Analysis Overview
Threat Level: Known bad
The file https://cdn.discordapp.com/attachments/887794387793375266/887798335237414912/Synapse_X.exe was found to be: Known bad.
Malicious Activity Summary
Mercurial Grabber Stealer
Looks for VirtualBox Guest Additions in registry
Looks for VMWare Tools registry key
Downloads MZ/PE file
Checks BIOS information in registry
Executes dropped EXE
Reads user/profile data of web browsers
Maps connected drives based on registry
Looks up external IP address via web service
Legitimate hosting services abused for malware hosting/C2
Suspicious use of SetThreadContext
Program crash
Suspicious use of SetWindowsHookEx
Enumerates system info in registry
Suspicious behavior: EnumeratesProcesses
Modifies registry class
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
Suspicious behavior: GetForegroundWindowSpam
Checks SCSI registry key(s)
Checks processor information in registry
Modifies data under HKEY_USERS
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2023-09-02 14:42
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2023-09-02 14:42
Reported
2023-09-02 14:51
Platform
win10v2004-20230831-en
Max time kernel
488s
Max time network
491s
Command Line
Signatures
Mercurial Grabber Stealer
Looks for VirtualBox Guest Additions in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\Oracle\VirtualBox Guest Additions | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\Oracle\VirtualBox Guest Additions | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\Oracle\VirtualBox Guest Additions | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Downloads MZ/PE file
Looks for VMWare Tools registry key
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\VMWare, Inc.\VMWare Tools | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\VMWare, Inc.\VMWare Tools | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\VMWare, Inc.\VMWare Tools | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Checks BIOS information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\AOI_dox_tool.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\AOI_dox_tool.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\AOI_dox_tool.exe | N/A |
Reads user/profile data of web browsers
Legitimate hosting services abused for malware hosting/C2
Looks up external IP address via web service
| Description | Indicator | Process | Target |
| N/A | ip4.seeip.org | N/A | N/A |
| N/A | ip4.seeip.org | N/A | N/A |
| N/A | ip4.seeip.org | N/A | N/A |
| N/A | ip4.seeip.org | N/A | N/A |
| N/A | ip4.seeip.org | N/A | N/A |
| N/A | ip-api.com | N/A | N/A |
| N/A | ip4.seeip.org | N/A | N/A |
| N/A | ip4.seeip.org | N/A | N/A |
Maps connected drives based on registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\Disk\Enum | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\disk\Enum\0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\Disk\Enum | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\disk\Enum\0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\Disk\Enum | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Services\disk\Enum\0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Suspicious use of SetThreadContext
| Description | Indicator | Process | Target |
| PID 5468 set thread context of 5620 | N/A | C:\Users\Admin\Desktop\AOI_dox_tool.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe |
| PID 3384 set thread context of 3044 | N/A | C:\Users\Admin\Desktop\AOI_dox_tool.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe |
| PID 4388 set thread context of 5572 | N/A | C:\Users\Admin\Desktop\AOI_dox_tool.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe |
Program crash
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_VMware_&Prod_VMware_Virtual_S | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_VMware_&Prod_VMware_Virtual_S | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_VMware_&Prod_VMware_Virtual_S | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\Logical Unit Id 0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemManufacturer | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\Logical Unit Id 0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemManufacturer | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemManufacturer | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemProductName | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\Logical Unit Id 0 | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosInformation | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemProductName | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemProductName | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosInformation | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosInformation | C:\Users\Admin\Downloads\Synapse_X.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133381393924271835" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4078585466-1563564224-3678410669-1000\{5B028661-FBD1-4FC0-8877-C0E0102F7976} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4078585466-1563564224-3678410669-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4078585466-1563564224-3678410669-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4078585466-1563564224-3678410669-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4078585466-1563564224-3678410669-1000_Classes\Local Settings | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| N/A | N/A | C:\Program Files\7-Zip\7zFM.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://cdn.discordapp.com/attachments/887794387793375266/887798335237414912/Synapse_X.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe5bad9758,0x7ffe5bad9768,0x7ffe5bad9778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1928 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1640 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2260 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3024 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3056 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5060 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5020 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5452 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5452 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4992 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3900 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5212 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5440 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\Downloads\Synapse_X.exe
"C:\Users\Admin\Downloads\Synapse_X.exe"
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 356 -p 3716 -ip 3716
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 3716 -s 2188
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Users\Admin\Downloads\Synapse_X.exe
"C:\Users\Admin\Downloads\Synapse_X.exe"
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 520 -p 1868 -ip 1868
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 1868 -s 2184
C:\Users\Admin\Downloads\Synapse_X.exe
"C:\Users\Admin\Downloads\Synapse_X.exe"
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 520 -p 1360 -ip 1360
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 1360 -s 2200
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=916 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5612 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5268 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5848 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5860 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=1588 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5848 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5676 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5484 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4868 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6220 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5544 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5308 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5708 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5720 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6020 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2256 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5352 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=2912 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1860 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6364 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=4852 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=2272 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=3408 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=1600 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=5696 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=3012 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=5672 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=5216 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2256 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5884 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=3220 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=6112 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=5940 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=6292 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6204 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=5964 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=2256 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=7080 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=6764 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=7376 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=7532 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7704 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=7744 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=7316 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=8204 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=7932 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=7728 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=7448 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=7220 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=8616 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\7-Zip\7zFM.exe
