Malware Analysis Report

2025-08-10 12:05

Sample ID 240222-yg3geaed3x
Target images (7).jpg
SHA256 c769ddc5e16995befe405b9f07ad4de0892e03fb0b6d1aae2b96ad634944388e
Tags
discovery persistence spyware stealer
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

c769ddc5e16995befe405b9f07ad4de0892e03fb0b6d1aae2b96ad634944388e

Threat Level: Likely malicious

The file images (7).jpg was found to be: Likely malicious.

Malicious Activity Summary

discovery persistence spyware stealer

Downloads MZ/PE file

Loads dropped DLL

Executes dropped EXE

Drops startup file

Reads local data of messenger clients

Adds Run key to start application

Checks installed software on the system

Legitimate hosting services abused for malware hosting/C2

Enumerates physical storage devices

Suspicious behavior: EnumeratesProcesses

Modifies data under HKEY_USERS

Modifies registry class

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

Checks processor information in registry

Suspicious behavior: GetForegroundWindowSpam

NTFS ADS

Modifies registry key

Modifies Internet Explorer settings

Enumerates system info in registry

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of FindShellTrayWindow

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-02-22 19:46

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-02-22 19:46

Reported

2024-02-22 20:31

Platform

win11-20240221-en

Max time kernel

2700s

Max time network

2703s

Command Line

cmd /c "C:\Users\Admin\AppData\Local\Temp\images (7).jpg"

Signatures

Downloads MZ/PE file

Drops startup file

Description Indicator Process Target
File created C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CustomRP.lnk C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A

Reads local data of messenger clients

spyware stealer

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000\Software\Microsoft\Windows\CurrentVersion\Run\Discord = "\"C:\\Users\\Admin\\AppData\\Local\\Discord\\Update.exe\" --processStart Discord.exe" C:\Windows\SysWOW64\reg.exe N/A

Checks installed software on the system

discovery

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A

Enumerates physical storage devices

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1 C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\ProcessorNameString C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\~MHz C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2 C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133531050177306067" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\log_auto_file C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\DefaultIcon\ = "\"C:\\Users\\Admin\\AppData\\Local\\Discord\\app-1.0.9034\\Discord.exe\",-1" C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\shell\open\command C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\shell\open C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\shell C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Local Settings C:\Users\Admin\Downloads\DiscordSetup.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\.crp\OpenWithProgids\CustomRP.crp C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Applications C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Applications\CustomRP.exe C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\.log\ = "log_auto_file" C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\log_auto_file\shell C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\ = "CustomRP Preset" C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\DefaultIcon C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Roaming\\CustomRP\\CustomRP.exe,1" C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\shell\open C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord C:\Windows\SysWOW64\reg.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\ = "URL:Discord Protocol" C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\shell C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\log_auto_file\shell\Read\command C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\log_auto_file\shell\Read\command\ = "\"C:\\Program Files (x86)\\Adobe\\Acrobat Reader DC\\Reader\\AcroRd32.exe\" \"%1\"" C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3852399462-405385529-394778097-1000\{83A96CF5-0839-4B62-856C-68E18ED1492B} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\log_auto_file\shell\Read C:\Windows\system32\OpenWith.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\DefaultIcon C:\Windows\SysWOW64\reg.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Discord\\app-1.0.9034\\Discord.exe\" --url -- \"%1\"" C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\.crp\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\.crp C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Applications\CustomRP.exe\SupportedTypes C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\.log C:\Windows\system32\OpenWith.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Discord\URL Protocol C:\Windows\SysWOW64\reg.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\shell\open\command C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\CustomRP.crp\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Roaming\\CustomRP\\CustomRP.exe\" \"%1\"" C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Applications\CustomRP.exe\SupportedTypes\.crp C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-3852399462-405385529-394778097-1000_Classes\Local Settings C:\Users\Admin\Downloads\DiscordSetup.exe N/A

Modifies registry key

Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\reg.exe N/A
N/A N/A C:\Windows\SysWOW64\reg.exe N/A
N/A N/A C:\Windows\SysWOW64\reg.exe N/A
N/A N/A C:\Windows\SysWOW64\reg.exe N/A
N/A N/A C:\Windows\SysWOW64\reg.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\CustomRP.1.17.20.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\DiscordSetup.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\DiscordSetup (1).exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3696 wrote to memory of 3776 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 3776 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 2112 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 2112 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3696 wrote to memory of 1612 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\cmd.exe

cmd /c "C:\Users\Admin\AppData\Local\Temp\images (7).jpg"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffeea4d9758,0x7ffeea4d9768,0x7ffeea4d9778

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1652 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3220 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3188 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2200 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4884 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5268 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5420 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5444 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4540 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3736 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=880 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5964 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=1112 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4864 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5652 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3420 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3300 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5364 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3420 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5064 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4548 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5044 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Users\Admin\Downloads\CustomRP.1.17.20.exe

"C:\Users\Admin\Downloads\CustomRP.1.17.20.exe"

C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp

"C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp" /SL5="$E0070,5484192,1081856,C:\Users\Admin\Downloads\CustomRP.1.17.20.exe"

C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe

"C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5140 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=3272 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=4580 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=5656 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5408 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6268 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6756 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6852 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5048 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7156 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7056 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Users\Admin\Downloads\DiscordSetup.exe

"C:\Users\Admin\Downloads\DiscordSetup.exe"

C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe

"C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe" --install .

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=7132 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6888 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5020 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=3356 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=3780 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004E0 0x00000000000004E8

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\Downloads\DiscordSetup.exe

"C:\Users\Admin\Downloads\DiscordSetup.exe"

C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe

"C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe" --install .

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\SquirrelTemp\SquirrelSetup.log"

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=AD99F49F672B2571A1EE99F64738E61D --mojo-platform-channel-handle=1764 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=CF79CD6F28675C4ABFBAF3BA16B7C83D --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=CF79CD6F28675C4ABFBAF3BA16B7C83D --renderer-client-id=2 --mojo-platform-channel-handle=1792 --allow-no-sandbox-job /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=A921D0190C547464BB7A339FD51F78D1 --mojo-platform-channel-handle=2212 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=2A52917A4F0CC8768391C5CC470D9D84 --mojo-platform-channel-handle=2348 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2

C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe

"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=584289D6B4103F89E17EC6BEE9E31DBB --mojo-platform-channel-handle=2508 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=3892 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=6976 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=7152 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=6032 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=6656 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=6952 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5272 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5960 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6720 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6580 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6708 --field-trial-handle=1772,i,13398970180689156807,4018998668088099212,131072 /prefetch:8

C:\Users\Admin\Downloads\DiscordSetup (1).exe

"C:\Users\Admin\Downloads\DiscordSetup (1).exe"

C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe

"C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe" --install .

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe

"C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe" --squirrel-install 1.0.9034

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Roaming\discord /prefetch:7 --no-rate-limit --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Roaming\discord\Crashpad --url=https://f.a.k/e --annotation=_productName=discord --annotation=_version=1.0.9034 --annotation=plat=Win32 --annotation=prod=Electron --annotation=ver=22.3.26 --initial-client-data=0x568,0x56c,0x570,0x560,0x574,0x7f55d78,0x7f55d88,0x7f55d94

C:\Users\Admin\AppData\Local\Discord\Update.exe

C:\Users\Admin\AppData\Local\Discord\Update.exe --createShortcut Discord.exe --setupIcon C:\Users\Admin\AppData\Local\Discord\app.ico

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe

"C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\discord" --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1836 --field-trial-handle=1976,i,14370700674560987863,12985059161464801291,131072 --disable-features=HardwareMediaKeyHandling,MediaSessionService,SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:2

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe

"C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\discord" --standard-schemes --secure-schemes=sentry-ipc --bypasscsp-schemes=sentry-ipc --cors-schemes=sentry-ipc --fetch-schemes=sentry-ipc --service-worker-schemes --streaming-schemes --mojo-platform-channel-handle=2068 --field-trial-handle=1976,i,14370700674560987863,12985059161464801291,131072 --disable-features=HardwareMediaKeyHandling,MediaSessionService,SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:8

C:\Windows\SysWOW64\reg.exe

C:\Windows\System32\reg.exe add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v Discord /d "\"C:\Users\Admin\AppData\Local\Discord\Update.exe\" --processStart Discord.exe" /f

C:\Windows\SysWOW64\reg.exe

C:\Windows\System32\reg.exe add HKCU\Software\Classes\Discord /ve /d "URL:Discord Protocol" /f

C:\Windows\SysWOW64\reg.exe

C:\Windows\System32\reg.exe add HKCU\Software\Classes\Discord /v "URL Protocol" /f

C:\Windows\SysWOW64\reg.exe

C:\Windows\System32\reg.exe add HKCU\Software\Classes\Discord\DefaultIcon /ve /d "\"C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe\",-1" /f

C:\Windows\SysWOW64\reg.exe

C:\Windows\System32\reg.exe add HKCU\Software\Classes\Discord\shell\open\command /ve /d "\"C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\Discord.exe\" --url -- \"%1\"" /f

Network

Country Destination Domain Proto
US 8.8.8.8:53 19.177.190.20.in-addr.arpa udp
US 8.8.8.8:53 201.178.17.96.in-addr.arpa udp
GB 2.18.66.169:443 tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 92.123.128.170:443 r.bing.com tcp
US 52.182.143.210:443 browser.pipe.aria.microsoft.com tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
GB 2.18.66.169:443 tcp
US 52.182.143.210:443 browser.pipe.aria.microsoft.com tcp
GB 92.123.128.170:443 r.bing.com tcp
GB 172.217.16.228:443 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
GB 142.250.200.14:443 www.youtube.com udp
GB 142.250.200.14:443 www.youtube.com tcp
N/A 224.0.0.251:5353 udp
NL 172.217.168.227:443 beacons.gcp.gvt2.com tcp
GB 172.217.16.228:443 www.google.com udp
NL 172.217.168.227:443 beacons.gcp.gvt2.com udp
GB 142.250.178.14:443 www.youtube.com tcp
GB 216.58.213.14:443 www.youtube.com tcp
GB 142.250.187.206:443 www.youtube.com tcp
GB 142.250.187.206:443 www.youtube.com tcp
GB 172.217.169.14:443 www.youtube.com tcp
GB 172.217.169.14:443 www.youtube.com udp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.200.46:443 www.youtube.com tcp
GB 142.250.200.46:443 www.youtube.com tcp
GB 216.58.213.22:443 i.ytimg.com tcp
GB 142.250.200.46:443 www.youtube.com udp
GB 216.58.213.22:443 i.ytimg.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 172.217.16.230:443 static.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
NL 172.217.168.227:443 beacons.gcp.gvt2.com udp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com udp
NL 172.217.168.227:443 beacons.gcp.gvt2.com udp
GB 172.217.16.228:443 www.google.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
GB 172.217.16.228:443 www.google.com udp
GB 142.250.200.46:443 www.youtube.com udp
US 188.114.97.0:443 customrp.xyz tcp
US 188.114.97.0:443 customrp.xyz tcp
US 104.21.79.170:443 www.customrp.xyz tcp
US 104.21.79.170:443 www.customrp.xyz udp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 104.16.56.101:443 static.cloudflareinsights.com tcp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 226.20.18.104.in-addr.arpa udp
US 8.8.8.8:53 101.56.16.104.in-addr.arpa udp
US 151.101.1.229:443 cdn.jsdelivr.net udp
US 104.16.123.175:443 unpkg.com tcp
RU 93.158.134.119:443 mc.yandex.ru tcp
US 104.21.79.170:443 www.customrp.xyz udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 216.239.32.36:443 region1.google-analytics.com udp
US 172.240.108.68:443 www.profitablegatecpm.com tcp
GB 96.17.179.184:80 apps.identrust.com tcp
DE 140.82.121.3:443 github.com tcp
US 185.199.109.133:443 objects.githubusercontent.com tcp
US 52.232.209.85:443 in.appcenter.ms tcp
US 52.232.209.85:443 in.appcenter.ms tcp
DE 140.82.121.5:443 api.github.com tcp
US 52.232.209.85:443 in.appcenter.ms tcp
US 40.70.161.102:443 in.appcenter.ms tcp
US 104.21.79.170:443 www.customrp.xyz udp
GB 172.217.16.228:443 www.google.com udp
US 40.70.161.102:443 in.appcenter.ms tcp
US 162.159.135.232:443 discord.com tcp
GB 142.250.178.3:443 id.google.com tcp
US 8.8.8.8:53 ajax.googleapis.com udp
US 8.8.8.8:53 global.localizecdn.com udp
DE 18.154.167.3:443 assets-global.website-files.com tcp
US 162.159.135.232:443 discord.com udp
GB 142.250.200.10:443 content-autofill.googleapis.com tcp
GB 142.250.200.10:443 content-autofill.googleapis.com tcp
US 104.18.5.175:443 global.localizecdn.com tcp
DE 18.154.167.3:443 assets-global.website-files.com tcp
DE 18.154.167.3:443 assets-global.website-files.com tcp
DE 18.154.167.3:443 assets-global.website-files.com tcp
DE 18.154.167.3:443 assets-global.website-files.com tcp
DE 18.154.167.3:443 assets-global.website-files.com tcp
DE 54.230.55.168:443 d3e54v103j8qbb.cloudfront.net tcp
GB 216.58.204.74:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 175.5.18.104.in-addr.arpa udp
US 8.8.8.8:53 168.55.230.54.in-addr.arpa udp
US 8.8.8.8:53 assets.website-files.com udp
DE 18.155.145.8:443 assets.website-files.com tcp
DE 18.155.145.8:443 assets.website-files.com tcp
DE 18.155.145.8:443 assets.website-files.com tcp
DE 18.155.145.8:443 assets.website-files.com tcp
DE 18.155.145.8:443 assets.website-files.com tcp
DE 18.155.145.8:443 assets.website-files.com tcp
US 8.8.8.8:53 geolocation.onetrust.com udp
US 104.18.32.137:443 geolocation.onetrust.com tcp
US 8.8.8.8:53 8.145.155.18.in-addr.arpa udp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.200.46:443 www.youtube.com udp
DE 18.155.145.8:443 assets.website-files.com tcp
GB 142.250.200.10:443 content-autofill.googleapis.com udp
US 104.18.5.175:443 global.localizecdn.com udp
US 8.8.8.8:53 dl.discordapp.net udp
US 104.18.62.141:443 dl.discordapp.net tcp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 162.159.135.232:443 discord.com udp
US 8.8.8.8:53 ajax.googleapis.com udp
US 104.18.5.175:443 global.localizecdn.com udp
US 8.8.8.8:53 assets-global.website-files.com udp
DE 18.155.145.92:443 assets.website-files.com tcp
GB 142.250.200.10:443 ajax.googleapis.com udp
NL 172.217.168.227:443 beacons.gcp.gvt2.com udp
US 162.159.133.234:443 remote-auth-gateway.discord.gg tcp
GB 216.58.204.74:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 discordapp.com udp
US 162.159.130.233:443 cdn.discordapp.com tcp
US 162.159.133.234:443 gateway.discord.gg tcp
NL 172.217.168.227:443 beacons.gcp.gvt2.com udp
US 162.159.128.233:443 status.discord.com udp
US 104.19.219.90:443 imgs3.hcaptcha.com tcp
US 104.19.219.90:443 imgs3.hcaptcha.com udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 162.159.128.233:443 status.discord.com udp
US 104.19.219.90:443 imgs3.hcaptcha.com udp
US 104.19.219.90:443 imgs3.hcaptcha.com tcp
US 162.159.135.234:443 gateway.discord.gg tcp
US 104.19.219.90:443 imgs3.hcaptcha.com udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 162.159.128.233:443 status.discord.com udp
US 104.19.219.90:443 imgs3.hcaptcha.com udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 162.159.135.234:443 gateway.discord.gg tcp
US 162.159.136.234:443 gateway.discord.gg tcp
US 35.186.224.25:443 api.spotify.com tcp
US 162.159.137.232:443 status.discord.com tcp
US 35.186.224.25:443 api.spotify.com udp
US 8.8.8.8:53 232.137.159.162.in-addr.arpa udp
US 162.159.135.233:443 cdn.discordapp.com tcp
US 162.159.135.233:443 cdn.discordapp.com tcp
US 162.159.135.233:443 cdn.discordapp.com tcp
US 162.159.135.233:443 cdn.discordapp.com tcp
US 162.159.135.233:443 cdn.discordapp.com udp
GB 96.17.179.167:443 i.scdn.co tcp
GB 96.17.179.167:443 i.scdn.co tcp
US 8.8.8.8:53 dealer.spotify.com udp
US 35.186.224.39:443 dealer.spotify.com tcp
US 162.159.135.233:443 cdn.discordapp.com udp
US 8.8.8.8:53 39.224.186.35.in-addr.arpa udp
US 40.70.161.7:443 in.appcenter.ms tcp
US 40.70.161.7:443 in.appcenter.ms tcp
US 40.70.161.7:443 in.appcenter.ms tcp
US 40.70.161.7:443 in.appcenter.ms tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 40.70.161.102:443 in.appcenter.ms tcp
GB 172.217.16.228:443 www.google.com udp
US 162.159.128.233:443 discord.com tcp
US 162.159.136.232:443 discord.com udp
DE 18.154.167.47:443 assets-global.website-files.com tcp
GB 216.58.213.22:443 i.ytimg.com udp
GB 142.250.200.46:443 www.youtube.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
GB 172.217.16.230:443 static.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
US 34.120.195.249:443 o64374.ingest.sentry.io tcp
US 34.120.195.249:443 o64374.ingest.sentry.io tcp
US 162.159.136.232:443 discord.com udp
US 34.120.195.249:443 o64374.ingest.sentry.io udp
US 172.64.155.119:443 geolocation.onetrust.com tcp
US 8.8.8.8:53 global.localizecdn.com udp
US 8.8.8.8:53 assets.website-files.com udp
US 104.18.4.175:443 global.localizecdn.com udp
DE 18.155.145.92:443 assets.website-files.com tcp
GB 142.250.178.10:443 ajax.googleapis.com udp
US 104.18.62.141:443 dl.discordapp.net tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.186.224.25:443 api.spotify.com udp
NL 172.217.168.227:443 beacons.gcp.gvt2.com udp
US 162.159.136.232:443 status.discord.com udp
US 162.159.128.233:443 status.discord.com udp
GB 96.17.179.148:443 i.scdn.co tcp
US 8.8.8.8:53 beacons3.gvt2.com udp

