Analysis Overview
SHA256
dd3365e6847c78748d87d7c1faa9fe5e1870362bdaced28ed8809ef69cc3a982
Threat Level: Likely malicious
The file Mail.PNG was found to be: Likely malicious.
Malicious Activity Summary
Renames multiple (169) files with added filename extension
Renames multiple (66) files with added filename extension
Sets file execution options in registry
Downloads MZ/PE file
Modifies Installed Components in the registry
Registers COM server for autorun
Executes dropped EXE
Loads dropped DLL
Checks whether UAC is enabled
Installs/modifies Browser Helper Object
Enumerates connected drives
Adds Run key to start application
Checks installed software on the system
Legitimate hosting services abused for malware hosting/C2
Checks system information in the registry
Drops file in System32 directory
Drops file in Program Files directory
Drops file in Windows directory
Command and Scripting Interpreter: PowerShell
Enumerates physical storage devices
NTFS ADS
Uses Task Scheduler COM API
Suspicious use of SendNotifyMessage
Suspicious use of AdjustPrivilegeToken
Modifies data under HKEY_USERS
Modifies registry class
System policy modification
Modifies Internet Explorer settings
Suspicious behavior: EnumeratesProcesses
Enumerates system info in registry
Suspicious use of WriteProcessMemory
Suspicious use of FindShellTrayWindow
Checks processor information in registry
Modifies system certificate store
Suspicious use of SetWindowsHookEx
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-04 07:17
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-04 07:17
Reported
2024-05-04 07:47
Platform
win11-20240426-en
Max time kernel
1805s
Max time network
1806s
Command Line
Signatures
Renames multiple (169) files with added filename extension
Renames multiple (66) files with added filename extension
Downloads MZ/PE file
Modifies Installed Components in the registry
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
Sets file execution options in registry
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EU3FFA.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EU3FFA.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EU2EC6.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EU2EC6.tmp\MicrosoftEdgeUpdate.exe | N/A |
Executes dropped EXE
Loads dropped DLL
Registers COM server for autorun
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B473453-BCFD-454A-AB98-B0DE7FDF2A6E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.181.5\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{0B10E70B-5CEF-4707-9139-484F6C719B65}\LocalServer32 | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsfinalizer.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9A2B23E4-2A50-48DB-B3C3-F5EA12947CB8}\InprocServer32\ = "C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\MSEnv\\VSFileHandler_64.dll" | C:\Windows\system32\msiexec.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.181.5\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.181.5\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B473453-BCFD-454A-AB98-B0DE7FDF2A6E}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{177F0C4A-1CD3-4DE7-A32C-71DBBB9FA36D}\InprocServer32 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{177F0C4A-1CD3-4DE7-A32C-71DBBB9FA36D}\InprocServer32\ = "C:\\ProgramData\\Microsoft\\VisualStudio\\Setup\\x64\\Microsoft.VisualStudio.Setup.Configuration.Native.dll" | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{D84C3A54-4501-436D-B4F9-750E5F727802}\InprocServer32 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO\\ie_to_edge_bho_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\PdfPreview\\PdfPreviewHandler.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{177F0C4A-1CD3-4DE7-A32C-71DBBB9FA36D}\InprocServer32\ThreadingModel = "Both" | C:\Windows\system32\msiexec.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.181.5\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{0B10E70B-5CEF-4707-9139-484F6C719B65}\LocalServer32\ = "\"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\\common7\\ide\\devenv.exe\"" | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsfinalizer.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ThreadingModel = "Apartment" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{177F0C4A-1CD3-4DE7-A32C-71DBBB9FA36D}\InprocServer32 | C:\Windows\system32\msiexec.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B473453-BCFD-454A-AB98-B0DE7FDF2A6E}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.181.5\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B473453-BCFD-454A-AB98-B0DE7FDF2A6E}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{D84C3A54-4501-436D-B4F9-750E5F727802}\InprocServer32 | C:\Windows\system32\msiexec.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ThreadingModel = "Apartment" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{177F0C4A-1CD3-4DE7-A32C-71DBBB9FA36D}\InprocServer32 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B473453-BCFD-454A-AB98-B0DE7FDF2A6E}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\6EA26FFDFC3C3CADAF6C = "\"C:\\Program Files (x86)\\Microsoft Visual Studio\\Installer\\setup.exe\" resume --installPath \"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\" --runOnce --installSessionId 4f43e957-8bed-4bcb-ad50-a39eb1edc173" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=EDDEBC4083C24D0DAF2DF63E1E38AEEF" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D5FCED48-3F8F-4DE0-9019-C4723090871E}\BGAUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\6EA26FFDFC3C3CADAF6C = "\"C:\\Program Files (x86)\\Microsoft Visual Studio\\Installer\\setup.exe\" resume --installPath \"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\" --runOnce --installSessionId 239eb1b3-1879-4b53-b01c-179531d13e77" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\6EA26FFDFC3C3CADAF6C = "\"C:\\Program Files (x86)\\Microsoft Visual Studio\\Installer\\setup.exe\" resume --installPath \"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\" --runOnce --installSessionId 59c4e6c7-033a-4cd8-b540-22ee22321633" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
Checks installed software on the system
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PerfWatson2.exe | N/A |
Enumerates connected drives
Installs/modifies Browser Helper Object
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EU2EC6.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EU3FFA.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EU2EC6.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EU3FFA.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\system32\wbem\AutoRecover\4E9BED298E4A2447DA493DE14F1E57F4.mof | C:\Windows\system32\wbem\mofcomp.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\ko\Microsoft.TeamFoundation.WorkItemTracking.Common.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Octokit.GraphQL.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Newtonsoft.Json.9.0.0.1\Newtonsoft.Json.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Client\tr\Microsoft.ServiceHub.Framework.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Client\zh-Hans\Microsoft.ServiceHub.Resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\usr\bin\msys-fido2-1.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\dotnet\net8.0\runtime\shared\Microsoft.WindowsDesktop.App\8.0.4\UIAutomationProvider.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\dotnet\net8.0\runtime\shared\Microsoft.WindowsDesktop.App\8.0.4\zh-Hans\PresentationFramework.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\pt-BR\Microsoft.Build.Tasks.Core.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\zh-Hant\NuGet.VisualStudio.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\it-IT\ResolvedProjectReference.xaml | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\en-US.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Platform\WhatsNew\Content\pt-BR\event-handler-insights.md | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Licensing\es\StreamJsonRpc.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\ServiceHub\AccountManagement\Microsoft.VisualStudio.CoreUtility.ni.pdb | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\ServiceHub\IdentityService\cs\Microsoft.VisualStudio.Validation.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PublicAssemblies\VSLangProj158.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\etc\profile | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\mingw64\bin\MicroCom.Runtime.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\pt-BR\Microsoft.TeamFoundation.TestImpact.BuildIntegration.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Platform\WhatsNew\Content\ru-RU\devcom.md | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\it\Microsoft.VisualStudio.Editor.Implementation.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Client\tr\Microsoft.ServiceHub.Resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Licensing\zh-Hans\Microsoft.VisualStudio.Services.Common.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Microsoft.VisualStudio.TextMate.Snippets.Manager.xml | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\en-US\VisualBasic.ProjectItemsSchema.xaml | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\VisualStudio\Editors\cs\Microsoft.VisualStudio.AppDesigner.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Platform\Debugger\WebViews\Controls\WebView2\dataGrid.css | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Client\cs\Microsoft.VisualStudio.Shell.Framework.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\ko\NuGet.PackageManagement.VisualStudio.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\ko\NuGet.VisualStudio.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\Microsoft.CSharp.CrossTargeting.targets | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\pl\Microsoft.TeamFoundation.Git.HostingProvider.GitHub.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Starterkit\Extensions\java\Snippets\finally.tmSnippet | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\de\NuGet.Credentials.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Setup.InstallerResources.dll.config | C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\tr\Microsoft.VisualStudio.Editor.Implementation.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\pl\Microsoft.VisualStudio.Terminal.Implementation.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Licensing\pl\Microsoft.VisualStudio.Services.Common.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\cs\Microsoft.Developer.IdentityService.GitHubProvider.UI.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\ServiceHub\IdentityService\Microsoft.Developer.IdentityService.Core.pdb | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\jsonRpc.all.v2.js | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\it-IT\SpecialFolder.xaml | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\WebViewHost\System.IO.Pipelines.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Starterkit\Extensions\perl\Snippets\for.plist | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft Visual Studio\Installer\pl\vs_layout.resources.dll | C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Automation\VxExtensibilityLib2.tlb.manifest | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\ServiceHub\IdentityService\Microsoft.IdentityModel.Tokens.ni.pdb | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Extensibility.amd64\dotnetExtensibility.servicehub.host.json | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\CertificateInformation.dat | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\Azure.Storage.Common.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.XslDebugger.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Licensing\it\Microsoft.VisualStudio.Threading.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Starterkit\Extensions\swift\Snippets\get.tmSnippet | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\119.0.2151.58\Locales\lo.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CE1A0C33-4526-422B-82EC-D2D06D9B5918}\EDGEMITMP_134BA.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\VB\Snippets\1033\os\SystemInfo\DetectDesktopDisplayResolution.snippet | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Extensibility.amd64\ko\Microsoft.ServiceHub.HostLib.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\ru-RU\Folder.xaml | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\VisualElements\SmallLogo.png | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\es\Microsoft.TeamFoundation.WorkItemTracking.ControlsCore.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\tr\Microsoft.TeamFoundation.WorkItemTracking.Client.QueryLanguage.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\ru\NuGet.Commands.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x86\DbgComposition.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| File created | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\de\Microsoft.VisualStudio.Platform.VSEditor.resources.dll | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngenservicelock.dat | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF49EB40ECF358BC1C.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\setupact.log | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Installer\MSI4AD1.tmp | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\e5b4943.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\e5b494d.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFC7BE61FCE8165991.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\MSI8E93.tmp | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\e5b4952.msi | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\assembly\GACLock.dat | C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Build.UnGAC,version=17.9.8.2416306,chip=neutral,language=neutral\Microsoft.Build.UnGAC.exe | N/A |
| File created | C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngenrootstorelock.dat | C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe | N/A |
| File created | C:\Windows\Microsoft.NET\ngennicupdatelock.dat | C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe | N/A |
| File opened for modification | C:\Windows\Installer\e66bf5f.msi | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFC19B1DFAD6A65855.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF1493F46B27157F5C.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF7A97AD87F1839520.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Microsoft.NET\ngenserviceclientlock.dat | C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF36DD3167909B3A22.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF6D540E74622D1727.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF422FC981E442DBB4.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\MSI4016.tmp | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Installer\e5b4965.msi | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF4B1FB0CC01E5141B.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF28C80CF2BB074991.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF92AB6DE513C3E706.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF3FCC9A0D77559DA0.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp\MsEdgeCrashpad\metadata | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\setuperr.log | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF6DF43CF3620FB8F7.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\MSI3C6A.tmp | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF65EF38DEBDF6E915.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFFF1337AADF0B2825.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngenservicelock.dat | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe | N/A |
| File created | C:\Windows\Installer\e5b4933.msi | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Fonts\CascadiaMono.ttf | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF7F2CBADAAE0C16F3.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFCF76BD3E78FBE082.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Microsoft.NET\ngenserviceclientlock.dat | C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe | N/A |
| File created | C:\Windows\Microsoft.NET\ngenserviceclientlock.dat | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\diagwrn.xml | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFFDCA15E851B8E08A.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\e5b4934.msi | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFF7DC9C8666DD0CE7.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF06962953B5BBE41A.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFCF9F753357C75AF7.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF614B9532A39E46BF.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Installer\e5b4952.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\diagerr.xml | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Installer\e5b495c.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File created | C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| File created | C:\Windows\Installer\e5b493e.msi | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Installer\e5b4960.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\MSID797.tmp | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DF49E4BEEC058D51F5.TMP | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\SystemTemp\~DFE07D8BD8A9ED127A.TMP | C:\Windows\system32\msiexec.exe | N/A |
Command and Scripting Interpreter: PowerShell
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe | N/A |
Enumerates physical storage devices
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\VSFinalizer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.netfx.x86\ServiceHub.IdentityHost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\devenv.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\devenv.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PerfWatson2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.netfx.x86\ServiceHub.IdentityHost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.netfx.x86\ServiceHub.IdentityHost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\devenv.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Identifier | C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\VSFinalizer.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PerfWatson2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3938118698-2964058152-2337880935-1000\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\devenv.exe = "9999" | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\39 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\3c | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\36\52C64B7E\@%SystemRoot%\system32\WindowsPowerShell\v1.0\powershell.exe,-124 = "Document Encryption" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\SOFTWARE\CLASSES\LOCAL SETTINGS\MUICACHE\37 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\3d | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\33 | C:\Windows\system32\msiexec.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\SOFTWARE\CLASSES\LOCAL SETTINGS\MUICACHE\34 | C:\Windows\system32\msiexec.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\3e | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292114432" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2d | C:\Windows\system32\msiexec.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\SOFTWARE\CLASSES\LOCAL SETTINGS\MUICACHE\3C | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\35 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\SOFTWARE\CLASSES\LOCAL SETTINGS\MUICACHE\2D | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\36 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\SOFTWARE\CLASSES\LOCAL SETTINGS\MUICACHE\3B | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge\InstallerPinned = "0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.xsl.08475949\shell\Open\ddeexec\Topic | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreMachineClass.1\CLSID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods\ = "16" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.rc.08475949\shell\Open\Command | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.pkgundef.08475949\shell\Open\ddeexec | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Classes\Installer\Products\BFC892E79285309489AB3F7FE0C7BE90\Version = "285837007" | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.sdl.08475949\shell\Open\ddeexec\Topic | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.map.08475949\AlwaysShowExt = "1" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.Launcher._bsln150\NoOpen | C:\Windows\system32\msiexec.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.lst.08475949\shell\Open | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.git-client.08475949\DefaultIcon\ = "\"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\\Common7\\IDE\\VSWebLauncher.exe\",-100" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Installer\Dependencies\Microsoft.VisualStudio.MinShell.Msi,v17 | C:\Windows\system32\msiexec.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.xdr.08475949 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.inc.08475949\shell\Open\Command | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.lst\OpenWithProgids | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.idb.08475949 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.dsh.08475949\shell\Open\ddeexec\Topic | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.mfcribbon-ms.08475949\shell\Open\ddeexec\ = "Open(\"%1\")" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.dmp.08475949\DefaultIcon | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.natvis.08475949\shell\Open\Command | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Installer\Features\E064158136E071145BAB522A0F5408B1 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3WebSvc\CurVer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.map.08475949\shell\Open\ddeexec\Application | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.mak.08475949\shell\Open\Command\ = "\"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\\Common7\\IDE\\devenv.exe\" \"%1\"" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.user\Content Type = "text/plain" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.resw\ = "VisualStudio.resw.08475949" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\NumMethods\ = "11" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.ipp.08475949\shell\Open\ddeexec\ = "Open(\"%1\")" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.mak.08475949\AlwaysShowExt = "1" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Installer\Products\6F0186F81F5414D4B91EEF838206B239\SourceList\PackageName = "Microsoft.VisualStudio.FileHandler.Msi.x86.msi" | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.pkgdef.08475949\shell\Open\ddeexec\Application | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.pal.08475949\ = "Palette File" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.vcxproj.filters.08475949\shell\Open\Command | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.targets.08475949\shell\Open\ddeexec\Application | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.rgs.08475949\shell\Open | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.bmp.08475949\shell\Open\ddeexec\Topic | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.bmp.08475949\shell\Open\Command | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\vsweb+githubsi\DefaultIcon\ = "Microsoft.VisualStudio.GitHubProtocolHandler.exe,1" | C:\Windows\system32\msiexec.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CredentialDialogMachine.1.0\ = "Microsoft Edge Update CredentialDialog" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\VERSIONINDEPENDENTPROGID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Installer\Products\CA86C7731B3FF7B40B8F2744D6069EE9\SourceList\Media\1 = ";" | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E55B90F1-DA33-400B-B09E-3AFF7D46BD83}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{A6B716CB-028B-404D-B72C-50E153DD68DA}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.OnDemandCOMClassSvc" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.Launcher._vcppxsln110\DefaultIcon\ = "C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\MSEnv\\VSFileHandler.dll,-226" | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\VisualStudio.Launcher._sln160 | C:\Windows\system32\msiexec.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.datasource\ = "VisualStudio.datasource.08475949" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.ipp.08475949\shell\Open\ddeexec\Topic\ = "system" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.mak.08475949\shell\Open | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VisualStudio.ipp.08475949\DefaultIcon\ = "\"C:\\Program Files\\Microsoft Visual Studio\\2022\\Community\\Common7\\IDE\\VC\\vcpackages\\VCProject.dll\",7" | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\NumMethods\ = "24" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-3938118698-2964058152-2337880935-1000\Software\Microsoft\SystemCertificates\CA\Certificates\8BFE3107712B3C886B1C96AAEC89984914DC9B6B | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3938118698-2964058152-2337880935-1000\Software\Microsoft\SystemCertificates\CA\Certificates\8BFE3107712B3C886B1C96AAEC89984914DC9B6B\Blob = 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 | C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\VisualStudioSetup.exe:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
System policy modification
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe | N/A |
Uses Task Scheduler COM API
Processes
C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Mail.png
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\Windows\System32\oobe\UserOOBEBroker.exe
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe638bab58,0x7ffe638bab68,0x7ffe638bab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1616 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1844 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2216 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3100 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3160 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4360 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4512 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4588 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4252 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4904 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4940 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4148 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4240 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3248 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5132 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4288 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=1936 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=3900 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=4312 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=3436 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=4996 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=2468 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1244 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5232 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5260 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2788 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4952 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=1932 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Users\Admin\Downloads\VisualStudioSetup.exe
"C:\Users\Admin\Downloads\VisualStudioSetup.exe"
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe
"C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe" --env "_SFX_CAB_EXE_PACKAGE:C:\Users\Admin\Downloads\VisualStudioSetup.exe _SFX_CAB_EXE_ORIGINALWORKINGDIR:C:\Users\Admin\Downloads"
C:\Windows\SysWOW64\getmac.exe
"getmac"
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" /finalizeInstall install --in "C:\ProgramData\Microsoft\VisualStudio\Packages\_bootstrapper\vs_setup_bootstrapper_202405040720493195.json" --locale en-US --activityId "b0296403-d001-4885-a1ae-721e773dbc02" --campaign "2030:be489dae94e74f5397d3db92a6025826" --pipe "2e7f15c8-34b3-4bb4-8394-6d095e7ce604"
C:\Program Files (x86)\Microsoft Visual Studio\Installer\vs_installer.windows.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\vs_installer.windows.exe" /finalizeinstall 6F320B93-EE3C-4826-85E0-ADF79F8D4C61 "Visual Studio Installer" "Microsoft Visual Studio Installer" 3.9.2180.11832 0 "C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe"
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004E0 0x00000000000004D8
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" elevate --activityId b0296403-d001-4885-a1ae-721e773dbc02 --campaign 2030:be489dae94e74f5397d3db92a6025826 --handle 1179716 --locale en-US --pid 4576 --pipeName fd81a46a11b649e48a2078835067b4d5 --serializedSession "{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Default\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1000,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"26b76058-df76-4af7-8d0d-28e032d37e8c\",\"ProcessStartTime\":638504040707797250,\"SkuName\":null,\"VSExeVersion\":null,\"BucketFiltersToEnableWatsonForFaults\":[{\"AdditionalProperties\":[],\"Id\":\"a02930d9-c607-41c3-8698-0fd9196735a5\",\"WatsonEventType\":\"VisualStudioNonFatalErrors2\",\"BucketParameterFilters\":[null,null,\"(?i)vs\\.setup.*\",null,null,null,null,null,null,null]},{\"AdditionalProperties\":[],\"Id\":\"64a13603-6d89-42e4-a299-13f77e5ad306\",\"WatsonEventType\":\"VisualStudioNonFatalErrors2\",\"BucketParameterFilters\":[null,null,\"(?i)vs\\.willow.*\",null,null,null,null,null,null,null]}],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Windows\system32\msiexec.exe
C:\Windows\system32\msiexec.exe /V
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe" queue pause
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe" queue pause
C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Initializer,version=17.9.34511.75\VSInitializer.exe
"C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Initializer,version=17.9.34511.75\VSInitializer.exe" -Operation Install -InstallationID 08475949 -InstallationName VisualStudio/17.9.6+34728.123 -InstallationVersion 17.9.34728.123 -InstallationWorkloads Microsoft.VisualStudio.Workload.CoreEditor -InstallationPackages Microsoft.VisualStudio.Component.CoreEditor -InstallationPath """C:\Program Files\Microsoft Visual Studio\2022\Community""" -ComponentId Microsoft.VisualStudio.Product.Community -ChannelsPath """https://aka.ms/vs/17/release/channel""" -SetupEngineFilePath """C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe""" -Log """C:\Users\Admin\AppData\Local\Temp\dd_setup_20240504072153_015_Microsoft.VisualStudio.Initializer.log"""
C:\Windows\syswow64\MsiExec.exe
C:\Windows\syswow64\MsiExec.exe -Embedding 778F5507517F3C703872CF50BF99F050
C:\ProgramData\Microsoft\VisualStudio\SetupWMI\MofCompiler.exe
"C:\ProgramData\Microsoft\VisualStudio\SetupWMI\MofCompiler.exe" -autorecover "C:\ProgramData\Microsoft\VisualStudio\SetupWMI\Microsoft.VisualStudio.Setup.Management.mof"
C:\Windows\system32\wbem\mofcomp.exe
"C:\Windows\system32\wbem\mofcomp" -autorecover C:\ProgramData\Microsoft\VisualStudio\SetupWMI\Microsoft.VisualStudio.Setup.Management.mof
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe"
C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Build.UnGAC,version=17.9.8.2416306,chip=neutral,language=neutral\Microsoft.Build.UnGAC.exe
"C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Build.UnGAC,version=17.9.8.2416306,chip=neutral,language=neutral\Microsoft.Build.UnGAC.exe"
C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.WebView2,version=119.0.2151.58,productarch=neutral,machinearch=x64\microsoftedgewebview2runtimeinstallerx64.exe
"C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.WebView2,version=119.0.2151.58,productarch=neutral,machinearch=x64\microsoftedgewebview2runtimeinstallerx64.exe" /silent /install
