Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

https://u24446853.ct.sendgrid.net/ls/click?upn=2uaNz-2FYjiscZpiutVe517e1jlr3lepEnrnsWNCPAOwkCCTXQeXr-2BepbdfLnt25C-2FIpGIpmBWJIGrGI7WTghaHYbzg4YPxvCdg3xu75rKS5Z2dWj-2BwSmMRg34ICZ8ja8fHD8I_kEclMa76Gh3cVzwZQhAnSe3K0XLsCUjXxFgNkspkWtxOoIRO696T7loAgXlV1fQeo1r4IGHI7gZO7Q-2B7Wf386LPWKE4j1-2Bc5-2Fm0r-2BYto7ntGbibabQUAIufAXApvWOajwe84D0s1aeXv3ZLXcvEwsx-2B15P3e1GldBbfHsodO-2FN22e-2BuVkMRTdrcV05bYTaxJ32HhzbBwK7tH99O7QgCkhLLBEM7J-2FRKwNmANA-2FnTiZYeQJHgZP9NamfB-2B4QxAz5qLCNhSBSd71T5mmEm9aAwn-2Fb7-2BhEPvbCOanNtcY22SYCG4Cw9CFSGE2VeVA1JLBHoba8KwaGYRgBFr-2FeSMfVZrL6Yev7-2BB-2BjC-2FGLBtU-2Fba-2Bk1V0rT35pyYq6lC20GCteOOn6sf1oo-2F-2FJvIl5jwKFxuS2ELtvjiwKdbWt3Y0WC66t4KhQNwFHtevHRPNr3tqbe36wj9MvC46XfPd-2FJxAeIK6iJWsV7K2ArOrNvW7zSS87IFMGinq4g7dS-2FM0SDzSJ098QQeJADirLBUhRDX1eQ4GzwDGjp-2FMwCDu24D18aD2-2Bl-2BCex5oLDpyelAJmPjz8sGQOYguay3GWxdtkVNROgUlIYD-2F-2FWnWcK5eFCJPj2JruJodGVfRXWpXotlhnJAuZb74DVzPeoycMdCUnuZyzDYBojQcCt4APV8zkE-2F8JBMX5-2BCW2P3dOcWG-2FvW-2F6bH9c6X5SMfq-2BQFhotTNO0-2BCPMPlBZEbUkOSThv7Bo37a2bwxZQ8XADBXCWUzDbpUO0CiOVj10FsjlksA-2B3ove-2BVVIVKGnHw53y2wl5FfP8Wmt5KNwaLGhyKy0kcqTApKSiPJqtynExy5awEjETFhGMlS2lBtvIp1q5HApJYSsaMh2gMQDVc8ZHhfjt7ODK3QHtTOQTruvo-2Bz5Zu49ytPbtvrFag-3D-3D

Status: finished
Submission Time: 2021-12-02 17:36:47 +01:00
Malicious
Phishing
HTMLPhisher

Comments

Tags

Details

  • Analysis ID:
    532788
  • API (Web) ID:
    900310
  • Analysis Started:
    2021-12-02 17:50:21 +01:00
  • Analysis Finished:
    2021-12-02 17:56:51 +01:00
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 76
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report
malicious
Score: 7/93
malicious

IPs

IP Country Detection
104.18.10.207
 United States
142.250.203.110
 United States
172.217.168.45
 United States
Click to see the 10 hidden entries
142.250.203.97
 United States
172.217.168.3
 United States
92.53.68.201
 Russian Federation
167.89.115.121
 United States
104.19.142.111
 United States
239.255.255.250
 Reserved
192.229.221.185
 United States
152.199.21.175
 United States
198.54.115.249
 United States
104.16.19.94
 United States