Files

\??\pipe\crashpad_3696_ZTNINNYVOZRUJJIT

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 cd99a2516f99958a88ad96ef2b419ce0
SHA1 ff3b64bebf01abb7caf50d41c16f5fcffe0dd947
SHA256 08c046f685a0b525f5547a5f6c81ad1d679c4f6b49acb3586206a31bb813f443
SHA512 d9c98137278d52ac6e7f0a5dda35347d0af0bb77a6d1fc46ff3ed88b4fa6035438cf736e1037270ae4cc8557c5dbb1e11f86733e35f04b8bbb9e2ea3250c037a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 677fff73389e69731cd6011072c146fe
SHA1 c892b9b3304d6692f073267ccfe96003762e301d
SHA256 044536aac605bb589945ef3da46cfca029f1cb8335ba2e46c9ec6ece470301b9
SHA512 1f20f1d6baa6ca2184526a369c0e881eba62d015992b9242eced7cd47110231be5503e3dc8202f1af5cc838b3730a3f597aefc741fe3a905d419cf61d79941bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA512 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1da4eeafacd2f7aa9afa7eb7de3343f0
SHA1 7e4af2e2c338deab8713ca53b6206c04fada3cf6
SHA256 28a6f7d1fa707b329a44f70f6e3bd6671df99af1402b7e490beaae0cf2042673
SHA512 062563cc83dc15b8228762f03e5c0384162334cbf8d1b4078ceaae0bbf3eb0a02d3927d11c9d9377178b4f1c722383b54aa29d9d751ee7201d31a72cf1ca5167

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 1eadb8636d34023410d797c5d743372f
SHA1 d4cec0a8b1334c55e16261daa9f9fa036843275c
SHA256 8db0e1a46479c39f137e8b1ccf0bee7aadf222648f4834272c92a520922288cd
SHA512 eb545aab18c3d429c0309f7e984d79f2f4706c8c3491d6367ec6460bb99a7d179a2a5b576af5871025a4c8dbfe2b85284cfe03edadc9b63222b1b4b1f7c13ade

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db836202b9cabc0f7d3484e93aa30708
SHA1 e93e15cceb4add50ebaea7223d94020c9cc3b4fb
SHA256 c5365f3aa421d96a435f7388b56de8e6e73b5b677fc4fc08b874f96024b8aeba
SHA512 f1fa40c9a9797d98ac3fa3a3f528e20afa90c3ec08934c45ce87a8a15347708503d4b44295777aae3bccafb41b3f0905fdc5ed43fade9dc6a791262bd951c2e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

MD5 873734b55d4c7d35a177c8318b0caec7
SHA1 469b913b09ea5b55e60098c95120cc9b935ddb28
SHA256 4ee3aa3dc43cb3ef3f6bfb91ed8214659e9c2600a45bee9728ebbcb6f33b088d
SHA512 24f05ed981e994475879ca2221b6948418c4412063b9c07f46b8de581047ddd5d73401562fa9ee54d4ce5f97a6288c54eac5de0ca29b1bb5797bdac5a1b30308

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9bb3a6629ff1b4613daf6ed2b8d12765
SHA1 f2d1f9ba6333df4b6f602c3efd416d6e3d29e9ae
SHA256 c2dfa868cd96faca423882c550be7dd62481a7f1fad85b250eed26b8ac5f4406
SHA512 5562267953092ed082b67dd7703e7a0b70d5b5531482d7ba63595d2fa30a9139e7507896930f6b921e97604c05d113c3f1bd276006caa9f05b762b6ff2ee1a97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fbde72e5308fa7ef020c2a1dbcde3887
SHA1 489fa07f65798a9eb75276cb78271efecc9b293a
SHA256 6bede9eaf182bb0c0b604b917b8e7d7d5429e2717ceb282492c433e0b9c0d62a
SHA512 611becd8a4e1ff5090f3789f7044b2874493f84f2c2ed90f7b4b581c97ed91191a166a29ab530a411d622d68273dac89bf09519cd397a7dd1ab3826cace3d8a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 1fcb3fe08084c93bf020a80e024a3068
SHA1 2ea1d0b0426b229efef3f2feda8a8c0e8cd4a4a9
SHA256 dfba0c72fde34b4db10b10cb6487f57792ce8d963c78e755750479884a6e363f
SHA512 11262f9dcfc898dc994a705854d839071c2c4264acd895367925b6d84350df396fd2802e6c1b0d475743f40a6315d56c0ff00f17b30f2366ec231389045fbb0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 f72fe7e180edd6dc152bce62936a7315
SHA1 34a12fb75a699ba085ca591f5163cb70afba890d
SHA256 6b07dffea2c1900662f7c8a7bb65e2d6fadbb65c821c0bdc69e6e574a4330876
SHA512 c986644993b280e1ceed6f1fd99bb547e77858aedd287ea89268e5e2c258fca097e72e6e64fa587f98d79d8d105743d11886a46f8f94f48e2f74869fec3dcd03

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 93466c428659798feff91b1770e5365f
SHA1 68e8cd9b3296fe36c8262362d54584d5c3f3a7f9
SHA256 b768f31976e454f5d0ae0068f24727d7e32337190a43fb78756d8b2033a1aa37
SHA512 03d0cbf581bc0f77b2bcded994406b6c6ccc6413766c84e296bb598bfdac6c3573df0d70fe5e79fb9ac3ae1109932a5bb763a4d341104871d4a88b74a0a0793e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 f3ab69e280a92d5fb5d9d79a8032a9d0
SHA1 756dd2050e9b93dfda6098e46691b0f7da540b10
SHA256 2fc243b45784dac5c71e2c85929f005968080a6bcbcb122df82c0a6a9cefeb05
SHA512 3174fd612d68774125a7ae0a22354d995dc16be0030f3af353c642d27504a4cef08c8b1ab971a00275ff53ebcf848e98596d1090ff32c58ff92beaa910ff45f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 982c70d25be1f9ea5cbfa7061103df5a
SHA1 9eb92685efc001ef5fb9a5f8366373de85ccd9c4
SHA256 8b1ecb03e10db2b98255f0e0119a1b9f8327b8fa8a3071a2e336f2107c9ae50a
SHA512 54c0566ecef331ebd37098aeee280cf91220791c18f1599bcee5e4b7e9c64e87a0265084107c588e4a8e86e7356f9a83d580e18706696e112ea8cf4c58bfc689

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 32902f500fd1c40b4e819f675fd850b8
SHA1 1bfa242f66410dc24ddc4c2224f20e527c674a8b
SHA256 9087bbca9e12739b43aba186fe598ff58cbb2dda1d7d905f19f9e256d987f14c
SHA512 f8cb0927a3904cb892de8dd9734ae7bb5a02d701bc273c2211d77005fb21b7b57f29c8817439a0d4a541e96033372feef69e6d0e73ef538082652f32b32b8406

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 14c39a3bb399020cd84983e857c5a8a6
SHA1 36c8f1d3870af22303bc2a35cd796a79ea0ca451
SHA256 66c29c6b695784ad79cf15ee54df47a37e67f54b1fef3a0049c8df4711a6674a
SHA512 32484d9c5badc1c59a174104a9e05efff29c5390a69f8451cc1529fb4fa329a2889c73f62c22d533ac4b7c86cd3739e83364a4f52d6a10d9fe3e30796ccccaa4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9d662c9545dd6eda17c4c03c7c3d4e89
SHA1 5cf382cffe52172d71fe7df32daef4a4d992af7c
SHA256 434fc415b28e8cf8736641675f9aa764befab0d974a8ed52844b07655d8dd227
SHA512 f31e57c13cee9d58722801cdb2d685c9b57fa9106e5aa040c3785282723e2d1a1ad9b9935f8efde9b3fa3fb08181d8707a481df9998245a3a701b36df161da6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5e7d0d.TMP

MD5 04c0664e81d35cc88ac2b9d900b2796c
SHA1 64e1e4420fd208f4b6c7b4922a02c480423a7a08
SHA256 e891653e7608ce43aa00049cfefad391bddc9caa931f07ef8d25abed4259862b
SHA512 39503b3e12ffddf8cadeeb8588aff343cca56aa60e1fb315fe47e4c32707ffa41f600315e7304edacfb2fffea7cf7123b01bbf33130861c7268f097596cf718b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt.tmp

MD5 ae1bccd6831ebfe5ad03b482ee266e4f
SHA1 01f4179f48f1af383b275d7ee338dd160b6f558a
SHA256 1b11047e738f76c94c9d15ee981ec46b286a54def1a7852ca1ade7f908988649
SHA512 baf7ff6747f30e542c254f46a9678b9dbf42312933962c391b79eca6fcb615e4ba9283c00f554d6021e594f18c087899bc9b5362c41c0d6f862bba7fb9f83038

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c0fb14b025cbf831199eb9134591b6e5
SHA1 89610ded08288582d2519f57e5467919dbb621a8
SHA256 374f4afd53055100c1bcfa6f8657c367c8300fbf3aa5c0fc8c18af31d8d3fc60
SHA512 48977287825f2bacfdc17a8c85ac15f0fcbdfb7467dc2f29957b9f5ba0b34dcd2ea11c1753f590d8455550ef8f6f47f066f4c23807e88c92a12af70b1f8626fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fa3f7b2693f04b4d7f795140fd713260
SHA1 087174026cfd5fba40ccbbc53a868c27cfadd7f0
SHA256 0faddaa757054af45aec239e672c8c6a9d4e26ccda4c1eab06dac978dbd5bcfe
SHA512 3ea3f93909faa81a602d16cc856f860515bfc4765ca9a071c3bd0ac5a02fe8f39f81a50d1af8a8e8ecd6906af95c60b4979b4144153e0e1707a3f46b9a53f6e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 0226c0d6c3f7f40f2d949d4eec49bb0e
SHA1 80fb32d2db38ac3e7319b9bfe19aaab96c9656d6
SHA256 11ac9a96cb7bd2279d9503bea2090e3c82de342be92a0f29c354ee7aa4ea425f
SHA512 2054308ac179a7298d4aed5c9c1a470d5b600b503366a684f05234c16f765cbfd64026eb60d058257618512a98c6399d489ccfdde12f48eff5bf33afcd20c868

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 7ef282d4760fdcfe6c7a7cd433141bc2
SHA1 77f445272af97068cb7a0f769630dc435b165567
SHA256 edbbd127568bc245335245e79c0002e5c957476b4fdf455bb19dd2224e11ba28
SHA512 bf8859fb0ebaebcf16de5ad10904a0a5dc1768b31786f2c587d7c639dd22319505d2d3341243dc1b04487ac055b4cf9968a82b42b02be2a2f70a5e806d33dd74

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 970b6753107b0eea83633c10bdba956e
SHA1 98d427b21e86e746492d682f11e510b041843c17
SHA256 4b448ae0e893b0a9e3b26177bde0e334b00c47c203f1b0d386e38093b092f49f
SHA512 fef865e1aec43fe5d125909c53e9f80cf668f8c6c9ea7391d1abeee480b9a14e31e2305dc8406224f64b5fcb94a88ba8c28720f08d5f3a80083a3c871a86bd29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 7308e8a275a98db8d54158f441c3b395
SHA1 941ec84971965164d95b63ff6ae411525add2936
SHA256 68ea20ff564bd502a205c044c88b1f13d88908e905aa629f08a074d9f2d707bd
SHA512 1a7da83f3f79658cb1f0b814dad4524c4f17f661cc5c9a6a08b8dcf5e8f79a738592a52365754e4b9e7ecdbcc677c6d5de818796e73ba4c5a214c54d6cd09545

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe60c642.TMP

MD5 d6458ea93638ce11d04b17c4a1925a46
SHA1 61891726c4722b40182b3ee7d62b4a36ef12b455
SHA256 c7d0150b99323ad6155b7c4737ed5bf0fa86693ba9e29df1552801dd74202dc6
SHA512 bbca174ae69df8b1760f2b592ea093d9bb4514b8598a2575634a3eb173b66fc8fb86930dfe8a45972123280a9a2850da5b83bbce5f9d542f71d42db19cfb3d27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bd688a12c0a182ebd3eb23ef2d2dfa2a
SHA1 dc5981b5d5f9c8fb586ee2ac0e5e22027353d249
SHA256 8eba58201e7f961c474278b262da7c06a6b9bac2d9d2dbc2d489d2be6fc3f967
SHA512 1d439cfb6d38cc39e183c65d4d7a73ce5856350b7a6ceaae1ebeeab1f47f838b96bd08192bdb24f37914a9509e6934cbe7b2927bd1270f8f8d07c7f312d95f9c

C:\Users\Admin\Downloads\Unconfirmed 263735.crdownload

MD5 cc080cc12cd5372be2610f6038fae99b
SHA1 2347c627519578d180fb9fd9bf44b7f3f0be8ff9
SHA256 8be0a8ba506a52d5cd53738635400ef35217ea3bf5ffceba8bc254a770b589fd
SHA512 96499d31c65dd13b7d9eb86be1f2c7abc602063e5941a7b067814dc6c67bead65ceed1c6dac64dbab59035d51e1b90056591fcbde93b63f8adb64d88094ed93c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0dab92a0ce3591602480a855a0cd273d
SHA1 7c382566c62c91473a0702036958901b03505393
SHA256 8b99e0c42889916ddc23edc5590a179557d02cb23438b77eee713a9c2faea382
SHA512 80b38f91ffac2f6be93425bbc389aef277c60eb26e371c312f7ad8bd8cb3c7e99dcff4e37aec21c6c5d3bce805e27068052d5717273d16bec9fa2a17a0662ead

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5e1207f577c66bbf5962f580a2d97914
SHA1 3c9ca79b8275523713cda6ce426e6eabcb226ea6
SHA256 6129a532b1e7b70612fcae099fda30df9b3ec123d0bea81c49636175cf81730b
SHA512 272fce4337c960a294ff6d86e12226aee620e69f626f86c116836c4952ff2b41d9f92a7c82e2cf1d610df0bfcefa5327eac3b85f3739368fcfb83da914e31f6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 734373f91a43a692270bef4c4d8476d6
SHA1 a5eb5dcbd7c1a3e2eea7ed1ca7a41eb6ba4464e3
SHA256 887be8bbf19bdc0a340e61f71f295b9c5585214985d8b7fb86f0320c05d86aaf
SHA512 e34935b124dc2aea6bf365da62513be7d120237dc416c338e7b016759bb3744d61c470d5b399498f716ec2b16183cb1250677c5af77c5e5e7cb97768b2973da8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 95cd9df379d24f4a5e58ae352badd7c6
SHA1 8cfb23245a369268a47781a004bdd6c6dbd9deb5
SHA256 ca82d0c7c261fb3d910c983728c5cca5578d42fb7d6619792834558f23b0e0d2
SHA512 721110b51c9303b8912bbc8b777cd832666f32550691a88116bcf88349ddab24d4b5108a8baaea9b59a4dbe33cef31676b16c0592861e917a00de2980d349377