"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\Downloads\AOI_dox_tool.rar"
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=3264 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=1496 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=7068 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=8384 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\7-Zip\7zFM.exe
"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\Downloads\AOI_dox_tool.rar"
C:\Users\Admin\Desktop\AOI_dox_tool.exe
"C:\Users\Admin\Desktop\AOI_dox_tool.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 5468 -ip 5468
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 5468 -s 296
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /7
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=6220 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=2852 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=3280 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=6072 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=8884 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=9160 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=9168 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=7104 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Users\Admin\Desktop\AOI_dox_tool.exe
"C:\Users\Admin\Desktop\AOI_dox_tool.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 560 -p 3384 -ip 3384
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 3384 -s 140
C:\Users\Admin\Desktop\AOI_dox_tool.exe
"C:\Users\Admin\Desktop\AOI_dox_tool.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 552 -p 4388 -ip 4388
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 4388 -s 148
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=9656 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=9224 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=5420 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=5684 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=9636 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=8336 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=9300 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=9864 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=9920 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=9928 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=9908 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=8616 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=6652 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=9212 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --mojo-platform-channel-handle=7112 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=6708 --field-trial-handle=1624,i,9553278064775336458,4098896931110115638,131072 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 68.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.discordapp.com | udp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 8.8.8.8:53 | 9.228.82.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.134.159.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.36.251.142.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 41.110.16.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ip4.seeip.org | udp |
| US | 23.128.64.141:443 | ip4.seeip.org | tcp |
| US | 23.128.64.141:443 | ip4.seeip.org | tcp |
| US | 8.8.8.8:53 | 141.64.128.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ip-api.com | udp |
| US | 208.95.112.1:80 | ip-api.com | tcp |
| US | 8.8.8.8:53 | discord.com | udp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 8.8.8.8:53 | 1.112.95.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.135.159.162.in-addr.arpa | udp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.22.238.8.in-addr.arpa | udp |
| US | 23.128.64.141:443 | ip4.seeip.org | tcp |
| US | 23.128.64.141:443 | ip4.seeip.org | tcp |
| US | 208.95.112.1:80 | ip-api.com | tcp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 8.8.8.8:53 | 126.179.238.8.in-addr.arpa | udp |
| US | 23.128.64.141:443 | ip4.seeip.org | tcp |
| US | 23.128.64.141:443 | ip4.seeip.org | tcp |
| US | 208.95.112.1:80 | ip-api.com | tcp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 162.159.135.232:443 | discord.com | tcp |
| US | 8.8.8.8:53 | 196.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| NL | 216.58.214.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 10.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.virustotal.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| NL | 172.217.168.227:443 | www.recaptcha.net | tcp |
| US | 8.8.8.8:53 | 2.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.236.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.34.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| NL | 142.251.39.99:443 | recaptcha.net | tcp |
| NL | 142.251.39.99:443 | recaptcha.net | udp |
| US | 8.8.8.8:53 | 99.39.251.142.in-addr.arpa | udp |
| NL | 216.58.214.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| NL | 142.250.102.154:443 | stats.g.doubleclick.net | tcp |
| NL | 216.58.214.14:443 | analytics.google.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | 154.102.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.214.58.216.in-addr.arpa | udp |
| NL | 216.58.214.14:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | 152.141.79.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| US | 172.217.168.3:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.48.227:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 3.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| NL | 142.250.179.214:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | 227.48.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | doxbin.com | udp |
| BZ | 190.115.31.91:443 | doxbin.com | tcp |
| BZ | 190.115.31.91:443 | doxbin.com | tcp |
| US | 8.8.8.8:53 | check.ddos-guard.net | udp |
| RU | 185.129.100.100:443 | check.ddos-guard.net | tcp |
| US | 8.8.8.8:53 | 14.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.31.115.190.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.100.129.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | netdna.bootstrapcdn.com | udp |
| US | 8.8.8.8:53 | maxcdn.bootstrapcdn.com | udp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | tcp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | tcp |
| US | 8.8.8.8:53 | 106.208.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.11.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | doxbin.net | udp |
| RU | 185.129.102.21:443 | doxbin.net | tcp |
| RU | 185.129.102.21:443 | doxbin.net | tcp |
| US | 8.8.8.8:53 | 21.102.129.185.in-addr.arpa | udp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 8.8.8.8:53 | js.hcaptcha.com | udp |
| US | 104.16.168.131:443 | js.hcaptcha.com | tcp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| NL | 216.58.214.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 131.168.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | newassets.hcaptcha.com | udp |
| US | 104.16.168.131:443 | newassets.hcaptcha.com | udp |
| US | 8.8.8.8:53 | hcaptcha.com | udp |
| US | 8.8.8.8:53 | www.instagram.com | udp |
| GB | 157.240.240.174:443 | www.instagram.com | tcp |
| GB | 157.240.240.174:443 | www.instagram.com | tcp |
| US | 8.8.8.8:53 | static.cdninstagram.com | udp |
| GB | 157.240.240.174:443 | www.instagram.com | udp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | tcp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | tcp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | tcp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | tcp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | tcp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | tcp |
| US | 192.178.48.227:443 | beacons.gcp.gvt2.com | udp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | udp |
| US | 8.8.8.8:53 | 174.240.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.240.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| NL | 157.240.247.35:443 | www.facebook.com | tcp |
| GB | 157.240.240.63:443 | static.cdninstagram.com | udp |
| US | 8.8.8.8:53 | 35.247.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| NL | 142.251.36.46:443 | clients2.google.com | udp |
| NL | 142.251.36.46:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | 46.36.251.142.in-addr.arpa | udp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 104.16.168.131:443 | hcaptcha.com | udp |
| US | 172.217.168.3:443 | id.google.com | udp |
| NL | 142.250.179.214:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | t0.gstatic.com | udp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| NL | 142.250.179.132:443 | t0.gstatic.com | tcp |
| NL | 142.251.39.100:443 | t2.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | 132.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| NL | 142.251.36.6:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| DE | 172.217.23.202:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 6.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.23.217.172.in-addr.arpa | udp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 192.178.48.227:443 | beacons.gcp.gvt2.com | udp |
| US | 104.16.168.131:443 | hcaptcha.com | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 216.58.208.99:443 | beacons3.gvt2.com | tcp |