Domains

Name IP Detection
googlehosted.l.googleusercontent.com
 142.250.203.97
acctcdn.msftauth.net
 0.0.0.0
635028.selcdn.ru
 0.0.0.0
Click to see the 21 hidden entries
code.jquery.com
 0.0.0.0
clients2.google.com
 0.0.0.0
clients2.googleusercontent.com
 0.0.0.0
kit-free.fontawesome.com
 0.0.0.0
acctcdn.msauth.net
 0.0.0.0
account.live.com
 0.0.0.0
kit.fontawesome.com
 0.0.0.0
ka-f.fontawesome.com
 0.0.0.0
logincdn.msauth.net
 0.0.0.0
gstaticadssl.l.google.com
 172.217.168.3
clients.l.google.com
 142.250.203.110
cs1227.wpc.alphacdn.net
 192.229.221.185
cdnjs.cloudflare.com
 104.16.19.94
u24446853.ct.sendgrid.net
 167.89.115.121
app.forexliteoptions.com
 198.54.115.249
maxcdn.bootstrapcdn.com
 104.18.10.207
selcdn.ru
 92.53.68.201
sni1gl.wpc.alphacdn.net
 152.199.21.175
i.gyazo.com
 104.19.142.111
accounts.google.com
 172.217.168.45
stackpath.bootstrapcdn.com
 104.18.10.207