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 ac0a6941ae9aaa76055bb2bfd81e60f5
SHA1 ea7f3c8da3404fedab5f70b1c7b7f4979021c7b8
SHA256 cce6bf4c8f97d05a6aa78e4423c34fbce7b1ee13f572b47fdba8b19e420a93e5
SHA512 7b6e735d8a47a5a2715fe4938ea59dff9ae1ea0b7517dabb8dc89c02e13a2674dbc453745ee5cf7f5d5a136aa0069c7ed17e6efb7f73d5a8fb546eabf684e46d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 6409e3a222cdbccfdfe0708e107d5a94
SHA1 e327465561f0d5279bc2fd299ac854efb66934c5
SHA256 858a3ca24f180dd5c1c776bb84fff8a64739fb3682193d48df1f1be1f6c053c4
SHA512 1a140728974fd99aef6a28b6005c3f869449b132ec2301900511d12024cc32b938e0880b0e37c3280e19cde4015caccefd9296d8ef16df92d4c63745a442518b

C:\Users\Admin\Downloads\CustomRP.1.17.20.exe:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\Downloads\CustomRP.1.17.20.exe

MD5 a007b938a8fc9b96fdf0a43fba1ac9e7
SHA1 5d81ae8eb639f42d623045ea0acb8f05a3951f96
SHA256 9e1c424b88c3dbaa505e5f5ec7256001f935f3b214b4bcf0c40a2c1625c8eea8
SHA512 80926a10caf93baff3ab5a62bb810db97584bc6d5f4d3971293d60db6745fadbd4e859282db3a3b5e68a765d35790904dd1fd882b8a4ae7d62e03dc085dd682e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 180d7ab91157c615dcc2cc1ac09ebc8c
SHA1 9b65d98e43d3460ce5ed11933731df04e9fe0488
SHA256 db2f8bd82300500fd5bfb29fb674d3cda539919fea325a32774238612dbd224f
SHA512 c21dd76e28a9aa03c479b43b808dda1a55ac76e97c1fb8c1bf2cf8264002b77188c18d6dcb75099402ff05cf7104e19d8903f33d55490533224f88738617d854

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\5ce71977-beb3-4fe7-88ca-0c4c18166408.tmp

MD5 b95a19197cb146307823daf120e36298
SHA1 9a9a97ce2f44a45963fe334290db263d3441dd2a
SHA256 e4194c1d1e44ad5d4638fb5b12b3e33c625aa3ca84922a77f7f08df7296027bf
SHA512 c64079b71de673910f3bd99133c2ef6a0a159b5567cc6b95b795c6075a3a2db9bc8340248997c7a8cce8849c11afe307a1b8b5d56391570749c758e09d55d0dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af76fa39c809a02521c53589e692b1e0
SHA1 d484a43ca5ab58800b89a5a4f0f5d173db3e27ea
SHA256 de642be00dbbeaaf9f8a20b0cc06c3ab72b3e669ba9d71bffb4e0b4eaf8a4924
SHA512 d4d1959747c8e17c23380482e299e220bd480f533531260018d259af617cd78e1b5930045a534f4119bef58a34750af3dc69350386707d931f50179f74bb5f7b

memory/1776-546-0x0000000000400000-0x0000000000515000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\is-EN543.tmp\CustomRP.1.17.20.tmp

MD5 0fb8cc7beee2d6899ea8a4a0856164a9
SHA1 d2a90065ca504db5bdae05d27329ace677669fac
SHA256 250996fc58e740424f7e7d269432ac60878e483f887d1d696e27e4b3369367af
SHA512 0a4df4497a3b5611b1cf7cf71b5444befb5705a3de0e4e20dc95d3e58d5e2e4382b3def4b0ef72d6d55e921c512565c8aea20dda9c67cc205a0e57195fee54c5

memory/1556-552-0x0000000002750000-0x0000000002751000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fb8e291b2250d4ddbc986fc127c40e6f
SHA1 0d62d819cfa0f5cad36b9aeb3e0bb43ba96e189e
SHA256 d8a97323795cfa41cf143628e0b574f2d6bb964b9bacfa9bbc90676f2dac2111
SHA512 b39207bac6a14a50b493b9997b80bff4070c2597bd911ed297048b5656a159ac6baf1f7bbc0c83da5af836a556acc8533dac682f831faa38e15410b7e8ad5ba6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 33f0db9866133ac0ee342fa403cf6372
SHA1 11826b255f5eec77741b27fe78ad7bb5e6e8ab37
SHA256 841691a885687c18990e9e8b7dbdd2e512fe8f0cbf314fe9e228ad97a92e3210
SHA512 6a18ca1e2db93866527f876602de2266cbbe5025183ecefae60ae3cfa986293abad6d98f3770fbd9fe750faf28fc0ae402114f657f76a5542096b87ac9ed17b3

memory/1776-583-0x0000000000400000-0x0000000000515000-memory.dmp

memory/1556-584-0x0000000000400000-0x0000000000751000-memory.dmp

memory/1556-595-0x0000000000400000-0x0000000000751000-memory.dmp

memory/1556-596-0x0000000002750000-0x0000000002751000-memory.dmp

memory/1556-598-0x0000000000400000-0x0000000000751000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe

MD5 63af645411159b6af72bc5ca26830944
SHA1 f062b012d322722c1557ae23803153a5355ac2f2
SHA256 1f040321cc8a4c721e832db5a7fcbf9d71e840ecb93907ec8df0ef394a175a29
SHA512 fed156abe4b5f9f9b2860013ad0e5fcfe197461efd0cdb18e3d6cf227077e41fce740a1c5efda84e05e9d89dfe12437d8a61993ff2f9ea512442e768fe0c8b1a

memory/1556-782-0x0000000000400000-0x0000000000751000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 b434ebf7cf0d4399bec4b7f8550e4647
SHA1 475c87a313454b27981a371351ab6370d59d364e
SHA256 eef3d0cfc486e51d3a6ec50133191d87337b1d4c0f6fb77637921b4b2f7f351d
SHA512 848493b6391929bb44e962228ed5aa70e22a22eb73b72186d3547d707644a1b2ee11c0a1f3cbc0d4507904406be69ccf2f3b294fde578feaad3ff782b3244356

C:\Users\Admin\AppData\Roaming\CustomRP\CustomRP.exe.config

MD5 b496e0b64ad960a0b13327a350ed89dd
SHA1 d84f215a7c6766c60bb27fc59bddafa6069830e1
SHA256 4691bf30db39d0cb27f0608e1c01de7865b9e7175667899c0dabc57b91908afb
SHA512 b548343b0188adb3c75557722c35d086365ac0a091bef8164a1ee3e52bf7455edbc17fe1d3297e8da117527afa8639de19aa10c875cacd644b5c13725d0727a7

memory/1556-798-0x0000000000400000-0x0000000000751000-memory.dmp

memory/1776-799-0x0000000000400000-0x0000000000515000-memory.dmp

memory/4916-800-0x00000000001B0000-0x00000000002DA000-memory.dmp

memory/4916-801-0x0000000072FF0000-0x00000000737A1000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\Microsoft.AppCenter.Crashes.dll

MD5 1fb364c1d622905aebd6e57500c169d1
SHA1 5423fb63ab28a24e1fdef3616e5e0e3301dbbc5f
SHA256 07125de19eb06c67010039448e898c7bb954d25cf0a77b05d95329ed575f24e2
SHA512 ae724010f049989ec006ce71990073834f8d58ebf1133a589ec3de839acde1c07b136deaf9e237c3b5a3d216ea9dbbc5aaaf482df1b549ee786a7a2e27d6bff8

memory/4916-802-0x0000000005300000-0x00000000058A6000-memory.dmp

memory/4916-806-0x0000000004CE0000-0x0000000004CF0000-memory.dmp

memory/4916-810-0x0000000005100000-0x0000000005128000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\Microsoft.AppCenter.dll

MD5 885481ebbec08fa817ada9a5f7a527ad
SHA1 c9390ecd62766338584a0ff45c71d6abd64db379
SHA256 82e14d7bada761bf353929163bde2cf5c12e41727937ae5f0c7314fcee8be029
SHA512 9b2a24f9d30886321e5961d5bd59377a4500bc5f9de23c5a217e94087a8f8742e3754cfaae8d93c6d3bdf7d6b1fa578a103bc6e98571bd201e1dc9564d38ed39

memory/4916-811-0x00000000051D0000-0x0000000005262000-memory.dmp

memory/4916-815-0x00000000050E0000-0x00000000050EA000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\Microsoft.AppCenter.Analytics.dll

MD5 4f0eeea40634e091b149e22d098f0084
SHA1 8426f3f5a89dd8a32e07c54362a523825cdd4361
SHA256 29ce7dd433293977386ae132e3a72b60bf32559f5b56b555166b78953212743e
SHA512 415fe0ee2a36ae51420f11afb9d127bc41fba899274be097674059e5b50fc2a5ee206779160191c3cfb2a24f0c4c8799072ab013adae6a557754883066ad847d

memory/4916-816-0x0000000005A70000-0x0000000005A80000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\Newtonsoft.Json.dll

MD5 69aecba4e36282b67532edb6d3362f06
SHA1 0d5ec45e18819c374fd0313ad7a4ea3d497a3285
SHA256 3fe39b9612bff53ad82f2004f35f7ef91bf434eebadc543d43d7e6d9ca5d5a60
SHA512 7bae7cad00e2840b9946e736efb7b6a8369e6930d4d8de5f4d3cbff40b0b508a9583bc87f55e1eccdb2277bae16748ecaeb8e2c33243414f4bd368eceb954cb1

C:\Users\Admin\AppData\Roaming\CustomRP\Newtonsoft.Json.dll

MD5 8e2faa402d2693e8897ba66db5330de9
SHA1 50f70721d0e104e55a4aa09ec73c89c78e3cc02e
SHA256 b94b656428b93df2077976e53af0e719c02cd16606f03dc6da8736927c2a3153
SHA512 c92e6ca6c3029ec9c83a1c3f4d4eca8a521969695ffe725d118fcacc16a8e338a8896a6d9303f371f4a24d1b9898d832ef57391a6775d03588e24387797b13d2

C:\Users\Admin\AppData\Roaming\CustomRP\Newtonsoft.Json.dll

MD5 7e2cdbc06c33c22ba71d77364119ffbd
SHA1 a997675fbd8e03c5cfd1a1f6777e1938234bf42a
SHA256 09495d2aa791c699365a08b4b02f838be024530d9da264a52417d9ea69ba91ab
SHA512 a685844ce5617ebaf6c3e786649544560fa14c8364df0b376bf5a06af4a3d9cf674b0f7e11ca89ba38e71a8843f51c7a64e830a615384df5bf64c78668074798

memory/4916-820-0x0000000005B40000-0x0000000005BF2000-memory.dmp

memory/4916-821-0x0000000005C00000-0x0000000005C76000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\SQLitePCLRaw.batteries_v2.dll

MD5 59e7b8c38944a8d591363fb5874dc971
SHA1 fdfe99922a4e9aba60ed6b1859ed331bc5940faa
SHA256 4ed2707cc2644d63bbd27cf39840aaa4a8617b6b275008f031e16d3a76c75e4b
SHA512 5d2d3e138588352267ee8f21d02f7ee6dc9353ce4a22e9fcac56e0016bfcb52ffeb4c530dbd5c6d8d1e2fe0855a50fa909c0b3129eb4fb8e13376f4bfc684f9e

memory/4916-829-0x0000000005A60000-0x0000000005A6A000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\SQLitePCLRaw.core.dll

MD5 5e45fcc43a6a54b13e1d384c3c6c6e85
SHA1 6b54a3602f37ec3b3204914c58fa53f6453ccd3f
SHA256 f424dc7b2ac7172e3041ac567603a0cea940fbfded8a2a8df53b2aa22d445da5
SHA512 0bb27e39263b2cac625761aeb0db80e4cf43b10573cd8126b250620f82be8508cda948f4dc23693956b39db0af4628f11abd5e28b5b8c6d7a024cf5b30fc7b3f

memory/4916-833-0x0000000005B20000-0x0000000005B32000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\SQLitePCLRaw.provider.dynamic_cdecl.dll

MD5 359189a6345d70dcb4703cd4b75b5be4
SHA1 afb93196574037c1c84a16892e57766097d579e4
SHA256 408749d563fcea1d444ffc35069cc0f9db4c7d10636e08c522b06368e90b5834
SHA512 9f729288d4953413abff0884cb88944b579adbb2ea43d49eeae560d0992ee71e9ef072c872e7edf22235e924ad4fbf41ddc063ad4858704cff4cb3166b7c7a22

memory/4916-837-0x0000000005DD0000-0x0000000005DE6000-memory.dmp

memory/4916-838-0x0000000005DF0000-0x0000000005E0A000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\System.Memory.dll

MD5 f09441a1ee47fb3e6571a3a448e05baf
SHA1 3c5c5df5f8f8db3f0a35c5ed8d357313a54e3cde
SHA256 bf3fb84664f4097f1a8a9bc71a51dcf8cf1a905d4080a4d290da1730866e856f
SHA512 0199ae0633bccfeaefbb5aed20832a4379c7ad73461d41a9da3d6dc044093cc319670e67c4efbf830308cbd9a48fb40d4a6c7e472dcc42eb745c6ba813e8e7c6

memory/4916-842-0x0000000008E00000-0x0000000008E26000-memory.dmp

memory/4916-843-0x00000000085C0000-0x00000000085C8000-memory.dmp

memory/4916-844-0x00000000085B0000-0x00000000085B8000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\runtimes\win-x86\native\e_sqlite3.dll

MD5 e52a4a0a6f61ec95aa51d8ffd682b72e
SHA1 6a3529c7ac873131a766415879b20925ff404b64
SHA256 7dd2e2923e9a988866d969bb5a76a9d3448a11a0f225b83c734161977db564a5
SHA512 0e91687ba8b36cc0a7019ba1bd819f538cd55649914319a074669b7a04fdc9a195d36ba1fd5eeeb6149bffdf46e6dccc6e8d4b8e1cce62aa13463f9410423883

memory/4916-850-0x00000000091D0000-0x00000000091D8000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\System.Runtime.CompilerServices.Unsafe.dll

MD5 da04a75ddc22118ed24e0b53e474805a
SHA1 2d68c648a6a6371b6046e6c3af09128230e0ad32
SHA256 66409f670315afe8610f17a4d3a1ee52d72b6a46c544cec97544e8385f90ad74
SHA512 26af01ca25e921465f477a0e1499edc9e0ac26c23908e5e9b97d3afd60f3308bfbf2c8ca89ea21878454cd88a1cddd2f2f0172a6e1e87ef33c56cd7a8d16e9c8

memory/4916-851-0x0000000009250000-0x00000000092B6000-memory.dmp

memory/4916-855-0x0000000009200000-0x000000000921A000-memory.dmp

C:\Users\Admin\AppData\Roaming\CustomRP\DiscordRPC.dll

MD5 2e9f2a132f59cde7f3a888f5fa674cfc
SHA1 441271e6e1c2a65eb43ac8a76be8d7bf5f0b9a00
SHA256 84ef313d2525da8006167fdd8b78556f5038bf1571e3201e619b3d956fe6d842
SHA512 dd420ed1cfebb181c5706ebda1f88c267a40a158b5d22a6bea54710add2cee395a6dd67e9e04c96b387db791aea84ea3b124db5e424d8b3a2d5f1b807856534d

C:\Users\Admin\AppData\Roaming\CustomRP\Octokit.dll

MD5 c8661cb616427ae0abd25b58e7c4540e
SHA1 5f9fa035ab86b9171c744920d3b84409574a9106
SHA256 c89ca50adab276a65db96b4fa378ec523948899f03fac2936265a58bf6424ca8
SHA512 dcefe8cf7f824ae7c6889f88d1d101540b03884b8cce2a82b3d1152f089483c8ff0cdbae13e8fb08a2149c9de1e83df7008456089d9df57263651c555c6ef39c

memory/4916-857-0x0000000009410000-0x000000000955E000-memory.dmp

memory/4916-860-0x0000000009390000-0x000000000939A000-memory.dmp

memory/4916-861-0x0000000005A70000-0x0000000005A80000-memory.dmp

memory/4916-862-0x000000000A200000-0x000000000A388000-memory.dmp

memory/4916-863-0x0000000009700000-0x0000000009722000-memory.dmp

memory/4916-864-0x000000000A390000-0x000000000A6E7000-memory.dmp

memory/4916-878-0x0000000009040000-0x000000000905E000-memory.dmp

memory/4916-880-0x0000000005A70000-0x0000000005A80000-memory.dmp

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\user.config

MD5 5e29d3432a03230ff4221c385be12138
SHA1 591c0e6bb41588dcebe7b94b82fcccfd1126e661
SHA256 fbdf3ca7933fdbac1bb082bacfb043f3b7b2669babbcdd33176ca60877ca29ea
SHA512 472f4bcd76e6d69c219a3ccca2f21ee522c7c98685361a7e77324b18a5adb8a9b7814781c1b2f2da68032b025d71a22987bc758c9487b1f18c5f68309b8cce50