| GB | 216.58.208.99:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | 99.208.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.53.48:443 | www.mediafire.com | tcp |
| US | 104.16.53.48:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 172.67.144.62:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 172.67.70.134:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | 48.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.144.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 104.21.93.25:443 | www.ezojs.com | tcp |
| US | 104.21.28.48:443 | privacy.gatekeeperconsent.com | tcp |
| NL | 142.250.179.206:443 | translate.google.com | tcp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 104.16.57.101:443 | static.cloudflareinsights.com | tcp |
| US | 104.19.215.37:443 | cdn.otnolatrnup.com | tcp |
| US | 18.239.63.113:443 | cdn.amplitude.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| US | 18.213.98.197:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | 134.70.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.93.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.28.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.57.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.215.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.63.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.211.227.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 172.64.136.23:443 | go.ezodn.com | tcp |
| US | 172.64.136.23:443 | go.ezodn.com | tcp |
| US | 172.64.136.23:443 | go.ezodn.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| DE | 172.217.23.194:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| NL | 142.250.102.154:443 | stats.g.doubleclick.net | udp |
| US | 52.33.228.249:443 | api.amplitude.com | tcp |
| US | 172.64.136.23:443 | go.ezodn.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 34.107.148.139:443 | prebid.media.net | tcp |
| US | 52.55.204.172:443 | btlr.sharethrough.com | tcp |
| US | 52.55.204.172:443 | btlr.sharethrough.com | tcp |
| US | 52.55.204.172:443 | btlr.sharethrough.com | tcp |
| US | 52.55.204.172:443 | btlr.sharethrough.com | tcp |
| US | 52.55.204.172:443 | btlr.sharethrough.com | tcp |
| DE | 172.217.23.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 197.98.213.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.136.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.148.107.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.204.55.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.228.33.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| NL | 142.250.179.206:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 18.239.84.102:443 | cdn.prod.uidapi.com | tcp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 18.239.18.33:443 | tags.crwdcntrl.net | tcp |
| US | 104.19.215.37:443 | otnolatrnup.com | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 8.8.8.8:53 | 6a9efdc08dcfcf7eb210deeebae43737.safeframe.googlesyndication.com | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 74.119.119.131:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | download1584.mediafire.com | udp |
| US | 199.91.152.84:443 | download1584.mediafire.com | tcp |
| US | 199.91.152.84:443 | download1584.mediafire.com | tcp |
| NL | 142.250.179.161:443 | 6a9efdc08dcfcf7eb210deeebae43737.safeframe.googlesyndication.com | tcp |
| NL | 142.250.179.206:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| NL | 142.251.36.1:443 | lh3.googleusercontent.com | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| DE | 162.19.138.82:443 | id5-sync.com | tcp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 54.86.123.255:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.84.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.18.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.119.119.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.152.91.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | tcp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| CA | 185.80.39.216:443 | dsum-sec.casalemedia.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| NL | 172.217.168.226:443 | cm.g.doubleclick.net | tcp |
| NL | 172.217.168.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | www.biphic.com | udp |
| CA | 185.80.39.216:443 | dsum-sec.casalemedia.com | tcp |
| US | 104.21.12.132:443 | www.biphic.com | tcp |
| US | 104.21.12.132:443 | www.biphic.com | tcp |
| NL | 172.217.168.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| US | 104.21.12.132:80 | www.biphic.com | tcp |
| US | 104.21.12.132:80 | www.biphic.com | tcp |
| US | 8.8.8.8:53 | 226.21.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 255.123.86.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.39.80.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.168.217.172.in-addr.arpa | udp |
| NL | 142.250.179.134:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 172.217.23.194:443 | securepubads.g.doubleclick.net | udp |
| NL | 142.250.179.134:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| NL | 142.250.179.130:443 | googleads4.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| GB | 96.16.109.9:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.12.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| NL | 104.85.0.23:443 | contextual.media.net | tcp |
| US | 8.8.8.8:53 | 130.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.109.16.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.0.85.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| NL | 142.250.179.130:443 | googleads4.g.doubleclick.net | udp |
| NL | 142.251.36.14:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| NL | 142.251.36.14:443 | play.google.com | udp |
| US | 8.28.7.81:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| IE | 67.220.226.232:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| DK | 37.157.2.229:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 52.22.116.225:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| GB | 185.64.190.80:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 232.226.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.7.28.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | us01.z.antigena.com | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 40.76.134.238:443 | us01.z.antigena.com | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| IE | 34.252.246.120:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| US | 34.200.65.202:443 | ups.analytics.yahoo.com | tcp |
| NL | 64.158.223.140:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 104.36.113.107:443 | image2.pubmatic.com | tcp |
| US | 104.36.113.107:443 | image2.pubmatic.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| FR | 185.86.139.103:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 198.148.27.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | 225.116.22.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.246.252.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.134.76.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.65.200.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.113.36.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.139.86.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.27.148.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.technoratimedia.com | udp |
| US | 150.136.156.92:443 | sync.technoratimedia.com | tcp |
| US | 8.8.8.8:53 | 92.156.136.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 8.28.7.84:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 84.7.28.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 192.178.48.227:443 | beacons.gcp.gvt2.com | udp |
| NL | 142.250.179.142:443 | google.com | tcp |
| US | 8.8.8.8:53 | e2c14.gcp.gvt2.com | udp |
| BE | 35.240.1.200:443 | e2c14.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 200.1.240.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | e2c8.gcp.gvt2.com | udp |
| SG | 34.87.124.238:443 | e2c8.gcp.gvt2.com | tcp |
| SG | 34.87.124.238:443 | e2c8.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 238.124.87.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| NL | 72.251.241.196:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 169.197.150.7:443 | match.deepintent.com | tcp |
| US | 8.8.8.8:53 | thrtle.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 3.237.54.168:443 | thrtle.com | tcp |
| FR | 178.250.7.11:443 | dis.criteo.com | tcp |
| US | 192.184.69.239:443 | cms.quantserve.com | tcp |
| US | 8.8.8.8:53 | crb.kargo.com | udp |
| US | 8.8.8.8:53 | widget.us.criteo.com | udp |
| US | 52.4.119.35:443 | crb.kargo.com | tcp |
| US | 74.119.119.150:443 | widget.us.criteo.com | tcp |
| US | 8.8.8.8:53 | 196.241.251.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.150.197.169.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.7.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.54.237.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.bfmio.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 44.207.99.201:443 | sync.bfmio.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 52.204.19.136:443 | sync.ipredictive.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 35.211.178.172:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | rtb.adentifi.com | udp |
| US | 54.160.87.101:443 | rtb.adentifi.com | tcp |
| US | 8.8.8.8:53 | 239.69.184.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.119.119.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.119.4.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.99.207.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pmp.mxptint.net | udp |
| US | 38.98.69.175:443 | pmp.mxptint.net | tcp |
| US | 8.8.8.8:53 | ads.creative-serving.com | udp |
| US | 52.205.242.31:443 | ads.creative-serving.com | tcp |