C:\Program Files (x86)\Microsoft\Temp\EU3FFA.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EU3FFA.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20WebView2%20Runtime&needsadmin=Prefers"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20WebView2%20Runtime&needsadmin=Prefers" /installsource offline /sessionid "{98B636A8-CA55-4FC8-BC0E-C71B1B338FD6}" /silent /offlinedir "{D29F3BF2-534D-4C36-B0B3-621BE3D015D8}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PG9zIHBsYXRmb3JtPSJ3aW4iIHZlcnNpb249IjEwLjAuMjIwMDAuNDkzIiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iNDgiIG9zX3JlZ2lvbl9uYW1lPSJVUyIgb3NfcmVnaW9uX25hdGlvbj0iMjQ0IiBvc19yZWdpb25fZG1hPSIwIiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTEwLjAuNTQ4MS4xMDQiIG5leHR2ZXJzaW9uPSIxMTAuMC41NDgxLjEwNCIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijg0NjYyMjE1MDMiLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CE1A0C33-4526-422B-82EC-D2D06D9B5918}\MicrosoftEdgeWebview_X64_119.0.2151.58.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CE1A0C33-4526-422B-82EC-D2D06D9B5918}\MicrosoftEdgeWebview_X64_119.0.2151.58.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CE1A0C33-4526-422B-82EC-D2D06D9B5918}\EDGEMITMP_134BA.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CE1A0C33-4526-422B-82EC-D2D06D9B5918}\EDGEMITMP_134BA.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CE1A0C33-4526-422B-82EC-D2D06D9B5918}\MicrosoftEdgeWebview_X64_119.0.2151.58.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PG9zIHBsYXRmb3JtPSJ3aW4iIHZlcnNpb249IjEwLjAuMjIwMDAuNDkzIiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iNDgiIG9zX3JlZ2lvbl9uYW1lPSJVUyIgb3NfcmVnaW9uX25hdGlvbj0iMjQ0IiBvc19yZWdpb25fZG1hPSIwIiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtWUFFvUDFGK2ZxMTV3UnpoMWtQTDRQTXBXaDhPUk1CNWl6dnJPQy9jaGpRPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGMzAxNzIyNi1GRTJBLTQyOTUtOEJERi0wMEMzQTlBN0U0QzV9IiB2ZXJzaW9uPSIiIG5leHR2ZXJzaW9uPSIxMTkuMC4yMTUxLjU4IiBsYW5nPSIiIGJyYW5kPSIiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI4NDcwMjY4ODAxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMTk2NzU3IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI4NzU3NjE1MDc1IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiBkb3dubG9hZGVkPSIxNzQ3NTgzNTIiIHRvdGFsPSIxNzQ3NTgzNTIiIHBhY2thZ2VfY2FjaGVfcmVzdWx0PSIxIiBpbnN0YWxsX3RpbWVfbXM9IjI2MjY2Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsfinalizer.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsfinalizer.exe" -Operation Install -SKU Community -InstallationID 08475949 -InstallationName VisualStudio/17.9.6+34728.123 -InstallationVersion 17.9.34728.123 -InstallationWorkloads Microsoft.VisualStudio.Workload.CoreEditor -InstallationPackages Microsoft.VisualStudio.Component.CoreEditor -AlphaPacksCount 0 -ComponentId Microsoft.VisualStudio.Product.Community -ProductKey -ChannelsPath """https://aka.ms/vs/17/release/channel""" -ChannelId """VisualStudio.17.Release""" -ChannelManifestId """VisualStudio.17.Release/17.9.6+34728.123""" -SetupEngineFilePath """C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe""" -Log """C:\Users\Admin\AppData\Local\Temp\dd_setup_20240504072153_089_Microsoft.VisualStudio.Product.Community.log""" -Nickname """""" -DisplayVersion """17.9.6""" -SemanticVersion """17.9.6+34728.123""" -ChannelTitle """Current""" -ChannelSuffix """""" -CampaignId """2030:be489dae94e74f5397d3db92a6025826""" -ProductArch x64 -SetupResult 1 -UserOperation Install
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\DDConfigCA.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\DDConfigCA.exe"
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\devenv.exe" /updateConfiguration /allowDuringSetup /log ActivityLog.Setup.xml
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\VSFinalizer.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\VSFinalizer.exe" -Task PerfWatson
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe" update /queue
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe" update /queue
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe" queue continue
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe" queue continue
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe" eqi 0
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe" eqi 0
C:\Windows\explorer.exe
"C:\Windows\explorer.exe" "C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe"
C:\Windows\explorer.exe
C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe"
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\controller\Microsoft.ServiceHub.Controller.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\controller\Microsoft.ServiceHub.Controller.exe" e84d4c05534e09066cb10f4499ef4558339fe07832544535cfd6acbdf8919330 "/AppBasePath:C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\\" /ConfigFile:C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\devenv.exe.config /ControllerCooldownTimeout:30000 "/TelemetrySession:{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Dev14\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1001,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"13690218-7e9f-45c4-8afd-457a3856b2e9\",\"ProcessStartTime\":638504043096036210,\"SkuName\":\"VS_Community\",\"VSExeVersion\":\"17.9.34728.123\",\"BucketFiltersToEnableWatsonForFaults\":[],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.netfx.x86\ServiceHub.IdentityHost.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.netfx.x86\ServiceHub.IdentityHost.exe" netfx.x86$IdentityHost net.pipe://5952A0556D5923F8EFFA4AAB55C39A433218 "/AppBasePath:C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\\" /ConfigFile:C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\devenv.exe.config "/TelemetrySession:{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Dev14\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1001,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"13690218-7e9f-45c4-8afd-457a3856b2e9\",\"ProcessStartTime\":638504043096036210,\"SkuName\":\"VS_Community\",\"VSExeVersion\":\"17.9.34728.123\",\"BucketFiltersToEnableWatsonForFaults\":[],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.AnyCPU\ServiceHub.VSDetouredHost.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.AnyCPU\ServiceHub.VSDetouredHost.exe" netfx.anycpu$VSDetouredHost net.pipe://5952A0556D5923F8EFFA4AAB55C39A433218 "/AppBasePath:C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\\" /ConfigFile:C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\devenv.exe.config "/TelemetrySession:{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Dev14\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1001,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"13690218-7e9f-45c4-8afd-457a3856b2e9\",\"ProcessStartTime\":638504043096036210,\"SkuName\":\"VS_Community\",\"VSExeVersion\":\"17.9.34728.123\",\"BucketFiltersToEnableWatsonForFaults\":[],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe" /FirstLaunchSetup /nosplash
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PerfWatson2.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PerfWatson2.exe" -launchpeerthenterminate -p 5168 -version 16 -role 3 "{%22TelemetryLevel%22:null,%22IsOptedIn%22:true,%22HostName%22:%22Dev14%22,%22AppInsightsInstrumentationKey%22:%22f144292e-e3b2-4011-ac90-20e5c03fbce5%22,%22AsimovInstrumentationKey%22:%22AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70%22,%22CollectorApiKey%22:%22f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296%22,%22AppId%22:1001,%22UserId%22:%22a8864196-3380-4b9e-b025-3111abf014de%22,%22Id%22:%2213690218-7e9f-45c4-8afd-457a3856b2e9%22,%22ProcessStartTime%22:638504043096036210,%22SkuName%22:%22VS_Community%22,%22VSExeVersion%22:%2217.9.34728.123%22,%22BucketFiltersToEnableWatsonForFaults%22:[],%22BucketFiltersToAddDumpsToFaults%22:[]}"
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PerfWatson2.exe
".\PerfWatson2.exe" -p 5168 -version 16 -role 3 {%22TelemetryLevel%22:null,%22IsOptedIn%22:true,%22HostName%22:%22Dev14%22,%22AppInsightsInstrumentationKey%22:%22f144292e-e3b2-4011-ac90-20e5c03fbce5%22,%22AsimovInstrumentationKey%22:%22AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70%22,%22CollectorApiKey%22:%22f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296%22,%22AppId%22:1001,%22UserId%22:%22a8864196-3380-4b9e-b025-3111abf014de%22,%22Id%22:%2213690218-7e9f-45c4-8afd-457a3856b2e9%22,%22ProcessStartTime%22:638504043096036210,%22SkuName%22:%22VS_Community%22,%22VSExeVersion%22:%2217.9.34728.123%22,%22BucketFiltersToEnableWatsonForFaults%22:[],%22BucketFiltersToAddDumpsToFaults%22:[]}
C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe" --updateCheck --activityId 789f4c8d-3010-40a5-bd95-5698ffac15a7 --instanceId 08475949
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.AnyCPU\ServiceHub.SettingsHost.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.AnyCPU\ServiceHub.SettingsHost.exe" netfx.anycpu$SettingsHost net.pipe://5952A0556D5923F8EFFA4AAB55C39A433218 "/AppBasePath:C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\\" /ConfigFile:C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\devenv.exe.config "/TelemetrySession:{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Dev14\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1001,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"13690218-7e9f-45c4-8afd-457a3856b2e9\",\"ProcessStartTime\":638504043096036210,\"SkuName\":\"VS_Community\",\"VSExeVersion\":\"17.9.34728.123\",\"BucketFiltersToEnableWatsonForFaults\":[],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\ServiceHub.IdentityHost.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\ServiceHub.IdentityHost" dotnet.x64$IdentityHost net.pipe://5952A0556D5923F8EFFA4AAB55C39A433218 "/TelemetrySession:{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Dev14\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1001,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"13690218-7e9f-45c4-8afd-457a3856b2e9\",\"ProcessStartTime\":638504043096036210,\"SkuName\":\"VS_Community\",\"VSExeVersion\":\"17.9.34728.123\",\"BucketFiltersToEnableWatsonForFaults\":[],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=4404 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=4424 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" modify --installPath "C:\Program Files\Microsoft Visual Studio\2022\Community" --activityId 0cd7108a-d11e-4d53-a270-e0ebd13fe10f
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" modify --installPath "C:\Program Files\Microsoft Visual Studio\2022\Community" --activityId 7734b1e3-a989-44cc-9a3d-e0a88a32221e
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\ServiceHub.IndexingService.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\ServiceHub.IndexingService" dotnet$IndexingService net.pipe://5952A0556D5923F8EFFA4AAB55C39A433218 "/TelemetrySession:{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Dev14\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1001,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"13690218-7e9f-45c4-8afd-457a3856b2e9\",\"ProcessStartTime\":638504043096036210,\"SkuName\":\"VS_Community\",\"VSExeVersion\":\"17.9.34728.123\",\"BucketFiltersToEnableWatsonForFaults\":[],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5688 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4400 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3320 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5816 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=1792 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=2344 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5912 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6100 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6208 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=6196 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Windows\System32\cmd.exe
"C:\Windows\System32\cmd.exe" /k "C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\Tools\VsDevCmd.bat"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c vswhere.exe -property catalog_productSemanticVersion -path "C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\Tools\VsDevCmd.bat"
C:\Program Files (x86)\Microsoft Visual Studio\Installer\vswhere.exe
vswhere.exe -property catalog_productSemanticVersion -path "C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\Tools\VsDevCmd.bat"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkDir32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\VisualStudio\SxS\VC7" /v "FrameworkVer32"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v10.0" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\Windows Kits\Installed Roots" /v "KitsRoot10"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c dir "C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\Tools\vsdevcmd\ext\*.bat" /b /a-d-h /on
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\NETFXSDK"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\NETFXSDK"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Wow6432Node\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\NETFXSDK"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKLM\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\NETFXSDK"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x86" /v "InstallationFolder"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\system32\reg.exe
reg query "HKCU\SOFTWARE\Microsoft\Microsoft SDKs\Windows\v8.1A\WinSDK-NetFx40Tools-x64" /v "InstallationFolder"
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
powershell.exe -NoProfile -Command "& {if($PSVersionTable.PSVersion.Major -ge 3){Import-Module 'C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\Tools\\Microsoft.VisualStudio.DevShell.dll'; Send-VsDevShellTelemetry -NewInstanceType Cmd; }}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D5FCED48-3F8F-4DE0-9019-C4723090871E}\BGAUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D5FCED48-3F8F-4DE0-9019-C4723090871E}\BGAUpdate.exe" --edgeupdate-client --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODEuNSIgc2hlbGxfdmVyc2lvbj0iMS4zLjE4MS41IiBpc21hY2hpbmU9IjEiIHNlc3Npb25pZD0ie0MyQ0FBQ0UzLTNFNjUtNDRENC1BMkFELTJEQTg2MDk1RUVBMH0iIHVzZXJpZD0ie0MxMjdCODc5LTE2NzktNEIzOS1BNTI2LTM1NDEyMDNFN0VEMn0iIGluc3RhbGxzb3VyY2U9InNjaGVkdWxlciIgcmVxdWVzdGlkPSJ7QTRENEZGRUEtQjUzNS00NjBFLUFCN0YtMjE5MDc5Rjk1OERBfSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4yMjAwMC40OTMiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgb3NfcmVnaW9uX25hbWU9IlVTIiBvc19yZWdpb25fbmF0aW9uPSIyNDQiIG9zX3JlZ2lvbl9kbWE9IjAiIGlzX3dpcD0iMCIgaXNfaW5fbG9ja2Rvd25fbW9kZT0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O0RWMGpJL0tEbHhoSHVlMUw5S1JHR2NxT2hmM0gzaDNhY1NyRWFuUUtmZ1E9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0iezFGQUI4Q0ZFLTk4NjAtNDE1Qy1BNkNBLUFBN0QxMjAyMTk0MH0iIHZlcnNpb249IiIgbmV4dHZlcnNpb249IjIuMC4wLjM0IiBsYW5nPSIiIGJyYW5kPSJFVUZJIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGluc3RhbGxhZ2U9Ii0xIiBpbnN0YWxsZGF0ZT0iLTEiPjx1cGRhdGVjaGVjay8-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-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
C:\Windows\System32\oobe\UserOOBEBroker.exe
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" modify --installPath "C:\Program Files\Microsoft Visual Studio\2022\Community"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3FD76631-E8A6-4D2A-A668-9B64BC853247}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3FD76631-E8A6-4D2A-A668-9B64BC853247}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe" /update /sessionid "{CAE09317-3AA2-4657-9B47-D1F47A48CD11}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xODEuNSIgbmV4dHZlcnNpb249IjEuMy4xODUuMjkiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBleHBlcmltZW50cz0iUHJvZHVjdHNUb1JlZ2lzdGVyPSU3QjFGQUI4Q0ZFLTk4NjAtNDE1Qy1BNkNBLUFBN0QxMjAyMTk0MCU3RCIgaW5zdGFsbGFnZT0iMCI-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-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjEiIGE9Ii0xIiByPSItMSIgYWQ9Ii0xIiByZD0iLTEiLz48L2FwcD48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iMTE5LjAuMjE1MS41OCIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIHVwZGF0ZV9jb3VudD0iMSI-PHVwZGF0ZWNoZWNrLz48cGluZyByPSItMSIgcmQ9Ii0xIiBwaW5nX2ZyZXNobmVzcz0iezAxNUUzMzBDLTIzRjgtNDUzOS1BQkY2LTlBMDA5RTY4OUE2Nn0iLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Microsoft\Temp\EU2EC6.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EU2EC6.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{CAE09317-3AA2-4657-9B47-D1F47A48CD11}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xODEuNSIgaXNtYWNoaW5lPSIxIiBzZXNzaW9uaWQ9IntDQUUwOTMxNy0zQUEyLTQ2NTctOUI0Ny1EMUY0N0E0OENEMTF9IiB1c2VyaWQ9IntDMTI3Qjg3OS0xNjc5LTRCMzktQTUyNi0zNTQxMjAzRTdFRDJ9IiBpbnN0YWxsc291cmNlPSJzZWxmdXBkYXRlIiByZXF1ZXN0aWQ9InszOTZENjIzOS0yQkZFLTQwNkMtODQ0NS0wMjdFRkQyMkUyNUZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtEVjBqSS9LRGx4aEh1ZTFMOUtSR0djcU9oZjNIM2gzYWNTckVhblFLZmdRPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTgxLjUiIG5leHR2ZXJzaW9uPSIxLjMuMTg1LjI5IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMCIgaW5zdGFsbGRhdGV0aW1lPSIxNzE0ODA3NDU0Ij48ZXZlbnQgZXZlbnR0eXBlPSIzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMjI1OTAwNzYxMyIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=5940 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=2468 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=6196 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6068 --field-trial-handle=1956,i,6265482024172763764,16191030005803322036,131072 /prefetch:8
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" elevate --activityId 389915eb-d535-49ec-84ff-5223b4ad36c2 --handle 589856 --locale en-US --pid 3856 --pipeName 3e0e2214d27c4c7dbcce4448cf0c4395 --serializedSession "{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Default\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1000,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"15b0373d-286d-453f-87b4-eed1923ea451\",\"ProcessStartTime\":638504046163062458,\"SkuName\":null,\"VSExeVersion\":null,\"BucketFiltersToEnableWatsonForFaults\":[{\"AdditionalProperties\":[],\"Id\":\"a02930d9-c607-41c3-8698-0fd9196735a5\",\"WatsonEventType\":\"VisualStudioNonFatalErrors2\",\"BucketParameterFilters\":[null,null,\"(?i)vs\\.setup.*\",null,null,null,null,null,null,null]},{\"AdditionalProperties\":[],\"Id\":\"64a13603-6d89-42e4-a299-13f77e5ad306\",\"WatsonEventType\":\"VisualStudioNonFatalErrors2\",\"BucketParameterFilters\":[null,null,\"(?i)vs\\.willow.*\",null,null,null,null,null,null,null]}],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Windows\system32\msiexec.exe
C:\Windows\system32\msiexec.exe /V
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe" queue pause
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe" queue pause
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsinitializer.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsinitializer.exe" -Operation install -InstallationID 08475949 -InstallationName VisualStudio/17.9.6+34728.123 -InstallationVersion 17.9.34728.123 -InstallationWorkloads Microsoft.VisualStudio.Workload.CoreEditor,Microsoft.VisualStudio.Workload.ManagedDesktop -InstallationPackages Microsoft.VisualStudio.Component.CoreEditor,Microsoft.Net.Component.4.8.SDK,Microsoft.Net.Component.4.7.2.TargetingPack,Microsoft.Net.ComponentGroup.DevelopmentPrerequisites,Microsoft.VisualStudio.Component.TypeScript.TSServer,Microsoft.VisualStudio.ComponentGroup.WebToolsExtensions,Microsoft.VisualStudio.Component.JavaScript.TypeScript,Microsoft.VisualStudio.Component.Roslyn.Compiler,Microsoft.Component.MSBuild,Microsoft.VisualStudio.Component.Roslyn.LanguageServices,Microsoft.VisualStudio.Component.TextTemplating,Microsoft.VisualStudio.Component.NuGet,Microsoft.VisualStudio.Component.SQL.CLR,Microsoft.Component.ClickOnce,Microsoft.VisualStudio.Component.ManagedDesktop.Core,Microsoft.NetCore.Component.Runtime.8.0,Microsoft.NetCore.Component.SDK,Microsoft.VisualStudio.Component.FSharp,Microsoft.ComponentGroup.ClickOnce.Publish,Microsoft.NetCore.Component.DevelopmentTools,Microsoft.Net.Component.4.8.TargetingPack,Microsoft.Net.ComponentGroup.4.8.DeveloperTools,Microsoft.VisualStudio.Component.DiagnosticTools,Microsoft.VisualStudio.Component.EntityFramework,Microsoft.VisualStudio.Component.Debugger.JustInTime,Component.Microsoft.VisualStudio.LiveShare.2022,Microsoft.VisualStudio.Component.IntelliCode,Microsoft.VisualStudio.Component.ManagedDesktop.Prerequisites,Microsoft.VisualStudio.Component.DotNetModelBuilder,Microsoft.ComponentGroup.Blend -InstallationPath """C:\Program Files\Microsoft Visual Studio\2022\Community""" -ComponentId Microsoft.VisualStudio.Product.Community -ChannelsPath """""" -SetupEngineFilePath """C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe""" -Log """C:\Users\Admin\AppData\Local\Temp\dd_setup_20240504073424_000_Microsoft.VisualStudio.Product.Community.log"""
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {c82192ee-6cb5-4bc0-9ef0-fb818773790a} -Embedding
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe"
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe"
C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe
"C:\Program Files (x86)\Microsoft Visual Studio\Installer\setup.exe" elevate --activityId 389915eb-d535-49ec-84ff-5223b4ad36c2 --handle 589856 --locale en-US --pid 3856 --pipeName b25cb4e99bf04c858b6549536436e01e --serializedSession "{\"TelemetryLevel\":null,\"IsOptedIn\":true,\"HostName\":\"Default\",\"AppInsightsInstrumentationKey\":\"f144292e-e3b2-4011-ac90-20e5c03fbce5\",\"AsimovInstrumentationKey\":\"AIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\",\"CollectorApiKey\":\"f3e86b4023cc43f0be495508d51f588a-f70d0e59-0fb0-4473-9f19-b4024cc340be-7296\",\"AppId\":1000,\"UserId\":\"a8864196-3380-4b9e-b025-3111abf014de\",\"Id\":\"15b0373d-286d-453f-87b4-eed1923ea451\",\"ProcessStartTime\":638504046163062458,\"SkuName\":null,\"VSExeVersion\":null,\"BucketFiltersToEnableWatsonForFaults\":[{\"AdditionalProperties\":[],\"Id\":\"a02930d9-c607-41c3-8698-0fd9196735a5\",\"WatsonEventType\":\"VisualStudioNonFatalErrors2\",\"BucketParameterFilters\":[null,null,\"(?i)vs\\.setup.*\",null,null,null,null,null,null,null]},{\"AdditionalProperties\":[],\"Id\":\"64a13603-6d89-42e4-a299-13f77e5ad306\",\"WatsonEventType\":\"VisualStudioNonFatalErrors2\",\"BucketParameterFilters\":[null,null,\"(?i)vs\\.willow.*\",null,null,null,null,null,null,null]}],\"BucketFiltersToAddDumpsToFaults\":[]}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsfinalizer.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\common7\ide\vsfinalizer.exe" -Operation Uninstall -InstallationID 08475949 -InstallationVersion 17.9.34728.123 -UserOperation Modify
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe
"C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\devenv.exe"
C:\ProgramData\Microsoft\VisualStudio\SetupWMI\MofCompiler.exe
"C:\ProgramData\Microsoft\VisualStudio\SetupWMI\MofCompiler.exe" -N:root\cimv2 "C:\ProgramData\Microsoft\VisualStudio\SetupWMI\Microsoft.VisualStudio.Setup.ManagementUninstall.mof"
C:\Windows\system32\wbem\mofcomp.exe
"C:\Windows\system32\wbem\mofcomp" -N:root\cimv2 C:\ProgramData\Microsoft\VisualStudio\SetupWMI\Microsoft.VisualStudio.Setup.ManagementUninstall.mof
C:\Windows\syswow64\MsiExec.exe
C:\Windows\syswow64\MsiExec.exe -Embedding 37443383D93C68DA379121B38CF2E489
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xODEuNSIgaXNtYWNoaW5lPSIxIiBzZXNzaW9uaWQ9IntBODU5MUZGQS1BOTBBLTRGODEtOEY1NC0yOTE3MTZBRjc1NDN9IiB1c2VyaWQ9IntDMTI3Qjg3OS0xNjc5LTRCMzktQTUyNi0zNTQxMjAzRTdFRDJ9IiBpbnN0YWxsc291cmNlPSJsaW1pdGVkIiByZXF1ZXN0aWQ9InsyQjFGNjMyMS1FMEY0LTQzNkYtOTk1OS1DNTRGMEM3OURFMjZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\MicrosoftEdge_X64_124.0.2478.67.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff69f3688c0,0x7ff69f3688cc,0x7ff69f3688d8
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{60AE54B1-D1E1-4DFB-9DA5-2D87C30AAFEE}\EDGEMITMP_24B7E.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff69f3688c0,0x7ff69f3688cc,0x7ff69f3688d8
C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level
C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff74fe688c0,0x7ff74fe688cc,0x7ff74fe688d8
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe -k AppReadiness -p -s AppReadiness
C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\MicrosoftEdge_X64_124.0.2478.67.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff71e7888c0,0x7ff71e7888cc,0x7ff71e7888d8
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k DevicesFlow -s DevicesFlowUserSvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PG9zIHBsYXRmb3JtPSJ3aW4iIHZlcnNpb249IjEwLjAuMjIwMDAuNDkzIiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iNDgiIGlzX3dpcD0iMCIgaXNfaW5fbG9ja2Rvd25fbW9kZT0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O1ZQUW9QMUYrZnExNXdSemgxa1BMNFBNcFdoOE9STUI1aXp2ck9DL2NoalE9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xODUuMjkiIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBleHBlcmltZW50cz0iSXNPbkludGVydmFsQ29tbWFuZHNBbGxvd2VkPS10YXJnZXRfZGV2O1Byb2R1Y3RzVG9SZWdpc3Rlcj0lN0IxRkFCOENGRS05ODYwLTQxNUMtQTZDQS1BQTdEMTIwMjE5NDAlN0QiIGluc3RhbGxhZ2U9IjAiIGNvaG9ydD0icnJmQDAuMjgiPjx1cGRhdGVjaGVjay8-PHBpbmcgcmQ9IjYzMzMiIHBpbmdfZnJlc2huZXNzPSJ7NjhERjIwMzYtQjdEMC00ODcwLUE2Q0MtMTg1RjQ4NjBDM0RBfSIvPjwvYXBwPjxhcHAgYXBwaWQ9Ins1NkVCMThGOC1CMDA4LTRDQkQtQjZEMi04Qzk3RkU3RTkwNjJ9IiB2ZXJzaW9uPSI5MC4wLjgxOC42NiIgbmV4dHZlcnNpb249IjEyNC4wLjI0NzguNjciIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSIgaXNfcGlubmVkX3N5c3RlbT0idHJ1ZSIgbGFzdF9sYXVuY2hfY291bnQ9IjEiIGxhc3RfbGF1bmNoX3RpbWU9IjEzMzU4NjE5MDc3NjI3OTUyMCI-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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE2MzI3MDMyMzIwIiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiBkb3dubG9hZGVyPSJiaXRzIiB1cmw9Imh0dHA6Ly9tc2VkZ2UuYi50bHUuZGwuZGVsaXZlcnkubXAubWljcm9zb2Z0LmNvbS9maWxlc3RyZWFtaW5nc2VydmljZS9maWxlcy8xMzFiZDVkNy05YzY1LTQ3NmEtOTA3NS1lMjQ5NGY4ZGE5ZTQ_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-PHBpbmcgYWN0aXZlPSIwIiByZD0iNjMzMyIgcGluZ19mcmVzaG5lc3M9Ins3NEVCQTE1RS05MjY1LTQyRTAtOEI3Ni1CMDcyOTFBQTVCNDh9Ii8-PC9hcHA-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-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Windows\system32\SystemSettingsAdminFlows.exe
"C:\Windows\system32\SystemSettingsAdminFlows.exe" EnterProductKey
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\Windows\system32\dashost.exe
dashost.exe {4b439800-7d53-4408-98181544abd627ed}
C:\Windows\system32\dashost.exe
dashost.exe {d99e5c2a-e4b8-4b0a-9644f86b818eac59}
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k McpManagementServiceGroup
C:\Program Files\WindowsApps\Microsoft.GamingApp_2105.900.24.0_x64__8wekyb3d8bbwe\XboxStub.exe
"C:\Program Files\WindowsApps\Microsoft.GamingApp_2105.900.24.0_x64__8wekyb3d8bbwe\XboxStub.exe" -ServerName:Microsoft.Xbox.App.AppX4j96ekjxtzkkkrmyx6aaa4hkpa1meyzz.mca
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe638bab58,0x7ffe638bab68,0x7ffe638bab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1608 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1836 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2200 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3104 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3224 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3504 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4420 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4540 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4600 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4716 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --reenable-autoupdates --system-level
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x250,0x254,0x258,0x22c,0x25c,0x7ff760b7ae48,0x7ff760b7ae58,0x7ff760b7ae68
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4904 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4628 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4056 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4024 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4964 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5124 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5152 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5664 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5428 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5612 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5924 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6068 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6328 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6288 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6480 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=6520 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=4956 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5876 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6500 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6468 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5804 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6624 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6748 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.6.10571.0_x64__8wekyb3d8bbwe\WindowsTerminal.exe
"C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.6.10571.0_x64__8wekyb3d8bbwe\WindowsTerminal.exe"
C:\Windows\system32\wsl.exe
C:\Windows\system32\wsl.exe --list
C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.6.10571.0_x64__8wekyb3d8bbwe\OpenConsole.exe
"C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.6.10571.0_x64__8wekyb3d8bbwe\OpenConsole.exe" --headless --win32input --resizeQuirk --width 120 --height 27 --signal 0xa3c --server 0xa38
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
powershell.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=3492 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4816 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=6328 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6176 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7124 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6688 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=3512 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=4304 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=6672 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=6096 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=6764 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=6680 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=4976 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=4972 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=5724 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=4720 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=5764 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=4916 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=5920 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=7356 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004E0 0x00000000000004D8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=3220 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=6532 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=5160 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=7716 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=4840 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=4228 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=7284 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=8092 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=8436 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=8432 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=8588 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=8912 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=4232 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=8284 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=8232 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=9332 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=9552 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=9624 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=9756 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=10080 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=8920 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=9084 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=8068 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10092 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=9912 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=10816 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=11028 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=11176 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=4832 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=11256 --field-trial-handle=1944,i,12210826095417684221,15093593988325632160,131072 /prefetch:1
C:\Windows\system32\more.com
"C:\Windows\system32\more.com"
C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa3ffc855 /state1:0x41c64e6d
Network
| Country | Destination | Domain | Proto |
| GB | 104.86.110.99:443 | tcp | |
| US | 8.8.8.8:53 | browser.pipe.aria.microsoft.com | udp |
| NL | 52.178.17.2:443 | browser.pipe.aria.microsoft.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | 2.17.178.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | tcp |
| GB | 216.58.201.99:443 | id.google.com | tcp |