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\user.config

MD5 f692acfa0a764b4f70172e48b1897f45
SHA1 c915240fb3416585fe4a1e8231d92859508a8f18
SHA256 d3c265dfbb3e091c4a3e6f6c11afe1abb73fd1ce6aa9e5dbc0b291652b6a2995
SHA512 5776cefa3e441c7ddce87a01df9e18824adce0ed142c56278f3733b924cba6a042743ef91d9a4c6b51ad847b36b3a734071b185f3c11ae6c72ee9495f513f782

memory/4916-892-0x000000000B540000-0x000000000B56C000-memory.dmp

memory/4916-893-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/4916-903-0x0000000005A70000-0x0000000005A80000-memory.dmp

memory/4916-904-0x0000000005A70000-0x0000000005A80000-memory.dmp

memory/4916-905-0x0000000005A70000-0x0000000005A80000-memory.dmp

memory/4916-911-0x0000000005A70000-0x0000000005A80000-memory.dmp

memory/4916-912-0x0000000005A70000-0x0000000005A80000-memory.dmp

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\2y11mcqy.newcfg

MD5 3abde74328886fcfdedb259aa6e08649
SHA1 282937adbda2301c3d4a2235a169641450b39e34
SHA256 00105a14fe5731a0dfe452184d1783788bd2a588ae85cfd14891adc3f806fd74
SHA512 1c9883d3fd3c7ada54b8ff86eaa755ee4b998d8d668917337f176f7443e6e8bee6c010e97084230bb4524e13c926e4cc2bc3f7e3749ee3847a42a98f64fa80da

C:\Users\Admin\AppData\Roaming\CustomRP\logs\2024-02-22.log

MD5 ac72608a6fe13ef5b7da1237087ea3f3
SHA1 83753fa9ce8d0ed3978982262882dcbb45524135
SHA256 0024d1739fc4f09bed450e49d0c2d740fde3358b2abbe6f40554aeb8bfa6379b
SHA512 ce53e765aa5c616f5eba6b49030c9714e24d48de305a59ba1a35ba6d17e264929574804ca368aec319ae9490a3d6969cde1b93762bca9074b6f65c7a7ac1e24a

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\jdq5fihv.newcfg

MD5 5cbadc20f9c760313ccebce27d44a344
SHA1 46846eed14dea5fd7f1bd1e527aa803c1961cbc1
SHA256 838e2caa58fe95a33b8f67ec415ca6453b1cdce73fbdc859cd330904d9354c10
SHA512 f687d137d34f3344c971f02902f400a9cebe2ede378bac0f6f15f5c7dd0d8bbf9b4ca64c949ac80f4be918f0f38e0d06a5e971e809ab16971ce86412b0ea2d43

C:\Users\Admin\AppData\Roaming\CustomRP\logs\2024-02-22.log

MD5 5d326f3cde865f768e388fa66c3edb0f
SHA1 5bc1bb91319e236b7081a3e370e0275311efcd0a
SHA256 45fc203aa54bf94aa8189b89bfc14aa4654272f62aff39d0757b4948e3e990bf
SHA512 ae00a984b8fd18540ced499980e83d444b4d3630a486db2d3e7455aa5335035e2ed046fae410e4fd1c3bbdb16a561050a829569cc4c6965421a3c3e3601d359b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a9c41bf267c46689aff18dbd0ca12d57
SHA1 38c03626dedf89a131087922dc1621db48dd6ed7
SHA256 adb70d0b43e5f86e666a6e876741d76f70aeef61a03bae660ebcda61c1edea61
SHA512 b42645936f5043289e8a665fa3c278366f6849e30170174dfa5db2396531749b5494a4eeea97a7b07ce247bab89d1c43790ddebb5cc72e0d5868f910a5a58dd5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ce23ea9bf02b39917cdc7fea68cc5b5e
SHA1 7d40822fe5d0842fe547fadcbd246385efb95136
SHA256 db2a45e6f3016acb2136a0c3d71d31512c5bdbfce2463997cb13cd11476ae350
SHA512 69fa69a11008010ec6ec1a1a9bb2d2b37d2599708e44bb5dd76fc1a0beda22123e49a580188dd424e079fe5934a45f79edf06642b054695c92f1b7c7ef3c212b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 12a2dd3508a0b74889779a65d8807b68
SHA1 3db69f38c7a49210b2d0138dc0567898437a4947
SHA256 8f363e6c1e8ea05f85f9dc20a2e2d707cb5c0d3378b5b47932c7588bbb51a481
SHA512 18d291b3f5cd5b944777c80e264bd3920b5a551588510f33e7032d925259be15f7237a79a9233ed67b82b81c1539f21f9180a013a7809bfd7bdff186f7ef8c9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 84f816e5ae62e9e3ac74f465310c022b
SHA1 01ea9ee7b001319437760331a90e63cde7a8efbc
SHA256 b86dfe3205dff91c64f6e0c48c16337fb31e4ac3ec6464f33ea5a106b449a03a
SHA512 a5a182872cf662770d3056d4714d131a71c9e2c3979cad22d880c869efc9e1fbcd00f479b80fd161399f03ec1314b1fe7439cca5b1465f7fdd72e3f89c992b4c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 103e8f94517115d164e1853b5b29ac4b
SHA1 9ac5e01be0d4436cd4973f341becfa15991b5dc8
SHA256 2223e1333d519a565ef99c555cfc876b6c22be9de9d52825ad6e2cc23a6f584c
SHA512 4c3e633f3c7af04215cb194a52813b31bc1a1a9cd349cc4d2aedcb591cd5b47ccd8a2fc429495581fb245b6864a612889cfdbb07374b27e2e7954a78389d8743

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 380386431311e6ef0a11c9871f9207e4
SHA1 1d75f9e2188486500de76f5198c68fdf4d708ad8
SHA256 ddb06a9748208d32c48e5f01c1bb19ba7916ac0a775f320b52464ec20530740a
SHA512 098c6c9b855bd0ee6e9fe4a0488e5b133b75cc57e98a1f929b1c0c40118ba187288972c4bdae45b53082485e9ce06b696a0432010c826146e8e718b2cc6d1d85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 ad135358c72b508f6c53f1de48788c06
SHA1 90f748487b38628c962d6b91a533ca97f3eab793
SHA256 2b7f2db521751f3122279dfb19d35c1eb2da19219a315933e7c71a28c5e7c0ca
SHA512 ed4f0213ef8da3f5dac57ca0e8abd952936f08bf55d1f6bbebc82b7104874b9c8a223070f9a0f387aabacfeb8db9ec8c5195cb7cd6ea070643c639e8b84777a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 0ace3a1d2edfaab975a422b77b8666dc
SHA1 778e2d22abd6de3201d9248473667a9e6b12c8bb
SHA256 da7a795751a35edfa1fb05af6d66d75afe69fda63cada788065ab3b0fd542250
SHA512 ce6b570b3f55ac761f9a566750a17320f68cbb13f9a601717221225307fba38e1a7810d28e376224e770a12ee584cba47f4e8d56a37f40f8b9d4a65232dc5adc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d816231fd7bed4a58d3c106c71958519
SHA1 a6b55211ad6666859094c4dfe5972097702f4c12
SHA256 aa3a707c1d539642b9f33f8f605c397f0cccab75685079daf08c2b0a8c3190b2
SHA512 19b76e9eb0f1ef9bed4bd2ddc93052b97178ea95d2010b3b50698df06ba81ba84ec5eef934eea725e85af07c4c558ed4b2b847a517fddc7fbab317c25e77b57f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 31bb1229b0dda5dbdc8fa26e812c6883
SHA1 3c5f5d4a9c9b8a9248634a39e1de995f0f34e428
SHA256 76e5aa51c9376ad87662a7e25c6055b55c232b2cb2e5ea7ffc2ca377ad6ad695
SHA512 e63f432c98adae08bc756c4ecd4127243d495299daca54c89f140cdb3d3c57aa415ee5dea69e91c157c8a653bd825a3bc3d512b853f6f9e830300f3fb429c050

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 b634bd92da2c54ff11f4e85021db5088
SHA1 83f05c67bd6f2a9de5380b7078a3d8cd43f11c14
SHA256 e06be3e7e30630193b1a0e6f90515fbd5973e6cbac1aba1909b4bc35598b1951
SHA512 820ae81bb37d1c63c9f9f27d7105b0ac7b45efe9fbb0198400ecd026849a1fff3b8197c67ba3bab28d3c68084b2b0eebe65b0407f7d6ee1f09c7c401bc598427

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 256c93487aca69ed68adb832077bd68a
SHA1 c092435fdb7cd2f1b1c068a0b4e652c624f9b0b0
SHA256 61bd77043ec34bb37d6716e0b0d3f27a6f4ae225a7d7ccbac6135a2e5fc9f31e
SHA512 6ba5537e852d631e97664ace51f055f2de27dee2e3936d40caf282de6568cdbe9e73eb2dd2ee22a76c9c10f52513eba91cd6b656fb564f2ec019909f305df545

memory/344-4885-0x0000000000E30000-0x0000000000FA6000-memory.dmp

memory/344-4886-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/344-4887-0x0000000005A20000-0x0000000005A30000-memory.dmp

memory/344-5082-0x0000000007EA0000-0x0000000007EA8000-memory.dmp

memory/344-5083-0x0000000007F20000-0x0000000007F58000-memory.dmp

memory/344-5094-0x0000000007EF0000-0x0000000007EFE000-memory.dmp

memory/344-5306-0x0000000072FF0000-0x00000000737A1000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 43cd1a6de3d810d285c5a09c2644effe
SHA1 c75d281b15913d4045a30bd7726a0ef11f4cb7c3
SHA256 f03fa82036899b26b9a56f4d65469c4d9e01b8ce159d50487e221e23e0f73ef5
SHA512 fdbe3393633d999d3334a00daa03b9cb732eeb89207cdf582d268504eac524787ef687d3166b8bd4c601edeb3c034693cda6abe073f025aac5347c0d718a2292

memory/4916-6851-0x0000000004ED0000-0x0000000004F02000-memory.dmp

memory/4916-6852-0x0000000000DF0000-0x0000000000E02000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 57170571ad20cb95a6b4887d1f6d964d
SHA1 7e6fa15b9a976f33a4401845409586da6f310286
SHA256 17b8383a351873fe345539894a5e04af872539559658f178e4091add972ba2a0
SHA512 0548f17243af2804a448b96040508582b5c11fae0d421a0239a4ccc1ebe2e741eca6acd962355aa3c0265f94b736671779f32026e4616761ace2c046407f77ea

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\ionwhfnc.newcfg

MD5 d6522d1904501da8d93e6a17b821d328
SHA1 9d657a92eed1d45ffd2964dcd974dfcac66be1c9
SHA256 a7dd56ecaec1eac8a304864286aa44c04caf4b1a767c6e206ed251cce3026130
SHA512 3db10be015356727785e5524bf3f4d2aaeaaccfbb564e44e2ff95923b9a69edf9d7994609eae2ca4e0b9ee8da2118a81da210632d722528e8d43304234f7e053

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\0f3gvvbn.newcfg

MD5 7213cbb9c38727c91af79ddd75d3c984
SHA1 02822bbdce5ae5ade0a246fbb95593ce457f164c
SHA256 83fb5216e26bf64d3bf18b7780eaea9a899c9eff8cf9bd5e098c3176e937919b
SHA512 040955c2ac853f6dd5a9f97a187f40efd5e2b040a5add1960130cad7f8d2d7210c77c8af830f0a67361ea4ebafb21bde1f9aa64ee106550b22ec771db55075da

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\ip1juhkv.newcfg

MD5 0fa20095002aad834c870a331b57b38a
SHA1 5a8b7ac77460dee22335c45c06eedba74117c3af
SHA256 5b5bdcc721340d533b36adc0551b1f79d076d41cece9ecc075c779acd25fda8c
SHA512 333b0cc89d68ce2a0c72839a4d3cd267e3fb71be7b6053b9ce27d166f4f59e25e924deaf052ecff937a539e877ec8777348022e28fc192959f6454c1d24bf347

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\n3f23qlv.newcfg

MD5 af7224a46d0f3fc98aa27d1678e9a2d0
SHA1 654c7a73f93c299085f23a72b06e0f088cf6ab15
SHA256 a6d61f4b1d0745fd9f61394d13826e8b24432fdda9081066363369162a6c4440
SHA512 f49eca420e8f1e89640107a0a320cbb0013abbf3721a938aeab5e7fc3f1a04725ebd35b092725befb2b37ad161f723d256a6fd1c955bfa5fe67086998e33f5ce

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\znd2z1tr.newcfg

MD5 805713d7c4d2a1e4badaca34c1d18f54
SHA1 87a29b41bd58b530ea65b0731efcc70589602e1a
SHA256 c66bfa4b73c8b60aea0cbf93f6f0028ad17aabd7260ef08c498f52ae6ff9ab8f
SHA512 9c2e6d3273381ed9b62be06ce234f9375dc3a07307e89b75bd29d732886008126c2b6b79e400949ac108bba8ae41beb9e5e84f25d662c46382d2f839dac1a2cf

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\2rh4vdax.newcfg

MD5 270bda0361e8bbc5a8c8f8864cdea975
SHA1 8c512e16c8a47c6ca5026ae6b0caba440de73bbf
SHA256 64e91a590501063ecc25b5e6aabe5a7e3b74033e6ad8aaa38b2cc7287db05729
SHA512 fc75e9777a653f1781388022b8723611334b56b0b2d6847ce0770e040fd78df4f02d671a7b827c6bdb22c6d6ff1aa05d7088bc90a5f1a6ff83d018d636da52cf

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\oxcds5t0.newcfg

MD5 4ffe3909555480aff019c8ee51620f2f
SHA1 079487dd95005d944e85096f30482b11e813cd2b
SHA256 c34a546462ef607f526e17481c0f0aefec5e0b7fdf7d2daf5207f073c3f18fcf
SHA512 b6a2c28b8c5b7aeac2ed31916da9b477786779a0d5f4896e750de6d29d43d0d645d350a76d87cdbdc00e40e70fa80551eca5a3565ddca890c10cffea6450ab19

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\cznqgruz.newcfg

MD5 21233864500589ade8ce4c61db9b93d6
SHA1 2b98c2d461ce04c79fff14baea2dbc4bb2ec6027
SHA256 8bf3839f6025300a729fa3a14f6fc08de94ade4045f2f9d3af84cb67a2de683e
SHA512 48c4b3d6d890875dd55b6fb3dcfd113431ba33a09a42d51456ec84eba6584101fcc5970eb28d301c53f9cf24d22ece35bf4f45cb4109a4c233d51c56dfc06b18

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\ytgjwcjq.newcfg

MD5 e8e8fe1b76b4f5fbecdfc677539c7945
SHA1 b2dd27ad9c6d69985dfb878a2c38e4b7a6b7ae86
SHA256 e529cd535bfeb5b402d9749b44dae37404c0b0d169bf35dcf473eb6f0f4a3bab
SHA512 f06e3064be3ee5e51ff50da5fec17f6551a3190000656a911e9fd26b5a309ac91d38296c344b445acbe42ee0d0cbae701917ff833602da53c81ebe31d7d86ad8

memory/4916-10686-0x0000000005A70000-0x0000000005A80000-memory.dmp

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\user.config

MD5 069fd11a1b6dbbbbd61deb71031d85d3
SHA1 afcfe21745db7a319fb73a4e4e42887cb25582fd
SHA256 938d39040ef56e0fd67173da10dbdd100df82864598ad3f670c356f62646221a
SHA512 1e1208b0e723bd3744a12c5036f3626c37c71374c83bd3368199e2f7a58e6c63c3138c5d9b662b86cf2ab1d3f663df9e9e1951eac2dd6ed5f4dda0cda474fa0e

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\gfw1zcrz.newcfg

MD5 67448bddc032104ef643cbec38a62148
SHA1 d88ff24330dc2a49917f10ab1b18af7d42b6d311
SHA256 0e79460583d90b4da8d515b8dd4b69a8b6ff1b570d0b414519891c6a4f60be84
SHA512 61441e8941cece1f81924e4db7a7746f91904622e1c256885aaf3a20bd1900f74e1fea0262f9b1769272cc993895a7d82d7dcf1fe54016e4a4b1a6bc4555db4d

C:\Users\Admin\AppData\Local\maximmax42\CustomRP.exe_Url_r15q51hssngmokjllmk3xsx1r0qzuwow\1.0.0.0\user.config