| US | 8.8.8.8:53 | 136.19.204.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.178.211.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.87.160.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.69.98.38.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.242.205.52.in-addr.arpa | udp |
| RU | 5.42.65.101:48790 | tcp | |
| US | 8.8.8.8:53 | 101.65.42.5.in-addr.arpa | udp |
| DE | 172.217.23.194:443 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 52.55.40.211:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 52.20.81.45:443 | pm.w55c.net | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | beacon.lynx.cognitivlabs.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 34.195.149.193:443 | beacon.lynx.cognitivlabs.com | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | ums.acuityplatform.com | udp |
| US | 69.90.254.78:443 | ums.acuityplatform.com | tcp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | synchroscript.deliveryengine.adswizz.com | udp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| IE | 34.241.113.127:443 | synchroscript.deliveryengine.adswizz.com | tcp |
| US | 35.190.60.146:443 | idsync.rlcdn.com | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 35.190.60.146:443 | idsync.rlcdn.com | udp |
| US | 54.236.146.227:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.40.55.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.81.20.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.149.195.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.60.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.254.90.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.113.241.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pippio.com | udp |
| US | 107.178.254.65:443 | pippio.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 207.198.113.203:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | 227.146.236.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.254.178.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.113.198.207.in-addr.arpa | udp |
| RU | 5.42.65.101:48790 | tcp | |
| RU | 5.42.65.101:48790 | tcp | |
| US | 8.8.8.8:53 | www.virustotal.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| NL | 172.217.168.227:443 | www.recaptcha.net | udp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| NL | 142.251.39.99:443 | recaptcha.net | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 216.239.36.181:443 | analytics.google.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | 181.36.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 35.214.166.164:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | gocm.c.appier.net | udp |
| US | 199.127.204.171:443 | sync.1rx.io | tcp |
| JP | 172.105.232.22:443 | gocm.c.appier.net | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| JP | 172.105.232.22:443 | gocm.c.appier.net | tcp |
| US | 8.8.8.8:53 | mweb.ck.inmobi.com | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | px.owneriq.net | udp |
| US | 8.8.8.8:53 | bpi.rtactivate.com | udp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 20.85.134.6:443 | mweb.ck.inmobi.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| JP | 23.207.104.228:443 | px.owneriq.net | tcp |
| US | 44.205.159.6:443 | i.liadm.com | tcp |
| US | 100.25.123.161:443 | bpi.rtactivate.com | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 8.8.8.8:53 | crt.sectigo.com | udp |
| US | 104.18.15.101:80 | crt.sectigo.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 18.209.38.85:443 | sync.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 164.166.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.204.127.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.232.105.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.104.207.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.86.88.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.134.85.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.123.25.100.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.159.205.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.14.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | i6.liadm.com | udp |
| US | 8.8.8.8:53 | io.narrative.io | udp |
| US | 54.84.130.179:443 | i6.liadm.com | tcp |
| US | 34.204.212.37:443 | io.narrative.io | tcp |
| US | 8.8.8.8:53 | ads.playground.xyz | udp |
| US | 34.102.253.54:443 | ads.playground.xyz | tcp |
| US | 8.8.8.8:53 | 85.38.209.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.130.84.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.212.204.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| NL | 185.89.210.153:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | 54.253.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.210.89.185.in-addr.arpa | udp |
| NL | 142.251.36.14:443 | play.google.com | udp |
| RU | 185.129.102.21:443 | doxbin.net | tcp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 104.16.168.131:443 | hcaptcha.com | udp |
| DE | 172.217.23.194:443 | ade.googlesyndication.com | udp |
| US | 192.178.48.227:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | a.audrte.com | udp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 54.147.123.103:443 | a.audrte.com | tcp |
| DE | 3.64.28.80:443 | aa.agkn.com | tcp |
| US | 8.8.8.8:53 | 80.28.64.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | uipus.semasio.net | udp |
| US | 50.57.31.206:443 | uipus.semasio.net | tcp |
| NL | 172.217.168.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | dmp.adform.net | udp |
| DK | 37.157.5.84:443 | dmp.adform.net | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| CA | 51.222.80.231:443 | pixel.onaudience.com | tcp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.31.57.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.5.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| US | 172.67.13.182:443 | spl.zeotap.com | tcp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | 231.80.222.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 182.13.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api2.hcaptcha.com | udp |
| NL | 142.251.36.14:443 | play.google.com | udp |
| US | 216.239.36.181:443 | analytics.google.com | udp |
Files
\??\pipe\crashpad_2968_IBMRBGWLQICWHSZA
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\Downloads\Synapse_X.exe
| MD5 | d7dba72cb09617b7414a247c494e64ff |
| SHA1 | f3b6b2f1d50d5a6609707c74bddc97c36943db4a |
| SHA256 | 52b547ee6c94c7b64bca6b264763371bce262ef9cc09f0ec0d0f223457d3097c |
| SHA512 | 0f46ec56195ad65aedb5a6b53a3482e1c97b9d07c2aba78e68a6d4f8c12e6c7629c5f5f2bee733e34b86300b001b88039bcc85cecbd612ea8ed4f7c695c049e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 48deebd9b9b6fa7c320d824ddccc4840 |
| SHA1 | 206574c7d4c99f70a7c4fb38b4d083727bc9b39b |
| SHA256 | cd858109f1d30635f4890f0cb2eaa6cd7556b40ba68ef66a1c74b3f3201819d7 |
| SHA512 | 54824fca71c6ae8e26204db1c38d04970025b99ca2cee7179a9098bc9b745d93167d64c3894f8f88fc597f2078f4c9d5122efb6bdf6aab0c10f616435fe6a368 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c714358dcc33ba889b6e5837dbc7700a |
| SHA1 | 5824cd049818e065f32cce771ab7d4184983d259 |
| SHA256 | 1bb4d3203b9398209c68acc709ea6fd07106d4487e16368756e6b14832e0ed45 |
| SHA512 | e111e9bd1023360bd7f23ad8f226161dab63f491eea03e1adf0010f83b72b1e439ef1c50aff80cb34e1a86871ad8add52ac1024b69dc1cc3cd5a56c521cff8e8 |
C:\Users\Admin\Downloads\Synapse_X.exe
| MD5 | d7dba72cb09617b7414a247c494e64ff |
| SHA1 | f3b6b2f1d50d5a6609707c74bddc97c36943db4a |
| SHA256 | 52b547ee6c94c7b64bca6b264763371bce262ef9cc09f0ec0d0f223457d3097c |
| SHA512 | 0f46ec56195ad65aedb5a6b53a3482e1c97b9d07c2aba78e68a6d4f8c12e6c7629c5f5f2bee733e34b86300b001b88039bcc85cecbd612ea8ed4f7c695c049e5 |
C:\Users\Admin\Downloads\Synapse_X.exe
| MD5 | d7dba72cb09617b7414a247c494e64ff |
| SHA1 | f3b6b2f1d50d5a6609707c74bddc97c36943db4a |
| SHA256 | 52b547ee6c94c7b64bca6b264763371bce262ef9cc09f0ec0d0f223457d3097c |
| SHA512 | 0f46ec56195ad65aedb5a6b53a3482e1c97b9d07c2aba78e68a6d4f8c12e6c7629c5f5f2bee733e34b86300b001b88039bcc85cecbd612ea8ed4f7c695c049e5 |
memory/3716-46-0x00000000002A0000-0x00000000002CC000-memory.dmp
memory/3716-47-0x00007FFE48880000-0x00007FFE49341000-memory.dmp
memory/3716-48-0x000000001AF50000-0x000000001AF60000-memory.dmp
memory/3716-56-0x00007FFE48880000-0x00007FFE49341000-memory.dmp
memory/3468-57-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-58-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-59-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-64-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-63-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-65-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-68-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-67-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-69-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
memory/3468-66-0x000001F9D7FA0000-0x000001F9D7FA1000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 8597fd7c0fe309a359869f5ab8d1d8da |
| SHA1 | 4991094b9e581ab82f19883ec82529cf8cee6077 |
| SHA256 | f2a711037f9146062d0b5115eb4aebf0f41fd1afd33c63a48c7f226fe3e2175c |
| SHA512 | cd4ae3ba95ba014519987f706a4a2b011b3f91e8220046455ecb7c3e9b19facde330c19bbc78c3a059e8575fa1b1b8316dd5bf32ea25b6cba9635861d1ffb732 |
C:\Users\Admin\Downloads\Synapse_X.exe
| MD5 | d7dba72cb09617b7414a247c494e64ff |
| SHA1 | f3b6b2f1d50d5a6609707c74bddc97c36943db4a |
| SHA256 | 52b547ee6c94c7b64bca6b264763371bce262ef9cc09f0ec0d0f223457d3097c |
| SHA512 | 0f46ec56195ad65aedb5a6b53a3482e1c97b9d07c2aba78e68a6d4f8c12e6c7629c5f5f2bee733e34b86300b001b88039bcc85cecbd612ea8ed4f7c695c049e5 |
memory/1868-76-0x00007FFE47C70000-0x00007FFE48731000-memory.dmp
memory/1868-77-0x000000001B2B0000-0x000000001B2C0000-memory.dmp