URLs

Name Detection
https://app.forexliteoptions.com/core/database/xero/css/hover.css
http://angularjs.org
https://github.com/angular/material
Click to see the 97 hidden entries
https://accounts.google.com
https://account.live.com/Resources/images/Microsoft_Logotype_Gray_X-qkgtg8KmnQEvm_9mDTcw2.svg5x
https://acctcdn.msauth.net/accountcorepackage_UH__VcmA5_qVhPpsKA_TNQ2.js?v=1
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
https://login.microsoftonline.com/?username=
https://accounts.google.com/MergeSession
https://635028.selcdn.ru
https://635028.selcdn.ru/msoffice/r.html#miranda_muscente
https://635028.selcdn.ru/favicon.ico
https://sandbox.google.com/payments/v4/js/integrator.js
https://acctcdn.msauth.net/bootstrapcomponentshim_yGKy8jAx8RL2bLqmBF063w2.js?v=1$
https://acctcdn.msauth.net/converged_ux_v2_kGcCYmU0rW3A6Zc7U1O8nw2.css?v=1
https://code.jquery.com/jquery-3.2.1.slim.min.jsy
https://ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
http://crls.pki.goog/gts1c3/moVDfISia2k.crl0
https://635028.selcdn.ru/msoffice/index2.html
https://www.google.com/images/cleardot.gif
https://ka-f.fontawesome.com
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.jskf
http://crl.pki.goog/gsr1/gsr1.crl0;
https://feedback.googleusercontent.com
https://www.google.com/
https://account.live.com/Resources/images/Microsoft_Logotype_Gray_X-qkgtg8KmnQEvm_9mDTcw2.svg
https://635028.selcdn.ru/msoffice/index2.htmlM
http://llvm.org/):
https://acctcdn.msauth.net/images/2_vD0yppaJX3jBnfbHF1hqXQ2.svg
https://code.jquery.com/jquery-3.3.1.js
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
https://www.google.com/s2/favicons?domain=
http://pki.goog/gsr1/gsr1.crt02
https://acctcdn.msauth.net/resetpasswordpackage_L8Ee0uN0GOAyvurXVgtE8g2.js?v=1a
https://hangouts.google.com/
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
https://acctcdn.msauth.net/knockout_old_GJ62c6D9R5HuKFdkoO8XYw2.js?v=1
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
https://code.jquery.com/jquery-3.1.1.min.js
https://account.live.com/Resources/images/AppCentipede/AppCentipede_Microsoft_HFeToeM4u6fzMQF_f_rQ5Q
https://i.gyazo.com/214d89a26f0ac918a09f216a1b0f97b4.png
https://ogs.google.com
https://www.google.com/intl/en-US/chrome/blank.html
https://slender-distinct-direction.glitch.me
https://clients2.google.com
https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers
https://www-googleapis-staging.sandbox.google.com
https://logincdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90b
https://apis.google.com
https://account.live.com/Resources/images/2_vD0yppaJX3jBnfbHF1hqXQ2.svg
https://gyazo.com
https://www.google.com
https://www.google.com/tools/feedback
https://account.live.com/password/reset
https://u24446853.ct.sendgrid.net/ls/click?upn=2uaNz-2FYjiscZpiutVe517e1jlr3lepEnrnsWNCPAOwkCCTXQeXr-2BepbdfLnt25C-2FIpGIpmBWJIGrGI7WTghaHYbzg4YPxvCdg3xu75rKS5Z2dWj-2BwSmMRg34ICZ8ja8fHD8I_kEclMa76Gh3cVzwZQhAnSe3K0XLsCUjXxFgNkspkWtxOoIRO696T7loAgXlV1fQeo1r4IGHI7gZO7Q-2B7Wf386LPWKE4j1-2Bc5-2Fm0r-2BYto7ntGbibabQUAIufAXApvWOajwe84D0s1aeXv3ZLXcvEwsx-2B15P3e1GldBbfHsodO-2FN22e-2BuVkMRTdrcV05bYTaxJ32HhzbBwK7tH99O7QgCkhLLBEM7J-2FRKwNmANA-2FnTiZYeQJHgZP9NamfB-2B4QxAz5qLCNhSBSd71T5mmEm9aAwn-2Fb7-2BhEPvbCOanNtcY22SYCG4Cw9CFSGE2VeVA1JLBHoba8KwaGYRgBFr-2FeSMfVZrL6Yev7-2BB-2BjC-2FGLBtU-2Fba-2Bk1V0rT35pyYq6lC20GCteOOn6sf1oo-2F-2FJvIl5jwKFxuS2ELtvjiwKdbWt3Y0WC66t4KhQNwFHtevHRPNr3tqbe36wj9MvC46XfPd-2FJxAeIK6iJWsV7K2ArOrNvW7zSS87IFMGinq4g7dS-2FM0SDzSJ098QQeJADirLBUhRDX1eQ4GzwDGjp-2FMwCDu24D18aD2-2Bl-2BCex5oLDpyelAJmPjz8sGQOYguay3GWxdtkVNROgUlIYD-2F-2FWnWcK5eFCJPj2JruJodGVfRXWpXotlhnJAuZb74DVzPeoycMdCUnuZyzDYBojQcCt4APV8zkE-2F8JBMX5-2BCW2P3dOcWG-2FvW-2F6bH9c6X5SMfq-2BQFhotTNO0-2BCPMPlBZEbUkOSThv7Bo37a2bwxZQ8XADBXCWUzDbpUO0CiOVj10FsjlksA-2B3ove-2BVVIVKGnHw53y2wl5FfP8Wmt5KNwaLGhyKy0kcqTApKSiPJqtynExy5awEjETFhGMlS2lBtvIp1q5HApJYSsaMh2gMQDVc8ZHhfjt7ODK3QHtTOQTruvo-2Bz5Zu49ytPbtvrFag-3D-3D
https://acctcdn.msauth.net/images/dropdown_caret_KXSZjGsyILZaoTf0sI9X-A2.svg
https://a.nel.cloudflare.com/report/v3?s=Mv7kpnB9XBHXWPxF04Nn3UQelYcsJiE2Ph9zggIq4mds9xJATEd07ejKNGN
https://acctcdn.msauth.net/jqueryshim_tGLkJ9mWEbN2n0ToVG2gvQ2.js?v=1
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
https://kit.fontawesome.com/585b051251.js
https://acctcdn.msauth.net/bootstrapshim_IX6xrWCoGcREOsbbsQ1Yvg2.js?v=1
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
https://635028.selcdn.ru/msoffice/index2.html#miranda_muscente@condenast.com
https://account.live.com/Resources/images/microsoft_logo_7lyNn7YkjJOP0NwZNw6QvQ2.svg
https://kit.fontawesome.com/585b051251.jsG4
http://pki.goog/repo/certs/gtsr1.der04
https://acctcdn.msauth.net/oneds_EMWt_lK9fDTY6ZqY6xYrUA2.js?v=1
https://account.live.com/Resources/images/AppCentipede/AppCentipede_Microsoft_white_ufRYlllWOw4YyDRi
https://kit-free.fontawesome.com/releases/latest/css/free-v4-shims.min.css/
https://u24446853.ct.sendgrid.net/ls/click?upn=2uaNz-2FYjiscZpiutVe517e1jlr3lepEnrnsWNCPAOwkCCTXQeXr
https://crash.corp.google.com/samples?reportid=&q=
https://635028.selcdn.ru/msoffice/index2.html#miranda_muscente
https://code.jquery.com/jquery-3.2.1.slim.min.js
https://account.live.com/Resources/images/favicon.ico4
https://logincdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
https://a.nel.cloudflare.com/report/v3?s=UZEov5stylofvQeTvi6FdBRF92t9kWFo6Mur%2FZPLYvDuKXws2P0vCg%2F
https://acctcdn.msauth.net/jqueryshim_tGLkJ9mWEbN2n0ToVG2gvQ2.js?v=1:.
https://kit-free.fontawesome.com/releases/latest/css/free.min.css
https://acctcdn.msauth.net/wlivepackagefull_2169QIWB52Tqqm3jo5_AUA2.js?v=1
https://account.live.com/Resources/images/favicon.ico
https://635028.selcdn.ru/msoffice/r.html
https://www.google.com/images/dot2.gif
https://acctcdn.msauth.net/images/2_vD0yppaJX3jBnfbHF1hqXQ2.svgw
https://acctcdn.msauth.net/bootstrapcomponentshim_yGKy8jAx8RL2bLqmBF063w2.js?v=1
https://www.google.com/images/x2.gif
https://csp.withgoogle.com/csp/hosted-libraries-pushers
https://pki.goog/repository/0
https://ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
https://account.live.com/Resources/images/Microsoft_Logotype_White_4MYDQRab31HKDWWN-1HafA2.svg
http://crl.pki.goog/gtsr1/gtsr1.crl0W
https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
https://www.google.com;
https://acctcdn.msauth.net/resetpasswordpackage_L8Ee0uN0GOAyvurXVgtE8g2.js?v=1
https://payments.google.com/payments/v4/js/integrator.js
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
https://acctcdn.msauth.net/images/microsoft_logo_7lyNn7YkjJOP0NwZNw6QvQ2.svg
https://support.google.com/chromecast/troubleshooter/2995236
https://acctcdn.msauth.net/datarequestpackage_h-_7C7UzwdefXJT9njDBTQ2.js
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
https://dns.google