MD5 7a69cead5cfcac757de84923c5a0a0ba
SHA1 06466957012c18c6b7a7698f81b3432ed8e9ecc2
SHA256 4e3fbe2200ebca9a0af61ce9c911992c1b478f8c12e0298c17b81a027e67829e
SHA512 ec0b38a78196028960126141e757870db5571dc7521ee5ede0a64b7277fc140f50941fcf24c179dba4805c736b67296d12b8da39f614fe5c41bf514db74dd6bc

memory/4916-11454-0x0000000005A70000-0x0000000005A80000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 827ad401d093cdb80aaf41b1b5fa38dc
SHA1 07984a150ef6320267a0f154344a89c0ff62e700
SHA256 902f3462150c565b23174912ad3de9bd9263bc1d2a136a8e01b829e01ee2a2b5
SHA512 4567ccf24d988b300beebe585c364e6a70b29ebca70a373abc16f8a92d1ffa730a6466bdc524538247474f4b457dbd73d9a216f4f15f7ac72fc67f347a7bdb1e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5b77f6b8175c60fb6854983407f4796f
SHA1 daf54dccb7395fc8dd4d2a37d43675779073612b
SHA256 e3b1e5ffd5630b014724f18d420bf33b2894ef16b7a0b53abdb93e7172efa91b
SHA512 d9502bf78cb9c9219b23bc0c0aa4a940565046b7c69cfa7aec81349cae543bb52b19b1ffb74bdc65e305761795c32112206f8ab089570a19569a75de0de682a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b760d8d9860b0ebdecc5cd12522125f8
SHA1 a212bf032ca75e299ff0ee80cf6a604c72bdc59d
SHA256 9eaab40ac6fd5eaac6f32955cd62ab08f7634dae273d25ea8fe419c5ce7fd484
SHA512 f7143e96cd6068f71a0dc123a088ae75d1dfa6e45d31b9a253ba9b94f48c90f2d315b67811a0e33f555aa37521223b9fd696e673af28ad689e0af7860568fbbb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ad57e695e54e5da86069b899fe503340
SHA1 e234b56212d262f74b37ff19ac2c7828410852f2
SHA256 ab15083999a15c43e42b609db005b23dc4cf0ab1b99ed6d471596658b935baae
SHA512 3e498bdef4e021fcacaa53a720157d6e5b2dac4e98e9a5b1ae872ef23070a19abba26603e69288f925a0a0bb74d292f090e32d6adfc8492360a66444f73a75f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 88a1d665bab2913aae66657d5f781253
SHA1 6335ee18aea227785e90045c9e65b53f868e24dd
SHA256 05c43c0b3c1f11def974a0e0c2a0eef205781e3149447ceb907c1235b8fd5bf9
SHA512 e5c7a0114e9a761aa1555faf7e6997ead8112aec391e2bd487a21c9284087f517b831bf8803cbac95d73d3a42acb93f278a1f221d14dcba87fd73eac37e91888

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 527b7617fad8fa874faef6841fa559af
SHA1 43d731b39474a632f0c430c277215c72db5a2061
SHA256 15f17898d2e1315ec745716b9b01ab2bb735c84d20d00a5fd51532a06752903c
SHA512 330120fd02b182584db29ee12adb7822d9303fcbbb5094a0d6251fc1269179f22338dbf0993ce38c84632f657a2d23a1d6263c00274d72feb2f59d48b006eea0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 35185af7caeaa5c778b57a083244c920
SHA1 3307baa69bb28a90971e10790867508fe3c98e8c
SHA256 87148bed9ccc544a7d12150b7e969f6806a65a455912d23be3f867d1fb50d1be
SHA512 26347777e0c14d1f2c72975a93a76d395d6fc68bad3b5009e985acf62baa485c91fbb5d2be95e32038afa2de958283b993a3c187339517aa20ba201e43886029

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000079

MD5 d10273e9ff1f1b96bea1b7bbf465f211
SHA1 a4dda3313ad7c9eb80d4d4bf819efa19735203cd
SHA256 18b5d1c955efff6bda5af3b563bfdd033eeebe0ef612322e6baecdf24aeff183
SHA512 d7c8eb3f18f14357dd636a12e971370fa7d182398124babd4caebf95520a8b7459acbf81ca9b726d995b13068e506a9b70794c9fc5cf79d4e78fdc1e5166b247

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007a

MD5 4d39af81ff58f42a7e6b71957b8078df
SHA1 0c22a0631314bb819b92c637e0ca8fa2dbbc6d22
SHA256 812c45d77f82dd62f23accdaa9edf9d8b1f68937177fe3d061975d2aa16326c6
SHA512 addfde8c1925d9b9b4eb166f7d9fa8e8d627ccb6efd183fb9d99fce0ac243d0da083c0ca0c05b4f92ebd52de83ad091e2638a8b6676ec090288e5138d497caca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e2b0c082c1dff313f61a2f27fc99f929
SHA1 550caf921288771205dc63eb523d24aa053d67da
SHA256 6be4df359aacf98cbfc092950ab2618e66baefeb17e7c777789d14a07a1cff21
SHA512 47dfea3aaf3ea78ad016c851d7aadd78261ed64ac28e27dc2a8d6c977bb82af065778d63ecc3849c803b4cc95d0a1668ff781564d451376574ea834560c672a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 f7a3e8fa93250092f48c3b5dcb6fa3d1
SHA1 4eda1fe9360cc3e2e9a8ab7894784270513cd440
SHA256 a7a784278cb5569e0d654e194a28c28e3c41b7f772ee44d4e306fed11db7c972
SHA512 fbc0151f116948d66512962e95966324561400b8699f892f6c411d320b370113357d62d303435ed03736e2ad5a196092062ba7b01f398ab2fef1c4b47fd858ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c25fc8b394488aaf71533f82644ef5ca
SHA1 95cde53b2960d6e88b743e59ccce0fb3b750aa2d
SHA256 a36bd3ca3b9ffbc8cb1e1b6b104819594286cd83a72c80336b91c75b903361a0
SHA512 2fcdc37919b0020d11df639a30717ef26e1944471b17912b0d0d23849e3894adbc3da7574ac760a3c61ca4ebff37744b75318e91c1b11c3150d3ff50188ca9f4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fd20218f17d59dd1a04cf89350326c9d
SHA1 f882f9062609fef5d1e5c948fcbef07f5a4bfe43
SHA256 24ea7126ceac3ddde80f701e1ac5930d6a592df309a1db95bac684d304e2ac06
SHA512 dccfe32e546a31a8b42c8586d62acab2dc1269fb36a3a8719f56624f60d34879c316584b90b45fa2d48843bc138b7bccccfb50970b4e95a7e69c579d1bb3bca3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9aa366c6be955432128aff9ef0997bc5
SHA1 f4c4668c21cfcbf038df5bc24da87cd0e246312c
SHA256 31db3d4ee1085d0561a9d030df6f8fa6944bd95ea5dac449f2df1e78f202e942
SHA512 0eca3d13ee3f23de0c1dc8c85c955b5503c47216eb20f93771f1942ebacd09be18692685905deb30e8926e1260d3283c98fbc707bf5cbf7ee1a67cf624e1e114

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2e5d25b864cfeb322abf687224180a2b
SHA1 1b005a78567805ce37bb40361de048e8d7af5528
SHA256 f83275a5cf84eb56eb36463ed7c4f75a0a1ec7bc32a36500209595f0378ed256
SHA512 483987db3d66a912ef7920e5cc873747bdd81bae6712a9d678456d7c5b05a55599d277ebce57df70543f47ded3658cf3c659e05674294e38d288e77a36e888ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 60fef20091365f5a0134e72aa8df91d7
SHA1 6aa2f7c94313e9ea0b373da93c98052ee3d0c473
SHA256 c72109778a97dcd46d2815afb23e4500799c5d30bded43a0b3fc47165cd33ee0
SHA512 9d1ba9ce7226189ebd4f550a8971e01416acf00c54844dc8e1cfd3b014c0af87c9eb28054aeb371f915afd76afd6390edb3794ab4bdefaafe5ad8b445a37adc4

C:\Users\Admin\AppData\Local\SquirrelTemp\Update.exe

MD5 b761d7400d5136ee0b1a40b5a3228152
SHA1 ad859361b2494f2de31a85904a076c7bd3214f5a
SHA256 4e06db09b8c3769968c3d0b51d7cf7470fdba1aaf32decf49dbd923708f86ae7
SHA512 a7f6919dc30ab2b3bfd2af6e544fcfcbf7bc52aa40c96136b6a3c9707d14d1116a3f7e72bc334d465bc7dab7df8fe824e7fe74937830b3540e4fa38896c5bc10

memory/2852-12715-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/2852-12716-0x0000000005A20000-0x0000000005A30000-memory.dmp

C:\Users\Admin\AppData\Local\Discord\packages\Discord-1.0.9034-full.nupkg

MD5 67ba76f2497534b0d95a8e2309c45d50
SHA1 8e3968831c30615c11f3e773710ac8f271d80f0a
SHA256 0d5bf94c636b81c969a2175517068e041d125d6bed589d3ed7b42ea7a74ff24d
SHA512 a66c94b29c96608c6383565a53ec24a3edaf3cb0d9414903f412ad8dd1330c0539d98b7dc8f959c8cb1814b342a37468109b59ff99456a74bb939f57a48ab007

memory/2852-12796-0x0000000005A20000-0x0000000005A30000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e5ecbd371112abbf3af2076bc42e764e
SHA1 11defda02f6ec3b2d4773da87c2569dbce1a7bde
SHA256 cbe696f0a5ff3caa8cd133876285b25f94af373ffff84d14be409434324d8597
SHA512 e69b8210bbec7e12803700bafffa3e9b21be827d7d2b0a9b99b7353535a7886a64d6e7fc4932ac401fe739825de67b9c371b5740c2b46ea059d3f1595404366f

memory/2852-13035-0x0000000072FF0000-0x00000000737A1000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 666681972a25d9521ae7f8b63c5be040
SHA1 ff29f08134ce300ebefae42a6240e5f61c76929e
SHA256 e3b5efa496864a57613d4d89da0b07ab001b182af9a0bebaf877bd84838fe9a5
SHA512 76ff2d36c95fa8b57321b2f2cc96bb1d7f0039ac741d3ef2f5836e9978905a323a8e0a934cb85a1f1cd974a52a7d82d7c8cc83b9ace014cb97b0add889335ba0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 90a47c33759ee41479f96d685137a074
SHA1 689f47a402bb74913e62ccc04a5cdfcc09312fba
SHA256 75fd742aea677718ff5eff88f6c8aa2a99f17a2ae0b4b3fa36101d488c643ab5
SHA512 3f4d182f13af597ee33e6e7494da24e84cb30fe8186063f8801e8a8d2cadef9bab641bf1c4806e8dad342bab6cc17ec855d9ed71fa09b7c516687994672a8495

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 c52ab4a1cc88f984bbd92eb694d5733e
SHA1 36aee1a513949b7145856ec67aab6b16dae7ea7e
SHA256 82d1f56bcd0e82c16c7b874e60771152a8bfffacbda7d82f8038f8ae6a2bba6d
SHA512 7d757657f6096a66261752e17d5003dda7379b506ff25bc799db9582b0e59ea02e08b65c72b15442bee631a42f22bcfdc479bd46d654d58b5a9408a3b49ff393

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c1b644e66af1141feb68510b0ef087bc
SHA1 d0fa5a5baba26b5875ccced8b99c91a33d78b18c
SHA256 488986853accfb3441396341e52ea53e79a111830e39c69d697ec0bc7b2f9f76
SHA512 4fc0db8e892fe94802fb05d85f71e9a159de865f96f0245efaec72e532edacf04ce262179cccf98d22f58fe1a816a39a754f9b9c091626e6787318cc1c80e184

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7aa4a32cf29ba64e63ec32e9908cb4cb
SHA1 8f7ea1abd1e0d6710dfc9e261d7b165ac5db91a9
SHA256 040572391a8493490fbb7d8598b5ff6db772229ee1a8ebc9eb4212883af99a4a
SHA512 b56f0d4f7455c3a50d84a7f32b697c9afbeefdab3bf14de808cef6243415af80198324e0f82b67115739ccf844ebc14740ed36c0794d38376c39e6bb519bbc2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 923a543cc619ea568f91b723d9fb1ef0
SHA1 6f4ade25559645c741d7327c6e16521e43d7e1f9
SHA256 bf7344209edb1be5a2886c425cf6334a102d76cbea1471fd50171e2ee92877cd
SHA512 a4153751761cd67465374828b0514d7773b8c4ed37779d1ecfd4f19be4faa171585c8ee0b4db59b556399d5d2b9809ba87e04d4715e9d090e1f488d02219d555

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 ececa560a228fd83fc4d62fbe648c676
SHA1 d56c2e065d78a1b5a4369ac095cad39feaee2a41
SHA256 7d4229070992fa8362ef37ee005112995aaa3562c1eb1f19c43806fb14e3d89d
SHA512 f0c3546f74fcd8b0db2229a7c70afad163d282d1967c775956d6fe6cd1956bf0592798d62cdb0ea84343dd098d6f295e98448a17a7e01b6c0416953113995c6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b

MD5 4b83a2278194dbc9f2955991aa7705c4
SHA1 5a313a5ee932c26ae217ea8ee3bd4726598fe77a
SHA256 ca971bf8bc3db921ffcfc6b95b15b49ebf61ee2f4899395f0c6d5f95a2ee8cb2
SHA512 d622aee9814c8a886ddb194d43dbf4c8694816e2afb880ca04b4bbfd2741e02c78c13475fa15aaeacaadf9571d314a8fbc5f4d5a9b1dacb425c0a66ae5c7f7be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032

MD5 7808e0e4b7a714230373852158500533
SHA1 4a79d18722a68a2f38d52e2d3a11b550bdd30b3c
SHA256 8ba5796bee6a065b8b31895e7e8d59ba564cfd36d2ce056e327588e67736f054
SHA512 ff9896a0599d770d54b86a875ce98135c5aa077ff19f2be6e075146b8501d92b874361dc8701a18ef4c14ab5400a7a48c928e069e8f05c36d6f6a408b90664f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033

MD5 4255ac6c6e442d72fb72fe9937ef0d1a
SHA1 490eeb758b9e19611c6937bb7d5d451500d8199e
SHA256 43a3650e616473f915cd587cd8e2b27cfeb6aa9503c4934c85a69dd13df4238b
SHA512 0f96cb9339ddae1c981c45ccff5609da6fe439c855f2fad1353c883080c72684fa3247bfa9a1e990e5eb40c7d5ada920f27943c496880b7bcb9e23a213dbcbb4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000037

MD5 9bfd38a9a47513cb60914da249b6631e
SHA1 a0f2d0a880959a204bef950d98da14653827f9e8
SHA256 80f1318392298808c5df160346e2b3bced259d1fb0805429869ea96398517a36
SHA512 58ccddebacc9831688c128b1b6e7400046f62e53c2e752fde6782bc96a46d2a767279199eb5af381ca5321062658fff2b5b2ddefbb1fb3c8956c658904eb4d98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034

MD5 817d8ab01e1911e4f2444ce5e99344c2
SHA1 513c8c027e4d568681394bdf07a85feff5ad69e7
SHA256 0f9e05181aa0574987173bba4c527596687f0250a1040d29981efafa3a38e09e
SHA512 3c490086dd4211ecb5d9162efdbe359dd66cfb0f793cc099930b96e077a5ea078892689bf72f469adecceb5d46fadab94d5221a86677aa717c1f9a0a39913975

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000043

MD5 e6c27ee08441f96b481464f51bab95fb
SHA1 d919fe20d94b5a84a77945e138440409664f295a
SHA256 b2d87f03d0c61c7c1f4218689383fcad2bae6a39ff14af52513eab1db275dfc6
SHA512 99b69149a2ad9cc236916996d6792e281a8686e19d93408d713e7afaababd90b64b818b2e61aa188c849d886f275d0847af642c9269a166540eda07e3fe141d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 ae2fe4fe5be048ff183db4ad506d9b90
SHA1 d6e5f9925cc299aca646f3aaf55df324f2932063
SHA256 ee98519d80625f797d3a74f3c639c5dced9c7f8a06bb5a84d284683f3939811b
SHA512 f68790de98aaaa2d292dea1ba2c613d44cb6abfd8e6706e50e4fefd7e7a2e19689ac1481069487f1c26394bbc512181769a2f6374c8da634865ebca6b29646c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

MD5 d2d0c427f1d093c36a9fd6751a9a9d61
SHA1 dbd596ab1f2256ed3e3816be5eeb75d34f38f821
SHA256 b37bce0e0f504a7b54d3a01007169d4126c2a401be8f93afe35f665e62c3e34f
SHA512 b8418e074df9619ae62461b5c42fcc42d2ffb8b099e09ec0271bb481f8e1ad8d7655fd5149d8abdbce1d35226029f200623574946d6223df1c9c14c7824d63ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

MD5 91f6a0476e659b1105b5ca47570e6284
SHA1 d41c3b1986ac7a79c593a8c0600158baa433507c
SHA256 92f2ab55226cb01c396bf87fe9b47a650a29559fec0949aeef77b209bf9d7e22
SHA512 36166a921e6208b697e56c212b72c1d50912e15d93a9c5c1ebab1a49b1f7d912325fbfee4901287d73f2d211b546ab9dea45f7ac952e8f172a316bd432357c85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

