Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

http://pentontraining.com

Status: finished
Submission Time: 2021-12-02 15:31:14 +01:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    532647
  • API (Web) ID:
    900172
  • Analysis Started:
    2021-12-02 15:34:08 +01:00
  • Analysis Finished:
    2021-12-02 15:41:07 +01:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 48
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

IPs

IP Country Detection
47.246.46.252
 United States
172.67.42.54
 United States
172.67.25.30
 United States
Click to see the 38 hidden entries
142.250.203.110
 United States
23.225.154.19
 United States
79.133.177.252
 Russian Federation
59.82.31.209
 China
172.247.112.220
 United States
47.246.49.251
 United States
61.176.194.20
 China
222.186.129.233
 China
239.255.255.250
 Reserved
203.119.207.130
 China
120.52.95.243
 China
58.215.157.250
 China
203.119.175.170
 China
59.82.29.248
 China
203.119.169.41
 China
163.181.50.252
 United States
106.11.43.154
 China
213.159.203.19
 Russian Federation
106.11.84.4
 China
183.131.207.66
 China
91.199.212.52
 United Kingdom
154.81.191.203
 Seychelles
203.119.214.125
 China
59.82.60.44
 China
59.82.60.43
 China
172.217.168.45
 United States
142.250.203.97
 United States
47.246.2.234
 United States
203.119.216.77
 China
23.224.122.132
 United States
23.224.122.133
 United States
106.11.84.7
 China
104.22.0.86
 United States
59.82.31.92
 China
101.132.251.31
 China
218.94.207.228
 China
47.246.136.160
 United States
103.235.46.191
 Hong Kong

Domains

Name IP Detection
www.umeng.com
 0.0.0.0
cnzz.mmstat.com
 0.0.0.0
z13.cnzz.com
 0.0.0.0
Click to see the 71 hidden entries
sc04.alicdn.com
 0.0.0.0
hqs2.cnzz.com
 0.0.0.0
info.umeng.com
 0.0.0.0
z7.cnzz.com
 0.0.0.0
z3.cnzz.com
 0.0.0.0
g.alicdn.com
 0.0.0.0
www.govguangxi.cn
 0.0.0.0
q3.cnzz.com
 0.0.0.0
js.users.51.la
 0.0.0.0
cdn.wuxiqiangheng.com
 0.0.0.0
ia.51.la
 0.0.0.0
gxb.mmstat.com
 0.0.0.0
www.cnzz.com
 0.0.0.0
icon.cnzz.com
 0.0.0.0
c.cnzz.com
 0.0.0.0
clients2.google.com
 0.0.0.0
fragment.tmall.com
 0.0.0.0
s.umeng.com
 0.0.0.0
www.govzhajian.cn
 0.0.0.0
passport.umeng.com
 0.0.0.0
w.cnzz.com
 0.0.0.0
node.www.umeng.com
 0.0.0.0
a.cnzz.com
 0.0.0.0
s5.cnzz.com
 0.0.0.0
new.cnzz.com
 0.0.0.0
clients2.googleusercontent.com
 0.0.0.0
d.alicdn.com
 0.0.0.0
uweb.umeng.com
 0.0.0.0
act.umeng.com
 0.0.0.0
at.alicdn.com
 0.0.0.0
img.alicdn.com
 0.0.0.0
gm.mmstat.com
 0.0.0.0
s4.cnzz.com
 0.0.0.0
hm.baidu.com
 0.0.0.0
gm.gds.mmstat.com
 47.246.136.160
default.cn.zb.wagbridge.umeng.alibabacorp.com.gds.alibabadns.com
 59.82.29.248
q.gds.cnzz.com
 106.11.84.7
et2-na61-na62.wagbridge.alibaba.tanx.com.gds.alibabadns.com
 203.119.214.125
log-api.aplus.emas-poc.com
 101.132.251.31
vip.70qn.com
 222.186.129.233
www.pentontraining.com
 154.81.191.203
g.alicdn.com.danuoyi.alicdn.com
 79.133.177.252
a.cnzz.com.gds.alibabadns.com
 203.119.216.77
d2cb5ad7002c4066.huaweisafedns.com
 183.131.207.66
cagnon2x.slt.sched.tdnsv8.com
 61.176.194.20
all.cnzz.com.danuoyi.tbcache.com
 58.215.157.250
gxb.mmstat.com.gds.alibabadns.com
 47.246.136.160
pentontraining.com
 154.81.191.203
hm.e.shifen.com
 103.235.46.191
icon.cnzz.com.danuoyi.tbcache.com
 58.215.157.250
na61-na62.wagbridge.work.alibabacorp.com.gds.alibabadns.com
 203.119.207.130
smtbb.cc
 172.247.112.220
fragment.tmall.com.danuoyi.alicdn.com
 47.246.2.234
pic.laoyaimg.com
 213.159.203.19
s13.cnzz.com
 0.0.0.0
hzvs2.cnzz.com
 0.0.0.0
z.gds.cnzz.com
 106.11.84.4
googlehosted.l.googleusercontent.com
 142.250.203.97
fmlb.netlbtu.com
 172.67.25.30
daka.70qn.com
 23.225.154.19
clients.l.google.com
 142.250.203.110
crt.sectigo.com
 91.199.212.52
at.alicdn.com.danuoyi.alicdn.com
 47.246.46.252
d.alicdn.com.w.cdngslb.com
 163.181.50.252
2021tupian.com
 23.224.122.133
hcdnd101.gslb.c.cdnhwc2.com
 120.52.95.243
na61-na62.wagbridge.alibaba.tanx.com.gds.alibabadns.com
 203.119.169.41
sycdn.comtucdncom.com
 172.67.42.54
accounts.google.com
 172.217.168.45
img.alicdn.com.danuoyi.alicdn.com
 47.246.49.251
02qyjs.com
 23.224.122.132