memory/1868-81-0x00007FFE47C70000-0x00007FFE48731000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 75f78e9950f328bbb1f4e080f183e999 |
| SHA1 | 2fde78f3bd94134e767cbb02be13994579c8a255 |
| SHA256 | 14f119a90555882755e9493e5ecce7c67672715014c1851db4b45923bde4764a |
| SHA512 | 3f9e582fb732a853e0f231145565ea4c76bc493f2a66522c90be8cb283eec63866582241986892fdda66a12f2c445666353a5cb4e4e7d88685721dfbe726f754 |
C:\Users\Admin\Downloads\Synapse_X.exe
| MD5 | d7dba72cb09617b7414a247c494e64ff |
| SHA1 | f3b6b2f1d50d5a6609707c74bddc97c36943db4a |
| SHA256 | 52b547ee6c94c7b64bca6b264763371bce262ef9cc09f0ec0d0f223457d3097c |
| SHA512 | 0f46ec56195ad65aedb5a6b53a3482e1c97b9d07c2aba78e68a6d4f8c12e6c7629c5f5f2bee733e34b86300b001b88039bcc85cecbd612ea8ed4f7c695c049e5 |
memory/1360-111-0x00007FFE47C70000-0x00007FFE48731000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\login.db
| MD5 | 02d2c46697e3714e49f46b680b9a6b83 |
| SHA1 | 84f98b56d49f01e9b6b76a4e21accf64fd319140 |
| SHA256 | 522cad95d3fa6ebb3274709b8d09bbb1ca37389d0a924cd29e934a75aa04c6c9 |
| SHA512 | 60348a145bfc71b1e07cb35fa79ab5ff472a3d0a557741ea2d39b3772bc395b86e261bd616f65307ae0d997294e49b5548d32f11e86ef3e2704959ca63da8aac |
memory/1360-117-0x00007FFE47C70000-0x00007FFE48731000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d
| MD5 | 497835d373e12af4cd257487dd5d3612 |
| SHA1 | 425950e9427926ac0aa7940c4a18a44ab59df47a |
| SHA256 | e11ff08dff0a884b311133e2469146b2a54319cf60094511e098df0c3677c4e0 |
| SHA512 | aa05611f56185e02289345f9c286ca98f96d5e1d24c8d152605e866e60013dc2945fc60f826e81459003ca9c2b7d439c0f6fdd173cbee57cd751ee51b18d2bf7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3b4eea66ec4efe9346b77b45ed2f7964 |
| SHA1 | 4714ad8f542d31f2d863e58bd04f304923702e1f |
| SHA256 | b01426a98f87e0adb7540b0d0780a96e49ad60fbc30724a96029932717e1d500 |
| SHA512 | 05478a3cfbd6360b5f569f1333118022211f2f3bb478eeb1ecfb5960dd3c192c71df95862787fdd24a96cea69c0ea14252c641ef7fddc56ff0c46bd4b4fa9dd3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 1e891d58c5005a2777cbafa2dcec701d |
| SHA1 | 75eec1bc92ae820c6c9a630a240f12c13e087d92 |
| SHA256 | c59cd876fb496441af19a58958dafba77cffd2edd9bb4932b7a543a24d1154f7 |
| SHA512 | 759a5a36db8d8f1c6da96bf6f543f5632079d453c2b1634d0da0d3731dcefa35c94022527fbe13032e50fea239c8567659afdf18265e60f82ed66d34d1c1b545 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 84a19aacf1460ab80a528860a8d8b7a4 |
| SHA1 | ee68033c98770fcfe1cbdc09f6c955891e1d6bef |
| SHA256 | 7bc6fcbf4b11935a9c9e436c141559a8456dfe99ca5a3544e334ae362693d16d |
| SHA512 | a287f18f7e240fbe803974a507c3690693fefe6b584ccf9a091324df42d0c4d046d11a4aa56618fcb0bae23a1ce8023eabc86c40c346b2d4258ee846efe417ac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 765ac6c615e53a2195f968b3b0e18201 |
| SHA1 | 091a9a3e8d3b6b4769229850e6516adf7c397e38 |
| SHA256 | 69ce6d7ae3b8dd052f86bfe79e499c842cd60764d8a074c6a985038e75e70c4b |
| SHA512 | f3b1fbfac39b0021b07a48254951d9c62bfbafeb92e5afadeec994f18735cc550a5b9ee176bcec7e9d18e08db57b6e71fe1b612021cb4d67a8596675b0bda447 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe591b4e.TMP
| MD5 | 48692b83bac880026914f5813e201490 |
| SHA1 | dcdabac95a562896c196dbeaee8d129ec1bbecfe |
| SHA256 | 44c192a5ba379b8ca17627112550162237845f694afef5f297341866d63dc817 |
| SHA512 | 688256045e5d760fc5bbc977f88d76f43cbdd7cd27daa27536aa4041934af70b3fc5db696167a11b6e071bab41f86a4a395f5482d96ca38d66e5dbf15cec7534 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | a1e27e51bde922edf85566201bceaf2f |
| SHA1 | 7741cb3ec085750cd7d1d8417d9b9a6e216f40da |
| SHA256 | 4a6dd2f9893e7dae73dc3e3114aaeaa0cc9b8eedf2f55cf15c4a36a5f43c12e8 |
| SHA512 | 5190f8d909e85df0f561de2ff2fe57568c0e46088fbae4842029099307d28863b3920ad966997f3294fbe78e834e4451034683a40c11ae439cca176061846a16 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 07d28db88db3517335e94990549f2b58 |
| SHA1 | 36f6e94b685b03d6e1d59ab52f8acf92a7ed7209 |
| SHA256 | 4cfa8c633ad9e68a2ac4658c533a75f1e08dc3ab900d294e6498712268d11f4a |
| SHA512 | 0055982539f646ce49596280a969fc8f0ba787d93f7d265bd5c662aaa7c749b547f8b19afb1a2b17f6e7bad449a5d40558f49a6c1344d957b2bdda9ecf9ea1b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | d9b0f6f8392b272671515cf35de14a2a |
| SHA1 | 8526c32fc0a71bd0f0179b12d0dbcaaa1cd0206d |
| SHA256 | c0e0f8d381bb2967ecf7eaa768d1608ad4564a72a59d5ea7e174b95e9fbbc6a4 |
| SHA512 | 1a9674140acc56db01ada1fd9e151fe95e93ab46e0136e814d5debb54207ead0963e6a4dc8d2d4521aa027c38cfaeb541d3f96f5f923e26b1db0058bb6167a37 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe59355e.TMP
| MD5 | 01c8959647ddb3ca40f0551619ef1925 |
| SHA1 | 81b5ff9f3051b6025271d6c913bc9ef5bfab870e |
| SHA256 | 1519bfa27679b856c8af4ab0ab2314762ba5200184754976bba0464211ee136e |
| SHA512 | df556eab0e1c1aaaa6f7f28f464f12b6b621f1882efb1efbf3f74aed5d1ca77ba30c18631839e735203ddc7e3eab18c2cca232add0e1b025fd1ee01097f6f207 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 222d037ae15614df9896fef9e91edb2f |
| SHA1 | d6fb907d860565b25f68bf6d16bb6a73ba9d423e |
| SHA256 | 41b7ea8e93709ed6043014a43957e6f7762b7335b33ba608ea57220dc490f4b7 |
| SHA512 | b3f553983648cfdd6b5f75e5a36bd35003aa002979f0e4d6cb6be6481596eb174fd98acc238497695e913e38410ad8621ba5439b54de491bb0b7e2c42ed0b9b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 8c829e9973338c01a83bb29f16f25159 |
| SHA1 | 365e5e52d91912e5febe365750abfe8b0e205c1e |
| SHA256 | 946b6c0560e97b2a9dce6a04dda83665cd53ef7916063fbdc52eb7c0533757f5 |
| SHA512 | 077acb04787e0699e6e46751c0db49a20d46c714063203ce350b9ee4b81f7717a1670d90dfca89e103da258ff7ac05edf6fe71227a157be26c071e33dd467ca6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 15c2f0f28d6564510b34ed0f375dbe5e |
| SHA1 | 9bb371c68c0ee077620bbf0bf8ad6a85c1d854e4 |
| SHA256 | ddc73f96915b7727c5d041ddf4f0c63850d04d7eb00a46170123dd144efc161d |
| SHA512 | 1476a5bd2107c7c0a9005ebade7bff9b97fdc81301212c911741a927ef1572c7f79b485b85284db322fab3b946c60b8935cd99e02708a2c193e98c91e94604ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4ae01b9f1c9f83b82cec4db8e2eb02aa |
| SHA1 | 3495f3e7945fc0f487b44cf236cb8da50dfc1d1c |
| SHA256 | aace1cdcb881eae0d7a77f521e0d62930b73fd06f52d27a50932f14586928d86 |
| SHA512 | c19ba4d3c1f78c28540c6281415613f7584447b803a57060cafc3f44193b69c874fd8f9968d7add66493321bebc09dbd34c65c7fef4a38f9deb4ba874e212dfd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | f70e5a856dcd02a78003223ef0e73580 |
| SHA1 | fcbf6000fea19384fed8e824ee7c62d3ccbb7973 |
| SHA256 | 2d9d27a4f66486350be4fcb56cf9d093ba05fb6ad94250b4c7a5f9fcce9acdf2 |
| SHA512 | 0d209cdebfa9df31a96e436b3d2cf25e2c0841e5d970bb3d6fa678f02ccfe8e19e788b0d08896de63ede8f55229bdc10da0e5dc368641800e1ecaa0726720460 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | af6e1dd240e8a39558964501bba3fbdc |
| SHA1 | a05ed3f4b2e1d89de4e7b127f9677b19ca683541 |
| SHA256 | 275dc730a5f1c83df53986ea9f40ce1b64b4eeaf850f6e27b737987d50bcebaa |
| SHA512 | bd8ba66a528c962211d4732f9d1f908f8074bf2707778e0942bd2c729c674f1e20d2c1f136411d18d5654f8119f55034b6f1c9ebc201133c19f9f87df47a9b9b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 65d0c141206f0986133436c346499cf7 |
| SHA1 | 29672fabb087b99f55467df651e3b65b097e5ef4 |
| SHA256 | f3532393f5cbea66ada354510cc37ee5ebf89dd671f77f48f1a907ca8c0af576 |
| SHA512 | cfa58dbe3af0a41330af78919bedc0dd52c1b09f18f726d1196817dc23f53d3c177b94851cc0e5aceef47f18eb50f0dcb951cef34daded22927494cfae1f74a0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2c15bece60b7b6753d52eb99261194e7 |
| SHA1 | 9235bf8a5df254d12ecf504f94de4384ed7e6157 |
| SHA256 | 206eb9678d946a0d11b4a760df390c88f423ea7d4b4f0fa903951d0fde423bf9 |
| SHA512 | ca94613248859fe4c7ffccea89ccac725becae51973a4b60788759796bcd3bfb7c8432c3b041ae80f24a0cc691f17ce59262adb4036a94f08fc541b572f647e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033
| MD5 | 370dd60018d4e811df6769ae8f38afc3 |
| SHA1 | 82944c30cb821a48f3b6b6a4575b37e4fc018437 |
| SHA256 | 28ec3791a40a46cb2bdb12af8a8224823d5d708f67104b67606e29d52ae108da |
| SHA512 | d1b855f34bd178df4575b4eae83c4cd660570fea128ba89a608bf447dcf6d653e2039fc5eb033826894894bdb7df50a3eeeb1178682a8e629f70327b37871ab7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032
| MD5 | 446d1de40957fb8caef6fd4810e483d2 |
| SHA1 | b06fd17295dafa6930a2ba76b5770c44bcb3e92d |
| SHA256 | b8e73f490d10d09100c7cd6d6e9ce44ed80a74788aaae759800c4e6dfb94af16 |
| SHA512 | 9e6c78ecc37cfe4abb0086a1c45cfb33bae7e4c38ac6e834f5b53042046034ac76fee3993a8e218dea0e341fac0bb140159b58fbe7c16d7adacfc33b1f959532 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | cea48ee6f26896c26e8c50cfcfc5f83b |
| SHA1 | ca76c4e501badf9ed57e2ebaf113f5004392f71a |
| SHA256 | 2749282465851c3673c4580bbe09a9cd6c46f84c79ee968bc1e1eeac89ee7a0d |
| SHA512 | fd5d760cc399d7576441da354192595ad877b39f8e0a6e85c998fe75bc05fa670f1356ea565906068d329dfb892109ed9bf01a543b4c69e8d5d22fb76ec90c1c |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 218db054668708ad50d093922393d7fe |
| SHA1 | 91b146ea697f8c166b96c38c77a0f5c2ca9aa1aa |
| SHA256 | 826b80c194221d0481279a92658895b6db954bcdff9e51994fda82c69a978981 |
| SHA512 | 85836f3f41f9564b3a39164b440717b3e730f77c6e6174243a174e70a9bc4e6422960a85d9e7e53363428046f1041cec507ca46e29c3947ace37e013886b4fcf |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 9fe43717c62756d68025d0f83eef7207 |
| SHA1 | adc0c24cd563ad964a36d7c0aa52d70bbd86db79 |
| SHA256 | bc37503a57fe1f46ed529dd0d96b66a0ccefba6493238a66f729554875f48a75 |
| SHA512 | dfb0c9e6d80a63a5142a8d678b837c7d540804dc6d328fa1f812d1ebe22edf8c16966368b0596642e974539b17ebc5caab6bb4c8ff5dc7a55ff993ba21cc872a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3316c8c64d5d01ecd1f574391f7c6a84 |
| SHA1 | 6aa73178fa64cab4b0e36d227625a64dce0be5b1 |
| SHA256 | 101822b7f02e6a566622c7168b2c98605052e5e1c379f37ce00172a15d94f2d4 |