| GB | 142.250.187.206:443 | play.google.com | tcp |
| BE | 104.68.69.97:443 | visualstudio.microsoft.com | tcp |
| BE | 104.68.69.97:443 | visualstudio.microsoft.com | tcp |
| BE | 2.21.17.194:443 | www.microsoft.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| GB | 51.132.193.104:443 | browser.events.data.microsoft.com | tcp |
| BE | 2.21.17.194:443 | www.microsoft.com | tcp |
| US | 13.107.42.18:443 | app.vssps.visualstudio.com | tcp |
| US | 13.107.42.18:443 | app.vssps.visualstudio.com | tcp |
| GB | 51.132.193.104:443 | browser.events.data.microsoft.com | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 13.107.42.18:443 | app.vssps.visualstudio.com | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NO | 104.110.12.172:443 | devblogs.microsoft.com | tcp |
| NO | 104.110.12.172:443 | devblogs.microsoft.com | tcp |
| NO | 104.110.12.172:443 | devblogs.microsoft.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | 119.190.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | acctcdn.msftauth.net | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 152.199.21.175:443 | acctcdn.msftauth.net | tcp |
| US | 8.8.8.8:53 | acctcdnmsftuswe2.azureedge.net | udp |
| US | 8.8.8.8:53 | acctcdnvzeuno.azureedge.net | udp |
| US | 192.229.221.185:443 | logincdn.msftauth.net | tcp |
| US | 8.8.8.8:53 | lgincdnmsftuswe2.azureedge.net | udp |
| US | 8.8.8.8:53 | lgincdnvzeuno.azureedge.net | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 175.21.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | img.youtube.com | udp |
| IE | 52.111.236.68:443 | c2rsetup.officeapps.live.com | tcp |
| IE | 52.111.236.68:443 | c2rsetup.officeapps.live.com | tcp |
| US | 8.8.8.8:53 | az667904.vo.msecnd.net | udp |
| US | 8.8.8.8:53 | az700632.vo.msecnd.net | udp |
| US | 152.199.19.161:443 | az700632.vo.msecnd.net | tcp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 8.8.8.8:53 | 161.19.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.113.53.23.in-addr.arpa | udp |
| US | 152.199.19.161:443 | az700632.vo.msecnd.net | tcp |
| IE | 184.24.201.247:443 | aka.ms | tcp |
| US | 8.8.8.8:53 | download.visualstudio.microsoft.com | udp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| IE | 184.24.201.247:443 | aka.ms | tcp |
| US | 8.8.8.8:53 | 200.34.232.68.in-addr.arpa | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| IE | 184.24.201.247:443 | aka.ms | tcp |
| US | 8.8.8.8:53 | visualstudio-devdiv-c2s.msedge.net | udp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | az700632.vo.msecnd.net | tcp |
| US | 152.199.19.161:443 | az700632.vo.msecnd.net | tcp |
| US | 8.8.8.8:53 | sendvsfeedback2.azurewebsites.net | udp |
| US | 40.112.143.140:443 | sendvsfeedback2.azurewebsites.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 8.8.8.8:53 | 140.143.112.40.in-addr.arpa | udp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| GB | 92.123.242.18:443 | aka.ms | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| US | 8.8.8.8:53 | 18.242.123.92.in-addr.arpa | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | vsstartpagenewsfeed.azureedge.net | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| IE | 13.69.239.72:443 | vortex.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 72.239.69.13.in-addr.arpa | udp |
| GB | 92.123.242.18:443 | aka.ms | tcp |
| US | 52.168.117.169:443 | mobile.events.data.microsoft.com | tcp |
| GB | 92.123.242.18:443 | aka.ms | tcp |
| GB | 92.123.242.18:443 | aka.ms | tcp |
| GB | 92.123.242.18:443 | aka.ms | tcp |
| GB | 92.123.242.18:443 | aka.ms | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 8.8.8.8:53 | mobile.events.data.microsoft.com | udp |
| US | 52.168.117.169:443 | mobile.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | download.visualstudio.microsoft.com | udp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| BE | 2.21.17.194:80 | www.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 52.168.117.169:443 | mobile.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 215.143.182.52.in-addr.arpa | udp |
| GB | 104.86.110.99:443 | tcp | |
| US | 8.8.8.8:53 | ln-ring.msedge.net | udp |
| US | 150.171.22.254:443 | ln-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | a-ring-fallback.msedge.net | udp |
| US | 131.253.33.254:443 | a-ring-fallback.msedge.net | tcp |
| US | 8.8.8.8:53 | moiafdazure.clo.footprintdns.com | udp |
| US | 8.8.8.8:53 | 254.22.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.33.253.131.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.246.107.13.in-addr.arpa | udp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | 138.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mcr-ring.msedge.net | udp |
| US | 8.8.8.8:53 | teams-ring.msedge.net | udp |
| US | 52.113.196.254:443 | teams-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | 659332d7b0f2f5dc93d000aecdf07e92.azr.footprintdns.com | udp |
| AU | 20.190.97.11:443 | 659332d7b0f2f5dc93d000aecdf07e92.azr.footprintdns.com | tcp |
| US | 8.8.8.8:53 | 254.196.113.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.97.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 20.42.128.98:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 8.8.8.8:53 | 98.128.42.20.in-addr.arpa | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | visualstudio-devdiv-c2s.msedge.net | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| BE | 104.68.69.97:443 | visualstudio.microsoft.com | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 8.8.8.8:53 | aka.ms | udp |
| GB | 173.222.13.152:443 | aka.ms | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| US | 8.8.8.8:53 | 152.13.222.173.in-addr.arpa | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 216.58.204.67:443 | id.google.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | tcp |
| GB | 142.250.180.22:443 | i.ytimg.com | tcp |
| GB | 172.217.169.14:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | 67.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.180.250.142.in-addr.arpa | udp |
| GB | 172.217.169.14:443 | www.youtube.com | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.180.6:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | 14.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.180.250.142.in-addr.arpa | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | udp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.178.10:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 20.189.173.13:443 | mobile.events.data.microsoft.com | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 142.250.187.206:443 | play.google.com | tcp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| GB | 172.217.169.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c9.gcp.gvt2.com | udp |
| ID | 34.101.114.154:443 | e2c9.gcp.gvt2.com | tcp |
| ID | 34.101.114.154:443 | e2c9.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 154.114.101.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | 35.169.217.172.in-addr.arpa | udp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| GB | 142.250.178.14:443 | encrypted-vtbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | 46.200.250.142.in-addr.arpa | udp |
| GB | 142.250.178.14:443 | encrypted-vtbn0.gstatic.com | udp |
| GB | 142.250.200.46:443 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | lh5.googleusercontent.com | udp |
| US | 8.8.8.8:53 | lh6.googleusercontent.com | udp |
| GB | 216.58.201.97:443 | lh6.googleusercontent.com | udp |
| GB | 216.58.201.97:443 | lh6.googleusercontent.com | udp |
| US | 8.8.8.8:53 | 97.201.58.216.in-addr.arpa | udp |
| GB | 216.58.204.78:443 | youtube.com | tcp |
| GB | 216.58.204.78:443 | youtube.com | tcp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| IE | 209.85.203.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | rr4---sn-q4fl6nde.googlevideo.com | udp |
| US | 173.194.140.233:443 | rr4---sn-q4fl6nde.googlevideo.com | tcp |
| US | 173.194.140.233:443 | rr4---sn-q4fl6nde.googlevideo.com | tcp |
| US | 8.8.8.8:53 | 84.203.85.209.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 173.194.140.233:443 | rr4---sn-q4fl6nde.googlevideo.com | tcp |
| US | 173.194.140.233:443 | rr4---sn-q4fl6nde.googlevideo.com | tcp |
| US | 8.8.8.8:53 | 233.140.194.173.in-addr.arpa | udp |
| US | 209.85.165.234:443 | rr5---sn-q4flrnel.googlevideo.com | tcp |
| US | 209.85.165.234:443 | rr5---sn-q4flrnel.googlevideo.com | tcp |
| GB | 172.217.169.42:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 234.165.85.209.in-addr.arpa | udp |
| US | 209.85.165.234:443 | rr5---sn-q4flrnel.googlevideo.com | tcp |
| US | 209.85.165.234:443 | rr5---sn-q4flrnel.googlevideo.com | tcp |
| US | 209.85.165.234:443 | rr5---sn-q4flrnel.googlevideo.com | tcp |
| US | 209.85.165.234:443 | rr5---sn-q4flrnel.googlevideo.com | tcp |
| GB | 216.58.204.78:443 | youtube.com | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | udp |
| NL | 74.125.8.73:443 | rr4---sn-5hneknee.googlevideo.com | tcp |
| NL | 74.125.8.73:443 | rr4---sn-5hneknee.googlevideo.com | tcp |
| NL | 74.125.8.73:443 | rr4---sn-5hneknee.googlevideo.com | tcp |
| NL | 74.125.8.73:443 | rr4---sn-5hneknee.googlevideo.com | tcp |
| NL | 74.125.8.73:443 | rr4---sn-5hneknee.googlevideo.com | tcp |
| NL | 74.125.8.73:443 | rr4---sn-5hneknee.googlevideo.com | tcp |
| US | 8.8.8.8:53 | 14.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.8.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 142.250.180.6:443 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | suggestqueries-clients6.youtube.com | udp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | tcp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | udp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | mobile.events.data.microsoft.com | udp |
| US | 52.168.112.67:443 | mobile.events.data.microsoft.com | tcp |
| FI | 35.228.141.16:443 | e2c13.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | 16.141.228.35.in-addr.arpa | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.178.250.142.in-addr.arpa | udp |
| GB | 173.194.183.167:443 | rr2---sn-aigl6ney.googlevideo.com | tcp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | udp |
| GB | 173.194.183.102:443 | rr1---sn-aigl6nek.googlevideo.com | udp |
| US | 8.8.8.8:53 | 102.183.194.173.in-addr.arpa | udp |
| US | 52.168.112.67:443 | mobile.events.data.microsoft.com | tcp |
| US | 52.168.112.67:443 | mobile.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| GB | 216.58.201.97:443 | lh3.googleusercontent.com | udp |
| US | 8.8.8.8:53 | rr4---sn-aigl6n6s.googlevideo.com | udp |
| GB | 173.194.3.73:443 | rr4---sn-aigl6n6s.googlevideo.com | udp |
| GB | 173.194.183.167:443 | rr2---sn-aigl6ney.googlevideo.com | udp |
| US | 8.8.8.8:53 | rr3---sn-5hnekn76.googlevideo.com | udp |
| NL | 209.85.226.8:443 | rr3---sn-5hnekn76.googlevideo.com | udp |
| US | 8.8.8.8:53 | 8.226.85.209.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr5---sn-aigl6ney.googlevideo.com | udp |
| GB | 173.194.183.170:443 | rr5---sn-aigl6ney.googlevideo.com | udp |
| US | 8.8.8.8:53 | 170.183.194.173.in-addr.arpa | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 173.194.183.71:443 | rr2---sn-aigl6ned.googlevideo.com | udp |
| US | 8.8.8.8:53 | 71.183.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr4---sn-aigl6nzs.googlevideo.com | udp |
| GB | 74.125.175.73:443 | rr4---sn-aigl6nzs.googlevideo.com | udp |
| US | 8.8.8.8:53 | rr1---sn-aigl6nsk.googlevideo.com | udp |
| US | 8.8.8.8:53 | 73.175.125.74.in-addr.arpa | udp |
| GB | 74.125.105.102:443 | rr1---sn-aigl6nsk.googlevideo.com | udp |
| US | 8.8.8.8:53 | 102.105.125.74.in-addr.arpa | udp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | udp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| IE | 209.85.203.84:443 | accounts.google.com | udp |
| IE | 209.85.203.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | lh4.googleusercontent.com | udp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.108.133:443 | avatars.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | repository-images.githubusercontent.com | udp |
| US | 185.199.108.133:443 | repository-images.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | repository-images.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | repository-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.108.199.185.in-addr.arpa | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 22.112.82.140.in-addr.arpa | udp |
| GB | 104.86.110.99:443 | tcp | |
| US | 4.150.240.254:443 | arm-ring.msedge.net | tcp |
| US | 150.171.27.254:443 | ax-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | 2da07d2e895a9d0cf7871425e8b610e6.azr.footprintdns.com | udp |
| MX | 158.23.16.71:443 | 2da07d2e895a9d0cf7871425e8b610e6.azr.footprintdns.com | tcp |
| US | 8.8.8.8:53 | 254.240.150.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.27.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.16.23.158.in-addr.arpa | udp |
| NL | 52.178.17.2:443 | browser.pipe.aria.microsoft.com | tcp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 20.7.47.135:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 135.47.7.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 199.232.210.172:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 52.113.196.254:443 | teams-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | 192343c29a655e6f91488b143d836063.nrb.footprintdns.com | udp |
| US | 13.107.3.254:443 | 192343c29a655e6f91488b143d836063.nrb.footprintdns.com | tcp |
| US | 8.8.8.8:53 | mwh05prdapp02-canary-opaph.netmon.azure.com | udp |
| US | 20.114.8.55:443 | mwh05prdapp02-canary-opaph.netmon.azure.com | tcp |
| US | 8.8.8.8:53 | 254.3.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.8.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | l-ring-fallback.msedge.net | udp |
| US | 13.107.43.254:443 | l-ring-fallback.msedge.net | tcp |
| US | 8.8.8.8:53 | fp-afd-nocache.azureedge.net | udp |
| US | 13.107.246.64:443 | fp-afd-nocache.azureedge.net | tcp |
| US | 8.8.8.8:53 | 254.43.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | udp |
| IE | 209.85.203.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | cxcs.microsoft.net | udp |
| BE | 104.68.66.114:443 | cxcs.microsoft.net | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 194.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.66.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| US | 216.239.38.117:443 | beacons2.gvt2.com | tcp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| US | 216.239.38.117:443 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | 117.38.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 172.217.169.14:443 | www.youtube.com | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | visualstudio-devdiv-c2s.msedge.net | udp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 142.250.200.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c65.gcp.gvt2.com | udp |
| US | 34.161.115.43:443 | e2c65.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 43.115.161.34.in-addr.arpa | udp |
| US | 40.112.143.140:443 | sendvsfeedback2.azurewebsites.net | tcp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | aka.ms | udp |
| GB | 104.115.33.152:443 | aka.ms | tcp |
| US | 8.8.8.8:53 | download.visualstudio.microsoft.com | udp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| GB | 104.115.33.152:443 | aka.ms | tcp |
| US | 8.8.8.8:53 | 152.33.115.104.in-addr.arpa | udp |
| GB | 104.115.33.152:443 | aka.ms | tcp |
| IE | 20.166.2.191:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 8.8.8.8:53 | 191.2.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 142.250.200.35:443 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons3.gvt2.com | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| GB | 172.217.169.67:443 | beacons3.gvt2.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 172.217.169.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 172.217.169.42:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 194.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.108.133:443 | repository-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | mobile.events.data.microsoft.com | udp |
| FR | 40.79.150.121:443 | mobile.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 121.150.79.40.in-addr.arpa | udp |
| GB | 173.194.183.167:443 | rr2---sn-aigl6ney.googlevideo.com | udp |
| GB | 173.194.183.170:443 | rr5---sn-aigl6ney.googlevideo.com | udp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| GB | 216.58.201.97:443 | lh3.googleusercontent.com | udp |
| US | 8.8.8.8:53 | rr3---sn-aigl6nzs.googlevideo.com | udp |
| GB | 74.125.175.72:443 | rr3---sn-aigl6nzs.googlevideo.com | udp |
| US | 8.8.8.8:53 | 72.175.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr3---sn-aigl6ned.googlevideo.com | udp |
| GB | 173.194.183.72:443 | rr3---sn-aigl6ned.googlevideo.com | udp |
| US | 8.8.8.8:53 | 72.183.194.173.in-addr.arpa | udp |
| GB | 142.250.200.46:443 | www.youtube.com | udp |
| GB | 142.250.200.46:443 | www.youtube.com | udp |
| GB | 172.217.16.238:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c60.gcp.gvt2.com | udp |
| US | 34.174.255.69:443 | e2c60.gcp.gvt2.com | tcp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | 69.255.174.34.in-addr.arpa | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| GB | 74.125.175.72:443 | rr3---sn-aigl6nzs.googlevideo.com | udp |
| GB | 173.194.183.200:443 | rr3---sn-aigl6nl7.googlevideo.com | udp |
| US | 8.8.8.8:53 | 200.183.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | rr5---sn-aigl6nsr.googlevideo.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| GB | 74.125.105.138:443 | rr5---sn-aigl6nsr.googlevideo.com | udp |
| US | 8.8.8.8:53 | 138.105.125.74.in-addr.arpa | udp |
| GB | 216.58.201.97:443 | lh3.googleusercontent.com | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 216.58.204.67:443 | www.google.co.uk | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| GB | 173.194.183.200:443 | rr3---sn-aigl6nl7.googlevideo.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | mobile.events.data.microsoft.com | udp |
| IE | 20.50.73.13:443 | mobile.events.data.microsoft.com | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 8.8.8.8:53 | 13.73.50.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 20.42.128.98:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 8.8.8.8:53 | 239.249.30.184.in-addr.arpa | udp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| US | 8.8.8.8:53 | spo-ring.msedge.net | udp |
| GB | 104.86.110.99:443 | tcp | |
| GB | 104.86.110.99:443 | tcp | |
| US | 13.107.136.254:443 | spo-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | ow1.res.office365.com | udp |
| NL | 23.73.0.190:443 | ow1.res.office365.com | tcp |
| SE | 51.12.13.90:443 | 994c569e87399c0c58b54954fbf85d3a.azr.footprintdns.com | tcp |
| US | 8.8.8.8:53 | 190.0.73.23.in-addr.arpa | udp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| FR | 68.232.34.200:443 | download.visualstudio.microsoft.com | tcp |
| US | 8.8.8.8:53 | mcr-ring.msedge.net | udp |
| US | 52.113.196.254:443 | teams-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | wac-ring.msedge.net | udp |
| US | 52.108.8.254:443 | wac-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | 254.8.108.52.in-addr.arpa | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons3.gvt2.com | udp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 13.107.5.88:443 | visualstudio-devdiv-c2s.msedge.net | tcp |
| US | 152.199.19.161:443 | vsstartpagenewsfeed.azureedge.net | tcp |
| US | 8.8.8.8:53 | targetednotifications-tm.trafficmanager.net | udp |
| US | 13.85.16.224:443 | targetednotifications-tm.trafficmanager.net | tcp |
| US | 8.8.8.8:53 | jga20prdapp02-canary-opaph.netmon.azure.com | udp |
| IN | 20.193.187.221:443 | jga20prdapp02-canary-opaph.netmon.azure.com | tcp |
| US | 8.8.8.8:53 | 254.4.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.187.193.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.42.107.13.in-addr.arpa | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | suggestqueries-clients6.youtube.com | udp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| IE | 20.166.2.191:443 | msedge.api.cdp.microsoft.com | tcp |
| GB | 173.194.183.167:443 | rr2---sn-aigl6ney.googlevideo.com | udp |
| GB | 173.194.183.102:443 | rr1---sn-aigl6nek.googlevideo.com | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | rr5---sn-aigzrnz7.googlevideo.com | udp |
| GB | 74.125.175.202:443 | rr5---sn-aigzrnz7.googlevideo.com | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| NL | 96.16.53.152:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 202.175.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.53.16.96.in-addr.arpa | udp |
| GB | 173.194.3.73:443 | rr4---sn-aigl6n6s.googlevideo.com | udp |
| US | 8.8.8.8:53 | rr4---sn-aigl6nzl.googlevideo.com | udp |
| GB | 74.125.168.169:443 | rr4---sn-aigl6nzl.googlevideo.com | udp |
| US | 8.8.8.8:53 | 169.168.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| GB | 142.250.200.46:443 | suggestqueries-clients6.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 172.217.169.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | rr1---sn-aigl6nz7.googlevideo.com | udp |
| GB | 74.125.168.102:443 | rr1---sn-aigl6nz7.googlevideo.com | udp |
| US | 8.8.8.8:53 | 102.168.125.74.in-addr.arpa | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| BE | 104.68.66.114:443 | cxcs.microsoft.net | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| BE | 104.68.66.114:443 | cxcs.microsoft.net | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | c.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.f.f.ip6.arpa | udp |
| N/A | 239.255.255.250:3702 | udp | |
| N/A | 255.255.255.255:10004 | udp | |
| N/A | 10.127.255.255:22222 | udp | |
| N/A | 10.127.255.255:22222 | udp | |
| N/A | 10.127.255.255:3289 | udp | |
| N/A | 239.255.255.250:3702 | udp | |
| US | 8.8.8.8:53 | cxcs.microsoft.net | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| BE | 104.68.66.114:443 | cxcs.microsoft.net | tcp |
| US | 8.8.8.8:53 | 4.159.190.20.in-addr.arpa | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 43.58.199.20.in-addr.arpa | udp |
| GB | 104.86.110.99:443 | tcp | |
| US | 8.8.8.8:53 | c76d02aa25264d76069e30d355ba3c9a.clo.footprintdns.com | udp |
| US | 4.150.240.254:443 | arm-ring.msedge.net | tcp |
| US | 52.108.8.254:443 | wac-ring.msedge.net | tcp |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 8.8.8.8:53 | 241.154.82.20.in-addr.arpa | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 54.120.234.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| GB | 142.250.187.206:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | www.softpedia.com | udp |
| US | 104.22.13.228:443 | www.softpedia.com | tcp |
| US | 104.22.13.228:443 | www.softpedia.com | tcp |
| US | 8.8.8.8:53 | cdnssl.softpedia.com | udp |
| US | 104.22.13.228:443 | cdnssl.softpedia.com | udp |
| US | 104.22.13.228:443 | cdnssl.softpedia.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 104.22.13.228:443 | cdnssl.softpedia.com | udp |
| US | 8.8.8.8:53 | windows-cdn.softpedia.com | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | tcp |
| GB | 18.172.89.52:443 | cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | 228.13.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| GB | 18.172.89.52:443 | cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 216.58.201.106:443 | content-autofill.googleapis.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | api.cmp.inmobi.com | udp |
| GB | 216.58.201.106:443 | content-autofill.googleapis.com | tcp |
| DE | 18.185.232.25:443 | api.cmp.inmobi.com | tcp |
| DE | 18.185.232.25:443 | api.cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | 52.89.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.232.185.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | connectid.analytics.yahoo.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| BE | 64.233.167.155:443 | stats.g.doubleclick.net | tcp |
| GB | 18.172.96.167:443 | c.amazon-adsystem.com | tcp |
| GB | 216.58.204.67:443 | www.google.co.uk | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| GB | 18.165.151.239:443 | cdn.prod.uidapi.com | tcp |
| US | 172.64.152.89:443 | cdn-ima.33across.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| ES | 54.192.95.120:443 | connectid.analytics.yahoo.com | tcp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| DE | 162.19.138.119:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | 155.167.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.96.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.151.165.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.152.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.95.192.54.in-addr.arpa | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 34.98.64.218:443 | google-bidout-d.openx.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 18.172.96.167:443 | c.amazon-adsystem.com | tcp |
| ES | 18.67.240.116:443 | config.aps.amazon-adsystem.com | tcp |
| GB | 3.162.16.219:443 | aax.amazon-adsystem.com | tcp |
| NL | 23.218.48.210:443 | secure.cdn.fastclick.net | tcp |
| US | 172.67.36.110:443 | cdn.hadronid.net | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 142.250.187.193:443 | 394065f2121dcf1e7cc81943daf9287a.safeframe.googlesyndication.com | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.240.67.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.16.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.36.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.48.218.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.226.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.187.250.142.in-addr.arpa | udp |
| US | 104.22.5.69:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | sda.softpedia.com | udp |
| US | 8.8.8.8:53 | cdn.doubleverify.com | udp |
| US | 2.18.190.147:443 | cdn.doubleverify.com | tcp |
| US | 2.18.190.147:443 | cdn.doubleverify.com | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 172.64.151.101:443 | dsum-sec.casalemedia.com | tcp |
| NL | 185.89.211.116:443 | ib.adnxs.com | tcp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| GB | 142.250.179.230:443 | s0.2mdn.net | tcp |
| GB | 142.250.187.194:443 | googleads4.g.doubleclick.net | tcp |
| US | 69.166.1.34:443 | sync.go.sonobi.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| IE | 54.171.118.212:443 | dpm.demdex.net | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 104.22.4.69:443 | pixels.ad.gt | tcp |
| DE | 37.252.171.149:443 | secure.adnxs.com | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 104.22.4.69:443 | pixels.ad.gt | tcp |
| US | 104.22.4.69:443 | pixels.ad.gt | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | udp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 52.213.148.4:443 | ad.360yield.com | tcp |
| US | 130.211.44.5:443 | rtb0.doubleverify.com | tcp |
| GB | 142.250.187.194:443 | googleads4.g.doubleclick.net | udp |
| US | 104.22.5.69:443 | pixels.ad.gt | tcp |
| US | 104.22.4.69:443 | pixels.ad.gt | tcp |
| US | 104.22.4.69:443 | pixels.ad.gt | tcp |
| US | 8.8.8.8:53 | 147.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.118.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.148.213.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.44.211.130.in-addr.arpa | udp |
| GB | 142.250.178.2:443 | www.googletagservices.com | tcp |
| IE | 54.78.151.22:443 | ice.360yield.com | tcp |
| NL | 35.214.168.80:443 | trace-eu.mediago.io | tcp |
| IE | 52.214.140.212:443 | match.prod.bidr.io | tcp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| GB | 142.250.178.2:443 | www.googletagservices.com | udp |
| IE | 54.73.9.160:443 | sync-amz.ads.yieldmo.com | tcp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | amazon-tam-match.dotomi.com | udp |
| US | 8.8.8.8:53 | tps.doubleverify.com | udp |
| NL | 63.215.202.169:443 | amazon-tam-match.dotomi.com | tcp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | d.adroll.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 52.31.50.141:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 35.186.193.173:443 | cm.ctnsnet.com | tcp |
| IE | 108.128.74.107:443 | d.adroll.com | tcp |
| GB | 142.250.179.230:443 | s0.2mdn.net | udp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| DK | 37.157.6.233:443 | c1.adform.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| IE | 52.49.90.166:443 | sync.crwdcntrl.net | tcp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| IE | 52.215.45.147:443 | ads.yieldmo.com | tcp |
| IE | 52.215.45.147:443 | ads.yieldmo.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| IE | 52.215.45.147:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | 80.168.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.140.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.9.73.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.50.31.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.74.128.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.90.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.45.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| IE | 63.33.250.172:443 | ce.lijit.com | tcp |
| IE | 54.217.112.90:443 | rtb.gumgum.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| FR | 141.94.171.212:443 | pixel.onaudience.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| GB | 185.64.190.81:443 | image4.pubmatic.com | tcp |
| DE | 3.124.210.90:443 | ps.eyeota.net | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.210.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| BE | 64.233.167.155:443 | bid.g.doubleclick.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 172.217.169.14:443 | www.youtube.com | udp |
| GB | 172.217.169.14:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.180.6:443 | static.doubleclick.net | udp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | udp |
| GB | 142.250.180.6:443 | static.doubleclick.net | tcp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | fake.build | udp |
| US | 104.21.42.50:443 | fake.build | tcp |
| US | 104.21.42.50:443 | fake.build | tcp |
| US | 104.21.42.50:443 | fake.build | udp |
| US | 8.8.8.8:53 | unpkg.com | udp |
| US | 104.17.248.203:443 | unpkg.com | tcp |
| US | 8.8.8.8:53 | 50.42.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.248.17.104.in-addr.arpa | udp |
| US | 104.21.42.50:443 | fake.build | udp |
| US | 8.8.8.8:53 | dev.to | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 151.101.130.217:443 | dev.to | tcp |
| US | 151.101.130.217:443 | dev.to | tcp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 104.17.248.203:443 | unpkg.com | tcp |
| US | 8.8.8.8:53 | dev-to-uploads.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | media.dev.to | udp |
| US | 8.8.8.8:53 | camo.githubusercontent.com | udp |
| US | 8.8.8.8:53 | platform.instagram.com | udp |
| US | 185.199.109.133:443 | camo.githubusercontent.com | tcp |
| US | 52.219.228.244:443 | dev-to-uploads.s3.amazonaws.com | tcp |
| US | 104.18.27.242:443 | media.dev.to | tcp |
| US | 104.18.27.242:443 | media.dev.to | tcp |
| GB | 163.70.147.63:443 | platform.instagram.com | tcp |
| US | 8.8.8.8:53 | www.instagram.com | udp |
| GB | 163.70.147.174:443 | www.instagram.com | tcp |
| US | 8.8.8.8:53 | res.cloudinary.com | udp |
| US | 104.19.166.65:443 | res.cloudinary.com | tcp |
| US | 104.19.166.65:443 | res.cloudinary.com | tcp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | 217.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.109.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 242.27.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.147.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.228.219.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.147.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.166.19.104.in-addr.arpa | udp |
| GB | 142.250.180.6:443 | static.doubleclick.net | udp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | udp |
| US | 34.193.240.253:443 | api.honeybadger.io | tcp |
| GB | 142.250.178.1:443 | yt3.ggpht.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 131.253.33.254:443 | a-ring-fallback.msedge.net | tcp |
| GB | 104.86.110.99:443 | tcp | |
| US | 8.8.8.8:53 | fp-vs-nocache.azureedge.net | udp |
| US | 152.199.19.161:443 | fp-vs-nocache.azureedge.net | tcp |
| US | 8.8.8.8:53 | tring.clo.footprintdns.com | udp |
| GB | 142.250.187.206:443 | www.youtube.com | udp |
| GB | 142.250.187.206:443 | www.youtube.com | tcp |
| GB | 142.250.187.206:443 | www.youtube.com | udp |
| GB | 163.70.147.174:443 | www.instagram.com | udp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | tcp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | tcp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | tcp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | tcp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | tcp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | udp |
