2A977A6678966BD03D4B6B69889AFD
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\fi\messages.json	UTF-8 Unicode text, with CRLF line terminators	3A01FEE829445C482D1721FF63153D16	F3EAAADDC03F943FC88B30B67F534AA13E3336DD	0BDE54B20845124113383B6EB81E43A0F05E4EB0C44BEE3C1DFAC4CC5FEC2836
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\fil\messages.json	ASCII text, with CRLF line terminators	57AF5B654270A945BDA8053A83353A06	EEEF7A4F869F97CF471A05D345E74F982D15E167	EC002ED92359F67818B49455DFC579E140368E6A004080AF022FD4F57F6B03F2
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\fr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8D11C90F44A6585B57B933AB38D1FFF8	3F9D44EA8807069A32AACA2AAAD02FD892E6CC90	599491F8C52B945C16C441ADF45BFD45AFAE046DA07757D97C56AF4DE75ED3B5
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\hi\messages.json	UTF-8 Unicode text, with CRLF line terminators	E376D757C8FD66AC70A7D2D49760B94E	1525C5B1312D409604F097768503298EC440CC4D	8106D98C4F8DA16DB698444409558E29CC96735E188BFA303C333A5D99231C1D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\hr\messages.json	UTF-8 Unicode text, with CRLF line terminators	8185D0490C86363602A137F9A261CC50	5BD933B874441CEACB9201CCC941FF67BAED6DC0	A2B2EC359A9DD9DCCCE02859CE1E738BD30FAA4A05F1DC522893FFDF722BBC15
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\hu\messages.json	UTF-8 Unicode text, with CRLF line terminators	85609CF8623582A8376C206556ED2131	1E16EB70DB5E59BB684866FF3E3925C2DEF25A12	32A249749F12ADB6A220BF9ADC272C7E5D9AD5497A38B0086D961E3ABA17FBC6
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\id\messages.json	ASCII text, with CRLF line terminators	EAB2B946D1232AB98137E760954003AA	60BDC2937905B311D2C9844DF2D639D7AC9F7F67	C6E8800450602DE0F39FE9F6854472383813FB454B08ABAE7E25A9167CE004C3
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\it\messages.json	UTF-8 Unicode text, with CRLF line terminators	A328EEF5E841E0C72D3CD7366899C5C8	2851ED658385804E87911643F5A4200B1FB26E13	CD891C45F7586FB4A2514205A11F260E4A6D4482FA03D901909DD9F57BE0536D
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\ja\messages.json	UTF-8 Unicode text, with CRLF line terminators	9B3A5D473C3F2BBFAEECE94A07A940B8	61BACA342CF766BBA15C7B4D892A0E7DAC9405AA	706312A4A2AEF3317223F141EB2B82685345B7EED444F16BB4DF3A272716DA1F
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\ko\messages.json	UTF-8 Unicode text, with CRLF line terminators	9F6B4D82A70C74CA751E2EAE70FAB5CF	0534F125FFCE8222277CF2BE3401C59DAF9217F8	D1467B8D037114403E8F4EFC52E88C4A7FEB96126BE4CFF883FEFF1084EF7E68
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\lt\messages.json	UTF-8 Unicode text, with CRLF line terminators	4CA644F875606986A9898D04BDAE3EA5	722A10569E93975129D67FBDB75B537D9D622AD1	7C311AB751D840D750C11553C083785813E079C1D464FE568A98C9E3EF3DB96C
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\lv\messages.json	UTF-8 Unicode text, with CRLF line terminators	C5CE2C51391EAFD3DA9E4C71549A3C28	1F67FF6EF6E90C0CE3AAF56ED543A3EFD381574D	1FA1DF2CA8516DEF490FB8484E9AA498ACFF80EEF5C9258FFE42D3678E6C7DED
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\nb\messages.json	UTF-8 Unicode text, with CRLF line terminators	93C459A23BC6953FF744C35920CD2AF9	162F884972103A08ADB616A7EB3598431A2924C5	2CD700AEB57D89C2E73333D0702556EE3FF3863516170F85669BC680FCBDC4E0
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\nl\messages.json	ASCII text, with CRLF line terminators	7A8F9D0249C680F64DEC7650A432BD57	53477198AEE389F6580921B4876719B400A23CA1	92BE7C2DC9CFBE5A65E9CE6488D364C8D7EC19E7B67A31E4D43C1CB2B169671C
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\pl\messages.json	UTF-8 Unicode text, with CRLF line terminators	0E6194126AFCCD1E3098D276A7400175	E8127B905A640B1C46362FA6E1127BE172F4A40F	E2699F98C511B18A2AFB82EAE9A4804B646C4FF1077D80E77C17A3943A6373C2
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\pt_BR\messages.json	UTF-8 Unicode text, with CRLF line terminators	86A2B91FA18B867209024C522ED665D5	63DEC245637818C76655E01FCB6D59784BC7184E	6374880FDD1F8AF1EE8AEA6A06B73BE0AB265AFCEB4FE6F08BDE3B3989264B21
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\pt_PT\messages.json	UTF-8 Unicode text, with CRLF line terminators	750A4800EDB93FBE56495963F9FB3B94	8BFB915488A4EB3CB33D68E2E59F1F8447DB7D61	C1C94F65FABAF17DEF98A8587711A56D61B1E5607500E9B01F2824DB109F9E83