| SHA512 | 33815a56a85830d3825eb1bfcc45cef5071dd8f490d17220761171600403a0223e37e1d68df5d5b49e2d9e718f75e797143a0cb1595fb18c48e51019ffabaff4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8e12510ce008bb39e05a8871dec8ecbd |
| SHA1 | ce4def7c19d99efa6f96d010d7b22aa5336266ae |
| SHA256 | 40ba70c098a5f8e9d9a46e60697bbe49bc4afa7e92dbb32210a500a587b5a1a7 |
| SHA512 | 5120d60f907d79988831f99ff7484df1bdcbe62ef3d985055031dd0cc368d027c891e21f7b455d8aab7cfab8b562cfa62e4b9ba19db363d40ab9a4909aea6c3b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 00fc0b6df2d046666dde84f2649caa5a |
| SHA1 | 6cb48e53dc16ffc2db915a1ceebdfd893775c783 |
| SHA256 | 7fb706306d76b6b19b6193746b5106eb1e93d6e314a526ec9286799ae7ec8f0c |
| SHA512 | 840f3cd55a1953bf6cd2ae999c9c990a6239d533c910529314d64a81c6827d330201ec1bee7659724799e29a69ca1284ddfa504896b272e35357e7ccd439e453 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | db61d96a0b122deeb69ad19681c0a504 |
| SHA1 | cced9bb141336159872859d4ef81041aeb429c15 |
| SHA256 | b9a51e09a181aa7a7f972fa6c73585942b0ad82e62049ee4f6796c75919b5c43 |
| SHA512 | 75df7d86dd3190383092a38394484daea76f741a355e4888e0771344c2bb09ec597d16ca7c848105371f0f5cced00718c9d08332b7a8d78aabed9d7a61be6f92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | f4d0622d3001376efdc6e9dd4244df5b |
| SHA1 | beaee8651d57d8d3fc3c963855d6e27d385d6243 |
| SHA256 | 973ca24aae24151064494e73658930d1293d1ffd4486880a7be4dba12f9f6a78 |
| SHA512 | ac284bb56684853331813c3804929685eca1515d2996b9391033c2c27120f71f2c3ddcedd631ad801f313df7b8071f60ed2b6233b69c6f7303fb84b9620e7113 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 56d0c15fb491daa64e1f619aedfa3c0d |
| SHA1 | 43def96bbefda46c1b9a03816b182530af64fc2c |
| SHA256 | 83bc98c75598f6d855c9a048701a50bef47beebf7731d7b26332583366471349 |
| SHA512 | 34fc1f867471f87370ef246b712a3f2c5440811160bc54c72508fdb0732ba08295260318a60d62925b82de2a431b5ff37bc90d79e058f69e10196d0bbbfc4d0a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e6dbbe44c123b299138d397e64b29a73 |
| SHA1 | bc7408e67431c5a7b992792406cd62b54da564e8 |
| SHA256 | 93014fcdd40d4b08143f066a22430f87969506865b744613671f16f3c6bf3e9b |
| SHA512 | 1420ed2f02c00efb7b0f6301ea4e3fb78b7fd21dd63ae1957b74cd2d554588564d061e77c1f06d0eceb2cff1c8a74516462d21bc1d36bb771ae52cb7cc7b3fdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1cadc21fb881f9ce10233ad8bf08ee15 |
| SHA1 | 4c9c5f03eb569bc3c2f6a154cb5d9d1e4559cb85 |
| SHA256 | 289435611da580d251729deaa1fcc3b41ecee4b57a0ff8a18bf671ae3b3c2ae9 |
| SHA512 | 3e9885b8cc84839ca08e467173bc5b87bb331945fbaad9017f2df8681959ad8bab6417254dfb734212520092bfb78527b2888b99b89cfb6ba8095a3091412eff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7910a2a8775feb25c465c10ce4faf146 |
| SHA1 | 0a36fdc0f656ff79b916aea4555304c16fe3962d |
| SHA256 | 5e7551fa2ed4b82cd5d2f4068398b753bf12e41df7590bb4efae3a08e66fd961 |
| SHA512 | bb44e96233b4e082fb429056b9e3a0cac8b907d4ae15dfa9f268962c8d69c90c83b5c505a7701235914479bf1af9537031c579e7c366cbc3dab06258301b9463 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000039
| MD5 | 3ef0d4bfe3594181e1089aa62b2ddbdc |
| SHA1 | 3b0b3a37c118a09117942911068a387dc703c8c6 |
| SHA256 | b9b2ccf35e92b8442b283c94a768527d13639f9a73ac8100137c1a1ab8c212fa |
| SHA512 | 55f853626a9ff01945a603fe1693802b9496e4eea7d14d2033106a8f06d49f959a45b16bc67d6d623645ed16b5d1197e9841c0aa6f247331eed2f1ae0bccf059 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000038
| MD5 | 8fd34a1dc7ec7e2937a376a6e4d5e722 |
| SHA1 | b380f5c2d6a9f921131358aa4b4e54d1232e9870 |
| SHA256 | 2c03dc5dde61b134d69d2200ccd620910e29b480a923596d70e6b7086723fae8 |
| SHA512 | 529dfc185870cd9521d37215fa386b33f866eafe52ad059d0d0d17c7c414833549861c94ced4b825009cf02911adc727146866f794a803f3921fe0d07f7f7261 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 24091942ae4166a03edec1d10652e137 |
| SHA1 | f48018fc5cb71c85430ac7baa03eed6b4787fceb |
| SHA256 | dbe93d8ea78a9c1f9b3029e37d031880508a2b83285b9fbb2dcd3c684077f8f1 |
| SHA512 | 6b7fb41f8af9acd2c336aaf49ae8ba998e624013604128bd0c04b2e0029f38f8d31924a39d29dd873227823824b6d29cf8d1df200149b6de20de7af163f29f5d |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | b0ff18d691f09d56e971c9f0c114f28b |
| SHA1 | 7b0600b597eded22b347f33456b547763dc73a68 |
| SHA256 | a64e33c9e9e254720e0cfd2fe43da46ae1b5863589a86d1047a261a798587c31 |
| SHA512 | fa794a3277ef7faf081a8981043a02b61d25f931e9886c2d7ae481da17c3e9b5d830215096ff2829e06a48fe05619c86058c59eb0dea433e914260dbb37a70e0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 427093f86d1f1063691ca4af1b4d223d |
| SHA1 | f1801bf60db5c82679c10da05d53007285b80cff |
| SHA256 | b5cb6101b101cda7dc16bf22054be7ec38b69b3e5f321c1b3caf330c5407a876 |
| SHA512 | 7a9f868ce14d72db92e5663b8ac31d372749490cf3b2002b8dd2cf46ad13921c69827c69fd85b6961fe853fef0c1fd7270d42b25885f78e30c29a941c38b54a9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | 923a543cc619ea568f91b723d9fb1ef0 |
| SHA1 | 6f4ade25559645c741d7327c6e16521e43d7e1f9 |
| SHA256 | bf7344209edb1be5a2886c425cf6334a102d76cbea1471fd50171e2ee92877cd |
| SHA512 | a4153751761cd67465374828b0514d7773b8c4ed37779d1ecfd4f19be4faa171585c8ee0b4db59b556399d5d2b9809ba87e04d4715e9d090e1f488d02219d555 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 85548f3142ae898ed84518ebd294b93d |
| SHA1 | a1de39b9aa88ceac588d8ca74901014eb2e15f54 |
| SHA256 | 17381b5d27642e54713a8ccf45eda9930e5628dde9fa5d434183df915752e82c |
| SHA512 | b35e0a20639127568e9b9cfe4996799b8690f4196602815109a21d26b04625fb466cb12d280522682a91413389e2d2493908c1ab7132cc6ebe8bcbb38de4fb29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | 0c29b1a08e7f426619b2df2851922b56 |
| SHA1 | 7a3463f83bd7c6940beb76b8597115500ff140b4 |
| SHA256 | 45532059cce4f8a5fc81c2d3fcf20b9b4b00fd0ff2c83ef1c4ea6e61239d002b |
| SHA512 | 4d37e66897c351bf8e283ce362726db293d679390970dcbddf2b949cf052db343a5ea052422f86a0928b28db73bfc66f209449f5ebd9001699ca324337c175f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | c1ce583dd59b1dd3041b9afb1d9ce446 |
| SHA1 | 12e0351a201784773be5d0d7e18acacb1d8d418b |
| SHA256 | 3e16c74410a02184119f25e99150a98a9f0aa98776f9b0aada073d24ba830658 |
| SHA512 | b95386e898c9a9844d57e995d9b1c308b48e410b259e007655b297fce53598c665490efdc029c2bf7e34a0137638b57d6c32ac34f272a95c898924cb62b03914 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | e6b53809b61103227b18cebb14fc4b78 |
| SHA1 | 1da12ed84d56b0b1a6abf19274c70f3a9c55ed37 |
| SHA256 | e0706ddda79ebbc36ca014c0ce5eed8502b39ae030a36fddc12386ede6063e60 |
| SHA512 | 1efb84b5913e51fd394fa2e317839e6a76f7333302ddbe97592ece61621b5e9603aeaab0866a7c7f550c9868bf059e01074126ba3926ee973239e005f46347b5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | d574939016c1b0511053c934958d9a25 |
| SHA1 | 1ebb35cd6af10fce71dcd4778c9bbcd9822ef999 |
| SHA256 | ad0ad0fb63aff674e004faa8c826d6523a79532133fc07eb9a2ee5a1d367ec66 |
| SHA512 | 48758079cd42e05da63126f5119d15a4f79520095d062b67490b637df8fc12d567eaa2ec9c083d747093fbefedc651fbb3a2bc4f2fbbab9b5a09379626a40ceb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5c2003.TMP
| MD5 | b09005f1d0c0b01f8fc965b8cf49d114 |
| SHA1 | 806829082ede761ead5158d4b70dd0c285e913e1 |
| SHA256 | 60686cd8f81c63cc1a704f996acc69a1ba862eb1558057632f6c0dfd7b62d951 |
| SHA512 | a136501a18cac0233df007862dcb57dd3b8f674ed5c0c0a7cbe37098e4620a708f4af3cdd60c9fcae1542ee63fe0e1563c80b7911c4cc5745cf426abf7aa7c1e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | b6f48def1ad0dc727f479ce8ffec8a6b |
| SHA1 | 488a3d7c23f20d7c90d9cd3010d31836d67b4028 |
| SHA256 | 88b9c140ca5cdbc682401e0cd009ef606ef17510c596d69c12b629f720543aec |
| SHA512 | ff657c31fa12c36894ac6002bbc33c3263739b9727aa255687ff9299087d47b2a6b390cd0bb6ce588b992c245e497f5e9178de97bec3c72a2d696160dd9f3a9a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | ab440598dbd63acd7f2306e4ee1e0aa7 |
| SHA1 | ae7eaad7a62453333c10e3fed1baa43a8ba5e51e |
| SHA256 | 6666124d97e2cceeaf270ee3a0a7a60829bb5bc8b818e9b1fed674ec2b3791ed |
| SHA512 | 8c1eeb5eacba9c6b9641c7cd2e36321064c856ba4b371ddd83532e9b718815cdc38d48da67e520c2d027654e0d8c8e37396f704ad3164d500c2bf0a38b10adac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9a6200129cb6b799a227b9e4aa3d2e00 |
| SHA1 | 55f28e89c0cffce304bbe0c98eeec5e380d259cc |
| SHA256 | 00886d83469dded4ff3fc6da061080b82baef67e838172f0fb9846957b1aa6a5 |
| SHA512 | 7b321eb6cd153f61a4ac2d4a13988c36db8e255231f877ff8667f9b916f735b30ba1116caa255d5a7a0aa6bea0fe2ea544fb3831eceab9547c3c9d792c020d12 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5c0c7c2858484753a4f8a6875eb7503f |
| SHA1 | cc3d8aa32273479be7f53bee91afe4f76134eae3 |
| SHA256 | d5d923875bcf016bf900c3d9eecc16bd00cb3abe2abaabd301231ad5d9d216ab |
| SHA512 | 083b5174d4a6b15af8424c2403c66a40995b59e7243f216f4c1c42f580612e0322a7437786f7e8c3a81bf144b2ccc189bf80adfbf6f1de9bcd0195763833a1ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d98489011687da83f29a6f1577d99716 |
| SHA1 | b84d43fbd51bb1e1b3afee6888e09a225e27bec8 |
| SHA256 | 57ed5df203d8330fc2726fd9489c0fdc8c29fb0919de01a239cb53afd173e257 |
| SHA512 | 6aeea9d814bb14af92ca754ad58fb4895863b3f4c539d2c9aff663f317b7ad001f02a7b8d82e3c7c2c2d31e13ea4e2bd177a0ba1bae9325e0a4c416722b9cd0e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\75043a533b904257_0
| MD5 | df360265fd252d6fc7f07dd68854ec30 |
| SHA1 | b2224cc24d67046d0da4bc3506e21874e09f6ce1 |
| SHA256 | 962648b8ee7013da3dfaf6aa1befe9820ed9c71f7f177401b7d0ae54a423fa03 |
| SHA512 | 025ce7c0227aba3dcbb03ffcd9b18f22b17ebbe9415ce0146121ae9e0abe5356af7797eb2c863857a5ccd347352e2d9a2f485105caab0213a36598390cd2c040 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2bf89d09f74f0816_0
| MD5 | eda87212b19f4374d66faeb432bb853e |
| SHA1 | 91ac3b8e8c4e3fb32eef4444d8c4beef6d08bf5a |
| SHA256 | ccc99f83b163833edfad8ff0b0bf515ddfe65bb2bf0d36d71c6217edf6eaa722 |