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
 data
 #
Click to see the 97 hidden entries
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.olda: (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\7e6b36eb-98aa-4434-8749-4a693a5e1731.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencese (copy)
 UTF-8 Unicode text, with CRLF line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences\ (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences= (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.oldSe (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d2626725-d28e-45ff-a2c0-28625d45d5fc.tmp
 very short file (no magic)
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
 SysEx File -
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
 ASCII text, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ecfda881-c92d-42a7-8a24-b3f961b013bf.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
 MPEG-4 LOAS
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTMP (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\c63a4195-cd9b-4e97-9bd6-d38a86e81c6c.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b415c51a-f271-4a14-911b-4b40365a2243.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.oldil (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\f93d8e45-faf5-491c-9138-e9c96212eb0a.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.oldng (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\34b742d5-f474-4352-8242-7e48018712e4.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old% (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old. (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9ea6abee-46f6-4153-bd83-a7e1b9d4814e.tmp
 UTF-8 Unicode text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\778ac3b2-2ab8-45de-b205-14c7086cf6d7.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6462047e-159c-4168-9b87-6db31197f81b.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\29bc34f5-ae61-4202-89cb-7e973df930ea.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\03fd430f-6deb-4812-99ea-b59a9ede9e29.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\7c70e6dc-cfdd-47dc-aff2-225058a56d48.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\7b8d9eae-c9ae-4711-acd3-201be1566198.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\7a85afbb-5c77-44f7-a060-367613a9a524.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\77174424-62b6-405e-8363-cd74b0bbc544.tmp
 SysEx File -
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\4988ff75-f3c8-4e83-adb3-ab386877b5dc.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\3c4dc10a-6b29-49a3-9531-7a271ac47c5a.tmp
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\2ab76064-d0eb-479f-a001-d137bfb0f71f.tmp
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\270d1ae3-a8e7-4718-a439-2a420bd945e9.tmp
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs\ (copy)
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old.B (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
 ASCII text
 #
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old.. (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Favicons
 SQLite 3.x database, last written using SQLite version 3032001
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
 ASCII text, with very long lines, with no line terminators
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
 data
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
 ASCII text
 #
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
 data
 #