| GB | 163.70.147.63:443 | scontent.cdninstagram.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| GB | 142.250.180.22:443 | i.ytimg.com | udp |
| GB | 142.250.180.2:443 | cm.g.doubleclick.net | udp |
| GB | 216.58.212.234:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | beebom.com | udp |
| US | 192.0.66.1:443 | beebom.com | tcp |
| US | 192.0.66.1:443 | beebom.com | tcp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | 1.66.0.192.in-addr.arpa | udp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | a.pub.network | udp |
| US | 8.8.8.8:53 | b.pub.network | udp |
| US | 8.8.8.8:53 | stats.wp.com | udp |
| US | 104.18.20.206:443 | a.pub.network | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 151.101.1.194:443 | confiant-integrations.global.ssl.fastly.net | tcp |
| US | 8.8.8.8:53 | cmp.quantcast.com | udp |
| US | 8.8.8.8:53 | secure.gravatar.com | udp |
| US | 192.0.76.3:443 | stats.wp.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| ES | 54.192.95.86:443 | cmp.quantcast.com | tcp |
| US | 8.8.8.8:53 | pixel.quantserve.com | udp |
| US | 8.8.8.8:53 | rules.quantcount.com | udp |
| US | 8.8.8.8:53 | secure.quantserve.com | udp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| DE | 91.228.74.244:443 | secure.quantserve.com | tcp |
| DE | 91.228.74.166:443 | secure.quantserve.com | tcp |
| ES | 108.157.109.102:443 | rules.quantcount.com | tcp |
| US | 52.46.155.104:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | c.pub.network | udp |
| US | 34.160.152.31:443 | c.pub.network | tcp |
| US | 34.160.152.31:443 | c.pub.network | tcp |
| US | 8.8.8.8:53 | pixel.wp.com | udp |
| BE | 64.233.167.155:443 | bid.g.doubleclick.net | udp |
| GB | 142.250.180.2:443 | cm.g.doubleclick.net | udp |
| US | 104.18.20.206:443 | a.pub.network | tcp |
| US | 8.8.8.8:53 | 206.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.76.0.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.74.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.95.192.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.73.0.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.109.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.152.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.155.46.52.in-addr.arpa | udp |
| GB | 216.58.204.67:443 | www.google.co.uk | udp |
| DE | 18.158.152.241:443 | api.cmp.inmobi.com | tcp |
| US | 34.160.152.31:443 | c.pub.network | tcp |
| US | 34.160.128.112:443 | api.floors.dev | tcp |
| US | 34.111.152.239:443 | optimise.net | tcp |
| US | 34.111.152.239:443 | optimise.net | tcp |
| ES | 18.154.50.60:443 | cdn.parsely.com | tcp |
| US | 34.111.152.239:443 | optimise.net | udp |
| US | 34.160.128.112:443 | api.floors.dev | tcp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| IE | 52.17.99.225:443 | p1.parsely.com | tcp |
| US | 34.160.128.112:443 | api.floors.dev | udp |
| US | 192.0.66.1:443 | beebom.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.111.17.104.in-addr.arpa | udp |
| US | 104.18.20.206:443 | a.pub.network | udp |
| ES | 18.154.48.86:443 | sb.scorecardresearch.com | tcp |
| US | 8.8.8.8:53 | freestar-io.videoplayerhub.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| US | 172.64.144.166:443 | cdn.confiant-integrations.net | tcp |
| US | 104.26.9.50:443 | freestar-io.videoplayerhub.com | tcp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 172.64.144.166:443 | cdn.confiant-integrations.net | udp |
| NL | 23.218.48.210:443 | secure.cdn.fastclick.net | tcp |
| DE | 91.228.74.244:443 | secure.quantserve.com | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | 166.144.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.9.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s2s.t13.io | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| NL | 185.89.211.116:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | c2shb.pubgw.yahoo.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| ES | 108.157.109.102:443 | rules.quantcount.com | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | tcp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| US | 34.160.152.31:443 | c.pub.network | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| US | 184.30.156.32:443 | hbx.media.net | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 104.18.36.155:443 | dsum.casalemedia.com | udp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| ES | 18.154.48.50:443 | cdn.springserve.com | tcp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| IE | 52.31.50.141:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | d.adroll.com | udp |
| US | 8.8.8.8:53 | euexchangesync.digitaleast.mobi | udp |
| US | 8.8.8.8:53 | dmp.brand-display.com | udp |
| US | 8.8.8.8:53 | 113.140.107.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.77.127.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.214.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.156.30.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 34.160.19.107:443 | dmp.brand-display.com | tcp |
| US | 34.95.81.168:443 | euexchangesync.digitaleast.mobi | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| IE | 54.154.111.176:443 | d.adroll.com | tcp |
| FR | 51.178.195.213:443 | ssbsync.smartadserver.com | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | udp |
| US | 20.253.0.30:443 | sync.inmobi.com | tcp |
| NL | 178.250.1.7:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | rtd-tm.everesttech.net | udp |
| IE | 18.200.130.45:443 | vid-io.springserve.com | tcp |
| NL | 63.215.202.172:443 | amazon-tam-match.dotomi.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | serving.stat-rock.com | udp |
| US | 8.8.8.8:53 | vid.springserve.com | udp |
| US | 8.8.8.8:53 | inmobi-match.dotomi.com | udp |
| IE | 52.210.42.213:443 | vid.springserve.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| NL | 63.215.202.140:443 | inmobi-match.dotomi.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| DE | 18.184.210.201:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| NL | 78.140.185.31:443 | serving.stat-rock.com | tcp |
| NL | 78.140.185.31:443 | serving.stat-rock.com | tcp |
| BE | 2.21.18.175:443 | eus.rubiconproject.com | tcp |
| BE | 104.68.68.28:443 | servedby.flashtalking.com | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | vpaid.springserve.com | udp |
| US | 35.244.159.8:443 | eu-u.openx.net | udp |
| GB | 142.250.179.230:443 | s0.2mdn.net | udp |
| ES | 18.154.22.66:443 | vpaid.springserve.com | tcp |
| US | 8.8.8.8:53 | sync.teads.tv | udp |
| US | 8.8.8.8:53 | 50.48.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.81.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.19.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.111.154.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.195.178.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.0.253.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.130.200.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.42.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.210.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.185.140.78.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.18.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.68.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ajs-assets.ftstatic.com | udp |
| GB | 142.250.179.230:443 | s0.2mdn.net | tcp |
| BE | 104.90.25.54:443 | sync.teads.tv | tcp |
| BE | 104.90.25.54:443 | sync.teads.tv | tcp |
| GB | 142.250.179.230:443 | s0.2mdn.net | udp |
| ES | 54.192.95.72:443 | ajs-assets.ftstatic.com | tcp |
| US | 8.8.8.8:53 | sync.search.spotxchange.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| IE | 52.211.13.38:443 | sync.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | prebid-server.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | as-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | freestar-d.openx.net | udp |
| IE | 54.72.171.228:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | ads.avads.net | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 34.128.133.112:443 | ads.avads.net | tcp |
| US | 8.8.8.8:53 | m.media-amazon.com | udp |
| US | 8.8.8.8:53 | vid-io-dub.springserve.com | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| ES | 18.154.52.175:443 | m.media-amazon.com | tcp |
| IE | 54.195.226.61:443 | ice.360yield.com | tcp |
| US | 34.128.133.112:443 | ads.avads.net | udp |
| US | 8.8.8.8:53 | vid-io-sin.springserve.com | udp |
| US | 8.8.8.8:53 | vid-io-iad.springserve.com | udp |
| US | 8.8.8.8:53 | vid-io-cle.springserve.com | udp |
| US | 8.8.8.8:53 | images-na.ssl-images-amazon.com | udp |
| ES | 18.154.52.175:443 | images-na.ssl-images-amazon.com | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| SG | 47.128.188.167:443 | vid-io-sin.springserve.com | tcp |
| ES | 18.154.48.33:443 | ts.amazon-adsystem.com | tcp |
| US | 3.229.41.246:443 | vid-io-iad.springserve.com | tcp |
| US | 3.229.41.246:443 | vid-io-iad.springserve.com | tcp |
| US | 3.229.41.246:443 | vid-io-iad.springserve.com | tcp |
| US | 3.229.41.246:443 | vid-io-iad.springserve.com | tcp |
| US | 3.229.41.246:443 | vid-io-iad.springserve.com | tcp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| ES | 108.157.125.95:443 | s.ad.smaato.net | tcp |
| IE | 34.242.102.151:443 | match.prod.bidr.io | tcp |
| IE | 52.212.224.146:443 | io.narrative.io | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| US | 70.42.32.63:443 | b1sync.zemanta.com | tcp |
| SG | 47.128.188.167:443 | vid-io-sin.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| ES | 3.160.231.10:443 | cdn.undertone.com | tcp |
| US | 8.8.8.8:53 | 54.25.90.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 38.13.211.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.171.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.95.192.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.52.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.133.128.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.226.195.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.48.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.125.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.102.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.224.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 246.41.229.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.9.89.51.in-addr.arpa | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 143.244.208.184:443 | sid.storygize.net | tcp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| US | 54.162.219.39:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| NL | 35.214.248.135:443 | csync.loopme.me | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| IE | 52.95.115.255:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 52.95.115.255:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 52.95.115.255:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | ws.rqtrk.eu | udp |
| IE | 63.33.250.172:443 | ce.lijit.com | tcp |
| DE | 57.129.18.111:443 | ws.rqtrk.eu | tcp |
| US | 8.8.8.8:53 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | usr.undertone.com | udp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pixel.advertising.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | agen-assets.ftstatic.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| ES | 108.157.125.18:443 | usr.undertone.com | tcp |
| ES | 108.157.125.18:443 | usr.undertone.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| ES | 108.157.125.18:443 | usr.undertone.com | tcp |
| ES | 108.157.125.18:443 | usr.undertone.com | tcp |
| ES | 3.160.231.14:443 | agen-assets.ftstatic.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 151.101.1.108:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 184.30.249.27:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | inv-nets.admixer.net | udp |
| US | 8.8.8.8:53 | se.semasio.net | udp |
| DE | 116.202.167.155:443 | inv-nets.admixer.net | tcp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| DK | 77.243.51.122:443 | se.semasio.net | tcp |
| NL | 89.207.16.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 54.163.22.163:443 | sync.ipredictive.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| NL | 145.40.97.67:443 | prebid.a-mo.net | tcp |
| NL | 64.158.223.137:443 | openx2-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | pbs-cs.yellowblue.io | udp |
| ES | 54.192.95.81:443 | live.primis.tech | tcp |
| US | 8.8.8.8:53 | 199.6.26.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.32.42.70.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.231.160.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.188.128.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.57.245.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 135.248.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.219.162.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 255.115.95.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.208.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.18.129.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.125.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.249.30.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.167.202.116.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.22.163.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| IE | 52.212.192.1:443 | pbs-cs.yellowblue.io | tcp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| IE | 34.242.102.151:443 | match.prod.bidr.io | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| IE | 54.74.198.114:443 | pm.w55c.net | tcp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| DE | 3.127.129.197:443 | sonata-notifications.taptapnetworks.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| SE | 213.155.156.184:443 | d5p.de17a.com | tcp |
| IE | 52.17.205.193:443 | d9.flashtalking.com | tcp |
| BE | 2.21.16.54:443 | cdn.flashtalking.com | tcp |
| BE | 2.21.16.54:443 | cdn.flashtalking.com | tcp |
| BE | 2.21.16.54:443 | cdn.flashtalking.com | tcp |
| ES | 108.157.98.3:443 | js.ad-score.com | tcp |
| NL | 35.214.248.135:443 | csync.loopme.me | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 104.18.24.173:443 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | ad-events.flashtalking.com | udp |
| US | 8.8.8.8:53 | stat.flashtalking.com | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| GB | 13.43.205.224:443 | ad-events.flashtalking.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| BE | 2.21.16.54:443 | stat.flashtalking.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| FR | 141.94.240.143:443 | green.erne.co | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| IE | 176.34.205.218:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | 1.192.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.95.192.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.176.137.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.198.74.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.129.127.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.205.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.16.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.98.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.111.196.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 224.205.43.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.240.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| FR | 141.94.171.216:443 | pixel-eu.onaudience.com | tcp |
| DE | 3.122.214.165:443 | ps.eyeota.net | tcp |
| US | 69.166.1.34:443 | sync.go.sonobi.com | tcp |
| NL | 35.214.248.135:443 | csync.loopme.me | tcp |
| DK | 37.157.6.233:443 | cm.adform.net | tcp |
| NL | 154.57.158.25:443 | ads.stickyadstv.com | tcp |
| IE | 34.240.166.14:443 | ap.lijit.com | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| BE | 2.21.16.25:443 | contextual.media.net | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | 165.214.122.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.166.240.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.16.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| BE | 2.21.16.54:443 | secure.flashtalking.com | tcp |
| GB | 216.58.204.66:443 | ade.googlesyndication.com | tcp |
| GB | 216.58.204.66:443 | ade.googlesyndication.com | udp |
| US | 34.160.152.31:443 | c.pub.network | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 104.18.36.155:443 | r.casalemedia.com | udp |
| US | 44.196.117.54:443 | bpi.rtactivate.com | tcp |
| IE | 18.200.130.45:443 | vid-io-dub.springserve.com | tcp |
| US | 8.8.8.8:53 | imasdk.googleapis.com | udp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| US | 47.253.61.56:443 | gw-iad-bid.ymmobi.com | tcp |
| US | 8.8.8.8:53 | 54.117.196.44.in-addr.arpa | udp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.179.230:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| US | 8.8.8.8:53 | vast.doubleverify.com | udp |
| US | 172.217.203.120:443 | csi.gstatic.com | tcp |
| US | 104.18.36.54:443 | vast.doubleverify.com | tcp |
| US | 8.8.8.8:53 | rtb0.doubleverify.com | udp |
| US | 8.8.8.8:53 | tps.doubleverify.com | udp |
| US | 172.217.203.120:443 | csi.gstatic.com | tcp |
| GB | 216.58.204.66:443 | ade.googlesyndication.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| NL | 185.89.211.116:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | grid.bidswitch.net | udp |
| US | 8.8.8.8:53 | bc-ssb-dub.springserve.com | udp |
| US | 8.8.8.8:53 | beacon-nf.rubiconproject.com | udp |
| US | 172.217.203.120:443 | csi.gstatic.com | tcp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| NL | 178.250.1.8:443 | grid.bidswitch.net | tcp |
| IE | 54.74.6.250:443 | bc-ssb-dub.springserve.com | tcp |
| NL | 69.173.156.135:443 | beacon-nf.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 56.61.253.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.203.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 135.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.6.74.54.in-addr.arpa | udp |
| US | 172.217.203.120:443 | csi.gstatic.com | udp |
| GB | 142.250.180.2:443 | cm.g.doubleclick.net | udp |
| GB | 74.125.175.70:443 | rr1---sn-aigl6nzs.googlevideo.com | udp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| US | 52.26.6.199:443 | vid-io-cle.springserve.com | tcp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | vid-io-cle.springserve.com | udp |
| US | 54.149.211.148:443 | vid-io-cle.springserve.com | tcp |
| US | 8.8.8.8:53 | 148.211.149.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.floors.dev | udp |
| US | 34.160.128.112:443 | api.floors.dev | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 104.18.36.155:443 | r.casalemedia.com | udp |
| US | 35.244.159.8:443 | freestar-d.openx.net | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| BE | 142.251.168.156:443 | bid.g.doubleclick.net | udp |
| US | 54.147.38.202:443 | sync.srv.stackadapt.com | tcp |
| IE | 52.211.62.22:443 | vid-io-dub.springserve.com | tcp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 34.107.140.113:443 | s2s.t13.io | udp |
| NL | 178.250.1.8:443 | grid.bidswitch.net | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | c2shb.pubgw.yahoo.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| DE | 18.185.180.152:443 | btlr.sharethrough.com | tcp |
| NL | 185.89.210.20:443 | ib.adnxs.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| NL | 178.250.1.7:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | 156.168.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.62.211.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.38.147.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.180.185.18.in-addr.arpa | udp |
| US | 104.18.36.54:443 | vast.doubleverify.com | udp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| GB | 216.58.204.66:443 | pubads.g.doubleclick.net | udp |
| NL | 178.250.1.8:443 | grid.bidswitch.net | tcp |
| NL | 69.173.156.135:443 | beacon-nf.rubiconproject.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | udp |
| GB | 216.58.204.66:443 | pubads.g.doubleclick.net | udp |
| US | 34.160.152.31:443 | c.pub.network | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| FR | 149.202.238.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 149.202.238.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| IE | 54.72.191.14:443 | fw.adsafeprotected.com | tcp |
| GB | 142.250.179.230:443 | s0.2mdn.net | udp |
| GB | 18.134.84.15:443 | 1f2e7.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | 14.191.72.54.in-addr.arpa | udp |
| GB | 173.194.183.105:443 | rr4---sn-aigl6nek.googlevideo.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| IE | 34.255.72.94:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | static.adsafeprotected.com | udp |
| US | 8.8.8.8:53 | dt.adsafeprotected.com | udp |
| US | 52.41.210.52:443 | dt.adsafeprotected.com | tcp |
| US | 52.41.210.52:443 | dt.adsafeprotected.com | tcp |
| US | 52.41.210.52:443 | dt.adsafeprotected.com | tcp |
| ES | 18.67.240.45:443 | static.adsafeprotected.com | tcp |
| ES | 18.67.240.45:443 | static.adsafeprotected.com | tcp |
| US | 54.149.211.148:443 | vid-io-cle.springserve.com | tcp |
| US | 52.41.210.52:443 | dt.adsafeprotected.com | tcp |
| US | 54.149.211.148:443 | vid-io-cle.springserve.com | tcp |
| US | 54.149.211.148:443 | vid-io-cle.springserve.com | tcp |
| US | 54.149.211.148:443 | vid-io-cle.springserve.com | tcp |
| US | 54.149.211.148:443 | vid-io-cle.springserve.com | tcp |
| US | 8.8.8.8:53 | 105.183.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 94.72.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.240.67.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.210.41.52.in-addr.arpa | udp |
| FR | 172.217.18.195:443 | beacons.gcp.gvt2.com | udp |
| US | 34.37.6.135:443 | e2c72.gcp.gvt2.com | tcp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| DE | 35.207.191.46:443 | e2c42.gcp.gvt2.com | tcp |
| GB | 172.217.169.35:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | p1.parsely.com | udp |
| IE | 54.155.18.159:443 | p1.parsely.com | tcp |
| US | 8.8.8.8:53 | 159.18.155.54.in-addr.arpa | udp |
| US | 150.171.22.254:443 | ln-ring.msedge.net | tcp |
| GB | 104.86.110.99:443 | tcp | |
| US | 152.199.19.161:443 | fp-vp-nocache.azureedge.net | tcp |
| US | 52.113.196.254:443 | teams-ring.msedge.net | tcp |
Files
\??\pipe\crashpad_3284_ZGQFSGDPIDDPEONG
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f0ee2870323ca227c52881f56db1a7f1 |
| SHA1 | d904b5992d98c41854fa2bb67b5a4ce493790267 |
| SHA256 | 81802a7d6d5df972140e97b87629d790031b5481b932c0a17c7a40d28f17b44d |
| SHA512 | 49cfe39c0404a99e838318db7f5fa86843ec46229ab7caf13ec46f1a0cb5a1c98f492381f6bb9a7deb2699df547565b6588db12b83a257f26074bacd5cced05b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7ca3e9d1c283c107ac1147c292323a69 |
| SHA1 | d51e28adbfc6ac3e5cb5cf0da9e81deecd5c13d8 |
| SHA256 | a9064e925f66f699e3fc7f3b68488d8f8450605b3f48ec11318cf6c872f2d32a |
| SHA512 | 81eccd0ae84f19cb2a03fd30cc1185e3edfa4c92d9a79d6b832091aeb76351e7ceebf488d95600c7b4b77ba6a536b0acb788679a08b0cd96aa75e09505c64a69 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a684202ce15c1a12a00c1c35c60b5a88 |
| SHA1 | 25af969bb357d68aa2a65d82f3bf22ed1a90a059 |
| SHA256 | 84f11ad898e312e0bd5126b9f5d0338accda0363381d73897bdd2d8235daeaf6 |
| SHA512 | 1eadb857a4d00f0e9ddf5bbcacfd5d367a78a216af60a21c5af75a527d7f64b0f506b5c29533684ad94f48d3302fc11ab14a9b7df8e105b840ce9fe5397a73d6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | a484f2f3418f65b8214cbcd3e4a31057 |
| SHA1 | 5c002c51b67db40f88b6895a5d5caa67608a65ce |
| SHA256 | 79cbe928773386d07f0127f256f383debed5ccea5ff230465bf46ec7c87319d6 |
| SHA512 | 0be1bb8db08f6e6041a85cfee90cd36a5b595afbca34d52a125465454fc806b4bb7ae569eaf4c882922fb1b962b6060534e597791cd0ad23483be5981d9be85c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | ab373d4b37eace053fb72f2bb52c00e1 |
| SHA1 | 2e32e2b4abd6e75abd9a1fe9e20d2920f42f455c |
| SHA256 | cf2752c2f5477098f53584cd5b9ab6793eb25d98be27bbe8a309d1b907b3a0d7 |
| SHA512 | 7b59f6303c4836e2cf7061e00abbf4776ad04b24434f2717ba97725d6385dfcc82080efed486272d61e61243423910be019f1d68042c4da5bd62715e094b4fe4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 262836c9adb7249af0a2405076183269 |
| SHA1 | 795bcc16c7cbef847c6c6f3bf3360741eaf19f3a |
| SHA256 | 1017d250caa3758afe4112bf2f054b8e2eae43da11d0b9942094725d017427fa |
| SHA512 | 22df558babdb11fac3b11a25dd654b9efdf94949d4565f848e2d486a6f0d80ecfad3e779b255a86fb6d44448e848e8a9f74ff0e59b7b0cfe75636c235c37eb57 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4c62a1c6272d23eee6f7c7d5a99f4b1a |
| SHA1 | de7b55ffe86aa5a7b3b8cae2839dd11f6a1381a7 |
| SHA256 | f957ea23eb5183ffaef43d6bced08510d36f40827a9e0885c2518a456a1f496d |
| SHA512 | cd992fe3b44af2199a58d44d1c194462f790cb8a265b6b1745b1107174426dc7148de7aa569e911c641d5880aef57a799a1fa38ed704e4f764cc327dad2be123 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a480775943b28f8962a7e48d8901a7c9 |
| SHA1 | 194a8bc5fbd760b8e3f690133483de1b543f1d7c |
| SHA256 | 39fc05283c314cc94c108489c6ce8d718174d96ee191d15e6fc757b05f7cfcdb |
| SHA512 | 2021cff346da1989fd3ea2ebb8cdcde026950a93380b51dd4b3957e60893450b61363d3b5a12ddad792ddcd1c6bf2edcbb2b6ab1744ea6dd9e18a97db3c1428c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5c5fd5d335167a0a301670a7714f4d8e |
| SHA1 | c3940b9555005d63f800d718235930a63494c66b |
| SHA256 | c84d57cf152d75f1fdb63cc0afe9a26dbe18a83661b8ec7160f95ed64569f570 |
| SHA512 | 3dd9bfed87033e9cd1436803f5cdf019447f1fba8bf4f7c8f80342686fae25c8fa9b4c3d6b1d924261ead66d10a2b58a52d74aabcb422b1da75e2c6db2c0d62a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8f145bcc49d6f49b856505ab62689547 |
| SHA1 | 5d708b269cf6238dee7bd48c29986d52d08faf75 |
| SHA256 | c83192e99f08e1327546b33e5ef7cb9f9c53e508ff220d04526dc8f5a669b228 |
| SHA512 | 6b7e69a76f60fac8a00da97f8d78020f4f8a88e08e20d61d434ab465b440b89b2e5cc897ca534d873bee4c94d30b739492a4b0a9278b3cd54773c33d0b905e40 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ba41e1a88e908f659e7aff04e65b859d |
| SHA1 | 81fc5e4b186dd1cd5600d52c3669bea37afd521f |
| SHA256 | 910f77b82f251ea30a16135e3089f5d9b4df304beb1a05b6a0b450b94fdef20b |
| SHA512 | 095d093a2ee38852b90ed05f82e6072fdfbd37923836f52dd615b2ef2ab3b4238ec2c642503cf9a69aeba16572a575cf9a11485c2ed9ba2b735e2d5cf91f96c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1059f6c6baf40d34fc0bf3b7e6f4fc01 |
| SHA1 | d39a63dc397a669487953c11c63d60d103a2fc36 |
| SHA256 | 97a532a7bd75ae66132da4a6b3b014791379f8173a12e3efc83729b85580be10 |
| SHA512 | 0bc3e05bcc010ed9687e2b03ab530ca8e629750dbd62ea5359cd6da4be6ffcb3440887ed443109c13e857c268db5ff1022ad50786a0ca57d89262c0dbbd60492 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 8fd1bc7d532256eaeb5f0e046f682060 |
| SHA1 | 9e0a94494a3bf8a33bc56c986701ef9250cd121b |
| SHA256 | 7990d733d1cbc17c2c19a9fce877fd5893a723bfe4bb1367a361b6c0cdc2dbf5 |
| SHA512 | 36f820af87888e7eb6c9c0a28ca53f02d748e019620305cc926a534d7d1008d3abbac0800490615732731d358d462a40881fecd4b031155ffdfea41ed273bdd6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 71f334dcf1cd06ba4a3d173b590aabf3 |
| SHA1 | 51baad119c939d6c2bb363a99ed210d06a38f340 |
| SHA256 | 17a921df3a5177f69a48ed9446234997f86cbd5f93964707de500efa97b622a4 |
| SHA512 | 5856ba097a93ecc5244081d6077e51532ead1c286f14029aa8c3473032cdfaa65217ef3c0e1bae41fb55afec5f3351571c0da7cb0bc79ea2b01c65abcbad5977 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7f0fcb1eaeab227c8d4a6054888a6c00 |
| SHA1 | cc538b732265470f7ed449d1933418ac85e72860 |
| SHA256 | b33900ccd0cc77090410063e8062ca04a413d102d05a4008691745addce08e90 |
| SHA512 | c2c2250f5e0aceec40097467918b7c2871998aa2a3707802b6c687b8b2fcd7c39c5d37c5b5a95d0a7a0254b3be25bf3cbca60b297ef1a43837d6248aea2d74d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 123ad286347297005fb44b55f02c8cce |
| SHA1 | efa6cab02da03e90c434f6d424e96d9abbc3395a |
| SHA256 | 98241b06612d91ae8f98f819da72a77718535bd6e1f090452da55ad6b10aa146 |
| SHA512 | 4d94e443ae200fe21d7352c05883a1ebdd43bf57317b3dd0b0252637745860f306ae62c7496ba52bcfc15f6e56241f95e3762cf042e6773d99ca74efe5ab0dca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 48641980b3703dda108dc46677f5b842 |
| SHA1 | f0cfd3913e0284d89146031a9cabe22e586ba7ca |
| SHA256 | f3b249fbe546fac668087e84d1eb27fef4fe229796a05936a731e6a90689b45f |
| SHA512 | 2c01b035bfbf189f48d87d13211a678275c6fd2c8779c843b711981c4c45b1a21e0e13ef88ac6e38d273bfdc6e6ce4711099f0b16b49c49ed02740a8f2e8d2c2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ec594488ef17a4c3676c1ffb23c95580 |
| SHA1 | c51e839da8d35e2fd4cbdadaf82836e24f7deac4 |
| SHA256 | 505055944eb67a481cef1303c6ca9ecfe53db652aa62f1c040a31201f85dc940 |
| SHA512 | 052a5afd4c5cb7bfb10ca98f07282a0449c9f53eaeb7c0ea311717045123e224ccdc07e0b4cc77d8a735f2de51ed14ab906346f4edadda997b63b10e3d60d23d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034
| MD5 | 9196e81f8ed7f223d765423c1f9bc8a7 |
| SHA1 | 88f9d5c2a6908cf36b8daae803578ca9e1fd2929 |
| SHA256 | a4e2bcf7ef3c6c614c2142d3c1fd44caac4eafa86a1779ac31cba164e2d89cbe |
| SHA512 | e7d23866fcac017762d2e2f18597124e9147f458d30038f78ba9f3a2bcbe479fe4792573894370ce2d6f93a00401231d9f01955fde351ff982a82ba87a8241f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031
| MD5 | 910ad0cb11ba4576feb686243c988be9 |
| SHA1 | b360b92dde60ed9cb0728851d50387655655a07c |
| SHA256 | 3375a150b0d6f4f8bfcd5294637d1c065bbddae4cc6304c40c1feb57964f019d |
| SHA512 | 89294711a95364234273ae610d80da62698eb4fe026212ea9be1717800d6ed6620a5bcbb096c6c04189fbe9136f5f17c9ed272eb9c4f43d27dccd07867078b0e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047
| MD5 | 1b7ac631e480d5308443e58ad1392c3d |
| SHA1 | 95f148383063ad9a5dff765373a78ce219d94cd7 |
| SHA256 | 7fb66071ac6c7cfff583072c47bc255706222c2a4672c75400893f4993c31738 |
| SHA512 | 15134314dfd36247db86f9b3d4dcb637e162f8fd87c0ce73492ffdb73a87492fc80330655617f165dd969812ed2ebcc42503f632d757bb89ba9116137882119d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053
| MD5 | 43e3a2237ea359ee40859d0da79fca51 |
| SHA1 | 7a5ffa6526f8641d4f4056bd367aac13f1d90d6f |
| SHA256 | 6e3f4e89bad615f2e7ea896fdaf45cb2a4ee392af9de1edf9b69ffca45ebb6de |
| SHA512 | cae58dcc124b625867401383ce89ae901f99c9b1fec5e6f36273dfeb2d2de6729a845019c7136020380f77aa18a18e911d73b96668fe027405e932e951a8cade |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00002a
| MD5 | 95062181c30d164e86fb7c7bbcffd121 |
| SHA1 | c94d28287f23627e13f81d82bc3dfd600a0fe84a |
| SHA256 | 6c37542e4310e6a4cbf80b65db6ec4ceedb559220c0153312bdbb7c08f290ca6 |
| SHA512 | 9a55f11dd4d91f498b478984ec6c2e84c590ccf37ebb25f0f425c3643f1c41889471cd9fb200c1d54fc1076558e493cd100b0f5415e42329344f9da882ede5f0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b
| MD5 | 3fa8c23b89d34fcc51359db6d0551837 |
| SHA1 | 69750d3260f6f371a516bfddfe15ca26cf068f44 |
| SHA256 | 4218aacba68899324cbb3f9b7e09967916e41477312ced5dfde41082c6e147e6 |
| SHA512 | 27dfd1aa035ba829b8d76dd8f8012a98dcd06178a9bcafc32a82886b7b06affbd72afd2fb093749a719b43a61a966165d991a2a377a939da24649da288bc4688 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004c
| MD5 | cc3d98d36d124489271f8652d521f24a |
| SHA1 | b0a15db47350ea8b76b3c4138c49afc253cdf207 |
| SHA256 | 9f1965c21c10608bc8fdb62524af4bc5261d058afdf1a67f05fb4f953862271b |
| SHA512 | f8c612fb86bdae7c707d20b85495a3ddc835b09da7a1b7e9b22a338bb1f2181f5ff208e7437ba642edb9b647713c7b2e9de298fc30bf018d486a8a9eb05b9bab |
C:\Users\Admin\Downloads\Unconfirmed 31715.crdownload
| MD5 | 96f38d67f700198025074738297ad2ff |
| SHA1 | ccf01d3d03544c51c717a6eaaf3bc1f5edc78602 |
| SHA256 | 524828ece543d6c0cb816cb710f01b475553caf404aaa0affdbda6f629bc5bcc |
| SHA512 | b4e1008720865a8c4082f46d0b27326d27e9a0391ce4c3efc863083fd4201115d7c669fa03213965fb5891a9f400db659c77df1566dcc94178bd0b62e7b342ea |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | d0f98cedc224960c72348002e970952d |
| SHA1 | a4ee8bd309de0ba15727cc7c6399470d9d166a1e |
| SHA256 | c8d130301b4e2d2890a10ab1cd5510631a42e4499913f1597d226a244c1e565b |
| SHA512 | 4c7340b93df149d0a3cf5814e91452cc5a3d8e3f5cd2d2ea1b1523295d47721f7f306cdb8745bd51a654c514c29c573b61918e7831e969e40dc43f572765da86 |
C:\Users\Admin\Downloads\VisualStudioSetup.exe:Zone.Identifier
| MD5 | fbccf14d504b7b2dbcb5a5bda75bd93b |
| SHA1 | d59fc84cdd5217c6cf74785703655f78da6b582b |
| SHA256 | eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913 |
| SHA512 | aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ee2362da075027023a038d3bf742abfe |
| SHA1 | 256bdbcde42a613a565ea9cacd531f34b69d58f2 |
| SHA256 | 2abab8cac5bdb9ab9abfadacfb9c85d36107737b5c63582bba3bd5e970f5f3d1 |
| SHA512 | 52bb3190e2ad4e7956f09ce57a7543bc923d0cd6b0cbb7c399c44bd0c63380641eac9f5300fac8ca3fbf3ded8c34f889476cf2a624399dd4aa7dd1b398ce75c2 |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe
| MD5 | 3257dc82fdc8136629ac4a4333193391 |
| SHA1 | 9f1aa607c0d8508cb50f3f0ddc1b844bf570f2c2 |
| SHA256 | e94349f39b4b45774caf05fabcedee74ff182ad6f77f143eb661580824155a42 |