| SHA512 | 8a53afd24bbaa6130d7243148d93c21ec09353d2f19f21f285e6fadda46d83b64fd40e4aabd05ef86e3942087a4a1e134f448a076e0893799fdc6ee16834dc4b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b
| MD5 | 4abc02521ce7b72add9774cab95f0925 |
| SHA1 | da4b9c24d74fc280d599c1b6b8efdbbdee7e6e77 |
| SHA256 | 5dd2b80cf29ed0d76702bf3241e57f328642c04ff692284032364757c2ca1b32 |
| SHA512 | b0193732edc1c05f3c4c7c81b5bef7f71b7382d1d9b574218d5f4972b779da8064c4ecebad06608b93a20cc0b10a02e78eeeed0288107b4b8e9742b0b12cb906 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003c
| MD5 | 4e1549f6f95513d7842eb6a7561ba2f8 |
| SHA1 | 189a139953e9bb80e8e43b86d83700e2ade53347 |
| SHA256 | a413ace3792f3d2ab46e38cd10a07cbe9842f4da2c2064c665bf88e776d86dce |
| SHA512 | 87bd8c04fac514dfb14f95ccc4c02e90a738acd735fa74c135a9701f70b6b75bba26c4a0d106b692c97ba66af1e6b0d1ca720268e779239fb7ff2ff7a3e72544 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 2dafb4b9f2699f2225ddf0a4a258f81e |
| SHA1 | 7f3b29f6ba3a840123952c2a6ea22a3f789afaf0 |
| SHA256 | cbc0241de7e0c32e18e6bff466001d6f23d9d8886d2da23beb4f287c32655298 |
| SHA512 | 77498781d99c2e8297d44763c9f81d69aa0813cbf7165bbff29839f72da2ad0cd704e2aca73cafa0ab719469718d129cc1aed603e54e89392e63cc7a0906f350 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 691ca08765fbe312adcf26ad5295f442 |
| SHA1 | 4ea6a8a4d9bbc14c6f0124db82f7ad952482c7e3 |
| SHA256 | 0f1fab0490751576d1f77f4094c7675c8ee08c5aac1e6c20f1bf9a2d812de3df |
| SHA512 | 4e9ff98b925a04950e0eef7df4586170e9f7e064a4050fb7b93f034ce1d1cf3c1272afcf13fb5fd6b188e7d5b47196fbf1cdd8aab10ee8612ab26a6131df399d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1608356a8da0edf175dd1c1e8eca56e8 |
| SHA1 | e3de2c5f2674bccf6846a484cbeded80181d5846 |
| SHA256 | b056e875fbf44054baa1a19c4ebb68a5e13724f288d9f08a66c99bc80a7cd5b3 |
| SHA512 | 8e8b2e310ae3d73583450719ac235b071b302372bf9961dcf318d19e2217517bdb1bb6bd08c51dce8d2dabe55cc75a4a79d2cb3777e46016e1ce6715b1d4118f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 65a4355873daf006a302e9baf1b29197 |
| SHA1 | 636605af6a09827b9fd4104e3ab58e1f7dd0a40c |
| SHA256 | 15aefaf874d08bcd8ba4de0adc7c6cb73825164a3d2dad25910ed2383fa1b2b9 |
| SHA512 | 2b8c923a9715cb792a9cb41e37d4c62cc5fc5f0d5943604e88d185130f18939463d703c2eb4e73fa98479affafe92d2b07d84b4478748ec6184ed8712875800f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 3fceff1a3b0bae668ed197b0b819fe63 |
| SHA1 | 0583bf36c3842eea1ed03b973947b6492f4311c7 |
| SHA256 | f050186bc45602a5beacab65e3cde652eab28e20f824af26dd437d1c90f34dbc |
| SHA512 | eff412737362d570eebc26445c9c8a6a00de16218e3a4904cdc6ce96d1089d6da2fb721ceac988f6829f93ef35b5d25de2ffdd7f066778df4b3d5461f493c52c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e25e96350a472e2d3b5d9a1d0b59db5d |
| SHA1 | eeffed727c41bb6b9add5cd0e755a359c2d9f252 |
| SHA256 | 2d1b5ea83be40d71e87e20e4553f81a8e1380639ab79d69ee0177ea6ed9a4e02 |
| SHA512 | 99cf5512019a5a208fbf8a1b74eb87c3c8bf296bb63549b4df364b4283c47ae3534fcf3d1c5061959fd75c921fecede91fe124c8b8b161b803710363480b394f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2c50012586af30f323808878dde8336d |
| SHA1 | c9eea18fdf8e64189e22404c4802ff930df1363e |
| SHA256 | cf75db6aa4c9367754e0c400cc2520614b6835a1f602b92390bb1a5422cca4eb |
| SHA512 | ab805da33cf27464c37993ea94dca160db18f26829e30c5fe7f6bfd0178cff199e6dbbde8df3a223877375827084917ee55e454372a76a9635691d63d7c28158 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ece4607a72461c1b42494cfee8fa834c |
| SHA1 | 50a03d8120448cf2b963f3b6020f5ace1def3a92 |
| SHA256 | 391646bde16349f755034b26ff5ff4e9e3a050db4fd6e2ee6eef8f016e168494 |
| SHA512 | 5a35d937aeeb6a14fb6c74ad516cbab316574f6e5ecc62716f116084d8e951354a0deb6a95f52582fda4ea5601959a81f4f8f935d377db09289b1a8bd8fede68 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4669e39180e89d6041f07505b24023fd |
| SHA1 | a2dce14b08299f32b519514ce03b35dfd634388a |
| SHA256 | 93fd5edba207063ef2ec2e03f5f68b69b7e7d33fdd6176cf7b78e0b5220c5300 |
| SHA512 | 9479bb10c4f33681291efd65dff09bf5103a3993384a217769d26c99aa8810ea9717db83f62c68089724bc1489ca86c17912c6dfd28a0d9c3915a71445360b21 |
memory/5620-1267-0x0000000000400000-0x0000000000428000-memory.dmp
memory/5620-1268-0x0000000074160000-0x0000000074910000-memory.dmp
memory/5620-1269-0x0000000008080000-0x0000000008698000-memory.dmp
memory/5620-1270-0x0000000007AE0000-0x0000000007AF2000-memory.dmp
memory/5620-1271-0x0000000007C50000-0x0000000007D5A000-memory.dmp
memory/5620-1272-0x0000000007B90000-0x0000000007BA0000-memory.dmp
memory/5620-1273-0x0000000007BA0000-0x0000000007BDC000-memory.dmp
memory/5620-1274-0x0000000007EC0000-0x0000000007F26000-memory.dmp
memory/5620-1275-0x0000000008F70000-0x0000000009514000-memory.dmp
memory/5620-1276-0x0000000008AA0000-0x0000000008B32000-memory.dmp
memory/5620-1277-0x0000000008C40000-0x0000000008CB6000-memory.dmp
memory/5620-1278-0x0000000008A60000-0x0000000008A7E000-memory.dmp
memory/5620-1279-0x0000000008D90000-0x0000000008DE0000-memory.dmp
memory/5620-1280-0x00000000096F0000-0x00000000098B2000-memory.dmp
memory/5620-1281-0x0000000009DF0000-0x000000000A31C000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 97515a002eacc97a0a7f6dc25b247a91 |
| SHA1 | ab3f76dd9bb79370ad9316cef5fa94e93b148bcc |
| SHA256 | 111870bae2d67295ed31f4c5e60f9fc4947b6af4ee7b913cb494bbd9fe839b76 |
| SHA512 | 991e7df2a6eaefeaabf4a1a67d2c9d51453a99b0e2b61120da02b2ab2b3634fa1b370624585a5c084c4a9a915cae917f4e390b28e2b131f9b73b2a61cb954b77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bb7953a218a37ab7205bfb63984e25d4 |
| SHA1 | 493c8d28db1dcf8cc2ca83d15b1ab791987989d3 |
| SHA256 | 641542979b8e1df9e5c23d60aaa422ef45ac1bd0cc9691dc3759f97f9521ff6f |
| SHA512 | fa475cf28225254ddf4b8ee96b4ef9377aa082036c0597e0625b4463249a0a50a7036853fe8bf0f35a36a781a5762555788b89c1e93b17beb1abf84afbd00bb2 |
memory/5620-1301-0x0000000074160000-0x0000000074910000-memory.dmp
memory/1704-1302-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1304-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1303-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1310-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1309-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1308-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1307-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1306-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/1704-1311-0x0000017B479C0000-0x0000017B479C1000-memory.dmp
memory/3044-1328-0x00000000747D0000-0x0000000074F80000-memory.dmp
memory/5572-1330-0x00000000747D0000-0x0000000074F80000-memory.dmp
memory/3044-1331-0x00000000747D0000-0x0000000074F80000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3f31029d85382d5ad1534342725f5435 |
| SHA1 | e15752958f15f79f99cd81fd18e78438ef2c35f2 |
| SHA256 | dc6bd6239ec4498661db48bb909500a98303a8717deed6c9d810fd91d7da2da0 |
| SHA512 | 52c24fa634e2902959e12eabbf6f63225a5032045318f7eaead20e081a69a052653dca194514f8624e2115b35ffa64c506ea0e9349c18f92ad483b7301abe298 |
memory/5572-1341-0x00000000747D0000-0x0000000074F80000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6c540cf8e4f8f3eb4bc9b99f9b0f1c83 |
| SHA1 | b9917537ac662bc72f4b7b0933c89e59b7064d16 |
| SHA256 | d201a9ab151e8282497976b7351e7e305d38fae405857b622575a95c28a75b4e |
| SHA512 | 71149888e0ed356f6fff7c9067f98e0ee5dc406904deb2e48e8af24e7090672697bb6a8177b43340073df594297093181008229c2ae7a2af61b81e6e30b26e05 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 257cf7b979fcb90888888ba8b5e6ccaa |
| SHA1 | 44b3ad3fa7356734368e3a7ad0707bea04c6c5ec |
| SHA256 | 0cb1b1261985572ece1b41dcf9a070b2ac7fe8d8d69b2dfdf053a44456d7727e |
| SHA512 | 4098af86fcdae3d18a8e68c409cce9c041ffeff067f813c6444ed6f912cf408db006ce529c34aff9d6ce273911d46e5e2829865f47311a733e462d58a658537d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6c7f32b40c679121b61cefc4d550b103 |
| SHA1 | b692c09c2779fad0504e8c98ddac34fe9b6152bc |
| SHA256 | f64bc087b7c2c8e96e3d97d0e33d107d5d6ce8f27d063695b2c276a230c56b45 |
| SHA512 | 7793136673c853c4c8921dfe423aae1c0d3043104c605b5c364270ea344b59c1be289fb6cd3e807eddb3a89d7ebbc0a1c105ce7b8221d71d9787aa09b8d79128 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | bdd06b77a54c81ba7952ae9e93593754 |
| SHA1 | 2208440ab6d54cc43e9f77c78028f415424adafc |
| SHA256 | 1e766976ac790413cb26c795b11291e2e74c371de0c383ad23a59e6ba283b56e |
| SHA512 | 8fb9222919a3c2c89766b8573e32f44ce6e256ae9ba0f908829ffc47265a58527d2ffcc09bec707ccacd4ac96b8de04a90fa15861ad493e2f946092773fe22aa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d3e7805b6b58f30e6c7e6d49f8b3df41 |
| SHA1 | 090cedfc4748245261caf76720a42948c61b8805 |
| SHA256 | 60c09d5a7719a83c4745482eb52696740602e5f71555401128dd7c481c87500b |
| SHA512 | 3930fd85fb1b03c3a34b82a79e01d2d3f0c111961f80501a20f2e16270f40a85eb1f58475e1f52e6d3ff1e9176a2c70d970b506c07b77e1ed9e214c2b2f7eada |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\198b1dbef7ece2ad03770a72810f2b485859f245\290b3e1e-39fd-402b-9188-05cde5041100\index-dir\the-real-index~RFe5e51a8.TMP
| MD5 | f728cdd2b5d9a6821e0fd64a8f12946c |
| SHA1 | 2be69e32c3ff2ffd6ec2bef0e4177c30eb13b927 |
| SHA256 | a055f13696049e75d149d60f589f57133df3e5664c16a164bf259d997cad477b |
| SHA512 | d7c891ecd418e21a794d1148921bb379e5392d1f2b322afe17cc029ca17511a47fcec5da211806ab5fc7b82823e071558b8eed6b058054af74b5f1eb4b357c2b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\198b1dbef7ece2ad03770a72810f2b485859f245\290b3e1e-39fd-402b-9188-05cde5041100\index-dir\the-real-index
| MD5 | a40f4ae10110a99de5da7a308e1bc0d8 |
| SHA1 | 7f465595872b4a8e29c9cdcdd5223bd9ada2ebdb |
| SHA256 | d92102b68739e3eb10ce6dd98729ad64fe19d1768a789ffcc30bf4efc6f315b5 |
| SHA512 | fafccf343ef03cdf158da89185d98ebf7855c911f2921503666849d676764cd6a13066d1fff879b87844a39d1ff1ecbe32566c9d499e29d1461f343e32c19ae3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\198b1dbef7ece2ad03770a72810f2b485859f245\index.txt~RFe5e51d7.TMP