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\ro\messages.json	UTF-8 Unicode text, with CRLF line terminators	98D43E4B1054A65DF3FA3CC40AB6FB6D	46E0A21C4DA2BB5D4D8F837AE211C1B6FA26E7E2	113A13900CBA62FE8AED06751971C23A80A99B47F9BE219CF884D57DB19611D9
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\ru\messages.json	UTF-8 Unicode text, with CRLF line terminators	DB2EDF1465946C06BD95C71A1E13AE64	FB4F3ECE9ECECEBBC6CA2A592A15FB9C1FDFB811	FBAF22CE6E16DE174CED8CB5EA3098CCA1C3426A2111FF33BD3E64DA64ED67AB
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\sk\messages.json	UTF-8 Unicode text, with CRLF line terminators	8DF215D1EFBDABB175CCDD68ED8DCB0A	2B374462137A38589A73FDD00A84CBDC7E50F9F4	7FA16AF97E6CFC52EC6008EB679D3F30E7E0C24F9EF2D18A9228EAF4DED9D63B
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\sl\messages.json	UTF-8 Unicode text, with CRLF line terminators	3943FA2A647AECEDFD685408B27139EE	0129DD19D28373359530B3B477FE8A9279DABB7D	18AFF072EE0DF7C3495045435C752A805606E6D5D462EF2321C443F1773F4B3A
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\sr\messages.json	UTF-8 Unicode text, with CRLF line terminators	D485DF17F085B6A37125694F85646FD0	24D51D8642CDC6EFD5D8D7A4430232D8CDE25108	7FFDE34C58E7C376C042DE64DEF6481DAE32BE8B70F0B18EDF536290CBE0C818
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\sv\messages.json	UTF-8 Unicode text, with CRLF line terminators	D372B8204EB743E16F45C7CBD3CAAF37	C96C57219D292B01016B37DCF82E7C79AD0DD1E8	B8BA77E0089B0676545EC16D32468B727812B444F90B33A7A5B748E6C36C4388
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\th\messages.json	UTF-8 Unicode text, with CRLF line terminators	83E2D1E97791A4B2C5C69926EFB629C9	429600425CB0F196DDD717F940E94DBD8BFF2837	2FECA577F43D97BAEEA464741D585892103585208FD0A935B810A03BDCE83C88
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\tr\messages.json	UTF-8 Unicode text, with CRLF line terminators	2CEAE0567B6BB1D240BBAD690A98CA3B	5944346FBD4A0797B13223895995CAB58E9ECD23	A7CB86F30C9C31FE5540282C308BA96ADB4EC16EF98C87129EB88105E5BEF5FC
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\uk\messages.json	UTF-8 Unicode text, with CRLF line terminators	AB0B56120E6B38C42CC3612BE948EF50	8B3F520E5713D9F116D68E71DAEED1F6E8D74629	68ABA284751EB9C856032062EF9B1651E2A1E5CE5FDA0977FFC97D63BA7BED9E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\vi\messages.json	UTF-8 Unicode text, with CRLF line terminators	7EBB677FEAD8557D3676505225A7249A	F161B4B6001AEAEAB246FF8987F4D992B48D47BE	051F96ED874C11C4A13589B5F68964E4F5B03B52DDA223D56524F2CA23760C04
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\zh_CN\messages.json	UTF-8 Unicode text, with CRLF line terminators	BB73BF561BB79F89D9BF7C67C5AE5C65	2FADD3A1959B29C44830033A35C637D0311A8C9C	D804F2A040D21D7511EFD5213D8E1721D64964A1A0DBB48E21622CEEDC9D967E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\_locales\zh_TW\messages.json	UTF-8 Unicode text, with CRLF line terminators	5FF50C673CC0C661D615F0CFD0E6DCA0	60DFF98DEAB9C4746B288BDD9C94B3BCAE5EAA85	C6F8C640F3353A7B9B1432A0C139C1AEEC40133800E6C9B467B63991AD660308
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\images\icon_128.png	PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced	4DBC9F9E6F5A08D299BAC9E54DF07694	BB38F5DE34B1E0BE1109220BA55271087A4D9EA5	91C2718DD23B4356D71F88F6146868369033291086DF327534546DFA459BEB0E
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\images\icon_16.png	PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced	FB9C46EA81AD3E456D90D58697C12C06	5FC450F7D73CCFAC8F0D818CB3392BA4D91B69DE	016CA659BA080E194FBFC0929602B16506ED60AA6019FAA51410C4FD93B583E8
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\CRX_INSTALL\manifest.json	ASCII text, with CRLF line terminators	01334FB9D092AF2AA46C4185E405C627	47AD3C0E82362FFE5B881DF8D71D6F79AB7F5796	F52714812D68C577A445169D11E84DF6751C2D6886BC429643072BB5D61C6C27
C:\Users\user\AppData\Local\Temp\scoped_dir6832_954598542\ced1818f-2196-4d0c-9bfb-aa1cbb3229dd.tmp	Google Chrome extension, version 3	541F52E24FE1EF9F8E12377A6CCAE0C0	189898BB2DCAE7D5A6057BC2D98B8B450AFAEBB6	81E3A4D43A73699E1B7781723F56B8717175C536685C5450122B30789464AD82

ID:	491031
Product:	CloudBasic
Start time:	05:07:16
Start date:	27.09.2021
Cookbook:	browseurl.jbs
System description:	Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Architecture:	WINDOWS

Windows Analysis Report https://2c7.ir/4sv4E

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection:

Phishing:

Compliance:

Networking:

System Summary:

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted URLs