| SHA512 | 3189c7eba1db26a37f64b7d650b566f14b855a8a406f7d900d6f3af937e7b5d817038d23aac8ddbc9d69b939beb26e7cecf9ab8dcbf9e0edf338fe7932f1c867 |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\vs_setup_bootstrapper.exe.config
| MD5 | d705d5ccc158f125dfbf4b1f06ea8966 |
| SHA1 | 76486d41cb0a0316ee354cbfb59f697a43ab1489 |
| SHA256 | 1e0f19e5f792fc97e1ab40d6a8259f19843c8a22c1ccc008effc3a771cae9b66 |
| SHA512 | c3b2ac8d186990c3c7d6755a641cf3bf0256e8ea3789942374c56fdd97de6a7fae516ee944880bc3ed31b0e569192d570db899847b9a8fadfe46d4ed150b480f |
memory/4936-783-0x0000000000740000-0x00000000007A8000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.VisualStudio.Setup.dll
| MD5 | f203011840317dca75b5958b4ef1383c |
| SHA1 | f975958ff6329fbac84d6f7bb263a287d8fa5c38 |
| SHA256 | aea445890e328c45ad594e98043808722fea6017dc8b0fa54b85f43732eed389 |
| SHA512 | 119d39ebc7a19ace9881754af73f834fd6fd27230b8e8b544aeea10e471d3fc8b33d1e25a70d30f514eae3fafed9da7a5ec6a7650a5b842a6668ea97c279d884 |
memory/4936-787-0x0000000005350000-0x00000000054B2000-memory.dmp
memory/4936-803-0x0000000005610000-0x0000000005660000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.VisualStudio.Setup.Download.dll
| MD5 | b23e7cc9034c5063c4374c76015c4f6a |
| SHA1 | 74c39d36d37f8fb1fec14462ac5a7e1eb3182e76 |
| SHA256 | e79603b7f9ada27335deca10edf748f4cb1bf700cf866f585d0eb0a88bd7758e |
| SHA512 | be5d084aa6c5b1dbbf5b2b8d2a3ef99962dcbdaefc76eca6d411b9e929ee25c5032edcda565f4b0ecc1aabda3335a3eac736e96750d8d54e4f9e9793ed3f2902 |
memory/4936-799-0x0000000005340000-0x0000000005348000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.C2RSignatureReader.Interop.dll
| MD5 | c6cf9fd202cb1229cbe7b9efbc9f4317 |
| SHA1 | d5c9c33a16c759c0bcf685cc8eae05104b50696a |
| SHA256 | 93a4a722c19f7f89ca2ce1aed73eee941c24c6e396585be8b2073b9b2ef235c7 |
| SHA512 | 6e303a5e9975daeb7161dd1958ac0784b416fe1d65dc862da99eeecb59d12d7d43165865a2737d5ebbb9727439665b743b69952265e2721f4f01a00487555518 |
memory/4936-807-0x0000000005CA0000-0x0000000005D52000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Newtonsoft.Json.dll
| MD5 | 195ffb7167db3219b217c4fd439eedd6 |
| SHA1 | 1e76e6099570ede620b76ed47cf8d03a936d49f8 |
| SHA256 | e1e27af7b07eeedf5ce71a9255f0422816a6fc5849a483c6714e1b472044fa9d |
| SHA512 | 56eb7f070929b239642dab729537dde2c2287bdb852ad9e80b5358c74b14bc2b2dded910d0e3b6304ea27eb587e5f19db0a92e1cbae6a70fb20b4ef05057e4ac |
memory/4936-795-0x0000000005800000-0x00000000058FC000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.VisualStudio.Telemetry.dll
| MD5 | bbcc8244db84ad2031ac010633abf798 |
| SHA1 | de0cb65ee877663da272b4162a55a64ab8669f74 |
| SHA256 | 8fe17ff9da7932dc01a39ed27559d5cdfa9b97ba14cbaa9f719087a241c8b82d |
| SHA512 | d5682ea1aa9d50e9a491f8dc25c82907cde24ead2842ea392242e8cdedf49f68f3035042442738e147b5aa29d6328ced68007732298f62466c78fd10b276b06f |
memory/4936-811-0x0000000005A80000-0x0000000005A92000-memory.dmp
memory/4936-819-0x00000000057F0000-0x00000000057F8000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\System.Runtime.CompilerServices.Unsafe.dll
| MD5 | c610e828b54001574d86dd2ed730e392 |
| SHA1 | 180a7baafbc820a838bbaca434032d9d33cceebe |
| SHA256 | 37768488e8ef45729bc7d9a2677633c6450042975bb96516e186da6cb9cd0dcf |
| SHA512 | 441610d2b9f841d25494d7c82222d07e1d443b0da07f0cf735c25ec82f6cce99a3f3236872aec38cc4df779e615d22469666066ccefed7fe75982eefada46396 |
memory/4936-815-0x0000000005AA0000-0x0000000005AC6000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\System.Memory.dll
| MD5 | f09441a1ee47fb3e6571a3a448e05baf |
| SHA1 | 3c5c5df5f8f8db3f0a35c5ed8d357313a54e3cde |
| SHA256 | bf3fb84664f4097f1a8a9bc71a51dcf8cf1a905d4080a4d290da1730866e856f |
| SHA512 | 0199ae0633bccfeaefbb5aed20832a4379c7ad73461d41a9da3d6dc044093cc319670e67c4efbf830308cbd9a48fb40d4a6c7e472dcc42eb745c6ba813e8e7c6 |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.VisualStudio.Utilities.Internal.dll
| MD5 | 2dc1dc66b267a3470add7fab88b78069 |
| SHA1 | dbe80047475b503791038ed7e47389c062c15c72 |
| SHA256 | b044863f98af8d28f4f2f5e2dccb945c57439e1575afb37110e1eec306a6c89c |
| SHA512 | 44ef73aab50dcc13ccd94c0353c366818afb27ce73772d722755b04add0c4f294c7814c84da6069d9aa6136f2a48683c25062dcddd1664e8d32fed1b38ceca21 |
memory/4936-791-0x0000000005660000-0x00000000056F4000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.VisualStudio.Setup.Common.dll
| MD5 | 1d8d070d47510b7ad2d649edb415a90d |
| SHA1 | 464e282bf196219d39c24c5610cf76efc0b9772c |
| SHA256 | f160aa395cd03a77c88e9ed476d2cd308528ef28ede7d3cd51d799192b66788a |
| SHA512 | 91ebe5e9ded214695f9c2df08e2f8c2accf2ec17f8679cdd9425b37f60f9758da6de7f474ab14343f3edf5abab0ebbe639ee878417947b89dfaa1361d517ebe1 |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.VisualStudio.RemoteControl.dll
| MD5 | 355c1a112bc0f859b374a4b1c811c1e7 |
| SHA1 | b9a58bb26f334d517ab777b6226fef86a67eb4dd |
| SHA256 | cc52e19735d6152702672feb5911c8ba77f60fdc73df5ed0d601b37415f3a7ed |
| SHA512 | f1e858f97dabeb8e9648d1eb753d6fcd9e2bab378259c02b3e031652e87c29fbabfc48d209983f7074dfc256afd42fa1d8184805534037771a71db517fe16c8b |
memory/4936-823-0x0000000005F60000-0x0000000005F70000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.C2RSignatureReader.Native.dll
| MD5 | 5a0e5cbb68292104ed91f53275432781 |
| SHA1 | 90bd370a5867ca889d47ba5c928ea06910160af7 |
| SHA256 | 848ef52200b9bdd9807b20e1e0c834c3bbb09c723bcc59875658ee3f29781601 |
| SHA512 | 0698f928fa2de8c48f04579c6904981e288552ee651b9d4a65b355c4698eae6f275625d5ef3c053de39c45d732d5f0514e062d762784a5630453e0e5f40b200e |
C:\ProgramData\Microsoft\VisualStudio\Packages\_bootstrapper\vs_setup_bootstrapper_202405040720493195.json
| MD5 | ad891c3b02a02419dc60db8c273a8315 |
| SHA1 | 141a08ca0e25d56bdb35fc71e1c767667079114a |
| SHA256 | 186c4b16ee009564819730b358dbdbb0792fc27e602698c5f0a16e20104647c7 |
| SHA512 | 64cdaf1d6d1b4072e24f3926f91103abf946ff044cda34a9070586c2d2927bcdfc53381c955e447a38965ee426373259759025f97b715158afc429080956196f |
memory/4936-828-0x0000000006140000-0x0000000006162000-memory.dmp
memory/4936-829-0x0000000006290000-0x00000000065E7000-memory.dmp
memory/4936-830-0x0000000007110000-0x0000000007176000-memory.dmp
memory/4936-831-0x0000000007420000-0x00000000074B2000-memory.dmp
memory/4936-832-0x0000000007A70000-0x0000000008016000-memory.dmp
memory/4936-833-0x00000000079B0000-0x0000000007A6A000-memory.dmp
memory/4936-836-0x00000000079A0000-0x00000000079A8000-memory.dmp
memory/4936-837-0x000000000A330000-0x000000000A338000-memory.dmp
memory/4936-839-0x000000000AA90000-0x000000000AA9E000-memory.dmp
memory/4936-838-0x000000000AAC0000-0x000000000AAF8000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ea2534e41793128d3c5404247dd21f65 |
| SHA1 | be75a708e0518b664f9feec78f93fa8e9438ff6a |
| SHA256 | e7987651e1a0597e3f222a9bb66b3c974d8f80c0a8ce446dc32c84a630a39522 |
| SHA512 | dd709a993325152bc646ed453130c3b1d9ed9a899dbb54f7c73f67aa65961333af0dd1d1220a1cf801455424fce2145849b2787731d54b9a40ade2403836b2d9 |
memory/4936-852-0x000000000BEE0000-0x000000000BEE8000-memory.dmp
memory/4936-854-0x000000000BF30000-0x000000000BF80000-memory.dmp
memory/4936-855-0x000000000B3D0000-0x000000000B3E2000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\lbh2ob2c.json
| MD5 | 9b5bc10442f86b015e3ec11b15cbe7fe |
| SHA1 | 2022bab52c25622a7ba73c2116967f0fd8462898 |
| SHA256 | 1211fa72349aeb9f8578a8405937b1bade9bbd578b5fbc2d1858462abbafb300 |
| SHA512 | 7b59e801f1e9367ac8adc970eec47a14b01b986001593cda60f381d4f3f6852839c1204dc228e53377de7bfebaf418a2963a31f533f5c56029e1025140caf339 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5a65df.TMP
| MD5 | 7915e13356f5a6333053c758ae3a6f3f |
| SHA1 | 6a457356ee80a6dce5c9b696540a05dd47cbbcb4 |
| SHA256 | 22c3113da6e584de497dba6589c75be1e6f992b7f098e4b2da4a3e74f817824c |
| SHA512 | 04a8a7b0b4069c3e892cf67451fd813ae1a4a292dd9626f1ba2f9b68e01eb39ef5ac6e7fc7babfa9eecc55daefd9b2de3f1f602bb298b93066150ed514a35806 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 27aaed964d4a8b7412d5ca2d63056f70 |
| SHA1 | c4e1a227037c2231a10e693592d4a359d4a7348e |
| SHA256 | a2ab37f75a62989999c052446453f3123dfd2dcc7ff8fd2932d358ed601541b4 |
| SHA512 | c7c7a30b23997e755eeb5ce0f8fe9f3530b4b9266b3abcd150274cce765c132038e32811b46c1605d2f53e32d6d55242c71165b337a7a69fb21724f4f4736816 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 25d08b20f1e56d75ea9a3b0d10f575d5 |
| SHA1 | b048b047e93f81322bb17acd81c44eb8686c6b84 |
| SHA256 | 3847c9ebdf4f7419cc7cfdc622030b748fd20d073c5e1dbd43067b31d75ce784 |
| SHA512 | 5cb1bc207cf876e9ab16fa0ed89b4d25c3e56b470a67f94ef58bfeb1037f058f0407820df4144cfd470e3595cb6a9e6be6f29846e48f2327ba690990a6983a45 |
memory/4936-896-0x000000000B3B0000-0x000000000B3BA000-memory.dmp
memory/4936-897-0x000000000B730000-0x000000000B752000-memory.dmp
C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\runtimes\win-x86\native\msalruntime_x86.dll
| MD5 | 94ab867ef06d046b6f65adbcb0994638 |
| SHA1 | 30768967ad3b95aaeb8ec671f96e176a6d5dd1fa |
| SHA256 | e9501bd3899c05167ab3d6cde455e7c81bc4bd138314207f3cdfe910b21358ae |
| SHA512 | 81e20e97829bd2102e552bf78f1da4a6986ceca475c6514c7de9a40adeafdd7b15c15dd10af293df5b4c21e4b1c431c92591d19559c9c71ba5916d14d750c090 |
memory/4576-1371-0x000002360E9F0000-0x000002360ECDE000-memory.dmp
memory/4576-1372-0x00000236294C0000-0x0000023629622000-memory.dmp
memory/4576-1373-0x0000023610AE0000-0x0000023610B74000-memory.dmp
memory/4576-1374-0x0000023629630000-0x00000236296E2000-memory.dmp
memory/4576-1375-0x0000023629260000-0x000002362929C000-memory.dmp
memory/4576-1376-0x000002360F1B0000-0x000002360F1DA000-memory.dmp
memory/4576-1377-0x00000236292A0000-0x00000236292C2000-memory.dmp
memory/4576-1379-0x0000023629800000-0x00000236298B6000-memory.dmp
memory/4576-1380-0x000002360F140000-0x000002360F14C000-memory.dmp
memory/4576-1382-0x00000236298C0000-0x00000236299BC000-memory.dmp
memory/4576-1381-0x000002360F200000-0x000002360F21A000-memory.dmp
memory/4576-1383-0x00000236292D0000-0x00000236292E2000-memory.dmp
memory/4576-1384-0x0000023629460000-0x0000023629486000-memory.dmp
memory/4576-1385-0x0000023629330000-0x0000023629338000-memory.dmp
memory/4576-1386-0x000002360F1E0000-0x000002360F1EA000-memory.dmp
memory/4576-1387-0x0000023610B80000-0x0000023610B90000-memory.dmp
memory/4576-1388-0x0000023629310000-0x0000023629318000-memory.dmp
memory/4576-1389-0x0000023629450000-0x000002362945E000-memory.dmp
memory/4576-1390-0x0000023629E20000-0x0000023629EAA000-memory.dmp
memory/4576-1392-0x0000023629FF0000-0x000002362A124000-memory.dmp
memory/4576-1393-0x000002362A130000-0x000002362A1EA000-memory.dmp
memory/4576-1394-0x0000023629DE0000-0x0000023629E14000-memory.dmp
memory/4576-1395-0x0000023629DA0000-0x0000023629DAC000-memory.dmp
memory/4576-1396-0x0000023629DC0000-0x0000023629DC8000-memory.dmp
memory/4576-1397-0x000002362A260000-0x000002362A298000-memory.dmp
memory/4576-1398-0x0000023629FC0000-0x0000023629FCE000-memory.dmp
memory/4576-1399-0x000002362C3D0000-0x000002362C3D8000-memory.dmp
memory/4576-1400-0x000002362C880000-0x000002362C8D0000-memory.dmp
memory/4576-1401-0x000002362C9D0000-0x000002362CA7A000-memory.dmp
memory/4576-1405-0x000002362C850000-0x000002362C86E000-memory.dmp
memory/4576-1404-0x000002362CA80000-0x000002362CAD0000-memory.dmp
memory/4576-1407-0x000002362CBD0000-0x000002362CCCC000-memory.dmp
memory/4576-1406-0x000002362C900000-0x000002362C91C000-memory.dmp
memory/4576-1403-0x000002362C8D0000-0x000002362C8F2000-memory.dmp
memory/4576-1402-0x000002362C930000-0x000002362C98E000-memory.dmp
memory/4576-1409-0x000002362C990000-0x000002362C9A2000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\pyygolmg.mal\21cr5oss.json
| MD5 | ec45800aec65a426115e62ff105960af |
| SHA1 | 46eb155904e3b9da74288c5129ad1830dd5440e3 |
| SHA256 | d094f2e9e6a3cdccb7e7b2b2ce06c5997da4c85d7c4d62c9c7d446308e556976 |
| SHA512 | 92df4afc162a1e63f8db88463b5e0f7f2c45e74ec70ae97509417f555d9e7a635b76b8ae3ffd0d2fe834d9e24ce9d7c0ea2eb4f9b7dc6568caef0162d0b14225 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\Packages\_Channels\374c6d35\channelManifest.json
| MD5 | 26a2cfd6039c10c1d4831c6229145d1e |
| SHA1 | af7d2c5852bc7a053220475b63a72f0e55c55d49 |
| SHA256 | 8a477060d0deeea7767347dfcbfe89eee9fce5ccbdcf11bfb13681bac08892f0 |
| SHA512 | 2e195b1955a2e5e1e30e5519818c123607da02bc57f00fa097c8505c83932fb3fd94e38dff9b3e454f32cfda69932446e1ef7a9fa0620748267ab82ac76af11a |
memory/464-1435-0x0000000000470000-0x000000000047C000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelAIF-312cbd79-9dbb-4c48-a7da-3cc2a931cb70\20240504072120_2fc0fc537c2a43e3b3bc64ed8f18af9c.trn
| MD5 | c0bad209714d0fe2238dd0298b7c15d2 |
| SHA1 | cab9eeca4c0b325f8720fd8d520df1ab824415d9 |
| SHA256 | c72a898a9511c7d9f985911f9a257a218593c510a5fa1eb06f2852bb3e6fa916 |
| SHA512 | c8c60247452cb134fd65884694527e15b5477f027e421e973d0b5779e201c0332565f2c28c77c8784918793ae80309a402fd9a748deed2b15e9d1fb7a9c039b6 |
memory/4576-1454-0x0000023628C70000-0x0000023628D40000-memory.dmp
memory/4576-1459-0x0000023628BC0000-0x0000023628BC8000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072121_d4c81bca45184772b045960395c916c8.trn
| MD5 | cd0ba7ce630c2dd5f37f92ccbc0bae4a |
| SHA1 | 2e48b4a1428e59532ada4cb393addac8b1156ac5 |
| SHA256 | 73660aa37de99e1896f4b61d17b70a55e5fc19bdae1a5fe0ef35a9ecca4b067a |
| SHA512 | 7e921e85b0768a04a275a5f0ce8cf7b3f845b502ff2949db2791cab3ea68be5d2e4b3047169045072e737126f49b4073811d306f6a58352e20594c4d18aacdbc |
memory/4576-1466-0x0000023628BE0000-0x0000023628BE8000-memory.dmp
memory/4576-1476-0x0000023628C20000-0x0000023628C38000-memory.dmp
memory/4576-1477-0x0000023628C10000-0x0000023628C1E000-memory.dmp
memory/4576-1478-0x0000023628E30000-0x0000023628E42000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072132_26617b289a124a84a05134438b093340.trn
| MD5 | be5daca70d1295fa668ea2338b77c617 |
| SHA1 | 4f21182eddd8516a2bea01ef42ea12d51791a462 |
| SHA256 | 9189e374cbe836f0c966833e7bd08587a7bad797da721c4ac76c14af75023dc8 |
| SHA512 | 3d03de7cc79aa9b0ec6b0a1553c7d414a29633102e29661664c045cd22320233e6524b871e5f6efcafe9f1831566bd71dbb8c4f28c2e526a24002a686cc56c74 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\Packages\_ChannelFeeds\F4D08EA8\channels.json
| MD5 | 272b246fce981ce0d2b543d482f4c65d |
| SHA1 | b08369bcc802acbda5233b73dd70e40c58c7e57d |
| SHA256 | 329fc589b6a607b26dc942c9d6e26e95b0d2d4d3c0408633d99f0ef39eb5e402 |
| SHA512 | 498ae006a80abc249ec77ebb2adebdfe303ae41ebdab256a716b1ff155f6afb87c9b5f4e4c69f2806966c7d92c5d9f95d164741d336bf8b9eac986c25ebd0353 |
C:\Users\Admin\AppData\Local\Temp\zyhevgrw.gst\xm5lsyan.json
| MD5 | f168135ba18b06a171e0cd8937fe8189 |
| SHA1 | ded601e6f79648d4f9a7144a369f478c1a231355 |
| SHA256 | e14ff2ec1706905df10232788585163e62586029cd02978f0e261d05dc28f1eb |
| SHA512 | 4ba28699a36ac7b9c997aa154e7fbb451ce155ac4e589c78e1bc468a72ed8674a4eb1adcc19d94dae545cfa3ab0c6aabee3b1a25052fae473b30eb1d11215019 |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\Microsoft.IdentityModel.Abstractions.dll
| MD5 | dc6d5f059a711616234b383d8a3cd5f2 |
| SHA1 | b53df8e875bedf924a32eebea2abb2018f06e5e1 |
| SHA256 | d461864929e446edbc6513421f4db8c6465899d9067ea3c33e2131227799b525 |
| SHA512 | 54cafa9ce950c0b4a2cfe6f115717cf113b45f6ef21c701207e37151fb8b01e0d370c56d950ab2c0bdd0d813d65462ed19eab4c9de320f8434cfb0b30589deca |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\runtimes\win-arm64\native\msalruntime_arm64.dll
| MD5 | a2f41908d5dc93b30daa584ea84d2092 |
| SHA1 | 858e185e27c19177d3bd8682cea53bcdc27a598e |
| SHA256 | 88a6f127eee41da978181df5de12d65d2337d4427ef66b6be1df51bc29e93f8b |
| SHA512 | ee5934249b2540b2eb8f9ea3f344f00d6e512a8f2f86df4ea674dd9e35a91154cd77c62053882e187cf1a629c369ad3be9667f59607676bdc780280de5dfbeed |
C:\Users\Admin\AppData\Local\Temp\5479e28617aee12f3dc91dd98d\vs_bootstrapper_d15\runtimes\win-x64\native\msalruntime.dll
| MD5 | 6d226a7b33583555fe71310e610e7fc6 |
| SHA1 | 92bb8ce4cb4e215348c6e22ffc3bf57ec031883a |
| SHA256 | 613be496ad434ceef6ed29dbba64f27a2612795078977a8b07b229ebba9e9953 |
| SHA512 | 5697f07f95c723de50f65b23d5ce4853e716425abccae187d00ed3ab1812fb0e04af47b5ed241370773522fa3c463c351c9dfc58b10c7962bd2e8c83710a3d46 |
memory/4576-1619-0x000002362E5C0000-0x000002362E694000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | b49bc68eb9ec61e8f3d2ba2f6c4062d6 |
| SHA1 | fac478a9cb02c6ceded8a79936571962b5647503 |
| SHA256 | 291bbd015283693b1fb4506f4c7f774e21c49fbec065d3b9cfd2a709e104e5ee |
| SHA512 | 3450968b0920c19405bb8a51bc44ff0950388217988cc8fc9a9f98772daffb56e03ff83abb0ff2b19597b58e0465d3dfe3c5ba517017ad58cae96bf4d65facf9 |
memory/4576-1631-0x000002362E1F0000-0x000002362E1FA000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\Packages\_ChannelFeeds\F4D08EA8\.updateUri
| MD5 | e3c9f3c009c49e91b372ce3be05da610 |
| SHA1 | df98879fb7402b9b08bdc18fc2f3d4d5ccec12cc |
| SHA256 | f4d08ea820b816e2822bdd3351613ed185e4e36503ccc348f4a8a7957fadfd6f |
| SHA512 | 444aa325d744a7fbcdc5a48cd7b51814e3cca5caf58b0e16316e015f898773a5d3476059399a704a9b4dc6350d06430ba42a78058f2cd8c03669147b346f22ca |
memory/4576-1635-0x000002362E160000-0x000002362E188000-memory.dmp
memory/1120-1636-0x0000025FA5BC0000-0x0000025FA5BFC000-memory.dmp
memory/4576-1637-0x000002362E140000-0x000002362E148000-memory.dmp
memory/4576-1638-0x000002362E190000-0x000002362E19A000-memory.dmp
memory/4576-1640-0x000002362E1C0000-0x000002362E1D8000-memory.dmp
memory/4576-1639-0x000002362E2F0000-0x000002362E32C000-memory.dmp
memory/4576-1641-0x000002362E6D0000-0x000002362E6DA000-memory.dmp
memory/4576-1642-0x000002362EB40000-0x000002362EBD2000-memory.dmp
memory/1120-1643-0x0000025FA62F0000-0x0000025FA62F8000-memory.dmp
memory/1120-1644-0x0000025FA6340000-0x0000025FA6348000-memory.dmp
memory/1120-1645-0x0000025FA6530000-0x0000025FA655A000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072145_0f872c0e70b54449806a178bc76b54ed.trn
| MD5 | 1f2a4728373ddac289a9dba40f2f49a5 |
| SHA1 | 524dc321eb45a8a160af35fff5008cffbc2f1aba |
| SHA256 | 72026043a2b32292d2752c54062a7f27e6f3419ca373d427432a9f769227fe38 |
| SHA512 | cc03d2efe6b804a610588f3bb46477ca5f261cfcb7097a0bed595e57aff792088f7b14187a5c4af27616fc15506dcbcbb7d7badb12d21a3c03624fe0ede17c67 |
memory/1120-1651-0x0000025FA5C80000-0x0000025FA5C8A000-memory.dmp
memory/1120-1652-0x0000025FA62D0000-0x0000025FA62D8000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\yvr3sr0n.no2
| MD5 | cfa7f3ffe40b3d4baeeeed3fb357793c |
| SHA1 | ea6b405d8f5255a23b70bb4ef25e50e2275e397b |
| SHA256 | e3cc1b39f85a80d0bc385beeffffb616b9af1815ef4c6b83a7c8084c337490b5 |
| SHA512 | 3e1c66a601998df4f148cb70ed9828390ab3c07d6385aaf096a24a76a32513e42ac1295718731bd8769bb084a22cd2fb93e0dcd3e7d01655acb8611968affe20 |
C:\Config.Msi\e5b492e.rbs
| MD5 | af44798bec338b1d0767097c2ad99f63 |
| SHA1 | 60e341c92e74f4ac9d098b0c14075e7fbf7c7cae |
| SHA256 | 8bc9a1f962df0107f86fd50727ad8e639e900f7db88e879d34f5bc1758c762a8 |
| SHA512 | 38c0c04a5ea19e49498f091ffc555d8396aa7f272bb5e788e762a31c5deeb6f873697cbb30319a9ba2b45447166f82316d9e60154278a22808de0dd933e8837f |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Auto.Resources.FD08238D1010290198AF\Microsoft.VisualStudio.MinShell.Auto.vsix
| MD5 | 1eae70204447830e854b0234164dddcf |
| SHA1 | 1a0ecfd68d15c24a65723c644f1532ebe806aae5 |
| SHA256 | ecc3e02c2a3ea8627017d2b90ecd6196f4bc0767d59e8415f00d0a26293a579f |
| SHA512 | 87dbb9e0bf4a464a0d88c91cc6ce65ea548e44313aa46792dfca5606f36bb8192656db5aff8a945ed014d72c69644eedf520716517922e7581e0c4bf8ae38750 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Branding.Community.03696787AC5BB322DA2E\payload.vsix
| MD5 | 3f486b6634799210e238806ed02ba769 |
| SHA1 | 3d7fdf94f0fca216d0d83f859a2e72c5389a2723 |
| SHA256 | 24930084ed4f89de4bce79056e75da607e3691a6f19b82bc706a53c22ce02185 |
| SHA512 | 438d60a94f06328dc9d36304cf5b3d20318c93c9a4fe6a4772f7f2316cd7b8061ff0810299aa13ce6ade2fc13ae037d305e44153abc4120e3563f32a714f3342 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\Packages\_Instances\08475949\state.json
| MD5 | c253be222bf34e852ad7a839e57e011d |
| SHA1 | 2d5002e3f94d601167048bed65d2893a7d46474e |
| SHA256 | 92c5d3b66d5e65553374d3ab77946605089c99db5bc1929dc8c202a16b2fdc99 |
| SHA512 | 5a252815f3abaf2d69a377b3b8685b125ddf0acd8afa539a8c66192ea11b3d23c7a6aaf67af3d9ff5dbc280287c46e39ce406eecf7c018e91e4452b097006101 |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.json
| MD5 | f736ca395d33871b787f0d904d12e408 |
| SHA1 | 19508e66886f34f3bfff69678463bc013884a857 |
| SHA256 | b82eb72f3847445e328288bca1d307df0a322ae4e2b20d46e62ca1c45a8c5f63 |
| SHA512 | f03b500eeeae00058952bc14811970824f3b93d424d94afc7e7334a7919a6bb2967e6fa5468370d3eabb3a632a70fffbcb8595b45f25c74a786fb73242297898 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Resources.x64.E83B1472CD49B2A8F048\payload.vsix
| MD5 | 50f24b7f10be03a059ee8d5a9746bc51 |
| SHA1 | 0fbe69e2b97e49a11d81c4a58a6e4b5f052823df |
| SHA256 | 55a7fcac26c60b82c0bbd2e4c31979e797146510f80c048ef5cbe915de4239d3 |
| SHA512 | 0975b39ab2b8c4a9311c7c072a85b466441c8128458bff46f2a902402b490dc9697c6d627615789bdb8906476df7953642c87d1388af2c76ad4b9a8ac542463a |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Devenv.Config.51F241AEC4B4AC000FB5\payload.vsix
| MD5 | f9ce1f0b03bdb03e7ab9af25657c9b38 |
| SHA1 | 42d627394449628f63add429cbbfe43b67f89d5f |
| SHA256 | e00f4c7d7b5325ac6dd1bb97ba01e3f03e05c28c21c82266c10025dc7630e152 |
| SHA512 | 2597ea220f16a12c2b6c17e9dd88169098670f58e6fb18c39b6d1ec1044c00014ddb3a66db3026ce85a734758c095f0d93f114b6445757daaf74bef47df1026f |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.NativeImageSupport.A8910BACBE3E3C14B7F3\payload.vsix
| MD5 | 129bbb07b70e92e54ded7d2ce0e778a3 |
| SHA1 | 7b9e3c08afa47d4908d9fff27066fda09345668e |
| SHA256 | f5ecf45bc8be37b4d25b823f4920cc373d069dd19039049ad674784c946b0aef |
| SHA512 | 47986cf382b2abe71d3a7190a3a2e2714a1d1532e535c67a5ee10a1f6db34605facf5717f442f837d8f1b606597500b5bc243ceda553049d1b287b179f854968 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.CoreDotNet.4081C758C18420C1ADAB\Microsoft.VisualStudio.CoreDotNet.vsix
| MD5 | 460c51dc43223cc14e35a90dd07ab526 |
| SHA1 | 2ff7777e23a9f0463b48102cf03be82254f6e3d6 |
| SHA256 | 49e3a6cd16c20db6c092e998a8a7c78988abd536be9effff405861ffcf86a2d9 |
| SHA512 | c1e6889f6ce6520b9fed0e01bd224a93cb7b43dbb1676fad4ea0adbf9bc160b60cf0a12a5931f26a42cb21f284d7e27ad9036eff6537e5889bec5d4924e2cea3 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Auto.E1F25FFA3C145B44F501\Microsoft.VisualStudio.MinShell.Auto.vsix
| MD5 | e4a62a2c3a00f0331bbe08e80282d136 |
| SHA1 | d78aa1fbf2544381e870a24b3acb282a21d07271 |
| SHA256 | 76610914f0eb335f2b2a120cc0bee3bb499d1bbee5ab97ff63a9438371642d71 |
| SHA512 | 8c057c8655710326ed6266a953fc90c4b49cbb9e4299de748d6bcec96ec23f4178dbdff4b3c7091a30aa42a97fdda5fdf34917ee3e0dd9053b8fbce0cdfac971 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.UIInternal.Resources.FF296BD20E6B5826EBD3\Microsoft.VisualStudio.UIInternal.vsix
| MD5 | 640d8bf35d5dab922ef4ce2fc9f5d36f |
| SHA1 | 07f7f73f9f782730bd677f623fc7fde98b7b646a |
| SHA256 | 2743b414f6f572209144b6485d450a7439a220cd0b017add8d56d8d4e8dd28a1 |
| SHA512 | c2d7977448f9e3328f6e4746f77e74772c158c213fc24482a576ee729c46fa47b7c8728d58bae1aba195af2147ea54fb253a320aaa502012cde6c90c224eec44 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.ExtensionManager.Auto.91B681F4F84DDFF40DAD\Microsoft.VisualStudio.ExtensionManager.Auto.vsix
| MD5 | 6f6598e981608563007b9e22f1b1d060 |
| SHA1 | 4397e27d4adc3cb23bfe75c63fdec0fefa72e200 |
| SHA256 | 296ee89d355e0a207ee80e265f8bdd96994ee1d11958e6703b41d6215b82ac72 |
| SHA512 | bb057a76504eeb2176d87de66be026fc25c1eb6fdfb26230a1b203e2ff70bc4133af8a07b077eabebe911372b2db9797d036bfefe2843c1518f4258a0a81553d |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Initializer.1DAC8EE9D3CCAC9FFADE\VSInitializer.exe
| MD5 | e98ce28f9875c51337164053cf9e1971 |
| SHA1 | 12bf310ac49bee59f9bbba88097ab4d6fd7fe0f1 |
| SHA256 | 4291777ca6e35efc6b7c597718881e55b4301f35ca24ba983343dbbfc539a90b |
| SHA512 | fe3c221209ee7dacabf0cd01ead6c9669adf310459a6e6443664118f329f273c736f75a8066546c4dcd365a69b12bd87f5ce1601166be82250fc3f362ea38ef3 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MefHosting.89F442F6234A03AC05AC\Microsoft.VisualStudio.MefHosting.vsix
| MD5 | 70d1c54641706c5c8895f71dd38aa7e4 |
| SHA1 | 4b1d209ad55985419618c003885184cbcbadd933 |
| SHA256 | 00d0245cd8e8c6283325300f07b1368df593f8632b1fb60bc53ed1dad398aeb1 |
| SHA512 | ea59b62a5a50286505ee6f8af8e493276bb73d559ff7b5bc9192e599cf102f2ea96489a749cffc439bb378479ceafec7fe987c01687dcb7968278e7496109fda |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.ExtensionManager.17BA141DC1FA719AA6A4\Microsoft.VisualStudio.ExtensionManager.vsix
| MD5 | 8010e7692217dd819a848becedb9106e |
| SHA1 | 5d32b4506a824339530724563318df2fb23567bd |
| SHA256 | caaf1c9c8e8916c764fae9e7eeb30fe066e90b05aea106fc3f197cb8f278ad0b |
| SHA512 | f2a080c6cd51da870aebefc1460ab9ccdf2b2148b92879b81c6f45df0bfc5b30aad20cb215d75574cc660089894fa36f7ba6eecab168fd5c813364af752bfd45 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.LanguageServer.3921EE168589F1BC60DA\Microsoft.VisualStudio.LanguageServer.vsix
| MD5 | c38d5a6967178bbf79b7f75f0019c0a2 |
| SHA1 | 950eeccbb933d83c666d897db7f1a7c9af988aec |
| SHA256 | f7a55d1d11fe505d0b7c6ed9ed48edd9f2509d102e3c87ee71816ab916c1d555 |
| SHA512 | 770190794a545091c35499d03f5fcca531883915f59ffb379a5307e6bb19811b9348a68b0b5d557409432ae344b9f03618219b70f77a27fc7ee870a2cde3cdd4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.UIInternal.A64813F8025AB3FEC436\Microsoft.VisualStudio.UIInternal.vsix
| MD5 | 899c604ef5893f1e6e8e5f4e554447dd |
| SHA1 | b46c8e4bbf8dc21c8fb2c1ce7342bba620bae514 |
| SHA256 | df093210d4c65ff02a0496bb75e5e91d5d7f5164f077fdb30c3cc0854521086a |
| SHA512 | 90ed898749850bc2a5725577440cea78c48bab24e9a067ac76acd94b5a8bb8cd5ef3dd3ee920c7cdeb767aabfdaa72bbaca29f2bd093302dd70adb2c9f1b2ee6 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Extensibility.Container.3A8B96309101687826F1\Microsoft.VisualStudio.Extensibility.Container.vsix
| MD5 | 49a6b494d9d8ce820e806c8a2d7880ed |
| SHA1 | af6360e8a02e95bf88f0be7552ebfe56afc795c0 |
| SHA256 | 9d8f2dd7273ab255201fdfcbeb0c9d1cf3136e480166ea7ae03ceb5e29dc8b75 |
| SHA512 | c2f1166ecb6d383b36a5e65f95894608d519e868d08ae051513a1af3c946b7abca7626bec307b4d873b87a45672600c00bff9c9acc4efd1b769b7ba155381bbe |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Setup.Configuration.Interop.A5C6FED689D5543E419D\payload.vsix
| MD5 | 90d0b73a243e9339914005b1b2ada116 |
| SHA1 | 741a8e74825f1fa751c3c1cdfd73fe4cb51eaf20 |
| SHA256 | c2947ba80ccb2f7622e5e715e205b6aeaf71bb22af534660d761471e5701439c |
| SHA512 | 3c55a79607ba7a71ec4874e379f1cc37133464812921b3d310b36124e2864b5fedbc9e5b85776d1bd71d1f4db7d3fc7f5e3192c4f335056b703c6771be7ad295 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Platform.Editor.5690AE616CC7E3386F93\Microsoft.VisualStudio.Platform.Editor.vsix
| MD5 | e0b0594a5753eb19ad22f16e31076c34 |
| SHA1 | a31cbaed2b3561c7089da766889ac4fd105661b6 |
| SHA256 | 547ae1ed53920f254fb25d4282a57af10713dda8a7aeb210b34ea638f62f13db |
| SHA512 | 2c7e3eaadba79b11e4fa1146d0ac759f1c5df16703cc752de23c6b253f7d6f9dc5148a9633a40fc8936fdd3a5e8f9688a683341e3ecced85053e76b265917015 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VsWebProtocolSelector.Msi.7FF8B5569BCB44939BBB\cab1.cab
| MD5 | 9b93561893199b8c1487606f06757acb |
| SHA1 | 69211cd924ced6c9ff86cb06bbef36f6ed425f89 |
| SHA256 | 7f2c5716d6c30dc6558ddd748aaed2c97e70f0a37be5e2abae6cd8b4730ceda3 |
| SHA512 | 5f5d701b4a768d3204572b0bd4af2c1c82970838f79376d4b88c1b7b6acbdd67cde1543ccf3052af65849e7e6334a02ec10d8ccbacb1b2d275ee6887117aa3a3 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.GitHubProtocolHandler.Msi.CAB262E283853EE354A6\cab1.cab
| MD5 | 4d8c95d106019b1eecb50e5651f674e8 |
| SHA1 | a39af8be78e9c391bf32ec45e0dd734f6fec1a2e |
| SHA256 | 4cb3b3006332f75efbe19e225b6db817c46748809231c173cdf8036563f177cd |
| SHA512 | 1f99a6127c9261e90e07a478efd742da6b4b0396837ecfb1071e518515b65296fce2af4dbeaababaa77b8c0648f1b0e9c4e8d75ebc40dfccc570d2fc0fd2e5d8 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Platform.Terminal.CF408F857F65445C499B\Microsoft.VisualStudio.Platform.Terminal.x64.vsix
| MD5 | 8995d0de8e094a1d075e18149717a436 |
| SHA1 | d6d54b266ef1e571922bfbc44a88a56298eb17c4 |
| SHA256 | 4ba5dd4d0ea555fd1ff19f649b322b0bae4a5ac46f4b819bc2ce4bc3e14e7063 |
| SHA512 | 755ea5e1860c2337bfbf1988788033d415937e2118f39c1f8d544d8ef00325e2c92392170d58307de99a9b26ff6e0a8bb28c24a9b45552dcd429b58fcab84855 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Licensing.BDC3852E273C7D30A58F\payload.vsix
| MD5 | 75889e08bea17d3af5590e5f69e80281 |
| SHA1 | 5d4b3010fe703edb8d9c6a90cb79f5d19983da0b |
| SHA256 | 499cfb6b1726c29a3c4e92c0a81015da9fb65726df984d71b8d76f98966e3270 |
| SHA512 | ea245276e2b07a6362607865770d3a30c9e2e7d3e9d30205ab929fcce307282b87e7afa278d8c108e8e82b954a5c0676352b7b6ecac954ce3a95cd31e336dab0 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.UIInternal.Guide.48D5434E699176C931FC\Microsoft.VisualStudio.UIInternal.Guide.vsix
| MD5 | 86cc4c4ce582a1d75e298164e0c74270 |
| SHA1 | 71e966e1c5186ea1656ad4674689ecf58eaf4c0e |
| SHA256 | 5bca02557cb1fd740150b298b6276ccc23289423ea15ead08018f898f0631f22 |
| SHA512 | 53ef6209d757aa9a76706202c41c9f34c00ef9c46c353bf3e3d70693a8010e76ee41b6af3b770f917f211dd6b4cc2f908cfdc31e33180ad5b44161a1f78817fa |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Platform\Guide\Content\Images\Editor\congrats_tutorial.png
| MD5 | 8efdaffbf407c5ae11914ecc954f6e8c |
| SHA1 | e28e6746b22cb56526d207c4c314d2762dda506a |
| SHA256 | c6033d0f8a531e212ff65b4558b652f25afa309b39eec8d5ad99b0e5fee63507 |
| SHA512 | f1da670c1149043873c0bfc0098c33f974ff1131e4ca502b360f6908863fd4717ebc944b9ddcb87f719858c90b4b59226c924526b47e628bfc4ced6560166cea |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Platform\Guide\Content\Images\Welcome.Python\Welcome.Python.Run.png
| MD5 | 527539837e09fd6e8f3461b5a5356aae |
| SHA1 | 4e795a202c5196093f6ebe8ff57ce266faad3f03 |
| SHA256 | 822ca512a32744427d3d0d307a0eff7fa3b1e27c8f84b9af5c4a00865ee53a51 |
| SHA512 | e3a2363fb0c80bf66f65c7aa9c37009f0fe8218bece77d9736bd62d72af87d67aff53d8d4b7c39d228839082a3eeb74b34195d4b6f98aeb43cf7bc8fe709ac0e |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Platform\Guide\Content\Images\Welcome.Python\Welcome.Python.Run.StopDebugging.png
| MD5 | 99d44b5a0fd8c60bb3c4ea826042034b |
| SHA1 | 762eef5c36b386004f520236e09a76b0f2042583 |
| SHA256 | d0e80bce5156459548b965dcc651515d247e5ff3ef6590c3e2ece7853947b5d8 |
| SHA512 | 08cd7bac9e35a783582d8e46963809357aa6f32deccbc53cec5b4a930be036881f6cd2e631c9ef75c8580c76b073069b1216ae3aacfc38112a6d5c394a0edf31 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Targeted.FAD8DD9D4AD9230F323E\Microsoft.VisualStudio.MinShell.x64.vsix
| MD5 | 870bcfba04c801738ae46b6d892b8ef6 |
| SHA1 | b9d4acf0ab1fabb80a83d38ed339784b45628fab |
| SHA256 | 0f20fe3bb9e99c1f893633706746f8749a6a536fa66d8a0685144050d7998b3f |
| SHA512 | 728fff1476f60c02d33caaff8f48662c59982a34e982e6be31e1ec27afd006c1847cbf9205b4f0dc6bcffff2c7957d4f848768b1b0fecf344b33db0aca22d5a1 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.GraphProvider.D6EB884A51A16E550883\payload.vsix
| MD5 | f7fa6ddef62c0d98fc7f5b37b3731c18 |
| SHA1 | 073153d3d8a2c4ffc5f8cb3cdde6e57421bfc993 |
| SHA256 | 545fde52bf98ed4403cd4157a55e81e62d5d108f2e8e2061cd559e8e88434e54 |
| SHA512 | c0d2d8bc89d0b400fbd6ba729543d4e414dd4ffd51d6090a02be162a2d05e5c1852c4b66059819661c54b69388300d310e8f03c78d73d7aaa6cff52dc63f915c |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.PerformanceProvider.BA3BDCE36161EA29B2E5\payload.vsix
| MD5 | 5e243a7a381f48ab2c9e6671bf0c0b52 |
| SHA1 | ec86c4a1fea1d2d1e0311966e030d429e3d516e4 |
| SHA256 | e2d78a3b0cc2f5e2541f3bd40b196be01a7d2af5f9ba37f58f5b539c20aebfc3 |
| SHA512 | a92fb1fa0b0c86a3fe6270ff1274c2492f4c09d54784903fe69178cd98d2ec11e883b262968c01fd8c6e9f68eeb275d505a5f1e99c34d6e9ec4ea8f34ea7e86b |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VirtualTree.0751D50E674264674751\payload.vsix
| MD5 | 24a49323043e7be49c2cc8ad64019380 |
| SHA1 | ada87dcad168d1ca416dae3c21aeb55198d913ca |
| SHA256 | 8d5a50b3d8a76f1f8afcccf520956c0b38f6867f6693dec152b4bb7d9ca20843 |
| SHA512 | f21e1b9130e460a178d91924181e06981caf25564e6fe5cf428fcd2304a5279b8a90059d2b20ab00e1a612ceed2a3e14e83ee829442b92b67806289bd14263ca |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.GraphModel.09A5D276279C52E164BC\payload.vsix
| MD5 | f34371c710e7a9fd5bba926e697b9131 |
| SHA1 | 198885fe197395e835a1cbca7f79ac331446474d |
| SHA256 | 25027941a3d8adabc24f065ed88274758f84d6b4d54e200e8616be0c398551d3 |
| SHA512 | 46488c5db579da8566a2b3bbade5d9849143f551d0e156453bffdcaa31bd9989e472caaa80be00da0aa4f00677b4f84e802c91790d889f9c0dd67567f9d05d1e |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualCpp.Tools.Common.Utils.Resources.4761E2A26318FD0DB8FA\Microsoft.VisualCpp.Tools.Common.Utils.Resources.enu.vsix
| MD5 | b6d5492b7312bec9cbfc9ed64c37c4fe |
| SHA1 | 9e70eebb975d1faf7fb8ae42882c8d54630f388d |