| MD5 | 11e6473084cdb338cf15017d1de74c19 |
| SHA1 | 2f525d72f8e87ab4c7988336979a01945d4b79b1 |
| SHA256 | 89625925b0019b63b6aaf8f79622ef801e768c0ae3374876053428b89b0d54f6 |
| SHA512 | 0202786a6c7e38605ba9e7ef36b19ddabc559359a1977df22b80d9e6e599670f4acf19f433785731c6607e85db5a7a5ae0d516c6b1f5987315192108b37cf115 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\198b1dbef7ece2ad03770a72810f2b485859f245\index.txt
| MD5 | baca7861c2f1459265efee45dffb58e8 |
| SHA1 | 2fcfeb64809d4d7f55a80c377422254a6367c422 |
| SHA256 | befcbe80f10a52ab0061932dda566b3c39914492e7d3f86d48e59d944e1315d9 |
| SHA512 | 0f76bcd1b6d7ebf285ff81bec01f1208d30866922ce8f868da29ae7c702bd2232621933e1028e0c61ddbe83ae7e18a2de53f3f3a26f0fc072537e944f0da0a03 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 94ed338de1c57fa469d9ee605d81451c |
| SHA1 | 01bc05e8dd2a7bad72e7ca67b5937eb8f4e142a5 |
| SHA256 | 08d98613a3ccb336baecee2d81b24ca9cdc067d56bbfb4ff1746ad4b0f8ae19c |
| SHA512 | 3e845526e1a68f7da717e5e1f588b92b66083f86fd20c3bd539f1fe9a01ef5b44b251590eb498f411981811e18bbd80cef083f6b7648153985038b16b0628fb1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\47d6363dd5177a04_0
| MD5 | 602002a9a6b7c1de9fa66b9df08c1f3d |
| SHA1 | 8523cd1bfb5d5fff5fd2b1061ad2c9104a654695 |
| SHA256 | bd07f57b48375f02cff64447888870e59b5f3b9edc8392b313def71de89eaea6 |
| SHA512 | d435f3ca69c2390fb3317847b0da51119dabc520b6f3ab1eeefded32de0d082e7866444fe4b75c469bc6033f2d4bbfddfffd4d94d92860c0c3d73ed404907350 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a6e02622bd9c88fc_0
| MD5 | decde1a450bf20a110c8bb8ca2fbccb2 |
| SHA1 | dab36f2c1b5c17a7ce29e97443713e7e8d670fe6 |
| SHA256 | aba482e4bbd073d77dac875ed67392406ea4193cc84c1683e9748fd96a63d8a8 |
| SHA512 | 75726f27d5b8638dcb1b8168218d66fb19eb0beeb84296b7e287c391e267410b35c9311ca8b4dbe3ec2552f22c44973f755fa92a98ae96c2bdca4aa3d63296c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5e5cce1cf729f813_0
| MD5 | 31c3059fc3481c6011c756a135ac2b7d |
| SHA1 | 02d918f99f462b19f5b6a4595922825920a79963 |
| SHA256 | e445c8ad0264c543a2082093e3556e14443da2db8c562733ff90fd823275a12b |
| SHA512 | 842b4b2c2dfe1d806ddadd9e25c3658ecfc6f79f44c3efa7c10eff1631d82f3befc65abb5cf1b60aaa883db80797bfc9d43feb26afd5d48ac427fced153c23fc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ac1d14f938797722_0
| MD5 | 3e165ba4279f37c11f524a868adb1623 |
| SHA1 | a41f89495ca5eda220271f29817e877e32964eb3 |
| SHA256 | 7df0b296c4d8d42c8f00645ca9d94f530245efcc8e7c79ae37feaebf14e4fdf5 |
| SHA512 | 30904c7d5e826e4ed2cb578dfec7cff395f4c7166e08e3476ac6d04b29785c5adc1c1edd157ad5d63a42845cf57d95057c1f8221328773e97a9e3d33a41b4c43 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8730d81ae16db740_0
| MD5 | 2d92127b78ea6619b8ef5a20069b1a63 |
| SHA1 | 5465aafbbcb6430ad36ac79b260a9c631bb7db94 |
| SHA256 | 64f258a8eefa6b5dcf478524119b950e22c69519605895e59c69f88560940cda |
| SHA512 | 8d097a2b317538c2ebfad1ccd7a4db99548c6465a5f702872f598815f79177664472cab3ec2d2d73804f3c1aa696c88ea939a53da3fedb71aa82c0c04a2c6480 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c52cc4291f2b06f2_0
| MD5 | 2207b453ba9d7d58592fa0734994a39f |
| SHA1 | 5fe15993df5d3b8a3d4c81366d210cde55e2e8ff |
| SHA256 | 2ff89e80788e088c696d32b35bd1f1efd1602b5d0486e6da00d92e132ba7c18d |
| SHA512 | 3ff46e8ed1d9053d3581c63d96112ec7a0bab55655d576de4d0d63dba7b822377d079d7be0c3428e06ca573d1e1b7d804557a41f17ac80c3e548459d1eb54376 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\95b11866befd98da_0
| MD5 | 38f87d8880a70cb2072a8c5f733a38f8 |
| SHA1 | 4544d4a50edd0776ee5abb7803fea27ee15b8225 |
| SHA256 | aa8c0a7f3a7b500dcf351d2df2018c405ae203fbe754d9ba6e5047f673f32a5b |
| SHA512 | d7867027125b918e82442d24bd82c56c65c31a653054cd1bb6766576c0b6de73204c5d1a04ef0fa1821e66fbb9f2cf88427a2fdb214509e4c01c52240e48e1ea |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8969d5859daf2808_0
| MD5 | 0cded373238188a12bfa42d294f3b564 |
| SHA1 | 96202395f36a4c39d2933c191a71574b2b089844 |
| SHA256 | 567fc7225c839aa3807f6c850e0f25d51296587f8173867ae6b2c72fef2c4374 |
| SHA512 | 199965e566370958d9142c870f61cc8dbab19b12b08f7903c0b2b2256d79d77a0cdb4376d05a90b8c6894498ba839ea8b60a36bd936dec0147d056d637c00e20 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4e4fc0200754e0a6_0
| MD5 | 850ddedb03cfb58b753faf55f706daae |
| SHA1 | ecacf4cf1d143ee0f08a066ff32fc56a1d5792c5 |
| SHA256 | 4170dc20f46987b2c44e61bea12f1789d2106e1302612b5692c272a49ef97810 |
| SHA512 | 4a27c947829dfae7b456fbb0fb26f6b5714f2ec5c7e6b411dd5db529af00ad9b08afcfb8b67505987177a89a21dcf182b50deabbc0104108f61ca65b46696cf5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003a
| MD5 | 3293616ec0c605c7c2db25829a0a509e |
| SHA1 | 04c3bf56d87a0828935bd6b4aee859995f321693 |
| SHA256 | 0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849 |
| SHA512 | 72ac7f041eff447e156e2716a43d8d2e124669efc410c0ddf235d7df0627fd9f98d6a3269f94efcbbadb1cffe3641cd594a8420614e62b04ba9aff0fe7a906a5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.virustotal.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b5d30344f7febd6b_0
| MD5 | 0fbf7bba24242de34957b61b59e47958 |
| SHA1 | 00757357cd31e0ce743db14fad74a49de2ebe4f4 |
| SHA256 | f44a4acc32572f5f3c3a325b6c2e58281789a6d455b3d7857dd0e884d2c37656 |
| SHA512 | a9bf124cb83dbcfd5ca615da95518e26fd7b9f7d861fcc2b40d277dff9550b9b57e66326c6e28689cea566e71d361f22ae64f2575c61603594f5528325189ac3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6b3088a7b6ef8d96_0
| MD5 | 633dfebc53a620aa8bc8a0718dbfac48 |
| SHA1 | b4b12538763d5791c613b94e6748e7ae518ca9f3 |
| SHA256 | 5dcea4f58556804dfc325a2ef9a9943ff826f308d4832cd2b55072ec2c5b00f1 |
| SHA512 | 28025b459eced7cf21bf3e2f957f0eafd0dde35b26c777b675c112783d3d4c81bf6782d826f676cac7743aa4414043ad03bcfbcfd5d8a418364c2585de1d5345 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6e1b963ab9c4276537cf424ccb2d5398 |
| SHA1 | 6e81349378bf56b5b051b075f6895a72329f6609 |
| SHA256 | 9ff7545afcb6b2980baf0034f0f9b4ea3bc7a7a1e927e13bbf2934d3f3e2a0c6 |
| SHA512 | 9454338f8187e619837a93f472067f7bcf92db57c8fa373df43cd892f8fc81aa01a9721d98661b7d3dfb95a588b27e167f97e8ca94c94cb489ac9bfb58f9ec7d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 1a8a037ed32a9f57ed712ffecc9e6ab3 |
| SHA1 | 8e4d543f23307185fd800fb5273e2f1624941188 |
| SHA256 | da22f7e93503e1b3616cbffe87731d03524d4b947d0b720f5fa9fa50c4f97189 |
| SHA512 | 74b4c183bec8aa5125bcd40a6f501db6b0789f74e3cdb926b6a17090ac82a6a0566d3f16fba52b09f3c76d7aec29957de29f475c936a625fb75f793047d1ff60 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 16c318b5b82362a86bc0ec258c22a9ca |
| SHA1 | cab8cbf51e99f9600d8909c2172e9d22298b7cc3 |
| SHA256 | acea8bc57101d2a398be408fc184dd255b693f14dc969ae73cb577fd462c1f4a |
| SHA512 | f2d72d4e8da68dfbbf4c863a824d30b9e9df9f9f40e650d13bd599486b229d780df3bb2dd651fe29ea175efe2a691ee03bb63dda95d17e7ffbd42aaaad35af40 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 8f71f196fe3e06999a956f9bd87ecfdb |
| SHA1 | 640c99942f860aa289e1ab3e1af4e29574605f59 |
| SHA256 | cd92f69bba7000173337941fbf67035eee1d7c6c4862466c2cb8272c8c806478 |
| SHA512 | 2fc0e1515de5d65819458aa618961402c31d4ef0c87b0779fecf93cd2af994589f769defad90a1b47bee8605de69a2669a1ad2e58f74f28ff7ef4e9340692a97 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 99bc5b405cd186f2d51411b7b3a76c3e |
| SHA1 | 242f78da969ff98aeb56c892fcab0f9a3672cf1f |
| SHA256 | 853f38e44a000b68c3c46c1bc92a386bb64aa6a9ad2c03020a5abc186f71a80a |
| SHA512 | 66579ffe63adb276d4025f6462a975df9d3c3a1153a21b7fea723e5848e4fc70cdd7e35f2f1394d334072ec3a0142d422b669321b167bf1b30fb66cc9e9064c5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fdede918531fe56e1ffb6403feaa2464 |
| SHA1 | 01cc235290fb2162683ad805fbbf3ab0aab6912c |
| SHA256 | f63e0da72e38c067d4458477c59faf6a76a66dd9e5464ac00efa00d2654df376 |
| SHA512 | 283dfd1da5f9e1a9fd01f25e50f3cc86867f99a9833e1811ca2dd7924144df5f069ffb390c69891f8c34db822c5116294ccebfa86c33268c511227c72172587e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c15aaa57f611816ded433249b9717a8f |
| SHA1 | 886252c558ed27160f82cb9e81608e02769c15a8 |
| SHA256 | 81cfa9b2144229311f1e3a5fcd32ad33f972336eadc8bc0521cb97da3644f8b3 |
| SHA512 | 877596e87558061355ca587aa49118205d1b28c3115d76a516cbf7c85325eb537235ef3056846545f991959ffa3eaef0f91c95f0265cf3c9dcfcf6cb1756ce1f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 14560784815759ada7fa95fddc5a4308 |
| SHA1 | f2b8f6bad9a9837c6e9749bd75a386eb54f82114 |
| SHA256 | a25067f4331d724ae517380be419ee66db5b20b323e381049603d75ae0511f05 |
| SHA512 | f72c3eb5fd33ebaa3dfb6bc9958f469e8243383e9c09f06dd1ff220ac16183fa30fe01fc932ca1fd7f3322b0d1a5dd6cf7ca5490c61601928807d36f87b6e2e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f0992e23e33b766fe507e63fae52ad33 |
| SHA1 | f448af12d88dbc2e4d338fb440d904a5aa504f97 |
| SHA256 | b87e6b3716b7aed318c562f20601f59190e4ca506d7f3b8e47abece56dc5e5fa |
| SHA512 | 75fc212ca7950815f2a07153ce0dbacb496ee013a0bcbfd43cd696a09ae81b5018689a9ca7a6a2394d88825ff0d8d5a8f3d4536fbe93798d43ce0f4e92e90030 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5f731d67e65568c5a8913e2c7101683d |
| SHA1 | a9d6384d4c9fc959c1d1fcccff11f6a7075d73a4 |
| SHA256 | 0b4cb23ec02a91b87d0b5b707cf5dae73dc688bf2a6350c814228ba044a95e3c |
| SHA512 | b73fcccc400b4f28830b91538d6584e055c3d65bfbe720374347dc1eec87cf6ada4a4f3aa2cfb350e54ab63a951dbe57518806f00043bf859f278d60954d3f2f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | bd9b30641cca13b6a1cd202cddd97434 |
| SHA1 | a1fa9cb1c90c3e576804301b8e87a1b18e1f2921 |
| SHA256 | 78b1048451c3ec122498a07be042040418005054de37dee1889c74636a25cf37 |
| SHA512 | 70786efb33d50e319e715361be1e01bb16d75949e3106362537c7f567f16be0e4813f513fbe977522785fec825cfd5ce3e043c51b221000920002e210152fbf8 |