MD5 c458cebbc1cc55e3caef40d465516c1d
SHA1 38f462fd2ae0b0c2e11d66763c9f69b514f36790
SHA256 67071a5eebcf402f7bae19b66197ab223ffd65414683bbcb09df50feff042523
SHA512 65fd67db87ae0890a2fea75a925077fd8b4b5fb6b47141806e0823da37a196572fa6e5a8309379f8c0380e91c9cc282bc2c9c0312843057b2d4f81a0b6e09c2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

MD5 3ce1000370a56b24549299d59e02ccb3
SHA1 f1ee780bc42392a50be3c5e20165f5cbe290d69c
SHA256 59a442b0b798841d40e645294947a5341d405ce2866abb132cd88ce38d0acc3b
SHA512 0fc6e5b6f63ed887ad96781c5cad7a49ae3d3871e5327432a7f555adef59ea0fb1eb25384a763dad1fa5f954eb88881786bed65fae5207666fb2dc7799017171

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 1f566db62438f7f49e611f546e69a19a
SHA1 eeb2f280de14486ab915e68866dbaec7badf5d97
SHA256 a0ba69e3bf54536a1d0f87b466da40b613fa7c0eb7430aeca33569b5d771320e
SHA512 267042ee4e9fd1b9e96b978ca01f6945441eee43f06dabbe59e4e534dca906f1fedc3e013b9e2fbe30ea4d2726c5e9c25eb5d6c7b78e5bfc207b9cf957ace1fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 8381857643a72b9b6be33359f5f544ad
SHA1 4fe46f997e3db547c70f0d4d5c9e1cbf65502572
SHA256 b115e7eb71710a8261ce6232e954270d1aa39e4f5a811e86b276deb6a3f50f16
SHA512 e24f76caa7798355c4890ca5a14a12dfb78aa2387c9004499acb608e63160788b5a8d71ad8ef5c92010b50d7021da7af3cff14b0f83423a140b1bbb2a309e5c1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003d

MD5 e22d6c54e85144674daf4fb2600baf9a
SHA1 45551ee3c59e60f4bdaab92673cbf099f5ab3b07
SHA256 6bb0e8ee0564eefa31e2aae88a4cae55559f1fedeffbf5867830f1117d5fdc5c
SHA512 bb227eaae5f4d2e113fa717290ebf898001f35e0ccbc162b2eb7ffb5f77172500330f1f513b0aabb9647fc6f3b320bbd8396ff1c04019c0dd82a95f5425bb343

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003c

MD5 5053e2a7c3f20c37f2bcbdf7525558ff
SHA1 6d40b70627ae817cdf6e8862e48cf350d7bb0ff0
SHA256 2bfe40015c01fdfa19a7971ff7ac85a9aaee5a65fcd2319b23249db11217935a
SHA512 0e25c197e7d09576ea8c30af5ece8b6b58271b724a4d370e7ded3941335c4cddeeca3ea80fc68344fa699029490e04164ab8507ae27b0f1b30823a591dfe7b1f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003e

MD5 7c67f28897609479d364aaefdea22bda
SHA1 a3462ef9b8b30fd9ee302761a40cf1e94bfe5ef9
SHA256 d70737ef293b42ab61632c1be3e70baff57ef4373420fa7267db604249f633d8
SHA512 57e8bb90a26c9491f80c8d75d5f73ef5045546d709d83b0e73ccb13a0f13be12a514815ef8af0e510eff671e96ee54f22e55f6cfb09d4069d554b3a2bd55d205

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040

MD5 25064795530fe09e43cf916e4f0e5b01
SHA1 2b5aec90efba42ce72213c31860f4f79eea3c06f
SHA256 88f04ae2f9d3fb2bf171a53c657d095ef5897311680a590b075beae0eb9b46ea
SHA512 3abbcd9fca6d9875ac76e2ece16d854666d231ccbe0f682dc96e14aa3f79235d381e2dbf1530cc439c70139cd63d1b16320bbb4cdb632ecfa3906efef23e77d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 333c638dde9f292c8c37b7b081217c08
SHA1 d353c18da0e49fdc7b81db6e8d4ffc507f41454a
SHA256 068f0963b17ee15f7cae6842ef3b4b4eaa9d24bc9802085efaa694e28b0419ca
SHA512 9b2d4767e76278671af03cf189eca15e2b8394585d131bde3f5fd47e59414e240c4bb85eae3e2a40b67eae3053c401f3ef0917d74afb0aa597baeb74bcfabed9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 59952fa70249409d75ca1c6f9746a961
SHA1 9524b0e06dc5d5e48eee3fe0eb0737d529f13240
SHA256 95c6a79f55ab9568c553cc54676d8a8184886f66ac7530c534d04c93f976c78b
SHA512 93b35afa44e65a9c1dee835465181659016efc851bb855ccd23ae606aaf9f9ee05f766640a45e1fd8c7b82d04116b7bbc90a89a4d1f8d212bdc0f50075c6d9ab

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d49ce7c42b2bc7106a9062636112f202
SHA1 d7453f6ac241e516b899c786e81206786008d84c
SHA256 7d41b09d685f01bb3847cac111d5f69dae01f931ee376933b887c7c2ad47ef64
SHA512 8311e4266e325c634381f91ad44a89175624d36ced17c2aafb4453b0d4b650800aa6e3ca50408cb1f52bd1624cac3ed53a8f690e0121761f8b513420a1dafa9a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 765b9486268d82f3e439e4750cf14193
SHA1 b98aef89257b250cbb1737d624de89ab91bb77ef
SHA256 832a6d543982d70f3885b16ec0772319247eba96c0ab1acf3defcc97b211297b
SHA512 106dd63c0632b1964efe7bf6ace943d85e18cdf579772d50ad32b18ef1eda93596e8947fa79e320a35ff16ba29e661cc0b0a36a7f7f9ea25f4c51235ab252e24

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8d6335b0af400bce622c43e0bc3ad5d1
SHA1 0950cf0291b0a73fd9ab17b2124b8498c26e1b07
SHA256 e7e15fb9c27a2cb1da58118b26b632f6f042264e72c3edf8f8e7b85c09efa500
SHA512 3b1523583af7063388406cefd62e2f8214b0da39364098366a821dd9e80dfae51350f892d808ca5a693987fcb2e75c3b76b013cac7d99a4a880d74b45aa73104

memory/1188-16160-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/1188-16161-0x0000000005650000-0x0000000005660000-memory.dmp

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\app.ico

MD5 084f9bc0136f779f82bea88b5c38a358
SHA1 64f210b7888e5474c3aabcb602d895d58929b451
SHA256 dfcea1bea8a924252d507d0316d8cf38efc61cf1314e47dca3eb723f47d5fe43
SHA512 65bccb3e1d4849b61c68716831578300b20dcaf1cbc155512edbc6d73dccbaf6e5495d4f95d089ee496f8e080057b7097a628cc104fa8eaad8da866891d9e3eb

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\chrome_200_percent.pak

MD5 5604b67e3f03ab2741f910a250c91137
SHA1 a4bb15ac7914c22575f1051a29c448f215fe027f
SHA256 1408387e87cb5308530def6ce57bdc4e0abbbaa9e70f687fd6c3a02a56a0536c
SHA512 5e6f875068792e862b1fc8bb7b340ac0f1f4c51e53e50be81a5af8575ca3591f4e7eb9239890178b17c5a8ff4ebb23719190d7db0bd8a9aa6dcb4308ffa9a34d

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\chrome_100_percent.pak

MD5 d31f3439e2a3f7bee4ddd26f46a2b83f
SHA1 c5a26f86eb119ae364c5bf707bebed7e871fc214
SHA256 9f79f46ca911543ead096a5ee28a34bf1fbe56ec9ba956032a6a2892b254857e
SHA512 aa27c97bf5581eb3f5e88f112df8bfb6a5283ce44eb13fbc41855008f84fb5b111dfe0616c310c3642b7f8ac99623d7c217aecc353f54f4d8f7042840099abc5

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\d3dcompiler_47.dll

MD5 08ac37f455e0640c0250936090fe91b6
SHA1 7a91992d739448bc89e9f37a6b7efeb736efc43d
SHA256 2438b520ac961e38c5852779103734be373ee2b6d1e5a7a5d49248b52acc7c4d
SHA512 35a118f62b21160b0e7a92c7b9305da708c5cbd3491a724da330e3fc147dde2ca494387866c4e835f8e729b89ee0903fd1b479fcc75b9e516df8b86a2f1364c8

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\Discord.exe

MD5 ca64ec85f9e3c8347ee6f2658c200b2b
SHA1 e76269c8cc516d163a2b9a242734f1010410bad8
SHA256 d3e6d525885bdb2af1233bebf7c6f0e704439a3f3cbefcf80a42b1b1067a21c0
SHA512 a4e222fe8e554df9c825e3044e92d7dc70bc6ce2e11f25bde15be45c34fa6dc66ca1ec6c11d8fa10916f92313d0d1cb9c8d1e5d8dd067d14663499991fa6222e

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\ffmpeg.dll

MD5 b6caf2692ad9bb4d79785238f7dba484
SHA1 7915a5bd4e9ba31bf7caaca17fadcf303c74566d
SHA256 9c37f1a940b61a578d13263481fd2e883072ea9d19bdd31f1e752a41eab1c5e6
SHA512 2a212f09ed449c49a88d7f64b201bd4646bd43ce08f306d1a93c2afe674858c9447ef4534d5487875a3892928b31d81643b2b7335f8c7d1c6499ab9d3a82cc72

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\icudtl.dat

MD5 d004362c2d26c43ea4e51e85327a9525
SHA1 892993b358c145911aff2fc9735f4d482343694c
SHA256 0b88584543c0a8d3165634467381ee75285762f3bbb7082b29ce756cba486b66
SHA512 a5d2a7087d651248f0aff799d36c4c46044ba6162b6773441a2bf1613b958cd12d5910848cfdd557bdcc0f94d5b3c4c71030c99d500a5cc20186ea008598e0dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d083224fd4a4dbb5bd35c9a0a6330df9
SHA1 99b1978bbbf7e46db98f5fc634d09e1ecfd4955b
SHA256 fc3529aeb8986b1311ace31c06b076694a17eafc0e44cb5c6a71d6c05a6fc1ef
SHA512 58bd823759bc087d920cf0c0ff5434cb95aaf7aa936f2538099c9196659b7ef60f4574307fa554213800ac62d0e5df67b1357df4b9b604188142614f80736abc

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\installer.db

MD5 12ab296c584d0aea77cac623385b76dc
SHA1 918dc389d725d1f69a4bfefa75d40a872fbcd976
SHA256 0f83aa6a22a656707ba0229c5394a720589c88bf9664ca2aaca6b3b1d74b7560
SHA512 997926bb189cebae9cc8f4188b1564a0f986bf14e86c034c3f8ac90bda2fea1e571e2bac3ac5c9b49ad3527280a920b20fbc6d7f80a40e43babb08ad17d24767

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\libEGL.dll

MD5 f55234f2e0be3d2c04fa3a67acf39aef
SHA1 916a45202211b7ad5f50f086fdb79df20a9bd474
SHA256 d2d19bc14d075cdb52232d44c7ec13a8d34a20a76a1f9b7e325562876f7d35de
SHA512 0e951e7d13b9176a9fc7a7c83f1b306621bfab16509aefc83977e16e7e978999a7b58548a58581ee28b4128cf3b1a7e9ee60683d8fbfc0391c52bd6bcc1e36c4

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\libGLESv2.dll

MD5 31e9f2af0435c200d3870d9a65648e4f
SHA1 b499a344c2785cb61808f6261cadfe476a1faa9f
SHA256 d13d0387d715963b763ad8bd03b7edb01184f5dcdb20100ca9ed14997f909be0
SHA512 5b6c1b03cb3f29ce3593e3234376e1b925770d18e36fa62bccf1eddcceb7e7c0f491a471f41c23310b518da02c86293e3947cd2c5a89874d373f3b993bdd21d1

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\snapshot_blob.bin

MD5 d5c954a7ba63bc8094a70d82ab303f60
SHA1 b70fdd0e53977531ed2b4ce4f9198bf6f6fb0f5e
SHA256 674c95c2256e0951b5474c643767a4f84b34a6bb31840cc31ff2d695f35ce0cd
SHA512 94b38b4e1f956dbfc8b39ea0c5e583b97ee9697b42ba2d4fbd60b5c5616daf3dc555290992db54815774b80038d854dcdb08b977e28d85481cbe129f91dd8604

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources.pak

MD5 86c2268045562e295b1476adc3aed1c4
SHA1 4fd256430e150d8606accc3a920bf20877bef2fd
SHA256 ecd805cc30817dcb15c36238e997ed0e6f52c875ef4c13d267c29dd0b7775077
SHA512 628f42cd54fa04db7db4236c0c26c692ec026560f831625bd28946c873ba9a209fcdbd552b91f72948f2e42562db2985e06047fa84bce2f499e169f9b0d18b4e

memory/1188-16259-0x0000000005650000-0x0000000005660000-memory.dmp

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\updater.node

MD5 c3133d4a827b36e116c9c48410c36061
SHA1 293155c87f134837f8f1cd6cb488f1ead4f312ba
SHA256 4ccbea3c487e7c21bcb60970f0d381057b4da7141236403c0d7c8cf7503ffd6a
SHA512 a9df729ac230acf93581982c625a58ced458d7ee97f6782e04d5dfa5c678c788a6411b3a7006340cdb1a06b13966415088448bead0ac797259f12b3ee22eb8bc

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\v8_context_snapshot.bin

MD5 3f6f227dc46c0d5262cd6ca9bb7703e5
SHA1 c8bc76f93cc6305e70f2041a52acfa6c44e9889b
SHA256 869f5e88fb5e04840f035fc1c3f688e94499c8514bd053c9979413ebb8de4611
SHA512 566394fef910b8edeb04c7f5c172ce9b361478275463f7eee4b5611536241431fa7638e47e5ac4b9df7467c98b120869b4e4f87e46628b40dae5685897cd256c

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\vk_swiftshader.dll

MD5 84f464d1d43c45aed645a0370597a6aa
SHA1 83bb41209dfa3d339d604b880c6ced1b80dcb445
SHA256 da61ac9dee0ea998620ab47ee30f6244779a9e22b5132aec285f686133f57c00
SHA512 1184e8d99963890a8a1933be7fe9dbd299fcc2329b9f88c7e2c1d51f47d21c54fdb854ca767f151712b33c28d104511d945be91981b8a35d38f8190e7bb912be

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\vk_swiftshader_icd.json

MD5 8642dd3a87e2de6e991fae08458e302b
SHA1 9c06735c31cec00600fd763a92f8112d085bd12a
SHA256 32d83ff113fef532a9f97e0d2831f8656628ab1c99e9060f0332b1532839afd9
SHA512 f5d37d1b45b006161e4cefeebba1e33af879a3a51d16ee3ff8c3968c0c36bbafae379bf9124c13310b77774c9cbb4fa53114e83f5b48b5314132736e5bb4496f

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\af.pak

MD5 198092a7a82efced4d59715bd3e41703
SHA1 ac3cdfba133330fce825816b2f9579ac240dc176
SHA256 d63222c4a20fa9741f5262634cf9751f22fbb4fcd9d3138d7c8d49e0efb57fba
SHA512 590dcc02bc3411fa585321a09f2033ca1839dd67b083622be412d60683c2c086aac81a27bc56029101f6158515cc6ae4def39d3f246b7499b30d02690904af0d

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\vulkan-1.dll

MD5 0a40c0380c8bfd62f01d87fc71e0d0a4
SHA1 ef024aec7a12276518e5aef50ea2a16f78eb3ed7
SHA256 5a47b8462f880a0b390487693471602d16822d2fb4d2fa046b04b4874c0642c0
SHA512 93adada65dabd46d25012fb91df2f898985d65cb2fed467678bbd228ef5c1eef6132fdfa37fc74c195aa38ba011bb95590197138eb07788bb2857d1926e3774a

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\am.pak

MD5 952933d2d388683c91ee7eaa7539e625
SHA1 7a0f5a10d7d61c32577c0d027db8c66c27e56c7d
SHA256 55357baf28716a73f79ac9a6af1ae63972eb79f93c415715518027fc5c528504
SHA512 5aa5ef0ed1da98b36840389e694dc5dcef496524314b61603d0c5ee03a663bb4c753623fb400792754b51331df20ac6d9cf97c183922f19fc0072822688f988d

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\bg.pak

MD5 9dc95c3b9b47cc9fe5a34b2aab2d4d01
SHA1 bc19494d160e4af6abd0a10c5adbc8114d50a714
SHA256 fc4a59ea60d04b224765be4916090e97ed8ddda6b136a92a3827ed0fcc64bb0e
SHA512 a05a506a13ac4566ecbfe7961ace091295967ea4e72a2865e647b5fa9adac9f7cf5e80b53fae0e3917dfb0b9a3f469189cd595cc4ae9239d3a849f5cedd60e46