| SHA256 | 1aa72bfab0e259ed14d5bbf404133860037db9105c44bffc7fbac9ffd3157b3b |
| SHA512 | 2b071c5d6f205664c90cfd201c31d569999cbe51812d867ae9a2c32347962b5dc3b4c6ffb905cc1d99d029671bbde5462a910ce874a54c5a6fbc8aa10e0c19eb |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualCpp.Tools.Common.Utils.FF19C38604D301D61C6C\Microsoft.VisualCpp.Tools.Common.Utils.vsix
| MD5 | a73b692781b2bd97fefd3b4de073bbc6 |
| SHA1 | 80911662f79a487ecd08a791d6c49a8bb5e06ba2 |
| SHA256 | cd20161a8a51a84447746bd91b551f18ea29b3083103e792faf707ab4cc9d0fe |
| SHA512 | 36142f257133fca31dfbc1ade627b0c9625d44a344dd15f59869bd077237aeaa12284e046da78fe6e7e77ec9aee83afc4f85387c64c67010c7e8180b3e893714 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.IdentityDependencies.B1C1E5FC4D5A7CD895AE\payload.vsix
| MD5 | 2e35d355471e656fa5ff922490d457df |
| SHA1 | ffceec5729f3c18023cec1964c1b3cda8df64a29 |
| SHA256 | a052be566bd55b0479f6ee29477a2b12de5a3ef6b5f950ee293592bce7362259 |
| SHA512 | a06a72cfb5343a51ddaf51c55d9d4d048548186698e351a1f354f717e4a4f9e14d4c5f76640d05e8596e857f8c13c58da91b6689434f70f17a2a6c1143a83e71 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.DiaSymReader.5D90D2D09EBBB5258B34\payload.vsix
| MD5 | 8ae64176bac9528a94e02c89ef009dac |
| SHA1 | 48741c896564c6d6993cd43b0f4f07216a664177 |
| SHA256 | 8d39446c026a1bd0d9e556a0eef1a55e386b0dda82947ab22363b07e16beab5c |
| SHA512 | 3bb5af9232a491284915829f348e86a75a1e59184fa436e6c6eb137acfb6f76b75bb88e99c661e1f673298c62fba216abded5252c4ca0ff6464d5e1f9b05a7a4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Connected.Resources.041B787151FE023406EA\payload.vsix
| MD5 | 29ab6666180079dfc80c7912995e5053 |
| SHA1 | 6e529da5575b1a2fcc7f0e251e3f3ebc6c373d2c |
| SHA256 | a52fc6ed54bd6673bab1e24d5e70e3736b45673e7c5be077d1af568073c3f10c |
| SHA512 | 5f041b7bc29a8e7c3b14f1e4c63b49543cc60d56ee4769ffa678fc0e0ff63ce0d982a3246c2fcd71d99b83244875a472e840d94bae6034b04a8620fc62f5e4f0 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Connected.Auto.Resources.D099C7B480A1616A629E\Microsoft.VisualStudio.Connected.Auto.vsix
| MD5 | b0c1ca62b02355901630303712f27a1c |
| SHA1 | cbfbf9fd1ae072bd2eedea6f22d9bdb35a7438ec |
| SHA256 | 7c3a7b860535a5733373e8a20960875ee9266a87cd5d359bf2f4f2c06574616d |
| SHA512 | deef0a14fb6859bc1a0a97dad5f69ce6212a1c24d3133b7627a073e0731a5b2b040a0299049535f9a30e9291cf61b9a823b1ab0dbac269c70e54b96be86a627d |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.AzureSDK.C6B5C8DABB24F91E807F\payload.vsix
| MD5 | 37dc5d87e6bea49baf63eb258e06942c |
| SHA1 | 03dae37be7e41ab26eb92309cf88610b2c43fea2 |
| SHA256 | 3caba6d77ae562eb31fe9fa03dd5072967a91326aba0a419d1e72973f11be868 |
| SHA512 | e5ebb31ee40796d720bd34bb32b6f1946c26559961b6355bde7de9341fb76fa467ce52166f17ac8897bb871531663fb7c24a9ca770737b9a347776fb1b06ddc9 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Microsoft.VisualStudio.ExtensionEngineContract.dll
| MD5 | 0da1c9507bffe342efaad5a9364e7b43 |
| SHA1 | 0f52c071e8996949ad4b3187a9d36632463ed702 |
| SHA256 | 57acbaa1cf9e6ed6845a68b6b6c255579e26d6ac385dc015d8a7f9f09728fe48 |
| SHA512 | e10b7e3330ed8e0f21740c80f6c403c572c7415a96dbbd3d48916f4ce671502c4bf5362bffdc731ac64c38c10f3203cf6d85d11bd1019380bef64ee2fa28100a |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensionEngine.dll
| MD5 | 019b6f06555e4485c1d0119973c475dc |
| SHA1 | f74db51fff7b817afbd1b4ad7042a3c8530ba2a0 |
| SHA256 | 79c99273a7952fef8c3ff4329a2cde6f3404132db0a2fd445fe9d4c2e6f7d341 |
| SHA512 | ed3cfb15d2b1f3efb52962d225d1881384249c8c7e27546ed3c75d8e87d4e8d546c771a56b09d57e253de272c31ddf3efd869d9c00e294094fa67be242297cc4 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensionManager.dll
| MD5 | 28b405e4331914346fe2bf1d32933e22 |
| SHA1 | 669c58c09caee74bc572d54175795b19506034bc |
| SHA256 | 82d776b4d1bd3bf65baa4a0cefe24183a52e56f6f35544d37d5a988566bf6478 |
| SHA512 | 8d9b4b085b95534f16b1e11357f1a70ad3add7c997eb1bb827eb6ac36cca1cae332801f316c688188d4c6722102fa8f9a7a86d423d295491e367aa137e382c1d |
memory/5384-3886-0x0000023B83650000-0x0000023B83668000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Connected.Auto.0DE45E0AA2588373944E\Microsoft.VisualStudio.Connected.Auto.vsix
| MD5 | ffb701c58627cd4a7737d4eeb570ae1f |
| SHA1 | c77c45e0c69ccf7cfde76e29ed717e449bcf4c87 |
| SHA256 | 616ce3c11689c4e5444b989354cebb229201bde82f3de9b3f31abf6133da1e01 |
| SHA512 | 46d16c33c7e10bf0d294fa55415bb85a5c17837d28594548b30a7aec8c2f7ab5dd84943e4a376b1de10db0174c34c393fbcba6d702c067637bdeb60f731421ed |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.PerfLib.7BACA37E162B3962176A\payload.vsix
| MD5 | f3bcd7559478b6970eb3ec9742ef1acb |
| SHA1 | 3a192e08f544bbf5155331b5230f013fb0af72fd |
| SHA256 | 25056d041582fcf47e0163f4c67c4d344faa6c03f321e09460937d998a2a1777 |
| SHA512 | 6cf49089d6cea29b62da9c3d9857b26e8ef94aa0a4aa4692e0830ac157fe12f5dbc513baa346b99d27a06b035ca8e0474d2cbfc2c56a9dedf5de0407898b6fe2 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\SQLitePCLRaw.8BDCB16A293EC3CD3FEE\payload.vsix
| MD5 | bef95b534b5cf6b1e0bd8c4d080486b0 |
| SHA1 | e1feb21dcf6f39fad6429f591c21ccd179b76d5d |
| SHA256 | a78a7fb7f80dbd01fe018848269e946fc174a480035f492614dfe64c6789b593 |
| SHA512 | 168033a390150ccc32e20973ea21c70fa1a1895a887f2f785a43eba64e878064242e7781ce204fb7794c9a66fdbb43dc8e1315d2da02edd694f49700fcf9f054 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Developer.IdentityServiceGS.1071EA2C4ECAC5734DB6\Microsoft.Developer.IdentityServiceGS.vsix
| MD5 | 90edf80f91bd4420c9ba532541644bba |
| SHA1 | 2f587c530edd985bdfaceea17210a7d307eeab18 |
| SHA256 | 833beab2d651ad1eedf1ea72084f5eb436991c54df3e1425f623e718838407e6 |
| SHA512 | 6259e9d59e11fb876f63d8064dd607460a46c2b59715431e845455deec5d0a41e65b0c4373da24c40ef8d435910bdd292551fae3c3b42a191bffdf53099711e9 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\Microsoft.IO.Redist.dll
| MD5 | dea7ab4b024cff3e29c08da915324586 |
| SHA1 | 30f4ed0eb4e1a2e4900e4f133ed7c09958d91498 |
| SHA256 | 6c94ee150cacf59561c1c38bf20e0d9799de5da6ce80d964c83c3879d84100e9 |
| SHA512 | 47673e2b02ba6496899a3125a3992d37ef70fececcb00d1ab475732bfcc014ae803dc0e7c857fe0a3fa40c4f04b6cd2bea2d20885aef8f2a1888728bde50812a |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\SQLitePCLRaw.Targeted.73B4B1E53C5AC6F557FF\SQLitePCLRaw.x64.vsix
| MD5 | 0db9f29b43ed8edfc5e5f6d5bff1deeb |
| SHA1 | 617761833f32409ff0ff003b5141050066d5733e |
| SHA256 | 13531092f2c8b2a6037be06b5020b4a03e2d6f9f15e24e5b8f370375e0a864eb |
| SHA512 | 7f68258457a2307411689b2a845b50032f90b34d3cc23d75ee7ac32c026824728ea026d160437a4b42ec66ac40f2317234cbdf88b80d437e852ac269f46cc397 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Platform.NavigateTo.B2D206E53CF4F045832A\Microsoft.VisualStudio.Platform.NavigateTo.vsix
| MD5 | e706c5e8f46af6aafaf6bdb853373c40 |
| SHA1 | 660fb991917782c7345938da414aac2b48372bf2 |
| SHA256 | 7fc7b63c4cb2ae50e2e949da1e9eb86379cabc04d31fb4dcfdfaf5bfa3c4f51e |
| SHA512 | c03fcb983037923ad4984b33e95665390ce383b9b728ffdbfe66369173ba11f5ee45170c8b71a2cdc310f0237892c322767e4c1c7f1ab066a0005958b0a17fc2 |
C:\Config.Msi\e5b4932.rbs
| MD5 | 23aed5c4a8d62a07b1ba708d618710a7 |
| SHA1 | 93c37fdb58bddef2a8ca082d9cc6b58a45f236a3 |
| SHA256 | d18384e3581eefa21ba999b90628e72372697af94c4ea8ded31e97b5b4290992 |
| SHA512 | 0cb66d57789899c3b37f5be289d5bf19949333f39b046c79f424cd0a27f9813dd978124a4d351b21c089bd973bd7a49ced77403bc227fe27efa392161ee746ff |
memory/5756-4293-0x0000018B7B5E0000-0x0000018B7B742000-memory.dmp
memory/5756-4292-0x0000018B78F90000-0x0000018B78F9A000-memory.dmp
memory/5756-4294-0x0000018B7B510000-0x0000018B7B5A4000-memory.dmp
C:\Config.Msi\e5b4937.rbs
| MD5 | d30eaead9f65a4dbc73b9207859deee2 |
| SHA1 | 54df386accc17e00ebdc850113f4816435ca2df2 |
| SHA256 | 99e788c07f7a053787bed4baf30e6d95a9d11e184f9b2d0f0b0e23c77ff20faa |
| SHA512 | b374fa490c3f4f0aad8d688d09154aab0ffbf1e553588828501d6468ef872a8f8ebd15fd501eaf15769199159eba984d35088f0fba541b9276f916ac56802ca4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.CoreEditor.6625D1D857FE85A4CDD5\payload.vsix
| MD5 | 9be582bf07299bc1a483536a5b48ee58 |
| SHA1 | 3586105301d6d3fd99401bdeee4d3a96a503f1fc |
| SHA256 | 1e0cb7b1aad40855fbb5f07514f8ee8c5c089f5dbad4f573fb9f36d66a928264 |
| SHA512 | 8ac8a668c3f1c0350000a801c0c4b388d60c7a19b16fc8a528eed79a12ca038a463c3436115edf88c87437eb5c0f23e81e070416f181dc425f5f631eaa9287ae |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Devenv.Resources.49BED5B3DECC99DF7FB4\payload.vsix
| MD5 | 0e67ad1fc47cea1bb21ad86e8aedd4c6 |
| SHA1 | cd33870998c844319c094f0a34ff2cc4b4061c65 |
| SHA256 | 4cd331407cb8a3263526c7e208f8c2a4a37712057105235124fc9693845833f2 |
| SHA512 | da88bbadbef6d4d872489978a1cfd04c71367b328b53f64a1e4afe756901ddbdcd4a8dad544d5f6bb91436e4f3d31671ff13d28a8d44126e7f1b01725ab1dfaf |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Devenv.3B132BE14743E19EA5B2\payload.vsix
| MD5 | e8ed46b0cbcc543b7dd95a5fddf952dc |
| SHA1 | 80f9be5c51ffe8be9b20e504f8cc0bae8a355c7f |
| SHA256 | 99680ddb436bce4c94dc70cecaef2a8956bce2c9d4d7232acb2fe354c2a66f2d |
| SHA512 | eadf8e53f1489517e2998a8c6f4131fb0747a23de4fb642b8769ef78bd9450c098bcfe05510650d98bfd81701ed3851ba203829551bc86115aee88c6285201ed |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.E91F9B2F69F7A2A64CFE\payload.vsix
| MD5 | 537e4afd9987e12f3cf27391bde36595 |
| SHA1 | 8209c8cf90f2d483349ffd842fdab4054c332f15 |
| SHA256 | 7fd3f71dbc79e4cef46147beb566d38d368e9f2b9cb7f8c316f770565267bc98 |
| SHA512 | 4d25848e4e12b4ab5617bbbb2050e88864e8f1a5ad90b2ec0a33cb096fe1ad2e79548c615b28d806c7c6e1cd64a38077e076ed1bbf3b7eea47739ec69882b477 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Log.Resources.9C275DBC3EB2FD375454\payload.vsix
| MD5 | 0c6f361b1b9165c03ce8492c7af4cdd7 |
| SHA1 | 564eea13e2ea9b07f32261a3d62ca22bbb605b40 |
| SHA256 | 56c4411421b4ff6758bf0c27efde9b95819620d15d35c11382e2fc41531721c4 |
| SHA512 | f81d50f7dfad87fdd676d5f2d536019c68b2bdc527d5fa166f45479a1c97558122749ae81faa0585e034a9a2203a91f945b286ced2c7e4899d8b900eecb769e5 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Log.Targeted.0257522A08F884A83BDB\payload.vsix
| MD5 | 91fcb5222e42b356f94d1c5f48e90b5c |
| SHA1 | 78b4227998917336801839fb5f32082f8be7d9d7 |
| SHA256 | f7a3968b6deaae662264e7e3c5f6b1b7d28969ec5c3f43e034cddba1f72e6ae2 |
| SHA512 | 2fc6e21c7b1c9ad5df7d574f32ef54311ef5ead658a53081ee8082cb902628bb5d40f20f727a5c511e1c7ec727124b98d2a94d9ba135d87515e32e3da689167f |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Finalizer.B1599C1BCAF8275BB076\Microsoft.VisualStudio.Finalizer.vsix
| MD5 | 8a05b41329400bbf837c48f948dd09c5 |
| SHA1 | b841424f13ac960874bc7b6125487707bf532520 |
| SHA256 | 67be0cb825cfdd42d31a638bb75047f16aa5534f393eb64c27d13637b255ce6a |
| SHA512 | ebef013cde09d9cb729b6cfc3a7209b49d9b5a6a8a713db41b0387a2307366d2b0ec70fe03326ddafd8b04f88eebdb7c880d59e69195d0b85077e43fcf260b6b |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\CoreEditorFonts.310177BC7B20B281443E\cab1.cab
| MD5 | 0205522e4a80ed920bec57dd81b930d8 |
| SHA1 | 4ef79b10f276b117b84b306bbddc47ca0a642e4b |
| SHA256 | 2f062ee1e7b90ef9a8e560d81da73ec979de56ae27433f94a86e4acdbbbed58f |
| SHA512 | 26604af10fa121a9850a8f75b45125b101494ad0364eb6426483763cef52bf315546fc1155502d40c7ed74e384ce9c5154c041e04a259ea188397c2e115b48d6 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Log.014B7E878FA54B6D214A\payload.vsix
| MD5 | 4c7eca2331600f6aa974758bca025013 |
| SHA1 | e10c3efa150ecc879b4d23638e76d2df2e726ee3 |
| SHA256 | cc7d3739a8d9aa5516718233dfc44262e8c017f3099f23ecfb47208628998ae2 |
| SHA512 | 640aa906da03dce24b0a102bb793db72e873790a3574d144a8c58bb1f0b34f165140cd3e9e778549788eaaee4a9b25a232efac1b0d76609187ab2e9d61f7582e |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Interop.8FBC66924A2BE01C428F\payload.vsix
| MD5 | 6547b00c37a8394d445c040279c3f55b |
| SHA1 | 611dbc33178c793befc2d5d6b0c048a773e57ffb |
| SHA256 | 33d8ad9d868a6535261346aece122d2b6e84ca5db2e7cc2703d5003f89c03442 |
| SHA512 | 76bc362d85bc4311cf3ff6f5343e36f2bd2d4e0dd4944f5f84fbd10f657a84ea47033281deccf8cde73c061561030182defddc7a7ae6f51887ed7058cedc97b4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Msi.Resources.43EEC223FE8A25EDCA47\cab1.cab
| MD5 | 9c69fd93ca162ee9da0f6a229207428f |
| SHA1 | 677bba11ffbc55225a15b4d9c09135a8a03efda9 |
| SHA256 | 36931f958c537fbf43a17cef7e5723bf7278da2f8e5952763cc26bd9af202d0d |
| SHA512 | 38e07e8f0590ad89b4c0dc274ce8706ab0e833dbf409a86a5936fb16edecebebe02d6740567d064faa4a7d4c2ed3aa614f6ca87d1b9d3c8a3a74c812bc8016f9 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Shared.Msi.28C5D3054C400A7B43A1\cab1.cab
| MD5 | 0e3b5284d433e80a931a326c5409ec8e |
| SHA1 | 9d30a22e338ca7bb8f01a1d1c9fe07c950b9154c |
| SHA256 | 1eb1ea39081244932421b0cad147ae2b87da6d990a2a4d00128eedc2cd3ba527 |
| SHA512 | 4e692857f2d7c8b706747d2e627c054329636cc935471db6b5be901c9907ff14085b6d9a27f16930d32350438659f72f0844ea444b3f56dab5f3177bfaa64e2c |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.MinShell.Msi.77A0311B534856BBC471\cab1.cab
| MD5 | 99330c202637d9e0d66e7c81ae2757b0 |
| SHA1 | 5bff742ff5afeef1646cc434e7c6f2501a854f80 |
| SHA256 | 96a56194b5d61b32691f04faccc7f759dbc42d848209e5ccc3f95aa8480de4bb |
| SHA512 | 2148db4875990d96309037ee98b064845dab75e2f41823588326b8549d3564e001283da140734fd6f6d05d81ecb0572f2ed48c4c2e68ce3d13d52c1083c267a1 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.FileHandler.Msi.E0D9C40FC714B2206ACA\cab1.cab
| MD5 | 6f046f1b93a26f277a80344d2e5385bd |
| SHA1 | f9ea812b464b444bca4f1c132da566c6fe33c9ee |
| SHA256 | f8fb6c945e2ff62504624f873b5f1933acf8dc7404efa7deb4d3bb8f74b32dcf |
| SHA512 | 7d4e2a6aff61d47171c6c3b346892e28b8d4ce7431608e469b3f2d7b9fbe0ff49250e00fcc5a88b62fe3786c1dbbfcc0b140555d79232f86d6a70b7392c71551 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.FileHandler.Msi.B4224A4E2CB5A35110C8\cab1.cab
| MD5 | ea8ab986650928f343bf9066e748186e |
| SHA1 | cbe96b3f3dbb653e5106ce6e323a0eed86b914fc |
| SHA256 | de7087b0db350ec7a1257d985c96081d522b737b1390c117825d50b21a105265 |
| SHA512 | 04d80fb541c87eae97b7d2b4984c67b6bad0ef851d586db858a9186a634a66cc99d38ca25c818919078221e5a7a0172726ab4966cbaa68a646a0660f7a590590 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.ProjectServices.FD3471F0E8C1BA3DA913\Microsoft.VisualStudio.ProjectServices.vsix
| MD5 | a38060d5eceb9616a0f602b1357a9d49 |
| SHA1 | f71272b63b305db851465f2515623327bf3e8982 |
| SHA256 | 284674981563cb7932efa45093b062021e2eeeb1981b61601edca53ceacd879d |
| SHA512 | b187d0d2939dc86969dd47464d258a53e6d823b3ed789dbb3f7952013439d7ff5f468a0bb2e2cccbacafc85ad34c0b99fa5be9ab5f742c6d91b653e66c7a111b |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Connected.2231D1792642F6EDBEFE\payload.vsix
| MD5 | 77f3828590d085b4c44a0eb373e6cecd |
| SHA1 | b190a8ac7ecd42f5386c36291b3d93eea30e975b |
| SHA256 | 04b6a26be99e3cf77ab4552be2eb7585a359364a883632cea00a31b397a67219 |
| SHA512 | dce8ef71ec7705abe4012bef8db28cbe985b61617343b10d61476ec6e2cc71d7ada1bab2949b526fd28773482452d54ac07ad89d1a208bd421c9345314073805 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.ServiceHub.Controller.amd64.8DE1BB51C7344FCBDFE4\Microsoft.ServiceHub.Controller.amd64.vsix
| MD5 | 22dac934d59a6643a3929bdabe8b7f90 |
| SHA1 | 9efe45383b446814fe1c344e59007d4a4f6b8e96 |
| SHA256 | ce0c7db89983593778152443c6f9e0c1f7ca5d82106115cf55a3a978410dc9ab |
| SHA512 | aa67ecb5624a2a0dd1357c75797c47562d760dba5629e6e5d023aca1b60016dc194d064bcc2e5b8da1074b0f44ffb1eb35f2d1fcb65d73b7fc9a860c92069f49 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072215_2434b77a938d4c86a9c99748aafa912a.trn
| MD5 | c289e19a24b772014c6875c60e8482ff |
| SHA1 | 9565e09f614ab435eed0cd3f07d37c41cb30b1fb |
| SHA256 | 7a05b8e46f8ca4aedf78cf4a5e7557112eadc34bb6b20f35d9ba804f321abd79 |
| SHA512 | 77ee7ff2e6bf9f573a9e2f1bde6cd6b6e380e71f7a17a2fe3487520b595faa4d7efafd38c3eb8b54404c8ef78f5f88fff8f88974f0f5d22ed456368d1bbd4e29 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.OpenFolder.VSIX.73CF2568F2B2BD785C59\Microsoft.VisualStudio.OpenFolder.vsix
| MD5 | be6d3f0995567be47f27ead8bf1dca76 |
| SHA1 | e837261c18c0150f971888590ff166aa6433e22a |
| SHA256 | b7d56c285ddf75920921d736c8c342e1de69b35d2595c4fc508910740d4a92ba |
| SHA512 | 46c1c0709137ef78edb20b84d8c64559ebdbcbc1bed24d524cfd4a89fce9f3471ece5a6e61ec34564b1e9c03e6dcc0ea5252717ab4d8f4747819d1fcd37a80ff |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.ServiceHub.ExtensibilityHost.amd64.275ADE86D1D45F628C29\Microsoft.ServiceHub.ExtensibilityHost.amd64.vsix
| MD5 | c33348dcb6e5c83dc47a647cc49e5874 |
| SHA1 | 04c3f687aff93dbf09a1f7f092d70fe6b18d8938 |
| SHA256 | d6933b601de452dbf8a62abd1f245043da0e544fa0ae26a8a5be84a513e111cf |
| SHA512 | 33a0045522609e5c538e0eb5b66afdb85d6c1f90d90e27847d4965e6a378a00a506ff1597906162e6e208cb6b3d4d493d2b2ad9a90ed0e279a11417d733b9c0e |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.ServiceHub.Managed.BE190645031B6DA5B97F\Microsoft.ServiceHub.Managed.vsix
| MD5 | 8b4789bda51eb3a0d61a125ef9a3d999 |
| SHA1 | f32deaef2c89522d3559e0f551e3b4ce94f889df |
| SHA256 | 184204c6d6cf32d590df6654d1fa848c6bc2744e17a4dd71b63be5b4f6ed7f77 |
| SHA512 | 49f15e2da0d95b8aca44893f9401e12def942e502b109155d49fb348754289653d2a5de94974cd11c240374fc7c400c4a5c5b3cdb71922dc2c1d7161766d16af |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.ServiceHub.amd64.F12EF408C17111211C44\Microsoft.ServiceHub.amd64.vsix
| MD5 | 811eaefbc83359a17f46eb5be2cb2af2 |
| SHA1 | ce9efefbc93d38a933f66b95f88780943aeb03ad |
| SHA256 | 0dc1720bc84893b2f16810272f32fa747752774c78887e70102299e1c97ebf74 |
| SHA512 | 9a7072874f6840ca2fd2e1f091d8b77f4689b740e8b691d2663b5885ddd07df60c8241a127fb1319e69c73e534a7f7c524aacf2c5e2884b1b44568b2b45206c5 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Platform.Markdown.29837D3A7A2DC8F18166\Microsoft.VisualStudio.Platform.Markdown.vsix
| MD5 | 7d03ab9b40e8b85d783ef4967cf508db |
| SHA1 | 0a0b310fe05b885c9c03dff23aba7cd2d92a4e98 |
| SHA256 | 583cef9238ea123ecd6fb6928988026bff215d80e07d6a86d0624ba0454ddb0e |
| SHA512 | 6755acf400ec3740f4bc4a37e9f48293fea236f4986314f5fe55ac210a02525842d3485fa003d370fec54f7501b8e09b0fdaa83a4bf82d851ebeb90c9ba5942c |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.TextMateGrammars.13BE968C251A610F20ED\Microsoft.VisualStudio.TextMateGrammars.vsix
| MD5 | 9b429ee45cd63d942ef9825ee0ac9318 |
| SHA1 | c525005f2ace26f809bbf9d47dc330f0a09092be |
| SHA256 | 53dae57de8418e6c4b0a20eb71b038d8e9d8c9f575a92c075bedf138616b8117 |
| SHA512 | be8b4502c6c16e7dca591ed735c50461559de1894dddd70da8716481b62abb262bafaed0eb4a3e39f2203ee9ba467e4f6230887e5a2fbb7234494654dbbb5657 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Build.UnGAC.1F93636E3DE0F9E8AF34\Microsoft.Build.UnGAC.exe
| MD5 | dfd5ddb2c331de413935ad856aafd7e1 |
| SHA1 | 4330c9dbb87e86569446defdff5d28d79d2d1081 |
| SHA256 | 73abfa624194356bbdf2e03989c415f14b637d30cffd1a6d5f309ba7d84d053a |
| SHA512 | 8d3c87073fbbd666447fa0913f10b04c42026c46621fa25d9efad52ac190f0748a251d0bfbc8348f37a52c4dfebca36f758d9f4e65fa5684d62b79523ae22c3a |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.NuGet.Core.0A907DDD470F6910F45F\NuGet.Tools.vsix
| MD5 | 18dfeeced5e0660172a1afea0bb22b21 |
| SHA1 | 81b580985aeb7daf724df1bb0e661bc0ca63133d |
| SHA256 | 401156fb05ad38eafa490b655c75e8cf35b2f45a8392b9cb2a661d70e901980a |
| SHA512 | 3d6016366e4bd024c8619333b3ba563cf2f02febc1122323506b7f68795a87f8c76e610d7c555aef926917683f8f9b1b9899d3d34626a102211f6b75688dc006 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.DataAI.NuGetRecommender.0CF7656F7D5DD9A2501B\Microsoft.DataAI.NuGetRecommender.vsix
| MD5 | 247c52c1906ec9227469764b5466942a |
| SHA1 | b988c0f3c694d96a2743b5b8c7f43eaff6bf1ddd |
| SHA256 | edb9faa4169259775e72872e19eab855b379731f3427a3ff0de1175a10fee2fe |
| SHA512 | 2876948d5052692ecc30a51ff439e004d3bce30bca7b87d0dae9f1b2133d6d16e100b9ad3655c7f7ee4a2575f988e8dacb3b0d4d506b8d73baddffc3b3589f6a |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.ServiceHub.Node.5D8F15D0982BDF166877\Microsoft.ServiceHub.Node.vsix
| MD5 | 7c2105e5821443cd3af29e3fa980d7ea |
| SHA1 | c289fe3134575e4a57ada4f3d81fb65aac3b7181 |
| SHA256 | 9a4a3212c8c6ad9315f2ec9cfaeaa5695e9b53159b2342f06477ffb968c90ac3 |
| SHA512 | 41bc2c29c9b7007a3a49fb5badd17b280831dc536d3a517e5c8ef1d542b5938ec3eda9523498706098bd3cbef9541c64a0787fadc4861cc153d7f3959accc0a4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Net.8.0.Runtime.D25618C77C1C66026DBB\dotnet-runtime-x64.zip
| MD5 | 82ea3d7623cee4a47c36e4e0b5279d16 |
| SHA1 | 21c9efcd6ef12ef3ad94912a6cf5ed756fcb61da |
| SHA256 | b0002d1686a0b23e7a4008f4fd07745d8257d898d12ae6722722dd8264e8a3c2 |
| SHA512 | 1eec71f0a3f1e48c6393498c914b9b12d89fbf6916a0611e82c9a43cf897957fc19cd4671361bd9d2c771645908e84f47aba2e831e9673e7bdd5a39e09f37c9e |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Net.8.0.WindowsDesktop.Runtime.F45D2F46E6DD71D8A128\windowsdesktop-runtime-x64.zip
| MD5 | f879f020758bf150e98657e93b3a789e |
| SHA1 | d9a259306e500734d6fe05c5e8917735d5f964c5 |
| SHA256 | 54c01ce67b337443f56e5d4e07afbc78226b80ce0c2c928a572aa9b030665d94 |
| SHA512 | 53edc5cbabab50340fc915b112afe7c25739fcb19b333cdd48339d38f4814cbd2b86dc996e2cce8fc9ab917cb9f8019e5e81f752a435cdccdc45a512332bb1e0 |
memory/1120-4586-0x0000025FA6660000-0x0000025FA6672000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Build.FileTracker.Msi.14A2718306F4CC40C039\cab1.cab
| MD5 | e79ba52f2d050d2f63e37cd64748257a |
| SHA1 | 72c7d97df402f87b4143c14eed5e30918602b4a0 |
| SHA256 | 5c9752d211b09d3d759dcecff56f918c9e559c0fd0fed2f128e7c9f5734f0eeb |
| SHA512 | dde89b83068df9a1ef713ed0b83f8545876c5c6325c204f2649a3ea3620637daabee9fcb03e012f2facc51f1c40e593e81f544b8bfc3aec79626399e0847c9e4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VC.DevCmd.Resources.BBC4C645C34156E79C0F\payload.vsix
| MD5 | 810b8f41b9987796f6826f9c85585b25 |
| SHA1 | ac34872b8c3dadf2429c08d70965c2797a38292d |
| SHA256 | e714a1478eb3b91bfa44e13ea90e9a011b0fc00a117bb78b01fc3ca0fd069cd0 |
| SHA512 | 1962d1b6ff8bfd16bfa404f38c77f8dfa958aafd06099814637a03ec484c0c7c461e968af39e2548c08b8ab8585bf33880276504efe16f0012bc54d4a6b351b4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VsDevCmd.Core.DotNet.2BDB46CE79297401E664\payload.vsix
| MD5 | d820af6442e98e71a8e94bed64194163 |
| SHA1 | 72b836d1a01ec4ea7f4a1d41362a32a66472458b |
| SHA256 | 8a0dbd9fee718c349c7936611537c6a74f2c0ab81cd2f433fd969f1e77c18d51 |
| SHA512 | 27362aec904c697aa778651255e7c99431ce694d0d9d6701c499f124305380b35a61bcf7e118b3ecb52514dc269e84ed3b709186db9d6e3fea2eb985fb1928a9 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VsDevCmd.Core.WinSdk.DB6FB0FB59B1EB499F78\payload.vsix
| MD5 | d4abda2efdef7d882f60887c6f422037 |
| SHA1 | 8bc8ac429f8f60ad8a987fe06036ccbf47f81ce2 |
| SHA256 | 8dd56a5709620470ac7a94d216a456b4f0db2f7e320da48ed4223740d9b4ec63 |
| SHA512 | 5c3f9f48e7792c3a3243bd5035cf803d1ba3b80981f192377158b5a7d4e883788812bceeea8fd69871c840fffed838331bb56789a39c4992c4230919fcf5f894 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VsDevCmd.Ext.NetFxSdk.D25DCC1C63BD874FEBE9\payload.vsix
| MD5 | dfb18d98e46513fac705a4ef43cbf539 |
| SHA1 | b3540022e767c924a2f572890d85e8a3af43a391 |
| SHA256 | 8f3c1898d4741eab3911ca01df2a2b6e9f2a991aea3d3fee342e5d68a099f1c2 |
| SHA512 | e214e77d415fa79350d3debdb2529487847a9676214543be4ef051e2dbc74b0b63bfbc92776e5f73050e32790e3262e6833a4923f390381ec97190aa7574658b |
C:\Program Files\Microsoft Visual Studio\2022\Community\dotnet\net8.0\runtime\shared\Microsoft.NETCore.App\8.0.4\mscordaccore_amd64_amd64_8.0.424.16909.dll
| MD5 | 9054162237aa8056f78a7abb33ae3849 |
| SHA1 | 581fcff2742a224575c995f04b2eaa58c2629842 |
| SHA256 | 47aa8924c73f42aa5673431004e777ecc3af8f407c78b2da2a471483d7c1175d |
| SHA512 | 86685a4f876f7331c6bcdb9ccfb28569600619c36bea944cd3ccec35c21a23bcd32af6295e93de12508ff6dd0f1acbd6f6c03f6e81bddc14fa7d287c5c5bb9e9 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.VC.DevCmd.CDF7DBA51A5D4F898038\payload.vsix
| MD5 | e5a88bb47d856372adbcad0412fa2e66 |
| SHA1 | f8b21c4f740a2f6e8da063b6999cc828977960c7 |
| SHA256 | 4c843742366e7e4160f3757b392c03b2ba3b20b1d62092eed743b104b1369ef8 |
| SHA512 | 585b0b542011ded9d5b27817f0dfefe1fa862f0cfc1b6ce064d9cfd3f1bfc6887c68d651943f95434cc7382fbc655086153ee223254d8911d45765034c390b2d |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.ScriptedHost.Targeted.2EAF4D1F5DC098EAECDF\Microsoft.VisualStudio.ScriptedHost.x64.vsix
| MD5 | 9ea6355cf1801edb95d49bb2835ffe52 |
| SHA1 | 176c351327bef019583e4105e92efa40a09bb332 |
| SHA256 | cb9c11f9e0d38216df31d1eb3d83edfab0875e683a9a3f0e0e5572941a4e32f0 |
| SHA512 | 4e14ef38295c2e3ee4c00bf7fbc4031935ad185bac9067837706fffc79aa7767fe5a395831d3e402feb7a064aff9fde450ca0bb822fbcc66a397df3be2b0f349 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Build.Dependencies.982065554EE00A6673DA\payload.vsix
| MD5 | 00bb311428322894a8720d3363f27a18 |
| SHA1 | 9188ed84d446323af1eb48cab250485689df4ca3 |
| SHA256 | 711ef9f2de79ab7089caf0e532163c807ea68aab3d86cd4fb4da2fbb782feb47 |
| SHA512 | 16b33557447bc8a5ec6077c7ba284c3a3e76922aec4b22c93422685b80f93858619d86f7f2d6cf31b09881afbd643de08b99166d20cfabd33df6438e72e2e590 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.ScriptedHost.BA46EF070F02B696E545\Microsoft.VisualStudio.ScriptedHost.vsix
| MD5 | 10005f461d08b976ea0bda5b1eac9f60 |
| SHA1 | f237eefd83bb9410b9dc7a12a7acdf78be57c552 |
| SHA256 | 4cf79a6e185db2faa455c185fac85628f3ff33e7d325ede851c9d1d853822dec |
| SHA512 | e4923b414c6c30a3a1b232320bcdf7c3a312805cb8fe91def187ec337f6eb37fa13cc92d449bb1c25d4f05dac9731d59801b4744a7855bc63142c997f85984f8 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.LiveShareApi.B48EB2110842FB91AFFC\payload.vsix
| MD5 | b489e2ea60a7c04f52cb9030960a0866 |
| SHA1 | 782111459434fd21ae6cf9a5a4c559e52c3e1af2 |
| SHA256 | 93a2b82b91fb544bf69aca7c0d5843cddfbc11a588f8e1e161c59a4d520ed0dd |
| SHA512 | 2b312b34acba7726d65f65ea27df9343d2420dcc5f4dd1a9032fb9f02c64fe7dde704a2f331598861a356c04832d74205d46377a7d31f17b9984d230489a2f09 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualCpp.Tools.Common.UtilsPrereq.F4BD47AB2DA391215720\payload.vsix
| MD5 | 54766099f08e84c0c0ab271d710006c9 |
| SHA1 | 499afc648981837352f0f02030b70c78c08a2ec7 |
| SHA256 | 866507301f41a585adb860a1c60f89efeacfe74b9662bbedc18d191e002c0fb8 |
| SHA512 | 2148673ee40f94501e56b5c52781bf8925617a88dd8871be89dc9d1a5e60271598613f639802904bc1adebede35c3e1c71348c73ce49323c9b2d08cd71c1dbaa |
C:\Config.Msi\e5b493c.rbs
| MD5 | 34022e4f953bad6e3c00b21e9cbd42ee |
| SHA1 | d9064945f55ebab6b1db4787bb67e150d49fa348 |
| SHA256 | 218bc0f3e2ae29d1879971c7083e931a4c05bdcb94f78e1850ab029f76104c93 |
| SHA512 | dc12f11f927aa644093e8540af9f7450280b98b9b9887f4c3ab042b8c0735e467330ee5422f2753b7da4d7b9bbc0085f96f7d112af595b3d7f5290e889b91fe8 |
C:\Config.Msi\e5b4941.rbs
| MD5 | 03d36832d46c3e8a311eabb20daa9345 |
| SHA1 | cf4e5f02442780e31e1d8f03273e37ffb51e0ba7 |
| SHA256 | 5711e0aea00a7fd1c5ac3500e56dc0ebf41ccee76f1909c4d29994d7f1df6d48 |
| SHA512 | 064028c4ed718f8b60fc4d8ac74d5dd63aa40d55afd6a586754b22b079883420a009a4a1f5166f1d1236b82133d6a4b642af44e64fc817641bcb0d8bc6f615a9 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Microsoft.Identity.Client.Extensions.Msal.dll
| MD5 | 352ee196cd65c98b729065aaf6f5c9e3 |
| SHA1 | 5da4c568740c6c91e02ef0e9e1dac38c52ae33c1 |
| SHA256 | 6ceaa8b598e7985d5637ab1659566dff9c1fda37edf0f044759b56444f739018 |
| SHA512 | db12aec8d7e230994e240c7b7fedc5420d3415ff199cc6279b8ae684e81681e139d562d9de39e4eaee1879fbe7a83eef5204e7e17ad475257853519292e107b4 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.Identity.BC61BCA87604732A0BCA\Microsoft.VisualStudio.Identity.vsix
| MD5 | a25cd98c17efb7778ee07f7421e00cf8 |
| SHA1 | b7fdbd27ef66d101b9be841e64a34dbda4c76c75 |
| SHA256 | a48dcd8157196421a1d9c400a1342f1ce32e4e27e49c7b0fb5bfe7c95bf070df |
| SHA512 | d915865302414b71acc4b3bd8f44d6789c376a3958e50e0a2375216b697d86e1429c8c92cbb1253baa845f02679c20f089b71adc933f6fdf8593bee703ad270f |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.VisualStudio.LiveShare.VSCore.2E0BEC0EF4A61BA5A8C0\Microsoft.VisualStudio.LiveShare.VSCore.vsix
| MD5 | 483493cd1e7a7429557e8b884db9840b |
| SHA1 | cbff63ea410f43d57c5b2b8282f78edf6fcb1d7c |
| SHA256 | 54a67cd322006d6de38bb9b4725b110678bff830c6c9ebeee2bace0a6022d6bd |
| SHA512 | 69e909084aafc23291d43df294045def416e9b47a71c99e51f825873711bb48b6195434096c371a33a180cc0e8f50ebb269893eee39f9b09dbfa5a7c5eedf742 |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.packages.json.temp
| MD5 | 6789392ee91195c280faa792e464b3cf |
| SHA1 | e4bcdb1a967c6834d2a27085f3adc2b5ffb36838 |
| SHA256 | 7b44a3d20c2caab40cd577094b6300d9bd0982d6fe389d30021dacb92084280b |
| SHA512 | 60093a7b540c00a34b823b1b224e773229de5e5d03ed188d8e411fd7129ce79e15e408cd089c977b5a442c1e870e19c4af5774c768f34d204ea27f3d99e12862 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\IdentityGS\CertificateInformation.dat
| MD5 | 28c3b82727a5ea653224ea32dc895587 |
| SHA1 | 22472322931c5aa6c42eb9ef3b058e4c4c156a2c |
| SHA256 | 60586cb008247dd45e7cee57eb9515beb54c68308386cd1410f1834350ea0621 |
| SHA512 | 9c95bd0b766f3764b102d44cc1a7bfda0cf9ada39560038f132e3fbfd45054a0b4ed9df0ff3f55c0a4fed80fe15bbf2b5a477f87e0d8affa8053ce8f20dec2a1 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Client\runtimes\win-x64\native\msalruntime.dll
| MD5 | 6bf1d412f82b6282142899a9e4bbbcd5 |
| SHA1 | 21583e22b3c7650b57d50261f636083960cd9bba |
| SHA256 | 060fb56757da195e86eb7363c0e9d38291dfd1876bf847c71ef4d0bc49cc1d2e |
| SHA512 | e7ceccc890536f8d6294175cc437ac681f0824bcebf98e86e086792d825201b7ee60292ecf94c025d912b850f6d0338a356434ec62dea2918eab94384cad2ee2 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Licensing\runtimes\win-arm64\native\msalruntime_arm64.dll
| MD5 | 77e00bc4babd16defec4ae7ba25fbe00 |
| SHA1 | f4e2aaa62e5d681fd6860579f23af4b1e05536b4 |
| SHA256 | 9187b23577ed4789d1cb6383e837f577687cfb1a9c7d34c2fa3ef6b6636b70ae |
| SHA512 | ada8e5b7a5d1d381e30796aa2bfba50716c54f1a30d124e71aef2dd35e9cd0436e29f941baad5c937f9e55e474482e15152cca585514ca95c3f09ed946ae0269 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\Licensing\runtimes\win-x86\native\msalruntime_x86.dll
| MD5 | d228627a3f7a95b9a57db553a686284d |
| SHA1 | b9d520cf69fd41037756982e1f14ba4beb53e5e4 |
| SHA256 | d68ba651eda3e9d7e1465ce507ab88c9547a6429039b01324ddd78fdb66fd922 |
| SHA512 | 45b5fa5c5d29f581b81920aff7861be3b847978b68732641df4d0880fd9cd0f7c369cb7fa0a8fe0ba135e1eff310b161893de5692ea2c0f306e61996bba6df36 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\Identity\ServiceHub\AccountManagement\MessagePack.ni.pdb
| MD5 | a2db2d072bff324bf0057c69fd2ea4fd |
| SHA1 | ced547fe01fb27c07a55492138bcb47968028be0 |
| SHA256 | 795cf7b91659e11bf549b81ecaac9b98dc9ad5c5652b1a6af2b8ae9d760452f7 |
| SHA512 | bcdb9829d687c9b6452fb5b54425770e2aa30011f2da86a88ad359494e2e7158f520e755cd92af3cad7d3129d179efcd7b4eb16c98a18b64970a375affd6c483 |
C:\Users\Admin\AppData\Local\Temp\0l5atn1r\Microsoft.Build.3245A95951F1814F0A2A\Microsoft.Build.vsix
| MD5 | e3cb6a82f4c67844b246df3715f1613e |
| SHA1 | f45d686af361467f208c7fe5fa5c46891085bd48 |
| SHA256 | 53b758557e0f7f91938b0bccb760b68c7cdcbcc78465fe34100ebaf274e51725 |
| SHA512 | 8339d439ef40e4d7f61337c2bc784d3b1a3a11c8e81b978140f906b2d9877f90da5614a64632785cdb90eadc943b2f18799dcb1b0ea7cfcfe1b9580c85be0617 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Services\Microsoft.Developer.IdentityService\Old\Microsoft.VisualStudio.Validation.dll
| MD5 | 55ce53f1e140d12cabbf2b227d14b666 |
| SHA1 | 097dfd15d81ad308b02d272c41aca9388625ddad |
| SHA256 | 3882be8f796d77c645d62d7a4dd3b29fe497ce1e0a1da41a9ea26ddf9ee69da2 |
| SHA512 | 514eb1d48601e1cfb77814ff10966de184694f2cbfd4eacdb18f947b38d9a196b49a4d485cf3aed6770a86e57690966365edeca244b3b8b8783c808477c6199e |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Services\Microsoft.Developer.IdentityService\Old\Microsoft.Win32.Registry.dll
| MD5 | 59c48aacb1c413c108161afe13fdbed9 |
| SHA1 | 31ace4b26d8a069c84aad6001e06c2a5483806f3 |
| SHA256 | e9a9d281c1a708aaae366f82fd6a1742f65da2918cc4fa5eaaaada0be24277d9 |
| SHA512 | 8252abe64c67863d9e4c70e820f0c69c517b8678a4b4c13a436118bc276e5f21e84522b93566c0bc009effcb251ed67bdbc60e4907abea2f33b6be3764e28d1d |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Services\Microsoft.Developer.IdentityService\Old\System.Buffers.dll
| MD5 | ecdfe8ede869d2ccc6bf99981ea96400 |
| SHA1 | 2f410a0396bc148ed533ad49b6415fb58dd4d641 |
| SHA256 | accccfbe45d9f08ffeed9916e37b33e98c65be012cfff6e7fa7b67210ce1fefb |
| SHA512 | 5fc7fee5c25cb2eee19737068968e00a00961c257271b420f594e5a0da0559502d04ee6ba2d8d2aad77f3769622f6743a5ee8dae23f8f993f33fb09ed8db2741 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Services\Microsoft.Developer.IdentityService\Old\System.Net.Http.Formatting.dll
| MD5 | b676d5e9828d6010339743f236f54ec4 |
| SHA1 | 0dff461be2e04ebf6da5f4f2d3eb639cc2e0a8b5 |
| SHA256 | 7b58adc6e23b24cd6615b35e848a002bda053a26d48f9ddafacfc8098e97c49c |