URLs

Name Detection
https://smtbb.cc:2022/
https://smtbb.cc:2022/index.php/vod/type/id/HCCCCS.html
https://smtbb.cc:2022/index.php/vod/type/id/0CCCCS.html
Click to see the 90 hidden entries
https://www.govguangxi.cn:4443/ty/x-5830-33-1.html
https://smtbb.cc:2022/index.php/vod/type/id/uCCCCS.html
https://www.govguangxi.cn:4443/ty/x-5825-34-1.html
https://www.govguangxi.cn:4443/ty/x-5829-34-1.html
http://www.pentontraining.com/
https://hangouts.google.com/
https://ogs.google.com
https://www.google.com;
https://payments.google.com/payments/v4/js/integrator.js
http://fmlb.netlbtu.com/images/2021/11/23/dmm15661.jpg
http://fmlb.netlbtu.com/images/2021/11/23/cc16500.jpg
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
https://support.google.com/chromecast/troubleshooter/2995236
http://new.cnzz.com/v1/login.php?siteid=1280563498
http://fmlb.netlbtu.com/images/2021/11/23/hey4569.jpg
http://fmlb.netlbtu.com/images/2021/11/23/cc16498.jpg
https://www.google.com/intl/en-US/chrome/blank.html
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
https://dns.google
http://www.apache.org/licenses/LICENSE-2.0
http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
https://www.govzhajian.cn:12443
https://www.google.com/tools/feedback
http://fmlb.netlbtu.com/images/2021/11/23/dmm15662.jpg
https://clients2.google.com
http://fmlb.netlbtu.com/images/2021/11/23/cc16499.jpg
https://clients6.google.com
https://clients2.google.com/service/update2/crx
https://feedback.googleusercontent.com
https://www.google.com/
https://docs.google.com
https://clients2.googleusercontent.com
https://2021tupian.com:2021
https://support.google.com/chromecast/answer/2998456
http://tools.ietf.org/html/rfc1950
http://fmlb.netlbtu.com/images/2021/11/23/hey4567.jpg
http://fmlb.netlbtu.com/images/2021/11/23/dmm15655.jpg
https://play.google.com/log?format=json&hasfast=true
https://meetings.clients6.google.com
http://fmlb.netlbtu.com/images/2021/11/23/hey4570.jpg
https://www.google.com/images/dot2.gif
https://uweb.umeng.com/v1/login.php?siteid=1280563498
http://fmlb.netlbtu.com/images/2021/11/23/dmm15660.jpg
https://www.google.com/images/x2.gif
https://github.com/madler/zlib/blob/master/zlib.h
http://fmlb.netlbtu.com/images/2021/11/23/hey4568.jpg
https://sandbox.google.com/payments/v4/js/integrator.js
http://fmlb.netlbtu.com/images/2021/11/23/dmm15656.jpg
https://www.google.com
http://fmlb.netlbtu.com/images/2021/7/27/dmm7543.jpg
https://preprod-hangouts-googleapis.sandbox.google.com
https://creativecommons.org/compatiblelicenses
https://accounts.google.com/MergeSession
https://02qyjs.com:2021
https://www.govguangxi.cn:4443
http://www.pentontraining.com/2$
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
http://www.pentontraining.com/tj.js
https://smtbb.cc:2022
http://fmlb.netlbtu.com/images/2021/11/23/jr17173.jpg
https://easylist.to/)
https://www.google.com/log?format=json&hasfast=true
https://crash.corp.google.com/samples?reportid=&q=
http://pentontraining.com/2$
http://fmlb.netlbtu.com/images/2021/11/23/dmm15659.jpg
https://www.google.com/images/cleardot.gif
https://apis.google.com/js/client.js
http://www.pentontraining.com/
http://angularjs.org
http://fmlb.netlbtu.com/images/2021/11/23/dmm15658.jpg
http://pentontraining.com/
http://www.pentontraining.com/favicon.ico
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
https://apis.google.com
http://www.pentontraining.com/common.js
https://github.com/angular/material
https://creativecommons.org/publicdomain/zero/1.0/.
http://fmlb.netlbtu.com/images/2021/11/23/dmm15657.jpg
http://fmlb.netlbtu.com/images/2021/11/23/dmm15644.jpg
https://www-googleapis-staging.sandbox.google.com
https://clients2.google.com/cr/report
https://accounts.google.com
https://hangouts.google.com/hangouts/_/logpref
https://meet.google.com
https://hangouts.clients6.google.com
http://fmlb.netlbtu.com/images/2021/11/23/jr17171.jpg
http://fmlb.netlbtu.com/images/2021/11/23/jr17172.jpg
https://creativecommons.org/.
https://github.com/easylist)
http://fmlb.netlbtu.com/images/2021/11/23/dmm15643.jpg