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ar.pak

MD5 98f8a48892b41e64bef135b86f3d4a6c
SHA1 32f8d57ec505332f711b9203aed969704bd97bc9
SHA256 e34d5cabaed4634c672591074057c12947bc9e728004228a9e75f87829f4a48a
SHA512 6ed3fe415b2f6de24136917da870b47c653d15c7a561baae55a285946a6f75e5141aba3bc064982f99baef0a893266693864c2d603c5c22c2b95627b2035f7a4

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\cs.pak

MD5 26765c7be201444f0238962bb16a506b
SHA1 f9d4a33795e45127c14bcf35cc770845627e15e8
SHA256 936466784a55b965d23b016bc49377655bc5d281d012c8369c0809c961e05c74
SHA512 577d52d2d5048cd952aff1e76121a495328c1978cdea2eaa4f85812cc513917f69510e135e96f7967f4ed43cf88e180cb1d9059e17c855c8d4f94ca036730214

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\da.pak

MD5 fecabf71853bab84eacdd95699c49f69
SHA1 8519afc13e100a550ca3d756518a0bc33674e0d3
SHA256 1b0793b1cbeb6a56ff1e64523c37ba753457320aa29f9718022caa07b4981d8f
SHA512 e932d382d41a79ece172349e916221a67d97f5fd4b2dc1325d6bd2f7c6757cbc01d6fbc8d9846f6ec462eb637210f7c650f6944418edbd3f8614ef99030d9392

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ca.pak

MD5 2f8d050c228583559cda181291b76e5a
SHA1 b047f1cfb30b1162b1dd79f7e424a83fd807eec7
SHA256 e1d6b5fd0bc411f2895eaaa1409916f5ffe39a5c6bd1bafe8af7ce33da5be17d
SHA512 e4f150cd9942ef5105e72376835da6edc31ef91783e41cd2fc04600c04f342bbc96e08e23c8af1c0c1e563bb8a7d3840a2289767525c30d08c2f23d0e837801f

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\bn.pak

MD5 d6ccc9689654b84bc095cec4f1952cca
SHA1 286130971826b0af1b6d29c5283dfa71af7cd7b0
SHA256 e325d936cd97c3f9ddfca2d87caefb8b6e7465ffa31d0386ae2456b18f7a92da
SHA512 db0400820c5cd1100337c955084eac3036b55bbf66b403337bec2079bc47696e2e48a771214662b286f4f45f763d2ad423aeccbd0f06cf0bc11038662558f4a5

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\de.pak

MD5 ec069f60c9825080b9d18ff6492e816d
SHA1 34ce5101c9646f9c2deb9820a3b26eb91c525ebc
SHA256 e0f632ce324951002c80e019dd0169be9f6b0640533fa434cd6ca80f28a1d3f7
SHA512 95a88ac98f0957e5f200af76c1a743b976228f7da1bb6c6b3b88a54adcff05e1172d7cf2e6f0a82cbc8ad0aa79974a1bc046516250a3a5889fd7b2e4d7c0b804

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\en-GB.pak

MD5 502260e74b65b96cd93f5e7bf0391157
SHA1 b66d72b02ff46b89ee8245c4dd9c5b319fc2abf7
SHA256 463af7da8418d7fb374ebf690e2aa79ee7cb2acc11c28a67f3ba837cf7a0937b
SHA512 0f0f9aac8e6b28c1e116377ab8ee0ffadbf0802a4026e57aedb42d21c38fbf70159be9e0314799c1de1f7638fbbd25d289dff7cd2c9eb7c82e1b62b6c4e87690

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\el.pak

MD5 306a80dadadb1f9182810733269537fd
SHA1 bc01a65a9d024ec72e613aedc60f4838be798040
SHA256 92403b6160e38746597d4dd7f64d64cf19e30b5e7862901263c39679187b2c91
SHA512 491016b8fcca59a7dc9523358c4a7b56c55360f424e8fe9330d6f01480835805e961f1e48f8777660510d9af9a66961c639df162190dec595a867d54150eecfc

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\en-US.pak

MD5 3f6f4b2c2f24e3893882cdaa1ccfe1a3
SHA1 b021cca30e774e0b91ee21b5beb030fea646098f
SHA256 bb165eaa51456b52fcbdf7639ee727280e335a1f6b4cfb91afc45222895b564f
SHA512 bd80ddaa87f41cde20527ff34817d98605f11b30a291e129478712ebebe47956dbd49a317d3eeb223adf736c34750b59b68ad9d646c661474ad69866d5a53c5c

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\es-419.pak

MD5 774ced79da2fd32bd1ba52a0f16e0a19
SHA1 ff36dcf8b62046871f441f301dd7af51cb9ce7ee
SHA256 5aff3762747a6e8c6df9f2a3b470bf231b44163006b17ce87e2a03694be27b81
SHA512 7763c15fa97efa9a5af73dcdedd4fe260139bd8ff782ca3aa0937d9355b2d14c3e482e570844ac33d22d7b016c7b9097d727c1dd585f421dccd59ca7bbc24269

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\es.pak

MD5 ba80f46ef6e141cef4085273a966fd91
SHA1 878f35e15b02558f75f68ec42a5cc839368c6d61
SHA256 267e7b6376e7e5ab806b16fde93bbbcd961bf0c3a7b3a2cabccab37faa9a1d16
SHA512 8a8b4f7db23d4c93756b6dc4219f00c77358a8fe992da1f51431597b82c3aa87abf3a98d79e13e7b4a14a1a9e94d388760fb6abf3a744406dee951c8e78cf361

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\et.pak

MD5 e97fe1e6d06a2275a20d158dc4e3b892
SHA1 1575b9b1fc331a70bbe4ca7d1095d4ed6777ecc1
SHA256 d984aee4d18ca24a88846b1b6e0294d373733430f30bb4f1b97bc7d50d512c2e
SHA512 77879a4d1062671b616ba9b2ce0b6f69a5dbed6bd56b73ded902d1f9f44ecd96a2212690b3568c0ba273c73d91589ff2bf18c7ef9b66e0630fbaafde2a61b1b1

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\fa.pak

MD5 d55f65c6fda6ed6f549d2c9f0a4ce874
SHA1 952792f2da5ed9cb1cfed14e5afb8abf5cf29cb3
SHA256 221bbbde078d135f6daca4978a31cc6a82f8f46536467ebc9a0cd322c58a7785
SHA512 d0bb83467182d8b3a8f8371d749e682cf05f89daefe28764f2c263e7cfbfc3f86cb388061b48dadda26c3dd246dd6f7a57af58ca9344c2f6b90de87af1e91c69

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\fi.pak

MD5 fa7dbd2ee35587ff31fde3c7107e4603
SHA1 baaa093dcb7eccf77ce599c8ff09df203e434b60
SHA256 5339b8ca52500bd0082e0ba5a5f440c5f04733803da47963280479760c7fff2c
SHA512 587f6d0e216d1688227345a8a75b94848ee710ec633fe6805db66bb0e8cad1b8d24a1e6a7e234061516770d881571166c78d8fa1c40e6335f3dcb1339fbffc14

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\fil.pak

MD5 3126f74d021e9423d71913bb45a62935
SHA1 c9a80c8585aabbfec34ae891416794b1b3e29a11
SHA256 4cd3fa70487e894400ad29e3bfbfba3e1c5edd799aab12c62c3aff3c2580ce5e
SHA512 fb360723ee53b3f7038eebd1b919a36784a0e3dc878e810bc905c4297379dade6006c8872ed68412b06161cacb0d6e32a7157ecf97d9e103a4ca3b2b71db8765

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\gu.pak

MD5 b7f4c73d56be31042d8edd7e8ea080f3
SHA1 c0c3595701c0a75c14931ed65958d36df0d925c5
SHA256 c36a20730d5f2b91cb61b5b2a5912db2ea5a328a9b8abe0fca0af300446d3c20
SHA512 ea0d766a754604cad4d5f3180c30f7dfdc3e1cfe79d67365b72adc0d7574851f21bdd5b748b16e8b4a95ade40c8ed0442bcefd511a2934cc9c701e379c955d60

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\fr.pak

MD5 51ee1ed54fec49effd103c29677885b5
SHA1 ced6fd3354007d1ef3ea7b6689aae5213c20cc69
SHA256 1f6bc09499ee37456968a28b67b81bbf5b9df4f0c6035a388242d2037a3b65a1
SHA512 dfd50ad99b89345940afead11c3a6940d4408a0e6265cddda1d71ad92527ea00d8057ac77ceb2ffe137a3f0d2f321c210bc7cf97ed821f01e538dc08d07149a4

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\he.pak

MD5 6376d0a5f4273b76b1f4aabade194e0c
SHA1 337ba39f09454c0779ab64872b9fa11f866d6adc
SHA256 875712bb852c698f677c0c74e088f62d31adb2bce65648fc390607aad8705c45
SHA512 00347f16b5abbaf47fb08663d5efde26ab7de0c7a2fa42e6b5f03c41a83cecbd8e78cc3aef41d5f08658cf346e0ade732774485e8a10008a43fa41ffaf73b2be

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\hr.pak

MD5 7095ef4caf6bd39174487002a4e09300
SHA1 1efe686bd0b7f035aee7ab4c52be6133121cd0f3
SHA256 3d7685163c5eb6a11e745ff934312b8681c5f85dfa8d9ea701e9dcaee1e7a285
SHA512 45488d46dfe7a31a007932917f7baf4c195da899de5dc56d98e555336668af3edb77996487649b86f56beac688374ce77f8feadc01e3f84d30d83bd67631f9c1

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\hi.pak

MD5 ede7fa471c5eebc1fa55b9b3b6f92d00
SHA1 1d1f529c615799bb3a3319ddd1357cb5dc71464e
SHA256 1e9623c7407ae8b8a88df3f69a47ae8117f74c4dcb56897bb794a9c38ee5805b
SHA512 0f51ea54e828700080effa6c728230c523ff8e26fb350e6f337028d18614d5dfc4a2792cb92b5e606bd0702067f55fea546029cddd1ebf7fa74ef5521ff08338

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\hu.pak

MD5 d6904e7d1b6750d43a6478877c42618d
SHA1 919f090a6a3aa1112916f5bb0d5b73a62be43c1e
SHA256 3ec43893c6de5ec0f9433841afd5fa9feaaf59ddcef05f7e1cab14dba799887f
SHA512 d600fedb5ef1b2eb49a0122536c642b350ce67bb7a9da205890d9d13a195ac17c14607b4489715fd34506ec0ea4c80f245e09cf048aef52dcc8094f3138b2fad

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\id.pak

MD5 881ff04e220aa8c6ed9d0d76bfa07cb8
SHA1 cacf3620d1bf85648329902216e6cdc6f588a5ba
SHA256 9210c4c4c33e7ceb5f70005a92a4fd36ca4facdd41701fdc1d2ce638db8adf22
SHA512 9134102928aa80c49bbf2b862e8079b2ee23636ce63412a4c3813f234d623ff563f5ca1ac407ddb77cecf1224896ed59ae979dcf63435d35a4f13de9c22755d5

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\it.pak

MD5 91391f388b4b6c12a72710c35f4c355d
SHA1 f89e6ea977a10a9f050395489285ce8c041c2c05
SHA256 c0dc0a4a87f7bb054a30eb1174c3228ea2014bd94668a7d22995b99c4937d817
SHA512 8796d69d1a8bdbc7690ded45404174b7fa0b5bec8453d79a3c85bf4707c3f32caf634c792c72ce7bda3522eceb5fc6761b696471586397064d9f1f1988ceee88

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ja.pak

MD5 bcf3dfa2505cdddbac73921ae1beda80
SHA1 bd08bc8dbc92b2533a3fcc82cef4bf4d55fd9893
SHA256 0ecf2ed58f1a9ccc87ce80640d96811cd642cf334f61efa94dd9d90364beea32
SHA512 769ca334142ea12676353c258c1158cd1c784dc32e9fbea00bf6d7a6b74f297467b3e92db14cfb2e27c568320275c0b05ebf90dd2f6d30f2cd38cd10cffe0e0c

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\kn.pak

MD5 d3d6bc60bead608e68e776e07d21ad30
SHA1 e40e38ca99026056c127e9e1a1ff821a50310887
SHA256 90b2df3338468e84e2cf2f2f67597cba5c3ceb5dba9c59ebd072ec15a70ce741
SHA512 05421db2f1202573a34de1e722c6bdb55a35821c4aebd54c80e6594fc92075cd9b97e5bfdfe93b4228c3a2646b92a27da4722ef3826e2807238dcc56ba273706

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ko.pak

MD5 b31780fff9541290c1d9f5b76141430d
SHA1 8b0fbdccd0a7f8141846763a0d27e4e0da0552dc
SHA256 b04c1b91cab31054be70cb851dc6716065545445801045daceb96eeee4d2334a
SHA512 a573dd09520059832e7f53386a64dcdde47452b02ce1e5d7e11385abbc8b734dcee0065b4ca351591bf9cc2f66fae204b9300702246d20265e8ddff4f7c1e6d8

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\lt.pak

MD5 7b6bf901352885c0699db71239b7cf24
SHA1 9e3ec5f327c0d0e54a449332061e60a8c79243cf
SHA256 9200a9509bd77834d9912f4ba8f4219d2b9bd2cdad49a11873db30e99b9d1350
SHA512 79ebef723fb4c17581eb869b4b4e1a364a3d28df0e168e7e1a3583e0c1ec5b9716dd270925c0545b8247421a64b03705f10910fe3416900de9258840c470d580

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\lv.pak

MD5 e664eb35f1284e9fc615e1bb4fab892b
SHA1 e777653abec377a394170b04f79e78acbe4b6a3b
SHA256 b5a31cbfcb40ad8d911de1618c4eb7e8cc67b97eb8878220f15d40eb014d8ac8
SHA512 c3232997e8d306e91ded72e9d81ffae2018af3e6c32fe620532e03bccd2883fce59b2a2290a1580d7080c468c02bcd24c1bc90051f06bfa9a4e17857d4aa583f

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ml.pak

MD5 00292b0801e0dd0a74091bf53f1574c9
SHA1 63a002e7a8796bc4b4459a19c95ce426fbd1ec7f
SHA256 61a372f170de0a22712be980c3c78b22035ebf40ce79332fab75cdcc4208c9e6
SHA512 e2e15f66851aa435e3bf4de6672f4aa8b01204d8efe11ec6ee9a51d9877ec4f2e71d7e9547d6eab9bfa04af1bea71fa72aa4963fa08b48717bf1c3fd21c00cd5

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\mr.pak

MD5 b9a2aa88c69c42ebcc41fef00c980a38
SHA1 9e373dfa11f95c31ffdca70bd83d2f66e1ddcef8
SHA256 481faf7dd66cf10a476d8b156fb4ea452f920322d8007f7e25d41b2837bdbc09
SHA512 5f4582723429a44dd517322babae4466efb4e8723c0247754e2a9a2929133d6fee5c3533c4cf567954e2a5aab47940a136a178405de36e38b50e8d4a6d5c504f

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\pt-BR.pak

MD5 a064cb9d7cf18936600e9ccc03297006
SHA1 eb436a0c584ba91acb05dfccde139afbe26fe9f4
SHA256 c9ec3822044365457b8736348cf95a8e39bdfe3ed36267449bf3ed739accef2e
SHA512 95af684abf9d24cfc4d0668a02da1e2e69f5e671d671d8cdfadc22ec991908c6aa5663fe1fa88ca8e85c0508f409fa6c2bbc174c53674270f2b188018d358415

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\sw.pak

MD5 9632dd7d883fa4deb3963ea663e0ffd4
SHA1 0db135be4b3a7c54c39e9df5034d5576b68ea92e
SHA256 690027c4a31c4aea00b7d1b32ec6cd3fa50b1eac412ae273ab15e72eb485dd6e
SHA512 3aac1857784dfecd2ae5f7c4056f58e27a966a6cb949e02eaba56fc1fc283243ed6213f17628d62d435e33fa4771eb43623f25da6510aa4ce6f2149f72ab0d37

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\sv.pak

MD5 5130a033016b45ae2c3363edb3df7324
SHA1 9f696d78b1b9efec180dc89ee0defc3ba23e6677
SHA256 3420a1fbcca5bf8c2d65d6dcb0db78b03f95f7f2fc56479a0de6e3312333ce6f
SHA512 401b71360dcacf3b1fdc411c92195051370db110863cbed37143263e7804cb24b75ff1908ee39ee848c28776df00d6edd8cc748acf3725668af7815929e8066b