| SHA512 | cca0ed47b391b12f44716db1921314e7dcbf2a9f6b0916c78642b4aa814825c570569b103a7f5e298e9c02dbae22e7cb905f08f80f94ad6dcb69fe09085cd8a8 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Services\Microsoft.Developer.IdentityService\Old\System.Text.Json.dll
| MD5 | b7083ffd5d2bbbe83c6b439196838d78 |
| SHA1 | 17b58d7f1cffe4c1dd8e8246e127c949f4066d85 |
| SHA256 | d14dbc34f6824757e6f6ae758b05f76c447f96f8d75be3c4b8286fcc5a388b30 |
| SHA512 | 6c82d0f3b8e65db99aa6f3973a6cb69cc9d02efd3c3cc55af03f01d5318360054e004ea4bcb53a2a7cf5dc1c0d77dc9183b479654cf88bbac7b263fc68c61b16 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Services\Microsoft.Developer.IdentityService\Old\System.Security.Principal.Windows.dll
| MD5 | be2962225b441cc23575456f32a9cf6a |
| SHA1 | 9a5be1fcf410fe5934d720329d36a2377e83747e |
| SHA256 | b4d8e15adc235d0e858e39b5133e5d00a4baa8c94f4f39e3b5e791b0f9c0c806 |
| SHA512 | 3f7692e94419bffe3465d54c0e25c207330cd1368fcdfad71dbeed1ee842474b5abcb03dba5bc124bd10033263f22dc9f462f12c20f866aebc5c91eb151af2e6 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\NavigateTo\System.Text.Encodings.Web.dll
| MD5 | c77ae3414d78c1f082c65415fae69661 |
| SHA1 | 3b35461d86a774535ac226ca9706fb50332de20a |
| SHA256 | c792bfe3f43c894e20339252d159a96a20ccc6e13322b2d382570ff97939e501 |
| SHA512 | 08941ba8be5031cc4e363a916525437c62b409576c91c10fc72795faa10bc989f0d1797b576802e208dfe4305a4447c0299e2755ba92f97f531de1f56fd5865a |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Profiles\Web.vssettings
| MD5 | 1c154420b99ddde43a76a58df1721ae0 |
| SHA1 | 66a405bea262e293dc6076b7649cb8d4c8ccfbbb |
| SHA256 | c0476d5da16b133a4fdfae1712dbffe82a3308c2107199bd388cb166648a1f3d |
| SHA512 | b1ac8033a464d49b0e45ac9a711dd8043a092e6f31aeee183e2ff87d554da4eae124c782f1a38eaa9ccc274759c12e3d98e88d0964bc81f01b978631a03ff160 |
C:\Config.Msi\e5b4946.rbs
| MD5 | 37c100db762d45a9402ed4c5f6b4c947 |
| SHA1 | 812b36a1309b7fa46c90fa5d4961b0ca37eddc71 |
| SHA256 | f966041b43011d8653ef8f4ae03e89188f4705b410c9555252562d7faedd5469 |
| SHA512 | e6b0c7702d14096a9ee34c2bb6eb668076b34bdd6c02a31e002ebd4355a2ab6ede6dda04eef7ffe4aaa309417dbe8860db07e5985f7e571dc37c54b856ae0b0d |
C:\Config.Msi\e5b494b.rbs
| MD5 | 3f38f58237a3e69fb0604ced74ad1c81 |
| SHA1 | 26b5c7132613fe3568863aff48cf16c7be47eb8b |
| SHA256 | ff05f9469f369e293e3cf37b78cff861569f2d89b844ce336a0473b61499375f |
| SHA512 | 8b5a962f2c7635355a3cbe6e7825d177155c9dfc52cdf9a3fe9760b1358075686efe9bd82f28cb65eecbf9cd5693e9450f425c9b02d0601649a1799ad088b659 |
C:\Config.Msi\e5b4950.rbs
| MD5 | ce98f98c921d79e217d08242d3644895 |
| SHA1 | 627093131eeaa59992b5ce20288ec9ef8187f776 |
| SHA256 | 528eb4648742011f7f8aeb51d67349e98e4621b08c9bedca96dc3426c5cfcdad |
| SHA512 | b08fd2081b7b209610c7068354048e0076f61efc399a96d7965215d1aa132a3fdca84909be4c0041e0b1a5b9437ce60c79bdc465a262ea1e18b51d8957baec97 |
C:\Config.Msi\e5b4955.rbs
| MD5 | cf81b16fb5850009626ac36f388feda9 |
| SHA1 | d199cdeaa6e5e2b699ab2d5c3ab0218447042279 |
| SHA256 | 526e2ead0b25a8a962c20ca62f1b6ad45b6a1d718ee5cf55b9117eb795bed07f |
| SHA512 | 0c804db485e6beaf5420b4554c24a4dd59012ade3972c6441ca294402b91f14ba029619dc55d1a810038cef7f6dd361c8d14b65bb19044b4ff1e31f6c3fd5d81 |
C:\Config.Msi\e5b495a.rbs
| MD5 | 8e35c0d7c3b8c77e4aa6bb34e2d1ce15 |
| SHA1 | 19de25360c9ae44cf38328e766399bab86cf46f9 |
| SHA256 | 867b1e8511c1dde5f7667e452b796187aca5480c9f29e857d807f4c832bc7c6b |
| SHA512 | cd66c309fa26623536da2160d28506c9be33e6a62ecc023b5a1ba96733f50725932e09d8ff6bb48d770584406665dd9460f14ac5be3699de2b81f96f0c1378a6 |
C:\Config.Msi\e5b495f.rbs
| MD5 | 2d4e68c4164851b85bc4942d104d3815 |
| SHA1 | 317d800411f90528ee135a47b5c5fd33d5655115 |
| SHA256 | 872d6437a79680191719e744914c62e5d3464647f1e768ecdf5438e01562b1e6 |
| SHA512 | 118a7ec4cb922e94b706bdaae169605a0ebf3b408b88c991f99015962e4813ac93277b83364f8e03b6e740ac321e10671c61f2c4a637bff7bb1c49dc9bab2259 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectServices\System.Numerics.Vectors.dll
| MD5 | aaa2cbf14e06e9d3586d8a4ed455db33 |
| SHA1 | 3d216458740ad5cb05bc5f7c3491cde44a1e5df0 |
| SHA256 | 1d3ef8698281e7cf7371d1554afef5872b39f96c26da772210a33da041ba1183 |
| SHA512 | 0b14a039ca67982794a2bb69974ef04a7fbee3686d7364f8f4db70ea6259d29640cbb83d5b544d92fa1d3676c7619cd580ff45671a2bb4753ed8b383597c6da8 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.AnyCPU\ServiceHub.RoslynCodeAnalysisService.exe.config
| MD5 | 61ef64d22132bd8d0b87bb522e48db56 |
| SHA1 | 8af880aa73f309ba59c1683cd1951d0dcad4a23b |
| SHA256 | 86367f8b60e466a9aec477b6e27bab44a1c9bdfcc9e46a2efc4ea99f5565a2a1 |
| SHA512 | 0636a3029c7f461dd2b3a0687108e51d7d6e44fae16b04f981a9b5f819fb3f06deff61b519204496546a8bab75c9cabea4ec0ba6db638c4cb8dada7d9e23da5b |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\dotnet.x64.DataWarehouseHost.servicehub.host.json
| MD5 | c8f85dfb5f38188ed5603115939e5ee4 |
| SHA1 | 621e62b8b95711f7316d059912467f503da1ff6f |
| SHA256 | f1e2a83d65deb87a65fd195b2ef22f5ed8d8336a7cc6d5b06c487fc7defa79e0 |
| SHA512 | 8ec52697511fbefd5de672c4f753de45e26c079641466b951efc234df5dcd9564911a969bc50c490b91b458a3bbc50266b37cea1dcd52902d72273c8b35bb9f2 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\dotnet.x64.servicehub.host.json
| MD5 | 10b8154f8b7e15d30e02506e487d33d6 |
| SHA1 | d0ab00e855cc972b7ff296254152a6181e6da107 |
| SHA256 | 4a905b46f768c7d99d1415f79caa060cc4fe37dccd54cfa05a54412423f3757f |
| SHA512 | 1aac980b7cf16e071eed10815c067883318121e8f46ea03db78dafd8d54380f1828e50e84c467158da1b2fa14c54f73b93a4a33bca8b99af7e4b363320bcf4f7 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\ServiceHub.IdentityHost.runtimeconfig.json
| MD5 | e9d441d43847bdd9ec63710b23b544f7 |
| SHA1 | f911d3b412ced76df6b9dee7f855954769c19feb |
| SHA256 | db80fa4db74edac4a3eb42fe0a63f801834b4b2f937c5f215e9c6ee723767a21 |
| SHA512 | e2acf2329d0a4b2808c562860c04ee96d199d6cfb589d138205c0df0e3f28c07848d90fe868c874abf61ed876e952724caaf1649eeb60feb7467ede19b8b3a84 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Dotnet.x64\ServiceHub.IdentityHost.dll
| MD5 | 0a7748434bb140c403e18643eef2c15b |
| SHA1 | 58a137c336ee00db0f810f0872345e8299da45ba |
| SHA256 | c773a07d592ddc146da816632c4f89e81e7fa37ba02d07c3fbd26f565f475fae |
| SHA512 | 5b3d2381463cf482a5d2715b0478617927c6bce3be8d1407f2cf764ad9c219838a6ede5d77dafd2adc256269558ebc8126734dc136b64286926821e67872969f |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.Extensibility.amd64\SharedAssemblies\MessagePack.Annotations.dll
| MD5 | c2d28e4d566ae3d06c93462df8d0b1db |
| SHA1 | 6e190b93046f32df9281efd7654ce0dedaf206e9 |
| SHA256 | 3c11d559b96554ff3389725412531cae07ff9c8fcb39bf4c400a1695ffa53db9 |
| SHA512 | 82b3eefcf4e5e16da229650eb62177dc614329a37b5b971b82fca0abf3ed3b9c2c38d40355da2311d880594c592ce637894b7f0fd243731cc41d1550fad103cf |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.netfx.x86\ServiceHub.IdentityHost.exe.config
| MD5 | 9efc72ccda699358eb28eb449e8c4c8a |
| SHA1 | 62d77a40729a91a486fa5cba5e2f3d17abad50f9 |
| SHA256 | aba85e6e4f731d032b50c0ab4beba174542a66b9d67ad5b4c7334e8e0f552a56 |
| SHA512 | e606437e6478d3ab701a2d39106a9aba5a545dda81aca76ca9b67c044e1ccf0b850acfb47cca5d60d3da531e201e85364e8393c2a7042151382b6c1b98e89565 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\1031\Microsoft.TeamFoundation.TestManagement.ClientPackageUI.dll
| MD5 | 26e2cd4ab0e53bb8da65ebcc7c22e88c |
| SHA1 | 2c00f78c1cdf445ee1eba97b9e1d15cebf357b96 |
| SHA256 | 5495b24a196015fedbe0600422121e617907e8033fc2a6ed2739c357f799f923 |
| SHA512 | fc7ff3533333ac0c718cb8e4b79917b1992fca28f0bbeb236221eb4ad9e9a748b42d474027558066b2084c75d705487fd58f90719a87057345b05bf843fab4db |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\mingw64\bin\git-upload-pack.exe
| MD5 | 4290fcf12ae1fd71d1e00486c80c7a2e |
| SHA1 | 02db3c84f6865c4d4a1d02e13e01e0acbdf0602f |
| SHA256 | 2bcb0c999675c2ab5a96069f5e851d7f45bba1ee549204b36c234ff29697c1fd |
| SHA512 | e0a7bb7a7ace516514beb53cd8206b3b5b5e28831ddf44bb80ae31e5a2471540b7405598914683ea3bfa6ef1455e0d59a284ee4676c310618145967eace3f29f |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\mingw64\share\licenses\libtasn1\COPYING.LESSER
| MD5 | 4fbd65380cdd255951079008b364516c |
| SHA1 | 01a6b4bf79aca9b556822601186afab86e8c4fbf |
| SHA256 | dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551 |
| SHA512 | 1bca76c9f2f559a7851c278650125cd4f44a7ae4a96ceee6a6ba81d34d28fe7d6125c5ee459fef729b6a2a0eba3075c0841c8a156b3a26f66194f77f7d49151c |
memory/5236-11066-0x00007FFE42CB0000-0x00007FFE42CC0000-memory.dmp
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\mingw64\share\licenses\libtasn1\COPYING
| MD5 | d32239bcb673463ab874e80d47fae504 |
| SHA1 | 8624bcdae55baeef00cd11d5dfcfa60f68710a02 |
| SHA256 | 8ceb4b9ee5adedde47b31e975c1d90c73ad27b6b165a1dcd80c7c545eb65b903 |
| SHA512 | 7633623b66b5e686bb94dd96a7cdb5a7e5ee00e87004fab416a5610d59c62badaf512a2e26e34e2455b7ed6b76690d2cd47464836d7d85d78b51d50f7e933d5c |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Git\usr\ssl\ct_log_list.cnf
| MD5 | 5b561a90362b8eb9127c792c3f5902e0 |
| SHA1 | a2587c4e97408b64274e5e052b74e3754892c13a |
| SHA256 | f1c1803d13d1d0b755b13b23c28bd4e20e07baf9f2b744c9337ba5866aa0ec3b |
| SHA512 | ce307f87b90e0a0d09335577283ab4509802b43d14725d76c65139f6625f7e4fe636f41c9c398ccc9a2c70b229a34fd796b8ae0e9f5f3720e43f727a60232167 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.IdentityModel.Clients.ActiveDirectory.dll
| MD5 | 82b4153a5d552e4731876a145fc3ceee |
| SHA1 | 2fba5d92d890ea54b2f32fa7be7e9876672b8b41 |
| SHA256 | 9c530971bf1ac091c4200fb1d662fb5b8c388a4d92a418a31c738223a2247e73 |
| SHA512 | f14e21425792e4ea398b680971070efc2a9791d9b3dcbbd5cbccbb74e9c12236685edae125f0382ed5078fb1cb309754a2746175fe5480adc08256f77781f210 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Microsoft.NET.StringTools.dll
| MD5 | 0b03240f79e78d81be2c8f69a7e069e5 |
| SHA1 | 73b6b27c4030332ceeaaa2d7ab4afa27d2d3bd93 |
| SHA256 | f2245a10443f3f6a2020f04c81ecb5f2e2ab0dae3f8a1cfda7e403d1f4af2e61 |
| SHA512 | 3e752784bb38c3e5192188b7ec31bd6167525e0332ac6ef97860f0bea02cd14ab47b550e2d03988244abc389b112099028aa1ab9403e5c778e7a2af2c8b55552 |
memory/3200-13480-0x000001CC5FD60000-0x000001CC5FD68000-memory.dmp
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log
| MD5 | 347ce1b602debeba486c19715739457e |
| SHA1 | f8d8bc4e91903fe802583f4e72c28bde0477ff95 |
| SHA256 | f097d8f8e913db110241f026178fcbcbad6ff006c55dacc77c7fafb42e600a86 |
| SHA512 | 6ba1dc0dd63d03a1d7e7dae7fa37d0be65b1eb702308895e072b91993a4bdede680d02a6afc65e18819c591be9215f79f54e2c804a059d11142bf1e29dd80467 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\System.Threading.Tasks.Extensions.dll
| MD5 | e1e9d7d46e5cd9525c5927dc98d9ecc7 |
| SHA1 | 2242627282f9e07e37b274ea36fac2d3cd9c9110 |
| SHA256 | 4f81ffd0dc7204db75afc35ea4291769b07c440592f28894260eea76626a23c6 |
| SHA512 | da7ab8c0100e7d074f0e680b28d241940733860dfbdc5b8c78428b76e807f27e44d1c5ec95ee80c0b5098e8c5d5da4d48bce86800164f9734a05035220c3ff11 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\System.ValueTuple.dll
| MD5 | 23ee4302e85013a1eb4324c414d561d5 |
| SHA1 | d1664731719e85aad7a2273685d77feb0204ec98 |
| SHA256 | e905d102585b22c6df04f219af5cbdbfa7bc165979e9788b62df6dcc165e10f4 |
| SHA512 | 6b223ce7f580a40a8864a762e3d5cccf1d34a554847787551e8a5d4d05d7f7a5f116f2de8a1c793f327a64d23570228c6e3648a541dd52f93d58f8f243591e32 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\Microsoft.Bcl.AsyncInterfaces.dll
| MD5 | ff34978b62d5e0be84a895d9c30f99ae |
| SHA1 | 74dc07a8cccee0ca3bf5cf64320230ca1a37ad85 |
| SHA256 | 80678203bd0203a6594f4e330b22543c0de5059382bb1c9334b7868b8f31b1bc |
| SHA512 | 7f207f2e3f9f371b465bca5402db0e5cec3cb842a1f943d3e3dcedc8e5d134f58c7c4df99303c24501c103494b4f16160f86db80893779ce41b287a23574ee28 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\System.Collections.Immutable.dll
| MD5 | af7880a90c02c0115cd169c7182ab378 |
| SHA1 | 6e3ccf50bb1d30805dce58ab6bdd63e0196669e6 |
| SHA256 | d5ec0837bb176abf13dcd52c658c4e84c5264f67065b9c19679b6643f7d21564 |
| SHA512 | 5377f83cfb8b9892727ed22ba0b9b1a75b2d4750caa6da04f4eeb0f6f9c0f75949226b2ca00876ad1f4c9de02f8ffb1cbcdb3048fbe6d26a6119148282e818a1 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\System.Reflection.Metadata.dll
| MD5 | b25621450be68d1c0397575dac869eb1 |
| SHA1 | ddbef3409ec74c286cb7a22d9c9fccacd9562a70 |
| SHA256 | f79ea5e38af769cbde5d7f5e873564708941a148bb461472019e10373ea4c780 |
| SHA512 | 00c3d7e9c459e876c0a8b4122052ccf7a5f5bebe16dc163c928317efd567aaa523343d34c31f38c260aaff17a36db3c26d41e5cecf3f59bb609328daf3bb84e9 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\System.Reflection.MetadataLoadContext.dll
| MD5 | 5f9ccc82572773b1693e341af6f019e6 |
| SHA1 | 9bc8192526e56595971de16e93b853fff3bbc3f5 |
| SHA256 | 1953d4d879a68fb3548b6417bc13e11673dd165e86610c4d7371247a18f8f2f3 |
| SHA512 | f1d91bd17abe512001dccd09056cf7f85af559abeaa8ab7941038e12a9dc9b7f4c737a74f31ade300f3e6594e0df947b0326abcd3751201f2bee23231de1ae58 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\System.Text.Encodings.Web.dll
| MD5 | fa9d0d182c63c49a4c567f7c1652b6e6 |
| SHA1 | 55ddfbe80762c02f9a9c65809f9ec3ef8f7f2ccc |
| SHA256 | e9c4f5eed186cb129c527c4b8d67d163ea2f2396e9d8b96e30b5e7c12203ce84 |
| SHA512 | 58f468c982ab66930ff37efb5a941db116e8c1aed66ebc23720a7b18f71bebe1e929bea76680294edb25f430c23d520b8a87e3a22064c5993d0396819a21cbe7 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\System.Threading.Tasks.Dataflow.dll
| MD5 | 523945fefb54ca3877b2bb684f0a459f |
| SHA1 | bd027bc503b5c68b87eed0c899f513195afc36ae |
| SHA256 | 25dac8fceb82e51e33f2d74d2076f4ec0fb67edd92e02402c9ce6be11da39fdd |
| SHA512 | faa683c306a3df55d97cc4b5098758097da0cdfc8a84689bd64518d68552b7f710b88fefdb8fe984b94905283dade10333c1fa6cf85cde3bd29ec8e4cf60eece |
C:\Config.Msi\e5b4964.rbs
| MD5 | bfffc2cf417ed2c1cc2e75631d97a6f8 |
| SHA1 | aab0b278f184617b78efeb9cbc5ee1413f385082 |
| SHA256 | 43bbf69ac54792c797e41131030f712873d480e033f39ccee85ded1cbdd5efce |
| SHA512 | 54ee84a4495a834b07e61d4d2d50a6fe3b801e3c83e6314c5018c9947124f586d8db3116bed54822b53d67cb47fa4d2a5c11572082033533cb53e36662b827ed |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1028\FileTracker64UI.dll
| MD5 | 4c4798bfc8d4b8d2137e8569f8e249dc |
| SHA1 | fd3d8d9839f5f78fd16ced35167c0a56e1f62c6c |
| SHA256 | b65f5016752fe3f9742839d87208fa533e7cad85149a97557dcd319c1c0e5e9f |
| SHA512 | c66dd8f886afd76f62124b817c734ae7d1f6f64b3b5e9dcce940a6876401a005e98efa67a5f0142656d50102f32f98fa776c88a65c2bf1e5f8039bf5b860cde5 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1031\FileTracker64UI.dll
| MD5 | 91f6236b2f1eaa6c81e560518c1d7c14 |
| SHA1 | df37a1b3db35d858e3dfeac26d92198d16be0caa |
| SHA256 | 44c87f1b57932f1b909366dcba604cea7e486717d0730299ca7c993b488a5954 |
| SHA512 | e2186a3050ebf19a921269b2899e33a29f8f398f4ce11a02e41b3e399949ad0b9f2dd71b968eda7bf52890979499dd21839dd72eb71ca2c5afc4702e8fe51449 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1033\FileTracker64UI.dll
| MD5 | d96ac1afbb462fc943fe7844122fb4ef |
| SHA1 | ccaa9ebd792c09f3fe74e469deea93754d314115 |
| SHA256 | 60f4d9f67134f1a40eb278de6ea528bcd9a68282a41d6440b3af124f0d5f97ac |
| SHA512 | 6b662544e488370df203bc13cd0610f0d5f029e180094d7f58598d52b594b4afc50a6722097a85e915f6957d1b199a73a1eeac8098ec81970ae54aac19a89f0f |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1033\FileTracker32UI.dll
| MD5 | 29f32702377b50071956ae9b18d8891f |
| SHA1 | bb4d08c9690d9cfbe0324028f9a0ce61d0e05278 |
| SHA256 | 6faa58dd686893e93b50199e89bd93f79751618ee11696ed2df51132b6c406aa |
| SHA512 | 989058362b5026b10c4d083b5024a50bf30efa616a434002663ab25ea3cbdf770211c3f15bd59fcbca77cbe9921e31f4dc252a89e958e87c9ca502788beae635 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1031\FileTracker32UI.dll
| MD5 | 518c1ddafbdb7f32bd9eb04238420fdf |
| SHA1 | 00c4132a2e985aea07557512e7492142ca5b823d |
| SHA256 | d0b38b0cde668668e6b410e33ad81125faf7a27bdd1d91ba45219d97eaea8a80 |
| SHA512 | 719ff71e273d4a18d47fe8dd1973c48f2a43e43ce9b9be9fe6cab63a2ab1e19d8927e22bb15b289e4698e42cfbd8f007ee5537cbd1521b8715124ab95cfb4a63 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1028\FileTracker32UI.dll
| MD5 | d48ed4afc6d0beb947119832c8fb5702 |
| SHA1 | fa6393f96ba5286de5582d6de193e2054d7ebafe |
| SHA256 | 1d393423bb38c93979b9ad94a5aa60eabb034886a7f5575c359b26272e0292cf |
| SHA512 | e9bcc69e995ec0e472691bd7c73dfedd5c053ddb5bbb11a993f261581614f528daf2a1ee85c3c08447c431bebfae4fb5ef586bfb7ba561df1dc791c5035fbd38 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1033\FileTrackerA4UI.dll
| MD5 | 999b199e2fd9069e943ba792026ce4f8 |
| SHA1 | cf04b9b7a540061e839b4f2eef4c3bf841aa89b0 |
| SHA256 | d137c19bf26c6ddde8e0e815d327265068a8ad7261d1eeef20ccc748c64d1a28 |
| SHA512 | 455f24172a5748de95c0cb0a8fdc8ae74a7b290883158c257a7bad84a64d1fe9e1c3b58282bcc9386adb77d43997bd8ccc631e3651b1cf30df3b924dfef2a026 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1036\FileTracker64UI.dll
| MD5 | 1433e3b19a8a79e4c18d0d98194c7fc0 |
| SHA1 | b37ebb7ede54214877d6f2e6b327d383094135e0 |
| SHA256 | 66cc25baa84bc2811df9aa4fb3adb2242a4d9044e3e392d725c9dda089a73259 |
| SHA512 | cd8924c294a1e759747aafb78618a0cd5aca7964ee55475a6f50437d48263f7510401d52d9dbb1cc5dd55b1640feb4a6e4929a53d317b69c243952f8f498ca87 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1036\FileTracker32UI.dll
| MD5 | 90b5bf9232d35184b9661b161f95939e |
| SHA1 | 3cc433b4615aff68cbe776a0fc1e035b4e928759 |
| SHA256 | 51e9070790ddc2a44b817a5776bb4178d3875ba0a18fde9834370f860bc1d7c8 |
| SHA512 | dd23296c2fb63358ec440917763fd9c8e0427e6ab5189129907c5d1184ebe4c572df9c72bbe35065d0fa2c8eb73dba5195ba3fc720b53167c4ef76d49689a458 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1040\FileTracker32UI.dll
| MD5 | a372462584ed00d26eb52fc8101a4dcf |
| SHA1 | 234400c305d412c62d5a0905a6c1d72a010f68e8 |
| SHA256 | db31ee13dfb8575fa7aa7a5aeae56ceedf7d2b51eb701bdfda450a5e7f119b72 |
| SHA512 | 6834931918e157b061dd657a907d630d3da785900a45887c31deb2f014e7b255a4d3d2735dc027ea504ec5d0acd281ff3f7ef72ac21e7f2c0c039b24e30abbe5 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1040\FileTracker64UI.dll
| MD5 | e718ea95e442f863df0ed9e8c29e745a |
| SHA1 | 78757bf6e2b84d5320fa2f25b653700695653cfd |
| SHA256 | 621da0e2c51820af8f05383f0657d7d2a8cfcef223561f691c9ed0e86a4c058b |
| SHA512 | 51b44832e15dca5019c71648b0b0753e90c71c31a70fbacf2d8091790e9c8c2a85ea5cd9671446cfebee546945907e580e8ce5f85472fce9027206a2f1d03095 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1042\FileTracker64UI.dll
| MD5 | 2b09cfb17881313c8e8392b8035f58ff |
| SHA1 | 6dd6a590b0f4172cbae8d2330ade640763757bae |
| SHA256 | dfe05614db371857716f3b1ce4190738064ff01869df76fbac0cdbef21e653be |
| SHA512 | 678dfca5b307d87c52063091c1ae2f61f62c43e5c486d008485d6d2c9dc6c3692efd33126c9997a47a6f1fdc833e677ab41ad3210c4354fc1c21c151bdb5b971 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1042\FileTracker32UI.dll
| MD5 | 1385d162951a4bfabd12fcbce6ea7c6a |
| SHA1 | 8d9f5f53aba0e62af56e157380a5bd8fb039079d |
| SHA256 | 2777c8c03d47547cec83990309204aaa555650b1b7ef412977ee8562c1fccb59 |
| SHA512 | 1a72dc57cc8c9a868af1d8b35c835e88d0aedfd6be271b89257ac34b48e86cc0c2bdb519c23c6c8d5d2153a4285f87ab1c7c53cadb931686ac48edd15050cce3 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1041\FileTracker64UI.dll
| MD5 | a0c3a95df77f1624ae90f5cead06c50c |
| SHA1 | 7694e055d19c65df592ee536feed6a2d448b2737 |
| SHA256 | 1abcd5d62fcd37488376c6480febda1b9e644e680f9d27203dca1db954684c17 |
| SHA512 | c668b14d8d1edc328bdc604353a7ad46e13c461d906071f71e043f500d3dcded9ac506f5e397ab03ac908f080ec2fde5699f4507a74af89532f630d8da6dcc93 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1041\FileTracker32UI.dll
| MD5 | 8a207155cabfbc13aed35cfbf797175d |
| SHA1 | b37b46e83edfaf212819602f22e76c35593d6a9b |
| SHA256 | 3295db4bbf9a66bb011599e06e93229589fadf68b2e222a30135dcc69f89e0e3 |
| SHA512 | 966afd1b07955b64ed419d9c99518428030387f9bdd338cdf7295b864e33c5e008ac7e09d5f1c76caba4c7cc95e664b58328064185a8492f6cfa915775cbb779 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1049\FileTracker32UI.dll
| MD5 | 276b9f2f7fed67c371c9829337a7c749 |
| SHA1 | b5358ea265f9e65b225be675b20ae089c32e1184 |
| SHA256 | 12c3ef0c9816a60ad192fc196a9a38b24159c448aaf70a4becc8a0adc96bf1c9 |
| SHA512 | b470fd26715523848f7cd700ae2ad1c94cfaaad28c3914d06f632ac98f90cddda65dae97dfe57e63a57147652c042674ae8a32b419b5a7494b587415387ba97f |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\1049\FileTracker64UI.dll
| MD5 | 51c285d942c75df066051c43e911f077 |
| SHA1 | df5427da73dfb9bc0367a3b91fcbc7643bc3ac73 |
| SHA256 | 5042a54eea79c9a41001f63d62aafad69247ea8fccc40ae37784565c76f42f08 |
| SHA512 | 246aa7208d3e815d60113e1d7633dd64fe75953c5be89184a5ca02c041a5250e15c92c2691662972415344b90e0ab99a610729bc20e36fac4d6430c402c3061e |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\2052\FileTracker32UI.dll
| MD5 | cd61c9ac2ef961926cb6d69bad097e28 |
| SHA1 | 31ecb821aa65df9c1b26aa362ca3705cf7c0023c |
| SHA256 | edbc956b10c6cd7df0271078b7a56d18311082e51ef00a611fba4154f7155e19 |
| SHA512 | 75357f2f6b58b7cc921afb8f0b1741687e3c45a93507c61bce9728b4784042ec175985bb578fc902d0dc0054750b269e3cbf0dce4acdc81c15565b29613bdc70 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\2052\FileTracker64UI.dll
| MD5 | bd88220e0bef76ac8ac19b20bd3f8c1d |
| SHA1 | 0341d65f1f5d5cf8e5f8414cfeed842b43ee1c2a |
| SHA256 | 4fb3908214bfc6e5390e2bfdcfb723af649039d97a49e1a85aec3cd22c619302 |
| SHA512 | c7289986f41cdb0808710e75da8e32e5c974e074ae0580ca53efa7018582b36ba82da0e50e24006b0d83a19aa79988d50565a02c95823785beb3119c2f100ed2 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\3082\FileTracker64UI.dll
| MD5 | c6f81da0e767f939479cf1c5d4b43146 |
| SHA1 | 720253441708e8c521c2bc5b5253f68ec0ef7329 |
| SHA256 | 32bc040a59f19ad065a84d628eb1fbde9394292476e55d0665c182bb5b3b8fb2 |
| SHA512 | dd655cef24497df437e9688723a5ad6cbc6d0767543f1b3f66cddcf23924007b02fe91988ac2f9bd5a80676b89ccdcb029f24f82242f250f960e1f9533507251 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\amd64\3082\FileTracker32UI.dll
| MD5 | f49f47c100aeac24f1e6444518f943b3 |
| SHA1 | 6b3721f99983829b4d5c4c9f6c380f5875e82a59 |
| SHA256 | fc1dbe4808e8d5cfc7f430ad10f07845dad9e143fa74fc73616c78f8d08e6a08 |
| SHA512 | 165d41f61a4d82e5f3c7b4a786dbf65cfaeb3be7bfb5971340c73180fb30917595185b3ad280618f0ff1ea4f4d3618597278bc6561d49bb5392bad0e79b65361 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\arm64\FileTracker64.dll
| MD5 | 6000d329f8061551470dc2f500a65f75 |
| SHA1 | fe8551adb53f7ab0259498682c0118d525373bc0 |
| SHA256 | 2ee5ed215abc58d30599df3b323b52234e287aafde1043c25a8ab4026c17e855 |
| SHA512 | 0343df5416afbf89c101b51dea2ec536f074bd3b9083f357a199d6542af1bfec88f78c3ddc4b59102e488470a16e9f24232fa805d39b7127da380a5891777670 |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\arm64\FileTracker32.dll
| MD5 | 6b2efa1eb6d45b9b31e914a1b429c6fd |
| SHA1 | 8ef008f2aaeb855d48eb15b9c5191830020780f0 |
| SHA256 | 3cedeea92ab0b21979edce3847a883e3f8781ad4e221c6762259f10bd2b9f8ae |
| SHA512 | 17c538cc0f53d0dee8e1c1627e3fc6e0f0a8df77dd243d12be90b92c8fa1b37eeff2366f7b34e3dd7b5d47489bfbc532ff6488ffeb5308299ca7d20a7955cd2f |
C:\Program Files\Microsoft Visual Studio\2022\Community\MSBuild\Current\Bin\arm64\FileTrackerA4.dll
| MD5 | 0cb7b64b36b7276e99cd200c97c96087 |
| SHA1 | 978c0f410263c9a7f9f4bee4d8889f14e1690653 |
| SHA256 | b3eb1e9dbfb6a1aa96059a6df84e1825d7e15589ec95751d744df63678f53c3c |
| SHA512 | e3aa4107d51b1c81a9d10aa57b256a787493886adaa502542213f2a688e72033642275df69e2061c5b9d4b03cd2bd79bb5018ddef71ab84cb4e49b6d278c7511 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\WebViewHost\MessagePack.dll
| MD5 | e7b64033f1429a4365893f414338796d |
| SHA1 | ced68447b6cb3d06701fab79bdfccadf17c81fa8 |
| SHA256 | ae0284726ec89e4a7650ce2d4b7dc340d432d3ea875b542ecf9e18d0ae8294c7 |
| SHA512 | 2b9facfb43dfd9fff416c4f6b389ecae72d4e99b5893b4d72e75b67e9ac20bac7dc86fcd4ceba0c10dbdd4a63f85b92c04c55b07e9baa0cd8af5459dcf6c07a0 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\WebViewHost\System.Collections.Immutable.dll
| MD5 | 7b2a749a73990140bb21395e2c786f0c |
| SHA1 | 2f1ebb67e21b33c74c4c6cf217ac1f797959f18b |
| SHA256 | d168af8e4a1263b5844180b1b371c5879b21b5b666feef7ca749b10192688006 |
| SHA512 | aefaa2ea20766775581da160291c234f5aef3a81a356ece2af4051f6c453c213cde2ebcae1986f9ca113d27aced45e50237fde3e1af8b2a1537e2098cb65abd4 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\WebViewHost\System.Threading.Tasks.Dataflow.dll
| MD5 | a3a3d520f1a9d8f2d68fe4d38b003339 |
| SHA1 | 55d94a71805804bc1d3c418fc64ba45d7f361430 |
| SHA256 | aed34b711290ff0be80895cafd2f4dfc477fda406aab0160bbd4b912f5502d3e |
| SHA512 | 768a8c34a01e6bfef1e5b7f1ea1d8c4cfdb7bef2ad6af5b13072e58fb465446dbfa4ca32a9e7a6edcfed4a21c05b74485a28900c4cf14014abb1b65b7b2b8ac9 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
| MD5 | 11fe091ace9d03b9ada6d5a22d12c0d0 |
| SHA1 | 5379ebe84500d425586904e7f9ac0393ab2a9d24 |
| SHA256 | 50f4ed60a507ce9dd1f3f4e7d53053d923cb71594374a25251746a9b2271e4ee |
| SHA512 | 0f39af99697332c697ca62e2708e0a9200552a55f2d3057b64e9b18df2fe2828be750b14b5336ac9518b4c1282e82cd170b64587cf56b45b840ca231108b7fdf |
C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log
| MD5 | 453cbe90f3fb7e8283576e654153ab12 |
| SHA1 | 6ba19cd799c1b7c946b1cb2053339b074932a9d3 |
| SHA256 | 8b2a0ed20f2e5d9dd7925a6b491dbd907e9d49f1e2aa14ea2362618c1d8d24c4 |
| SHA512 | d8a6f176a39981045d1207cd4f669bad85be92a90726d21302af2b50419b79b9d5e3bf463d21dffa39a27e6a61ab2825ea5fa29941b6e3b01037e1ea1f784417 |
memory/1900-16679-0x0000000073710000-0x0000000073723000-memory.dmp
memory/3936-16703-0x0000000074620000-0x0000000074838000-memory.dmp
memory/3936-16702-0x0000000000E10000-0x0000000000E44000-memory.dmp
C:\Program Files (x86)\Microsoft\EdgeCore\119.0.2151.58\Installer\setup.exe
| MD5 | 186be3e8a4fc4c312123d115b17129b2 |
| SHA1 | 79f2ade5f553ebfdf1852c799117b5e2468438ed |
| SHA256 | acafe6f117ff6c8d6fb65ba6405d00f68b2457e22d21908626c06c93fd9c3010 |
| SHA512 | a257201b6223a8d938a6e14c17236ba66ff23b7b4ae26a63984db593566cc4d241d11d6bf3f2db34bd5c645e63fd7b583b62a0df49bf61aa5ff370c15c8b313c |
memory/3936-16722-0x0000000000E10000-0x0000000000E44000-memory.dmp
memory/1180-16896-0x000002615E0D0000-0x000002615E0FA000-memory.dmp
memory/1180-16898-0x0000026178680000-0x0000026178694000-memory.dmp
memory/1180-16899-0x00000261788F0000-0x0000026178A88000-memory.dmp
memory/1180-16901-0x0000026178660000-0x0000026178668000-memory.dmp
memory/5580-16903-0x00007FFE42CB0000-0x00007FFE42CC0000-memory.dmp
memory/5580-16905-0x0000014EC1670000-0x0000014EC167E000-memory.dmp
memory/5580-16908-0x0000014FE52E0000-0x0000014FE5E3A000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\devenv.exe.config
| MD5 | ffae77adebae2eeebdc5385cfee0b526 |
| SHA1 | f2ee844a433e99bd1caf1e0a61e857ae950f87bd |
| SHA256 | 10d66eed1110bb8eb534a1716ac5d355932dafb3f0b18264de803c64bb801d0c |
| SHA512 | f9cb016ca31d0dbf4ac1c962595bd3135b3491d2e1efea3e40cc58955c4020344c3c5cf41fdcbcfaa546f07cdad6b754f3acd99c0b2955a73b2e44ddacfc8f63 |
C:\Users\Admin\AppData\Local\Temp\TFRE88F.tmp
| MD5 | 5906d5d2cdc2e5c5a79517c2f6c032de |
| SHA1 | 845de8fad7f6121b813f82a25d25f6efbd99373c |
| SHA256 | 24d5963ce2f51c40ca2b55b21a82732de1959d420f6cdc20f1e809c34ef49c3f |
| SHA512 | dbaecf3e8b95ef67722a098678251e9a9c513e6fc7f758554cba83a2c58212153cea35e7f324e9be41b1fb5947f2653f084d4a9dd5a02ce3031dcce24b5a6f1c |
C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.log
| MD5 | d5209a69ba79a950d77df48602aece0c |
| SHA1 | a406df90b9ec8d090a1969b0e532bbc4ebb70064 |
| SHA256 | ca9ef5d0346d74e55924d77081fd083251b6aa9c7c90cc8b8d27470b900d6954 |
| SHA512 | f4e23360978cb44d95d1aeec4bd03b2268a8fd24f59e84c5b83d2ba078d5e9a41123aca8d9968faadeeb3f96329dca4e52b94db1e5448547fea4e5ba342e4c5d |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072515_48ce20fc0eb9475fa303d8a66bf0e52d.trn
| MD5 | 1701f0ff8bba2db53fce1fc05bdb161b |
| SHA1 | 5444bd07f9803de8c134643d95e7f4be615c6fed |
| SHA256 | 3f0b663d055cbb2cb42fbf7d5e7aeb25724173e738f112a50b64bce559b7be13 |
| SHA512 | 356f7ef510cb20aaff0db8893f185dda34e47b4e1e51689ff7c845fa4be983615ca4022e0da995a54fe385628cfab2c2b66f80e9a81761b88d0ff71a1a3a939d |
memory/5312-18855-0x00007FFE43510000-0x00007FFE43520000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_4dj2u44o.bq3.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\Settings\CurrentSettings.vssettings
| MD5 | 14da19ffa381551dd7afdd71614eb72f |
| SHA1 | 6e87f2e728547e2ea5ef11acb3e81e60ba938f8b |
| SHA256 | 0fb9a0fd738d8a225bc2e01b0dc6ccd25caa5bc73f781c8d61af8912f5aae7cc |
| SHA512 | 1d80e09ea3e1799d0942340034fe588658779f68e799de61672c0be4ceffe5809d48fe719a18a3244d5e66d08f06a16f31c0f5cdb7cbcf2d0fd11c33dd8ac1b5 |
memory/5896-18932-0x00007FFE43510000-0x00007FFE43520000-memory.dmp
memory/5896-18933-0x00007FFE43510000-0x00007FFE43520000-memory.dmp
memory/4168-18944-0x0000023F5D5A0000-0x0000023F5D5B0000-memory.dmp
memory/4168-18936-0x0000023F5D360000-0x0000023F5D370000-memory.dmp
memory/4168-18968-0x0000023F61760000-0x0000023F61762000-memory.dmp
memory/4168-18982-0x0000023F61AB0000-0x0000023F61AB2000-memory.dmp
memory/4168-18980-0x0000023F618F0000-0x0000023F618F2000-memory.dmp
memory/4168-18987-0x0000023F61D80000-0x0000023F61D82000-memory.dmp
memory/4168-18988-0x0000023F61DB0000-0x0000023F61DB2000-memory.dmp
memory/4168-18989-0x0000023F61DB0000-0x0000023F61DB2000-memory.dmp
memory/4168-18986-0x0000023F61D80000-0x0000023F61D82000-memory.dmp
memory/4168-18984-0x0000023F61C70000-0x0000023F61C72000-memory.dmp
memory/4168-18983-0x0000023F61CC0000-0x0000023F61CC2000-memory.dmp
memory/4168-18981-0x0000023F61930000-0x0000023F61932000-memory.dmp
memory/4168-18979-0x0000023F618C0000-0x0000023F618C2000-memory.dmp
memory/4168-18977-0x0000023F61760000-0x0000023F61762000-memory.dmp
memory/4168-18973-0x0000023F61760000-0x0000023F61762000-memory.dmp
memory/4168-18972-0x0000023F618B0000-0x0000023F618B2000-memory.dmp
memory/4168-18971-0x0000023F61870000-0x0000023F61872000-memory.dmp
memory/4168-18970-0x0000023F61870000-0x0000023F61872000-memory.dmp
memory/4168-18990-0x0000023F61ED0000-0x0000023F61ED2000-memory.dmp
memory/4168-18991-0x0000023F61F20000-0x0000023F61F22000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | 06e062871064a89baa925baca9831f22 |
| SHA1 | ca40a7f0ad13b94bbfd6adc5d279e0389b5a865d |
| SHA256 | 7f1dac12ce649281d2e9339e9cf63c0ed2283fe799dd97a89284db3cc03ad445 |
| SHA512 | e26b50219565a36088aef65cbabdccb7906b49ad742b020fbca1fb1a2c38ed7f6ae9cc22f04157fdef82cb49417cf7ffc85842d5f88651a9c44cf2cd207939ba |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | de38d172302fbb18160c48886e7c0c4c |
| SHA1 | c8fc8286ef5353e193479cea435967d5c4a27fcd |
| SHA256 | 7f5f81d51732a6c69875ffdc8a05c1e9cb3800ca1fe060ab01097b9f561739f1 |
| SHA512 | 7b5d3e1d319c0ad7d2451662e4c2f502ae93c962642b6462f3f9f6d35fe1a258991ae42fd3761b410eb118034063e1ba85329a8591c0f82c504d823e8e7a4ee3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3f0b4e9612e972ae4ea9d458d4a78f9e |
| SHA1 | 598999a68d2e3d043885480a86ec358d928a5f5c |
| SHA256 | cefe2bd9a48038f62d307e7ae9f6d8667811a5cdfd49758d6f1ce33349a28aaf |
| SHA512 | 63ec2c07048e4a52d9128e63359f0886784a04baa99f208bb3e2e854b55b4ae3aa8a8764dbee7110388481f9dc273cec5c41511f38a845392d05afd32b1cd293 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | ff78e97eb4ca4c417d0024e7d341eb30 |
| SHA1 | 4fbfd7b464868f78eb28501a67a5ca6adcd5d2aa |
| SHA256 | e8daf9048366e7975734fb7977a7f9af7286baa3e7a757fe0253c1fb5ef22dcb |
| SHA512 | 84cc528d67340792116e7dc2daae633e3f49aedc3992ad21c865791f4c76b208c47ae133b1b88c15c03bb39a50c9bb6ad2dd380719c91d415472fadc76113573 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | d9e92c9f792ef3be8fe673fd858d5013 |
| SHA1 | c717fff95b7b2a0d1bbd0f73b5d4dbdfb1e334ad |
| SHA256 | fc56abe3338e81c4e92ec354dd79d5a45c1e143c551312da61b8f6884b494a26 |
| SHA512 | 0c4a6aadfa8d2b20a83ad34b08bad32fefa4d9b3615babd846eacd7e5a1f4b6fb110eafb0986dfd9c70d1b0a69ee0def56751cc5188e85d0831703966dc57883 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | 58fb62541ba4dc5d498419bd3c250375 |
| SHA1 | c547685433e4187477e85e68a8ed3308d10d6db1 |
| SHA256 | 67ed42511833662f16e4200e9996e1c281206b486530d7e6403393450846abc7 |
| SHA512 | 14fc62b8dec233c76bd8e6cd44c081bfa4812441f274be225e65a19ac249709d486a6bd1c391811840a679e3e31e26dc499cbaa368ad76bf84000ee1c308f6e3 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | d8d613d5e72a9a9bd93da14892cdd6df |
| SHA1 | 61031e92d8c3c2eec1812bcf987b581ceaeebdb0 |
| SHA256 | 175729c28aae5de2990b078475e8f3449a62a46feeb65d7d2409fd2f3986f468 |
| SHA512 | bd97a681364e18dae25829a0845f243fdeee7ac261f3e1f2e247a88f2b15a3f2239eea86bb144eb6cde1ebccafdf05cbf4cec7850c65b4efe0dfaf79a62ac3e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | f203d75a70ada036423e83070526987a |
| SHA1 | 06e072c8d3880fb8cab740f01308fc44cd211029 |
| SHA256 | 9eba99bb152b450919ff7bddc78c09e5eb0c857659b4fd593c94087d289ab255 |
| SHA512 | aba05ffe088c648093719cf2d25fdf46a7055583aa496dc8ef6b15c2ccae8d82c91d102edeec3bca5d6556a90c6d9cb03d688f5ba83f7fa87e1745c06a6d5f04 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | a7d3337fab456aeda2f278c3952f5281 |