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\5448_1734265358\Filtering Rules
 data
 #
C:\Users\user\AppData\Local\Temp\5448_1362032334\manifest.json
 ASCII text
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Temp\5448_1362032334\manifest.fingerprint
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\5448_1362032334\crl-set
 data
 #
C:\Users\user\AppData\Local\Temp\5448_1362032334\_metadata\verified_contents.json
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\5448_1362032334\LICENSE
 ASCII text
 #
C:\Users\user\AppData\Local\Temp\01891a2b-1f5e-4cf8-89e8-eb6975905796.tmp
 very short file (no magic)
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\d0b1314a-7b35-4c07-96da-d01457987cda.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir5448_3896177\Ruleset Data
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheN (copy)
 SysEx File -
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info CacheMP (copy)
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Statelt (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\5448_1734265358\LICENSE.txt
 ASCII text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old* (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dce54595-8243-41eb-9ec6-acf65b4ab1ca.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTl (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d7dbd7a6-f8c0-4c35-a9a3-db0fce8eefe5.tmp
 very short file (no magic)
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d063a90b-21fd-4294-998b-ee77345facbf.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c70fecca-6ddc-4258-bfad-5d23137a0d29.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\ca\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\gu\messages.json
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\fr\messages.json
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\fil\messages.json
 HTML document, ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\fi\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\fa\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\et\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\es\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\en\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\el\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\de\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\da\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\cs\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b27b8324-fb75-414a-a45b-ebf70f2e2e0e.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\bn\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\bg\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\ar\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\CRX_INSTALL\_locales\am\messages.json
 UTF-8 Unicode text, with very long lines, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Temp\scoped_dir5448_1078465076\623d69bb-9823-47d5-9baf-fa51bf7cf1c3.tmp
 Google Chrome extension, version 3
 #
C:\Users\user\AppData\Local\Temp\967463ec-2e22-4511-baa1-ebcf544b72fc.tmp
 very short file (no magic)
 #
C:\Users\user\AppData\Local\Temp\6a22cc1d-88b2-458d-b67a-681ab171e66c.tmp
 Google Chrome extension, version 3
 #
C:\Users\user\AppData\Local\Temp\623d69bb-9823-47d5-9baf-fa51bf7cf1c3.tmp
 Google Chrome extension, version 3
 #
C:\Users\user\AppData\Local\Temp\5448_1734265358\manifest.json
 ASCII text
 #
C:\Users\user\AppData\Local\Temp\5448_1734265358\manifest.fingerprint
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Temp\5448_1734265358\_metadata\verified_contents.json
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\98887ec1-f4ef-4010-9976-662ee4c9d38e.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9d173c99-2d33-4abf-bd56-0181d3bb9e4c.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\91766259-d4c1-47b0-9a71-f628aca0b38f.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7be8e5c1-f995-4b4d-95ab-696234609c74.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5aa07afc-1669-4cc1-96a9-c08648641c7b.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5a86327c-82e2-4666-bc74-58f077047343.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\524770a2-c214-4a6a-be0c-859903b25d5b.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2b78b0bf-e220-4329-b656-a22639d02eb5.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1f6fccd9-5133-457f-897e-3774f76a72d3.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0d3d935d-09db-4177-8b6e-a45fd5a11835.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\84f3e848-7cbe-4c9f-905e-444e7bf7e5a8.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\755ed427-0fc7-40f8-92f5-6da49c49694c.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\5a86453f-ac3c-4886-b4e5-dc07d6b4e231.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\4ddc14b7-42c9-43b6-89eb-485a7cc0281a.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\47562235-76ac-401b-8983-e71748058cf4.tmp
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\3efc8743-a7af-4fc3-b165-03feae4e617b.tmp
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\3be92e81-6ed3-4897-a73e-7b2fcbc26794.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\124f9881-5c2c-4966-b675-aa8715c3bedd.tmp
 SysEx File -
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\08e61189-f1b0-4eb3-be80-4777ca8fffbb.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\30D802E0E248FEE17AAF4A62594CC75A
 data
 #
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\30D802E0E248FEE17AAF4A62594CC75A
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State* (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ac4acfe1-536b-4b76-a9ff-b2a5d0b7bba0.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a718ada4-dd26-4789-b16c-98d79475fd31.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent State. (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.oldg (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\8b448f7d-2fa2-4737-ac01-0d0214e45f49.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\85f5594e-647a-4a6e-959b-9af5c4100a0b.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.. (copy)
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences. (copy)
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesT. (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.oldbc (copy)
 ASCII text
 #