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\sr.pak

MD5 fca817ed4b839b976ebcbf59cac66d68
SHA1 413efa65470319999032b6a25b3b2ee33b8cd047
SHA256 524acc64e70918a77cda43fd9b27a727645b28ad2d4cce16b327105101c8bbeb
SHA512 cb246d5c5cea30d6e7514841ab93803984cda37461a09b6c340ca64f7cbce4e1212951a4de421d928d433a619dac18454fb403b42581757b76c7eb124ce70cf2

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\sl.pak

MD5 4ad22c6c64dbe0fc432afaa28090c4d9
SHA1 19eb65ae52a585dbd9c25c32f22b099020c43091
SHA256 6002c129a56558832e9bd260c427c0bd2e1566e0aea3ad999f89c8e479534f9b
SHA512 94f9d34e76560059ef80fc04be4d54e52a7d934dd28747db7f0f6684243b841087245699a471a55d667623d2ce5e597a3d2c6bc37cfd7ebd2f5b8fb40e6207e7

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\sk.pak

MD5 72946b939f7bcaa98ab314cfba634e0b
SHA1 71c79a61712c8c5d3dac07a65d4c727e3b80ab17
SHA256 75f179897cad221ca6e36b47f53cead7f3fb4159ee196f1d10a5181b84e1b5b7
SHA512 2a8fa7108c58f4cb263900a555714d5638d961d14d9f4ddf8a9ab5b880afdbc5d2325fed1e158dbaf42a9cd20e8e372e6a8f52fce842a6940ea52e43e4a1f1e5

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ta.pak

MD5 f100566697a96ce1f0a0c7e0bbfbe36d
SHA1 4c80a4930ba7d174c4203c199492463242bddf62
SHA256 7e818deedd50a533851bbf08e056bf2ad8d45f442a1a61d9b48e66804ea848db
SHA512 dfa6132a5b7e819e8d326bf5ee539d9ecb2dcd7fea429c75afec2291df9eeead6fa347b01f9feaf2235bce627fd39116176195f7a3d7d74de28951f939db1645

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\zh-CN.pak

MD5 2febe4ef32e1a3884089908f402ad62f
SHA1 e65c54adc127b78494dd6189cca71f1c7bd2a5b0
SHA256 a7ac9fda6f4cd189b75fdadc4b70cd0d369a09b66eaeb5d032678cb97ffc98f6
SHA512 8e8b030af4c952c32ec277850d5573414630ff5196eaed52820f44e9c5bd03ab6f71a8add19215b0456eed859be0d5a6f28d48e12f1677d39842f35feffd5e57

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\vi.pak

MD5 065179c466c5b7457e249f11d152b99f
SHA1 cfc05e9dfb91b2af2944aed4718fa05b43844914
SHA256 b75694e390bd2e20780b3bc72f6e1473ba45d7537c27642a7d888dfd3bb6c3bb
SHA512 fb598391a028b7d3c7e25cae21ccfde655e6f871e498767a54f7cf0d5d4e48207213cd2598ca88e4f46c303cd2d8175238a5a5b720ab37beec1873d681165a8d

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ur.pak

MD5 ba86f1f13fdc37a2c48c1da34c84f4c4
SHA1 2f1578d0eee76e60effb63967712b15c0d56829e
SHA256 4c7affdcc324cd791d10e235da809ce7501e8005be64340b6e8bf5595647a707
SHA512 fb2fe1548574da860bf27408a4f29d781fcefc300f744f4214843f343e343ad8bae29cb7047f87f5c3277641f561c6a30e5bc9d6490afbefc7af36974305a688

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\uk.pak

MD5 3b2a976a25dca963e91df3695c502d8c
SHA1 ce7ae51211f512c3723bb43ea0de9e6debb70597
SHA256 28ea88f19b2c34699d535ca0c691449b7e4001c12e8aed8d04b2078916e88a37
SHA512 ba41ee074239afdf8f194b4ccb33060fa9655e3ccdac6a16090959d3214f8db15396b3e038d7de26c478fdd003472f680d2b6ac9a92acaf6ebf8aa258747ecc6

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\tr.pak

MD5 46f9b2a35efdf1120a8a946e4f1d0115
SHA1 af7bec1fba32d912b50288a7d988440627e4ee85
SHA256 b22fc7b75c52cc142f201d5cf107d17c1b173a494a6add022127f559fb46bcb0
SHA512 cd67f9c328408a8295f224aec190c7c411a868755fc5c9e90b4985b3c41a05d6d34dd30d4a3866f6c24e1d640f4c324bfba8c7ab806a6b216151cf0a504a03d7

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\th.pak

MD5 a970b7e9d3aec2cd1b8ab798b3179f07
SHA1 bf17a7e80e01ac1704a1efdf27baf271b4c21e36
SHA256 cd80bf232f2f128a3d411f52c8039987559dbc1055f746eed6e0e8478b116dc1
SHA512 880555a2ac2f278aecb8794d8cc51f0833052e9f4ca187ed91fa35bb475e68ae3255cfe1dc074eac960c73c203e62c6b38077b266f5fab66ccc3ca73e94d4d60

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\te.pak

MD5 b1b6a9e3a04be79080ebbfacc1a0eb2d
SHA1 a5c8eb6a930062f6021d073d5f74ae146dc7fbc8
SHA256 d839531c4ff4a2885c993e0d358f78667215b0950c77a06ef01a6acff9221c5b
SHA512 bf0b163c8fc3988bfeb3cbb4b981596ce5afdf7e40149622fc3b60994e7d8efa5bb24c830036d168a6638feca48b8755aefa8640faae37055cae8fffb6a85568

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ru.pak

MD5 5cc0f54e022a9996773dbd64906d5580
SHA1 87c103bd69724579b478f904235e03caf61d5d79
SHA256 b4223b56ec88235819a427d60bb937eb3984076523f02a018f57819e0429bea9
SHA512 b3365fedcba50643cecf1a70297e1e67990d63ae05caa87de01a70ef6f28e0f73a9a0edb0ff80b4138c624e51aa2dac065a2d40877fc92137714ae07734c2f4a

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ro.pak

MD5 745a9b8c6422682f2cfa5561cc1f4022
SHA1 31e3616ef09f9b1fd1c41cf8f43e504a6f90276f
SHA256 7247470057a936d03bfa2a8776508ab66aa1040c41a4eb8f79c1e93551c74bb8
SHA512 8e0b7f98cb842a862ceca65e0166462275feed26c32c9c299aba9986d36b716a90d4a8db5ccef355ac266b7e969071014cc7ab6439778e77c52754bc23b4c575

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\pt-PT.pak

MD5 3f367760b57a5e4360dabcd4a650bc5f
SHA1 8d7cd6b0eb42361ee862455ecfa475d28f5aa934
SHA256 c89170385b3afb2ec89fbd61b8470ac718713c7296441c8430f173dac218e74b
SHA512 3dc30780d57dee91215a716dc6b4cb432838aa0161af4371f49f70db2076bd155b170fd2c1617f59e1b572144a2e150a34143eda82d9f2227d24d2281d5aba60

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\pl.pak

MD5 0dc77139d3530695cb4e85b708bc0bf6
SHA1 6915655afd1e37361c011f5c2113d72c7a0e85bc
SHA256 53b59486361b11512fb90f15065104b15ee2322bb7804f859cde2f2ecf9581fb
SHA512 ee1ca1d99ac279df4cc0e532aef2fc531061736b636a84310bdbd627e0f2435eac1a386ebb19aa901b6eae3929bda1c5da4f41b73a25a1b20137522e34547600

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\nl.pak

MD5 9f547a24e2840d77339ca20625125b4c
SHA1 23366411b334f990a0328a032b80b2667fda2fcd
SHA256 55413d5eddb3300e0ae0fa5d79d26fdf1e5a12922d7018c8054b1faa9d660301
SHA512 34da7a0b58ee3904d00cf02d16d5a3ef508fb708d7c0a887286fc32cd6145b2bd857d317c784d1d1b17662041eadcf7e225908980eb93f2b81161d845c0bb67f

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\nb.pak

MD5 bbae0915edec081b04bb903b689bc40b
SHA1 6a0fc635ce1c431e512b8b3b8448176aa4025556
SHA256 d565c6c95dad89d3f2b7210de4ec3fc437633de4dcfc994fde0704b92bb53ff8
SHA512 573a9fe43213829a6a4b39e67be25bc330b417750ea6d66e26163de7a80c29f6f5deeb841d9ff8303595943a81fc01ab668aab02a5cac4eda078ed06120138b4

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\ms.pak

MD5 d5da199f347452c5904bff9332a08f84
SHA1 b5fb8c22708a7e3130684f1a9923b6dab10c3ae5
SHA256 fe58cc4f62fc31e32c1fb9a0893a5483391ab6a91b1c92ed4a5e3103a962da7a
SHA512 9fddeb376bececc51dec997b3ed1e22821340fa172636f641af774dae8bc9b5c0780757380bf3fa8df0f9682a555ede81c449ae9468f63215c17123d13ee9f35

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\locales\zh-TW.pak

MD5 02e9e0bc5c30ca60a869ea761fb662eb
SHA1 c5200f692544b681af8757627da430aeea4283ee
SHA256 c5061ec00bd969f76f3c0c6ff15ddacafed7491260bd8ced78118691ba57bdff
SHA512 07b5f401f89dfc36499a3e74318b471d9b2e795dc363dfd5a9394089d4783a4b51fd78e2092701b6974f1c51020f3b5f81171ce21690f8547ff3c8f3d54ce781

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\build_info.json

MD5 bda0e192ecd5b268af1dbbf93c13a154
SHA1 d6b7b2d7027065ece9ad48c9d3719b0114fa4745
SHA256 317380e636c13649b2a612755b465680670f8b72afd54a31f02165247b2dba3b
SHA512 3afee33b1503a2306d47b65b6d8f130cc14b7ec93129dda54696f42b20ecef57b68685ce4d2ced5928ad84b08a149d1c7ade0a7e55b538ab1efa218c62c3851e

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\tzdata\zoneinfo64.res

MD5 06451ed2cf5ed42024d36bda20fbb03f
SHA1 86965cd7e896544360e4e98dd5285d9eb35074f7
SHA256 fd3393a05a33710148a15c87f789fd34b29a358690ece2c14ee3435766ffa6d2
SHA512 27cc74c3fd0cf7315a88f62412edc1628f4fbe9c660289d5c4a60457d0b6ca9610b271516d41c2529c49fb4da1d519f4328a1074dbcedd91972785f3d0e00a82

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\tzdata\windowsZones.res

MD5 8e98286772b65ffcfaa0ba6e1e22fff1
SHA1 69e54c1b79e36c2b56df24f1b338ef44257d0fa9
SHA256 784edc13cc73767b3d8dc3ac6d796c9df0b4bf60e5e6723ee8c76a82639dba9b
SHA512 fc3fd304b2b2e3a12862dbb6cd2205bf2fd492e3e65e98bcf0e1aae5c77e85e4e2227bc0d520debbe220714cf6488b62abb13163525dbecad8ce80a32f262399

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\tzdata\timezoneTypes.res

MD5 b86b784b8504b003ab3c68340d5dacc2
SHA1 8f4ef0cc5ac7183d3db1b17cf4538b4861806b65
SHA256 e2890a9c82369d5957e927e013ddfeadce8e76eae066968be9defe80b03eb2c5
SHA512 e1607b3f2dd5e758f997fddaac1788333d57d572e8e9a7132a79591644a5bc708ec25701887b9bcd03835111f229db726846aed68b4a9e1f8252c9b6dc198c27

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\tzdata\metaZones.res

MD5 e2b1eb129d146a3edf84f062656fafbf
SHA1 b12ecec20314ed8d60f1ec354e5175208604c831
SHA256 0c0a0c5e79b7ee5885eec3c856079c08e6d4af5753c8d4988fe386e787f48d0d
SHA512 2c5cbe82bfec1fe21b4636abe646f5edf2a1558f425338a6adc8a82ff86eb906c32f222d1d38455eca980e857e79828ccc1e71ba74296ad09a6bfd224fcbed13

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\bootstrap\manifest.json

MD5 8370571bc90d74e5deb8781eca6f2dd3
SHA1 dd1d408e7581a01c82b5341e70a2b1533470d912
SHA256 4e0e3e30704c0e52bc23214f4f2e6eb4fec749643978d36d9d18317dc4d49a01
SHA512 9728dc10315eeaa1ea6392e679eea176c1d764726009af182878daad4c574e79085cc6301ed9db26c643e2ec8986424ee758792f67b3afe600445e85cc639a10

C:\Users\Admin\AppData\Local\Discord\app-1.0.9034\lib\net45\resources\app.asar

MD5 12ef98839d4a939192575f7ee13492c7
SHA1 e546ec4b60767c42997d158adcd1c26c13afb0f5
SHA256 be1bf1ae7f6a662a8b9bac74807700bbe91eadc603c8431eedee8df5940f297b
SHA512 02978a6d52052cce36156801171820b307b15f593f30a847c0f94db566da03664684e2d5bbc099763a11a00b5e5238b0852ff9ddef7d6d7c771183017c5b3132

C:\Users\Admin\AppData\Local\Discord\packages\RELEASES

MD5 e9918809775d58624595598e49b57dbd
SHA1 d4e170c0fb629d2835e17bfefaefca66628184ca
SHA256 04e4b3bd71dac9838240c0ddcc37c69024d06d9780f6180b9617c6272647ebc1
SHA512 6ab392981d0806d41d1b991ea97be5b4a218997ef3646ee4528969660baa5bc70365d392640c6bcb9492c0fe5456b062e334c42e6884bf6ab37df372f7f79048

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f647866a458cccfecdad077fc115368e
SHA1 d652b9cbd4f155e9fb0547b021ec1f4e52b1231e
SHA256 332f7e33c807d5f470ad7ecba45d2e39b33bd469f55b7ea7c67af5093c60751b
SHA512 f74679c9bcfc268d296f1f856df3ca39dbef2e233d77166828d435cd77b82d5d4f03daaee5e96b7c2b11e89b9c1ca646123cb640e6e0f7593958eb3eae641c53

memory/2988-16933-0x0000000004DC0000-0x0000000004DD0000-memory.dmp

memory/2988-16932-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/2988-16946-0x0000000004DA0000-0x0000000004DC0000-memory.dmp

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

memory/2988-16983-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/1188-17071-0x0000000072FF0000-0x00000000737A1000-memory.dmp

memory/1188-17247-0x0000000005650000-0x0000000005660000-memory.dmp

memory/1188-17383-0x0000000005650000-0x0000000005660000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 07d63e947e472220c4eb6beeb4fca1b4
SHA1 7108ede661bd59ec0bec361b84f8bad4cbe0b4b7
SHA256 0fc8703e3347188728560f13d35c916ee969fbad1edefa5ae9f9efc5bad1b8fb
SHA512 f75a9e6092c7519d7fa900dad55a599b2fb42334906207e2b05b79cedffb850c9f6860d662087c371bb7bceeda85e8f28356d715c4bf2a304f2418335376412c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8232172265fce7d6ce7494db5c02848f
SHA1 74da3592f81e3148b63344bb905e981c1cd25695
SHA256 f8c1de5866daf195e001d05cfe067c2b6bca15e5240975fcf372bad53436b38c
SHA512 2bd4139388f54aa968690eddc4a2505beed29d3d61163e9c2a9fe7efa7437267aee4df78c021b78287ccf6a2da7e2cdd94308a17b47aa687b7c7565e47401f29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7cd271e34be163d5a9427a960aa1b3cc
SHA1 c7af50f185f6d9e800e02f19f541b719493a3df3
SHA256 d811769f48114eeab7b6f9feda260d2ed500a40a901988ecc797030dfa9030c9
SHA512 f42b5ca96a4ec8368c97e1501caf25e3fe2f0667a57ee06df2ca1d6e68ac318ed59a651165dac33617005be47d5bf2cf6d50ec66ced3ab61f792e804f8788986

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 874dbfa7b1a66ee4175c396c830844c4
SHA1 29935a920a05dc1222bac67b0034f6a158b41fcd
SHA256 bcf8e16a38d2ce28acc7ad752cbb3fad7cdf5f001b71ab57cb33f58b4db5f0d9
SHA512 354e4c105c864c10ccaf51418c0d3716fadd0a5e834343721588e9c66d2ad7de57bf40b737536cf38e550c32e412d27da13ef93e8b8563e9937cdb8aaad6e405

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 60aa23c4365d651ad83eeb0f0e8f999c
SHA1 682cc2cb968883809cda72c27cb0a7affc347263
SHA256 acd230d1c97bb30867cf3903cc21e14fcb0b20ae2c309ee6dff2680fceee8918
SHA512 85f82beaee8e8a74e3b3f3bc0ad57fea3b0b9ad73bb25116e99deb0bbef8409d4598074f400fe828bdf89ec280391bcc348b21fe5cf3b7b378d7fb80356033a5