| SHA1 | 09e918a2760fc147a3d2ea3eb42639456bdffd90 |
| SHA256 | 334628b362bec2f6ba244f3056b8299d39f151b22e2170b682c81aaa55202b4c |
| SHA512 | 07cbfaa2853ebe84070e751b456704b81d2f3029a65ddfd57efacc38387873ac2c0a90181d6d77974ca65ddfe1f6c5c0ff593ff864563d0902e6bf5716703aed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026
| MD5 | a0dbf2c0d3c97c07d3f77c54c1dafb72 |
| SHA1 | c886f9c16ae22ae04f0ed69862bfa450c2e9d3d1 |
| SHA256 | fdfdebeaf586a8b21ba503002cc8c8d49b18093cbc9a0ec8586ba737ced2ef66 |
| SHA512 | 975a848a832379231ceb3d470df5c54ae5a6bff1175b494d54617e782179018e78eb4e5fbed17154aa0e41234f16efddb75af7c2db0896a8eab3d119353c451f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c
| MD5 | 61528ea1984ac5ed371cc2610f30788e |
| SHA1 | d7b081052b5735604c5dc408bd2d180aa296bc53 |
| SHA256 | e6255dce1cf9d61d9ed8f1c865b38e5b7b00111bb8a2b6a5fcac1108e9c571b1 |
| SHA512 | 367b9cec1d57efc1b085e63e56b9dad38a350506c2f4a61c3c7773b8dec8fb22e4160888cd97d22f6e9b81c4d44c0275d4bcb8c43f6be817161ca474316713dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002e
| MD5 | 1054e78f17db6eb8fbe6734fffaf7d27 |
| SHA1 | e3f94c11a744325d5b780acfbd6cef4f234295cb |
| SHA256 | 58b2aebc09bee4ac7057eebe2f90693b66fb625f56c77d00b9ea70acb6c20c92 |
| SHA512 | 446d5508d30c6e11728786b3144f3b634852de7dc925fd963b4646cae8e049cd3d884a0c374bc2dfcfc154e3ae92b4218bf7950a04506f3b5a285d619110857b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 94275bde03760c160b707ba8806ef545 |
| SHA1 | aad8d87b0796de7baca00ab000b2b12a26427859 |
| SHA256 | c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968 |
| SHA512 | 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 388ae498c92525b1936e86f23cd17fe2 |
| SHA1 | a35e47212847315d420ef48fef8aa6ee8e6b4f49 |
| SHA256 | 5a47edc640c72897ea15fa3d738b45bca136911a878549d0b94e4788154def69 |
| SHA512 | 55aa85861bc02b9470a01f1cecec7d90f6f3dde5e01fda467a750f123bf7b2cb52e5ab15040b5a4ee3750b59d42fa40b0e722cde54a3fc115e4fe7908b63f04d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d886235ecafb331408c4a72e6ae2a7e3 |
| SHA1 | dff341d9269c4d9da4cbc274443a08aaaa323d65 |
| SHA256 | 3ef5130e6c1e78759cb9dfd32ff85b4d084d342f4b24425f940e41372a09c97e |
| SHA512 | a9f5b36fb87f3166625457638492e8e5e5e49e442830a95d7a3bb486186e06f61de6c94596c334081d93b50348a5fa144fdb7ce896054a0cec96abde2783bbed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 131caab78d0f67af2485fc567c4efb88 |
| SHA1 | 9f6cb5173d386c53776261fe1ab7dd8622d5a1e1 |
| SHA256 | edda03aa9d5f28616b5b365d5806851aca713b3c18f789777032399c28d4c1c7 |
| SHA512 | e21c6ab92fbfd69c4daa3d9373231b34f4b598dd9e6689b0adaa996ab28702ea7d8d20d0a9080d43b14549e162d51834076b6fff1e2f0b86fbca3c6de7df34c6 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\vshub\SettingsV2\SharedSettings.v1.sqlite
| MD5 | c8840c07a1aa86f3a53e814551bd3eb1 |
| SHA1 | 72d6594f39ece97b5344a375a3b3953dc0185b21 |
| SHA256 | 88c1622816714355d01aa64b4b6c768e55966754873526c5a6afc87d70d004f8 |
| SHA512 | f65f64f7a8704bd8d92fccf9d14166fe68386197d900d4e291abfe664bdd8d900a7354fbd651b898ce73e8befb20501a7258d5884b557d381f0060a71f80a670 |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\Search\Index\UHJvamVjdCB0ZW1wbGF0ZXMgc291cmNlIHByb3ZpZGVy.blob
| MD5 | 3981078edcdc766e46708c98b20fbb91 |
| SHA1 | 0b9a97be0271f36cf063a86c4e75960a214b3108 |
| SHA256 | aa73bb3022a5920d43f42e2e67d892a62b2a958521404643e3c8c418079042f6 |
| SHA512 | 275f0c177dc6fae8d0f5b32276bba9f2c271f8819fcb41a14727ea95322dc756ff72857f963b5243021d56ac9432654204fe0d486b70f141951bb280c2d9d5c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | fb4c7476ad0b044d68feb72de6f49fef |
| SHA1 | 6b158e10ba3695209b37a611ef349b51efbde6d6 |
| SHA256 | 77a46f99a01ee5460fc297343ecd80f1a5d8a8cea7cf5cf4a911a27d78ee75a3 |
| SHA512 | 34190b97bcfa65dd2efb97cb88a32d242d442506518817f32a8e4fe17cc81fca0f661c531c7a322d5e963684f41d57b42fe4096df1957e623128ec2a8e2da76c |
C:\Users\Admin\AppData\Roaming\Visual Studio Setup\user.json
| MD5 | 8d6744ac84539eb31a7fae4b68801c64 |
| SHA1 | 17f7a7f42ad26b78cdbbbc4b96b18f4b154d6bbe |
| SHA256 | b9201c6b864bee52a29dad17d938664f10664313bdf453ea2f831ae8533d9be8 |
| SHA512 | 08669e3d0f6e7725a3a65460445cf582d44d12a094415accc0eee5945ab045a35894f56e1bcc0f9cfd2d699c0aed4e2b1117c1273451a915c27142704d2bfef4 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072615_12c5595d95e641169ae57ca1985ecc9b.trn
| MD5 | 5051e6e06a75f7bda511778cb262f19d |
| SHA1 | 5ddd12201aea1b3a85e77a82e3fb78ea1fe16601 |
| SHA256 | 22327fcd281e367e8030c70ad9ad8c130fd6e056283213679bee1fc750ba6015 |
| SHA512 | fa2965e0aa9ee8c1da932f16d572f15ef24d6d67e38fd45991611a17e8c20a4db06a39fa61e32170ffbda1b4002517f4d66c723adb692c9dedd9e48d60768c9b |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\17.0_08475949\ApplicationPrivateSettings.xml
| MD5 | 60353a5fe88f0000d5f1643f1976784c |
| SHA1 | 5715224bf3667716876d5106094c2928584c18ca |
| SHA256 | ea074525b605e4daeff82ff19dde17a88a0c4b692ab18f7a2e80fa42edd083eb |
| SHA512 | 433125f710632942041b5df5e2c96564aa335a7fef248af9c48778576e66be720a9d8bad439a8a4df928e524b650a8442d534f7472fb9c3a781b4aaa1bf9686c |
C:\Users\Admin\AppData\Local\Microsoft\Windows Media\12.0\WMSDKNS.XML.bak
| MD5 | 7050d5ae8acfbe560fa11073fef8185d |
| SHA1 | 5bc38e77ff06785fe0aec5a345c4ccd15752560e |
| SHA256 | cb87767c4a384c24e4a0f88455f59101b1ae7b4fb8de8a5adb4136c5f7ee545b |
| SHA512 | a7a295ac8921bb3dde58d4bcde9372ed59def61d4b7699057274960fa8c1d1a1daff834a93f7a0698e9e5c16db43af05e9fd2d6d7c9232f7d26ffcff5fc5900b |
C:\Users\Admin\AppData\Local\Microsoft\Media Player\CurrentDatabase_400.wmdb
| MD5 | ca8c0e1462345599f2c731a22a1181ae |
| SHA1 | b43d4ac9a80827132d0ffec1106139b717c336b8 |
| SHA256 | 4903bac10226cb3c88d41033dbea4f42e853655d0c40c0360259caab4d9738d0 |
| SHA512 | 955873a682dafd873103836122adc8143cca37f67d183b23f17dfd4a5e31827931bbd2443934899eac7994daa5d5ef23bf3d906f4afcaabb36abf527b45d1d8f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | de89a4b1f1cc031262b81eee5fa07130 |
| SHA1 | 580f3011a30db949b2bcff6e9b501a1b783977fc |
| SHA256 | 94e22d8f7708612a8b50391041829e4312850795599423a8cc11c0bf39d45b48 |
| SHA512 | b26eb85ee008e22df76922fa304e83f13b74aee0a927023ed553077f7ba8aeb44934525e9d7c491f9199ffefba5835cdc3719d38978c7be788001bb79e4389f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 7a97ba0aa9e213cdd3acfbe1b99bd2fc |
| SHA1 | 98e7e055e1214e4ec1d6f4bef891d0535cdca3e6 |
| SHA256 | 7eb906bbba35844f9fda766329e21ea2f3099030c1f22160b5d6804f0e36b783 |
| SHA512 | 24e2970a3e9460a0b497d172f2b99caeaf632f3e1fb9d0cc0a363301c76d9b8a0cde49353c65b1d2a0ee80f63829b636719ddcba701253ef531e0a6edc6bc760 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 2512640c6d69431072acec00567fce39 |
| SHA1 | 72327569f7a1075861be8db79422b966d327a5d9 |
| SHA256 | 6a6c8f6152430e09a7857affe22ca2dab17244a0a4e99f78a54a699601360848 |
| SHA512 | 04d797643bcd2a63c93f2ac22fd56ab9ecd6d265015f0ec068ac9865640daf77897fd48d70c45da6a3ebfe9d500aea604948f392f2ca5baa263c322dd756dd3f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | b8e186b742fb27179c9e14ba6b4eb5c0 |
| SHA1 | b12037b4049aff620cc273ca01842d617d6a9db0 |
| SHA256 | 7f05ba65107cbed46171d59e581318fa5c2da2fef949894a1b0bd136be918b4e |
| SHA512 | b5cf6c3f82b2a8a188488a310153fc2717b785669e1cbe654b8dff05ea3b194e6dbc9222764026d5a48c8fa0ef38a208eb0a4b883fdfb6ce88838217b669e6b5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 6811b308f7fcc71baa1b6c5e1ff60676 |
| SHA1 | df0cd75453e0692efcf01cb283b9768686600af2 |
| SHA256 | 7b7fade906e7a9bb1b2ba4b2a3daa526aaa31fcf73e43b073951f4e71a625e92 |
| SHA512 | d572281ffa320f1dea7be745a1094b3120d13b4688e04f1cf21e85cc8c03c91e2a84ade6633b0c8b272295ac585a177163ec34fc4ead2fceb5771a0c01ca28e0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\324ecdcd-d648-42ee-83ac-ba4142558041\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9057c195a5c4b39573dd7094fe39414d |
| SHA1 | 59cb838554ed1bb4ccf2cc9d9202f13383d3e039 |
| SHA256 | 478b2694759f9912d5004c2ed119547ec5f86ce5b450ddeef50cac11e8ddf859 |
| SHA512 | 9e0d147dbb4e7fc3344e2ab72608241cb915da194b7ed5ac8a8b0115f195bf576e498eefdd004b32c4ed0a88970f1ee82819d82cf5fdd3661df7d21a53f3ef86 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072735_1a9c8a122f7245f38eeaccf8fc43697a.trn
| MD5 | 956114ccff7d3db6c470243d247e4358 |
| SHA1 | 33caed70856d9cc6cd0c8ebfcb20f96349a9cb62 |
| SHA256 | dc3c5ec2ae8f833f9e19568a1fb08a19e518248ea6da491cb8ce8348365cf6db |
| SHA512 | 991e5c94699ef9781b086996c4bc403dc3fbdf1b962fabd60093a22629fa2a249095102dd9097fac9b561ca7a421ba3226dfd3a7e4d2da93334138ad2fd35e14 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 83e74eee633b6b18ec2ba6425dcce9ce |
| SHA1 | 1800035be633030454fbb208da5f03aad95227d1 |
| SHA256 | 1f4799108d4f3867d22a50ffd1e9f8ef0d24e533f374a5daeaf77c15f78cee01 |
| SHA512 | afa590605ff1be0b10a0b2eb9be35bb665001fd9b0bb379d9ed47a33cc151f5ffe2ac0cc5a42b0f52546da0d0ad50c94ff2f216397ea74ddfd0e144e3f732cc0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 06e8d537d1e573ec58f02c3be7830627 |
| SHA1 | 15d61463887e451c161a3dea1706e4dcc40fb68b |
| SHA256 | e5989572ded641ea3feb1d3260223d3f6300cf40ebf0aff09beae58ded2e7337 |
| SHA512 | 318b3203a2e36a4dac140164f7b41aaf944b8c6989c24a66d920d5ad5bd2e81365b5ca50bb7f8a1d10f7d2355c24d2355c983ccfcbeddeb529eca4dcf2658983 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 4930e23a4b18d3d1cc9be1e40e979562 |
| SHA1 | ea3cc4eff609dbe99d922fe2dd35d9c2bc523f81 |
| SHA256 | fc19872dfa85d0921b714820558701434fcdbec2bcf6e48e702130cd92c7f351 |
| SHA512 | 464aabe0ed1dc13c8c36ae0304819d548c5e0cf22e98c391c151ae222a74f548f6db57b1c769b6b16005d342503845d47f793a08faf7a5e3670458207e6d08c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000073
| MD5 | 29ad9ea37ce397f90a9b0322792a453f |
| SHA1 | e0ae24a29fe1daaecadcb6f6db1cd6e3d051a273 |
| SHA256 | e7ac7314e4507f160cd0c863fa5c2cdad5c8a0fe83d5421e184b9aea877c4a84 |
| SHA512 | 444c3999c3673d298894d99c61d57cbebac28da2aa63826764ac8ec21b0eec81174b4e1483391bebc55b4a81e1b9e17d97702f3cd995694488f4821a33addb20 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000074
| MD5 | b322e56a86b24d52ba6c2a10614ce78e |
| SHA1 | 9a990a198453af55e2c86f8a85ef6eebcb296f4a |
| SHA256 | 3df48c3c951cd9bde194b92d644cb82eacb0ea91d01761fbafb645c4462b816e |
| SHA512 | 0aa6f828d3a3472325651075887379ad159c348c4399b10e0c3b2556d52f879e1f57b4e8a80c77c1845653d0fa50c8b228c5ac684ca70b79b98c245e4d38ebe1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000075
| MD5 | 53b61f5b29c1179b0279fbd9498a1536 |
| SHA1 | 140f44cd9d51ae81295ed199ccee46a7d37430dc |
| SHA256 | 197e9e4a9e3855014800c3bfb36a9e2c2082dc9ebd743cb7a3cf43736fefea2f |
| SHA512 | e7c6ec98a1e299e4a6c711d02d1c3a27cb3d22be2480f02ec458c9d119e48f70843d441729f3cb52c1f2ffcf4581692eb61ff644f99f88eebaf7c9af4d5cd57d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000077
| MD5 | eda13c6b6a5166489f77c8d20050d7eb |
| SHA1 | 83d1706bc1bb4b7e491045b945c3b50db09f58dd |
| SHA256 | 6031816aca7ea5570e205613e1d9ca27f99dafad04dfaa478b78b7127acbb637 |
| SHA512 | b8cf001a29d1c1a1d9d075e7e695cd913d946ab657b77ef1e23bcb452cf301f7c6a7d7c6da921e49b56108e7794ec974ce44c0fe058180aa5c9e7771f2906357 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 4b47162688d136dbc250744154a4ecaa |
| SHA1 | d65014e50a3b4f79d35add1220abee4e4638e45b |
| SHA256 | c84e82dbce45bdfc427953b2246f542743a2afe0f9b5e4511c5d87a8185796fa |
| SHA512 | c633d2bd39c334c0b356b6d4b40860acbf069a886dd58d7c68ebe29e00dd6a564a76cac0658838d4c4a1faec5d1b7fc848ee9727af63e07c1090314c9798cf16 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006f
| MD5 | 7a204d478c8dfe822bf86f9103bbd9b3 |
| SHA1 | 7114b36ea1588d9372d730b2ee5dec7a3aee36d1 |
| SHA256 | d9134e3cf60db564c49cc181251c7308bc568acf060444c443a90c0f464ebfeb |
| SHA512 | f5fb06a9808e9370a5fb3b926ffa27746ca7942eba36a2f63135168218e326abc74195453b9bcd8a045d5870a71b7f250dfc281515c7fa51857410acb316763e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000071
| MD5 | a86dfb9626075ee39d125930eb70decb |
| SHA1 | 726913a8ece1e21b5880bd124d0303d9d2e422a3 |
| SHA256 | d9b51ae05e92fd8252d7b96e38565a8ada2d92ce25b7bbb1ecf5dd93338912a4 |
| SHA512 | 38950194c6c88f2e83a43ffc023ff3f6a8a4e4bd8dbd1b16608feca07f8efd7618de5586ebb6001adf6d8c841469c5cd1823d5e629fe2a2d0a90f72195c136dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000070
| MD5 | 05295abd3a578f1e0cca58b61cb9ddfb |
| SHA1 | a5222476625cb4c7b1818c015529c16f8f8d82f7 |
| SHA256 | de1b90a903dd8f62bec23c2ffd6d5da32b6c5fd1e23b157cf864ca128efe3f00 |
| SHA512 | 4b93b5e99c85763bcce3edb31fd78093aee1fd9d45d7c9c0a0b1dc3c17bef33f4de365180ee00b4350470e66ae239271929556d20011cf6a9d589b268a45a361 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000076
| MD5 | 4691023a524333adb2337720b52adde0 |
| SHA1 | a92c4dc3df565cfeed1e15ea4ff059ba01fd9248 |
| SHA256 | 19f1853554fe7305eeed5dda5c8f0c01f51e2e14ca101f129ace3ae25f5c3d8d |
| SHA512 | e7c9da80f49c888db06da32da467f8166c5e10374c207e2b7ad29a32d504c97491d96d5c298f4e070f857bff045bf4af25391b69cad5d5d379bb3054c4da8803 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e75ca833f3c40fbe0ff78996361b1484 |
| SHA1 | b7200d7fa4a2ce9d9fb248097fac59375f0b33f8 |
| SHA256 | 039f825445785a2519b234a43deef3dbd422300040107748beb0cf347b750303 |
| SHA512 | 54d9ff5c37fe3cd4db1973f9d74791ac2cc4b2ae4434618e0407a7c0b4883518a9718ade4b0a46236632c14d0c95a1f53206034ee75976e77ab357f5f0141b0e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9e425185-75c0-45ac-bbef-edde77655d07\index-dir\the-real-index
| MD5 | e4f94508109b2a20c59fcf5555b1d7e9 |
| SHA1 | 1419699dab4e7069a84820d3e9a51b38d5e68f2d |
| SHA256 | affeb93e6bd72775268b4fae7cebaed2b94f6a23690f0d6f22f560433fe48aa2 |
| SHA512 | 91d1a8717e4462d808b4259fdf53c979496aef336006d5839c89cf66751024cc8877841ddfee3e58faeaaf23a44e03abca4e52c3c5a11780d1d05d25b641f4ad |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9e425185-75c0-45ac-bbef-edde77655d07\index-dir\the-real-index
| MD5 | ff130719f38d0f0427bd411ce0b50445 |
| SHA1 | e80be52cec56900abce9b2a3ae6431e2007d2cca |
| SHA256 | 1bdf6bf2270768a89fb85136dd8c8c788e7df59c2bf7cbf67cdc7d37eaa3ff92 |
| SHA512 | c22f5e9bce9c61b4c69094982ed6ca14bf4dc99c7ed01cd5cefe7b48599329458cc89a85e8a7052fb4a95a7f1999dfc906ee9e8e9cdf215e7b9faadeb82e0be0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1f0e3bef071e3162fe812a6d622599d0 |
| SHA1 | 144309e1cb70648becf98646eea9962076b79723 |
| SHA256 | 79d77ef427b36e5295e51f8ec3966cbab1e6603c4be7946e7ad05fb2929b4ec2 |
| SHA512 | 2429df76ffce5b2077b24c529662a43f26c6322ea215d3fe0c9299d011100e47b94bffff558770e8b1dd533acaead0f298dec411d01d6e95bc56f3ca147a6eee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a5cc6f9bbba2e7d462f42e2c4cb80da5 |
| SHA1 | 4689c8802b6d4d74f242d41305dd96b8f2e589f5 |
| SHA256 | b0b6a4fc69f589f64eec76c47cc2510beddd5e8537760cb2e89c79c2018c85a8 |
| SHA512 | 03e5701a74fa92215b116496728c183c6cac7bb0698723f36a33c8bce95433035ca13717a65e46b78b8384fcb5bd0d3f04a0563608f504a7fc44e3b09e739cbd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bffb7d5b6a593bcd52d6dc3603f04e5d |
| SHA1 | f9489bad6c24804b5ef77b94d7998e2bac0c2c84 |
| SHA256 | 2dc82f086265b67fbd02ee094195739c523aaeb62adddd828e98a2387ac8262e |
| SHA512 | e233906e615132045c53a6093cebdfdabfb111bf9034d518f2c1a8466c44d3d46da6ab82a36ebb749cfdf2dbfc429b59dbbe6c70e5df14e33cc9b598c3ab13a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 06f8182ff9ce95e4c27a3bca55724be9 |
| SHA1 | ad5b195d87c16257c1bb0c9c58d6a2090d478708 |
| SHA256 | 1557e383c2531afc1dcccfc010791eeb3885db1ab077ba110ad80fb9a2f85925 |
| SHA512 | 4ea33508723a46d092bc91fa37cceb65cf31783a9c1f8c85bb81f5a6608c2879c4036cc739ea32a343266a832c2f1267300ea11b24ad5ce42087fc1333cc8d09 |
C:\Users\Admin\source\repos\Solution1\.vs\Solution1\v17\DocumentLayout.json
| MD5 | ea99e43ff80694effa4ceec6b5164b2e |
| SHA1 | c878a3d3c53a5f5cb99e305bf6fed24d7b507679 |
| SHA256 | 14234fd1b84d0133c42ef9edcfe43b0b39e091ab6c8cb85c5b07b98647aa59fe |
| SHA512 | 494c089d31365ce6b72eab24ab414200f0ff267a44163f5c1d36ba2930e59e7a397552e4dcd0c25e411feb0a00af2ade8cab50d9aad0b35649af80dbf614d990 |
C:\Users\Admin\source\repos\Solution1\.vs\Solution1\v17\DocumentLayout.json~RFe60fdad.TMP
| MD5 | 09b63bc1658468b4c4fede5320f0e41a |
| SHA1 | cff0ed4b30268fa5b163e3c7dfcdfa05697b8ad9 |
| SHA256 | ee2c8b76088177dc8aad99a8c6db2b22f5c0f1a61188a36c1b5f339b19e1b83b |
| SHA512 | 421e8ffeba8fafeac8d73bf1084b8de70aee42270b39789e04218423d94adf8f60287477ada612593e0bc974d30460171a4baf4302e73a612d2ecbf8f3c1071d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9abe6bd2-3460-47ab-abfa-25a6b77abe3a\index-dir\the-real-index
| MD5 | c3b48b724bf75130aa8601469407a2dd |
| SHA1 | f76a264855ab5697029a099ae6e533b2a29d4937 |
| SHA256 | b46b6349e098f20b99a977a8c71b6ce98f449c2f21ea2f3bc4fa15b4ce832260 |
| SHA512 | 0bbdc3b928e4ed3994efdfd1ac39c911946a3059af294d4808ab6f41d60c16908ca96aab79591a454a52f8e951158ee6764ae45219f5bb31b11fcbb798d0ee45 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9abe6bd2-3460-47ab-abfa-25a6b77abe3a\index-dir\the-real-index~RFe61002e.TMP
| MD5 | 9fd647bec577f8dc0971dab8f45b0ea0 |
| SHA1 | c963919c64ce9205303ef20c59a65aee8fbae41a |
| SHA256 | 2184e7eea3e5ec7d1b76e9969a7487d7c6a933a2f3b546a7205a9229497aa802 |
| SHA512 | 3727fdf9662b412a7090090b656ac3756a1a55df0e1c0385fc1428441f4c198dc6bd2f207ee65dcdd39778ff9e6264a6421e7f288b95857006b5e85ceb9f707c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 1c171f864c50d879d40dcfafc2d77db3 |
| SHA1 | 73b54bc08298cca9564a6a8878b5841bfca31727 |
| SHA256 | ef2f6bf1d1a685657e144477cf5c3d7fdf8d36d4326c46f90583e9831deef017 |
| SHA512 | 0ada8b5d7111e9a3bafef82e04e90fd634df5cdc8e0f89fcb89cd6afb7391f0d5b9a1443ad9e611ee2a6455faef636f6032d30bca66c48e9912490ab654ba579 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504072810_a4968af0a1ef47f3b47932e054a7496f.trn
| MD5 | 9a30102e10130e0676d6389e2eb2179b |
| SHA1 | 17e1cc237f6ec7d978ac61c9e7d23d825424d9da |
| SHA256 | 363a067fa41e752eca4c87c870d510c9a47bde575274ef01678a4de5662ddf4a |
| SHA512 | f2043765be94b0b9d46bd984565147eccad79ce97e55ec2f5c0a1bb8b226fbecf118ca199b1b99899e582c1c3c319be263b72e880d50aa0be80d996beaf2fc14 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9e425185-75c0-45ac-bbef-edde77655d07\index-dir\the-real-index
| MD5 | 5affdf6632cb87c2ab8a944d9ada0dde |
| SHA1 | e7279d7b92016821dc97801c97cfc8c23fcf40e3 |
| SHA256 | 24b66dbeed1989fb40431ec126afba15ff4f007081e8cfb563ffa0c921e1848f |
| SHA512 | 5ed51be4df38dbe3368ecbfdac2a241fb6be12e08da6754c718120956354a016d1dc780d77a8701cd18a0d08320e83845dacd659a75e3f384a72b90a14e152f2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 9f4c45ab7769cca844ef058dbb0cc528 |
| SHA1 | 622e7b742ee4f65cda8892d7221734014931c2e7 |
| SHA256 | f401655819d6f6cfbbd913db6a816f04157a77fcc2c46bc2ab8c36688bc165b4 |
| SHA512 | 922c250b71114322733d3dc29d0236eb2d7f22c84af03a752b52349973d6289a2337a6e7950b93df5a410f8b371d8614b2261db3c26a063cadc8755b01adfca2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017
| MD5 | 87c2b09a983584b04a63f3ff44064d64 |
| SHA1 | 8796d5ef1ad1196309ef582cecef3ab95db27043 |
| SHA256 | d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0 |
| SHA512 | df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 5ee9a6a219847dd983b174c3ad7f1f39 |
| SHA1 | a1d24a9ed76ba0fa8f83ac43bd9de2b199602148 |
| SHA256 | 83b0a1dea9bb24891deb97b79dc0b85241728c0ce2f3da355ac64dbe748a95a2 |
| SHA512 | 71b379160470f3c33285ea5b8f3d4618fc1545a0f1ab78ad0d208c299acfefe317e742af5e8eb5a2ea0924737a32a109b119dd89cc1334b832db0447dbee7697 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 34c1d36dc582b4e36b58744a3201c77b |
| SHA1 | 896a49eda40c1604ff0f5f9acf44143e032c3d71 |
| SHA256 | 31ea01abf6379a2f78b10270712387375082d8d5ffa918ccf36b7f0d057ff8f4 |
| SHA512 | a9a57067586e620a8ce2264322c2f79475ede25d32095ca1119cc3e83d4c2af769632ed3c003cd9fd6b01a30917016b667790464f3e9a3905545b168d93b0c47 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 287ee1119e1a2c3a7923f9abd066f971 |
| SHA1 | 017491231a1c5045d2971a897258f95fcedc547b |
| SHA256 | a6c36723950527c9372c6221de0dc97ad4ddc745f10e917dc7d0531bb68aa5d6 |
| SHA512 | f5d92fb38924e2768e8060d4ec96bfcacfd54892f0eaf37c48ec7979f59062dc7f61c3647db21f8c1969e11aaf232f3ab133dae0bbb64a4c9327280147a564d3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2617785dd780818ae2ee7451692f6416 |
| SHA1 | 4a645aa889148546f7d7ede67215f08caf733de5 |
| SHA256 | 65b765e4ceb2bdb8213f61aea30783c83e37b2b6617b6263ce58e1d80fb9e39d |
| SHA512 | 240ff51f340298f886c1986e6b71629e3fca86b35cf2f34323cb4a7554e521338da2902bb288222dffede6d387e211a7791a11f6e348c63bae099b09da3d3cba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9747db89fd0d1ed47c979280af824191 |
| SHA1 | 3f246e18f59ff576e836d84a568de600d2f47c9a |
| SHA256 | 4bee1f8a76f7081653f1f8eccbb99f928cff6b86c71d850acea3d81aa93a7862 |
| SHA512 | e9d7744726f8421b28aea5adf6cf2a3ce808a5a0c4fc50f2b615d5cb310212c4af6013f65f718783c3381bda1ac5c39c1ca788b662109f57564c2934a05d9d38 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3bc9fcd29a8071f2f1384253e0e5fdb4 |
| SHA1 | 9269386e0e77bd289f31f756a3349d3ea92041ba |
| SHA256 | f1f2e7aa555534dd9b74b2be69d68c072c127f3f874926f74cdae919333ad0a1 |
| SHA512 | c789c3f4a9ef1a607e515e7bbcffabb32dd736f892b6ebfd521c60090144ef911b8ea8f854831b5690389d6a8bba6eec7c14028e427caf0447c355bb95f1626f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ae2e70ef894465654254d24364b269d0 |
| SHA1 | 3f701be001cdedfc342a1f55c4726100c0b09d8c |
| SHA256 | ab5e10ab46e9006c7818ab2d332fc2b3a72561695ed33dde95303911854c1558 |
| SHA512 | ab707c6edb7f722991f6ab4c48730c7e765fda19cf40683e3b57f8e476a11e18335030331ce7051794e077347f4e85ad45aa17eaca26283fcecf143ed3821618 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{1FAB8CFE-9860-415C-A6CA-AA7D12021940}\2.0.0.34\BGAUpdate.exe
| MD5 | 3f208f4e0dacb8661d7659d2a030f36e |
| SHA1 | 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff |
| SHA256 | d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b |
| SHA512 | 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ac8bed6b10696445150857a1471adb08 |
| SHA1 | 9536ba1698df7bb88451ce74f7eeb56d2d174bcc |
| SHA256 | 7e45d5df61423c0f0a2ab1316efd0d902ec72866bde712008e895cb9887837b1 |
| SHA512 | dc3266f8e3ef0e23ee2c13e916ae3ffa127fbaf39b81358f9daa54b1dfcc8d956801966b7e2741ccc1d233a00ea4d75abd1ccf05bca610d84d82831d382e8ca5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1c1f55e10fe5a9e5aeafd1433c161390 |
| SHA1 | adc549e5ab35a7eb3d7138578500be5ddad159f6 |
| SHA256 | 372ca271e8735011009b64c6db46d07f82646cae334cdc5b803b147798b6de24 |
| SHA512 | a2e24b518a58a4809763f95b105670c18b104a051f9fae40d6a8c8e42836f6c52f3a3dc6c4019e5ea9da0183e7eedb824d5877c524c40cacfd7e5c64000fb559 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.185.29\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe
| MD5 | b18c705b3c68cc49d9bf3649abc75c24 |
| SHA1 | 6dc8963dea0f3185368790dee2a346301b4fa24c |
| SHA256 | c2ca3135f3cafd79bf90d4cb3118943ca17f40e0d651d1fc32b1b3d22d1412aa |
| SHA512 | 7ac302c1e85c652bd897ce1af812950cd23a53c041af82fdcecb2314bbd1667bf2fc672dea40c21858e64befc9bf60190a4428f0b41c30317bb0e5ec7c00f71b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000066
| MD5 | c8e40ff28cefa80342ea0e35a7f6e641 |
| SHA1 | a75971552516e2d053ff79ba5918eed2b3dcfce2 |
| SHA256 | b178f5be39a50c3b4042ae323a9e17179f2c6de407402b5d2528287d97675b97 |
| SHA512 | 2b71c3b37bbba3d2ed50d0b372a4fe5954e87eb3d7d427ef8090660c2c4081d48159afbb78a9d3cba2595b5dc846545aaa29955c78d8546b1292a920a77f243b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_0
| MD5 | af79c2eea02fbfd7ca62cbedc72a17e6 |
| SHA1 | 0204912cbc6432138b9c95a065252367f388fdd3 |
| SHA256 | 23a1e43c55bbba4335c640879e7e0ad0541a18fce3f2e69ce311d008e73ea9b3 |
| SHA512 | c9ed2373c2c0109516e467ac0eebcc4daecbcb4a6af949d442a3b7520dc4d1eac74063b582f41b1ac8c55e3fc5a7d2f9969de1ec0c8700f8e562dbb58a37927d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\fa813c9ad67834ac_0
| MD5 | ca561544b763af7c73bda82d38f4b340 |
| SHA1 | 6950401574d42d560eb017ab0092d34128fa787b |
| SHA256 | 391ee9a20034c43a1c0bb7fc97cd0c12253f45a461b6ec38b7b82ec077799957 |
| SHA512 | 714bbe13f7102cfbce6511c0f85434cfebbe22bccb947ab5a864bccd1ef264447e92c02db8d130e4605822cd6752d1e7b732915d6c645fd9321738fe2191891f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000091
| MD5 | acbba8efd7406773a77ea92db434a8c8 |
| SHA1 | efc04737d4cdefbb2d0f6e29c0a6dd745642fb76 |
| SHA256 | 66964627e2b7b1aa50e647cb7278d6a04ff8632cbc786563977962bcfdfc1bdd |
| SHA512 | ecb406ef6b66490f88bad589660c819faa4887c1b6ea45e596859232183aa9204139a7cffa2bc969d9c08d59db83b0fd92c02fc8809442e02e4eeec7207f61e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000092
| MD5 | 47ceb250999327d8551cbdb9c52d06e5 |
| SHA1 | 46768652f80b7c347ac42472e432c90c511cdb4d |
| SHA256 | 120983da1fdc9d9bbde9e9d07b8371cc5aacb5cd8052dda6c401620a932dd3de |
| SHA512 | d3f481fcb52b99a1550f1b27b30ef9ede97ed594fd45e9ed179cd20aacc661085c1cad4feef14a26b44d6c78f17c09b5ad24d3df3287d266dee70eae5d50bb92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 6f0b6e768025472140bdceb78a03c03d |
| SHA1 | 9ec5367b68a1fa6817aa75a8d42dc1aa89a96fbb |
| SHA256 | 5e0bca2c53fb57383685a8c6bc575ff5433f18b46d4d3d34a0224fbf9f88cff5 |
| SHA512 | ee2251432d71e9465af80ca5c89899b6c647c57e6e97302977561502f500bbd2edd66be2cfcfa665ce8fb639e83a8f325f01d36c6cc34e18921f6f2fa0408d61 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_1
| MD5 | 185d7201c98b1cd087bef7e16b746939 |
| SHA1 | 3c756cc5aab4ebd0d39a0fb4ad18f5d1c83b5224 |
| SHA256 | 9d7f47eaadb26e7d10ece7e68f00929e4af3b2e307e253cffd57ee0cd753518a |
| SHA512 | 948451cfe4848111727cbfccbfe485ce9c058e10e5f1e7f8b03ceade4fc408d1431efc2be2f0b0c93afda1be647d7c8c44881ccfd31d90208651463ab27d16bf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000079
| MD5 | dc059883b2fee7e64500b5b29e9be84d |
| SHA1 | 017e4d09677e3909d4aca12561b3e56b062021ee |
| SHA256 | a9c96317b7ca967f45884500c06a20aca84dceda82b2298df36b20d8279deb51 |
| SHA512 | acd330a86a4fd8b202ec0553dbadf51ae3a5226c6c52f143618a7733839d13ee8faf2bf237e5f6b14fdec7d66a45c76ab806de8d8768af5431f7388b36a1d5c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\fa813c9ad67834ac_1
| MD5 | 53c66471f342f69f491358e160db70b2 |
| SHA1 | 43993841a902d3916bdc8ba083dc420efd2f85b2 |
| SHA256 | 76aae13e25ea4fff2fcfc66c9e1566c82179383ef2b99f94275a41be858d1ac5 |
| SHA512 | 11e99dc83e09866aa1c1d5ddf01f04a393c7aa41bb91fbc298ab93f9857fbbd3ce4a3901d57eb2e510b4e69ea41a80876ee1c169706fe954ff6e4051cb7092d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | bb6f77597d1b8648f0bc1b39aadcc5fb |
| SHA1 | 335fd6ff26960ae17f15818fc5e5747af190d20b |
| SHA256 | 1202ac5988bd9f4fa50c53321c36c4391249a688774a0636ba6867a0f430f39e |
| SHA512 | c5cd9ac7caccd9d5fac839356f259e2e17c4fa80fee293c6715fc79eb313178590798b3fc8b51d472da711157209fad56ffbda8386331c723bdeffdfd87c0aec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 29c1230104491507ff8ed01912c38a40 |
| SHA1 | d095794efcf51bf5525df1d0b3b0699f9aea3384 |
| SHA256 | b1c00bf6c61b19d28bac9ef853530375863fb2d22779d8e4f79c0994f1f71b0c |
| SHA512 | 9c2fce5c1ace520aad5eba274a2891a1c948ac7c70423ece6c503cc87ddb7b474bcedc1a152afc4ae85a8a8b767543c80252187f2a7510c362152e0f5f1f7bca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6710b623444781c8a7eed351c7df17c2 |
| SHA1 | 4e31b09d7018498cb3a3ecf39274a334daf37ba2 |
| SHA256 | 5f935f8703e6da858d6c146021302fafe61e6a7caf1570f5466d7f8556d95369 |
| SHA512 | 080db4dd239879331956d4ea9d8064f3f3a29321c5c4aaa1d4994e11f2b9fe8a18ed5999af7010dd9e96b9965f057b911dda69e844d8adb8568f241f7013e590 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504073052_6e81d2783b1d47188957347ae6edb3b9.trn
| MD5 | 415d22ab7297edb7ed0b66de2353281c |
| SHA1 | 1fc0bb89b770bf882dd87e0c70cb0ba5e0006496 |
| SHA256 | a89a4bfc335df553269e3e46833ce5a8516ab5a49dc9932abf8a29b226d1add8 |
| SHA512 | 00ad77037cacfcd409ae5ce8a0c2ace3fd20ef67aed4b9728d8c7dfd2c63ae3eb18533505854910b6f20c618a0374c41dd7a88e4fa763109ac447ece39c827eb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 11963c2d21d788b1d70899a003eadc8e |
| SHA1 | d7d49c36f02fdc440366554c01e2a5a31f5ccc8b |
| SHA256 | c55bd6b2212dd2172804a692e179243c4928cc42596f0d5481c657ae7f989c6a |
| SHA512 | 5ae6cc0667fac7c574431bf258a8fbabc9202a1a0536ed3c517d363fef1f6ac5610bcea540d37682abfea2bfcc7fc3f61a5efa1305b6de8843c01042f0449b80 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 14f70311fd9ea341c1ab176a145d9377 |
| SHA1 | bbd1fe9ccfe634879dae47db1f2f8926475e11d8 |
| SHA256 | eff37befb92db14a28ac2d16a81ff416570ac2fcff02233d29c7babb05c548e2 |
| SHA512 | b62233bf099e789e268bea84c150d8da5870bece09bd468f3ddd460b9379284bfb2a1514f6d516c733ab3669ac3683b4de5f5c9bf65a3c009d15a4e0c4798640 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9abe6bd2-3460-47ab-abfa-25a6b77abe3a\58dd475de93a75ce_0
| MD5 | 2970112e6610cff8a8cc8c900a827283 |
| SHA1 | e351f2216fef1560ae4daab2c631423d43585afa |
| SHA256 | 2f952815bb6e8945726d6c440362079c5fb4428eb48d6120f707efb6fbf000d7 |
| SHA512 | d3863d4f8fcdbdc323fb89535def1487facf6c3940f82eefd456779dfb9dafacb297e5203c75e8fa39e5cab817df9d45ad76314d3548ce1f83b6b6d383850b0d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ab
| MD5 | 9031652e003a93375446308aef69e26a |
| SHA1 | b10790e7f08e97cc8f8a1509288c96cba18567db |
| SHA256 | 54cf966153572fc0a8b6f0f02540d64fcd74eaf18d605afe6488e2a8c2524c19 |
| SHA512 | f6f6cb3e3534c44180f76738a1795c42b9f4e428b11b72b48ff36599a95859c00d2cebae1d3448e60e34f98c52fe3c7873809dd8c815cff1613772a7f42503b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 99aa3241ace9594a1042c84ed476493e |
| SHA1 | b46c6df32fe30c617ec3a5d59151e3ed4ce1c08c |
| SHA256 | 120baf750910b45d860b612ba3c76af803c190b5bd868ecdec6c78bbc5bc7b58 |
| SHA512 | 2f2b1b0b8b64e64e03f94d92766a5ab96130a9fe926e64a76fb675ef9f0d38c9549fe7f52a0ab67bf3dd93c6c9e3213751d12083495dddf5659d306c543287c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 701f15e97add9560877dde991daca406 |
| SHA1 | ea1515bf69ede9a99fb27199a2c9aea3cbc938fb |
| SHA256 | 0daf96a4ba9fe7a2bee4c5eec373b2279906f7cb9bc25568a9f70da2d3ff4b1f |
| SHA512 | 8315121e17df44a79cd45cccc49fb52ef7e3b625c5b2b6058680f6f7fd681fedb1060dd71d6e8af465d58e57e3616a67cbef9b140971f12dfb3f7f7f801fc4df |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ad0d61f1be2c17c7d4d2efc846563c57 |
| SHA1 | 20117d8a549eb405ba4661832a7d4326ad3537f0 |
| SHA256 | 2df7c1d7f03f56249a45af4631f2304c198e484a1f3a384b7f0f0f3b0f390086 |
| SHA512 | eb9e6391fe6ad187b6796f0f0363170f01c1e65abdfd0fdf301d8ba478572a5209e75ba98474fa3e0714eb3e2ba9cdc13ad388db4d53355e0153ccbc6471c654 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9e425185-75c0-45ac-bbef-edde77655d07\index-dir\temp-index
| MD5 | b354f5fec451d174b6ff577e495b6bc7 |
| SHA1 | d1736a0ecfe2647ea6bbab1a4d97ee947f970ccd |
| SHA256 | 3dad931789f572b142aee370f61963ef507adbb896ad482be80859e4c2799a03 |
| SHA512 | de942044719ba5eb4b28f99112ed2c5df88bfa6a276e31b9d7f0d779dcce2b47511c74d7e335e85ff781cb6e6001669443fde66bbab05dee22c566219d9936d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | bc73bb1462fceb499e504285d841c0c0 |
| SHA1 | 4d4d9c1b9e6baf985119237f59c32efdd4f4a648 |
| SHA256 | 2a0f285af1c60a3ef1921b1368704a38e6b3a55f1e5de8384f8250c9e3a070b3 |
| SHA512 | 2fd0a921cb32e108ec80d886578fb3d922d4695fafc72d55f0faac14f26956f0ac2d08853b29548d3120225461957292cb354f1a5a895b966e04d364d571d82b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 1d142b88186a7e30e5b109fdf02343f4 |
| SHA1 | 169f60c0a158bfd480b64232a77472ced11aa19e |
| SHA256 | e0ac2b9cf7e57ee94f682f8879f0b632a6ef37ca618a1906ef557e2a6eb7f8c3 |
| SHA512 | 244010ef66bb363ec43d7b123b404b946eef1c9095d73b96b682ca33d7ff63ba60fc17db4c3e1f16219780f93a3150f22721588879934a426bf6d73abe911066 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 810512b6c1201275c8ab9c9449cce256 |
| SHA1 | d4d8e3aa4f4c183d13ac97709a847489df03fc7f |
| SHA256 | 6b678ba8154f302e1b996c27822c7c25140a4bf73b7b54c9fcc4af2fd878ce52 |
| SHA512 | d6f524646dfc42dfea69b7dc3333e32b4b4bd67dd7b9e53726b5e82c24a541104351fd4c786b1c6d92aef5fb7abef71e1119f8733386500a7861ab7a6af0194c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9e425185-75c0-45ac-bbef-edde77655d07\index-dir\the-real-index
| MD5 | 2d869f4742970d8bbbde40da4035764a |
| SHA1 | f9b62f90fe2e70fee841d625640dc0a82c929eba |
| SHA256 | 91c13cf4bae4150e5e09e4c3f112b228a1b3873bf4f5af0296358a9c056328b0 |
| SHA512 | 9ade595621f7ed5bd59ae62f55ecbc8f7d333d26e2bdefd8581ec80833906091f4d706b89f8f10b037177bc44882372cf06234d3d239a9f7eff1ebb7ca01f164 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | bcd6353a13328015c013e51afbc2301b |
| SHA1 | 4015a1d33c239d54e6c2d1442c701f98670aa3bb |
| SHA256 | 726001c4213d31f0598cd1cdaeb9396466cc18ad81abdc0917b24bcf909217c7 |
| SHA512 | 1994b5cb2294835e66a210fc503ba6a2054a0842c2072c0c55015c7df3d2680062d7e7e81b931e23061446cd3c25e7f02801c8d1431154966cd20cf212634ec9 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504073423_0c0a5d379cff412a88fbd1accd221b9b.trn
| MD5 | 9abf379567969d95ecbc109187869d82 |
| SHA1 | 5471885f844bc0d908f3ea636126cc01136975bf |
| SHA256 | 488f2220d4a2399021e71d15a2ee7b429f7275505939cdcf5092e64cd317151b |
| SHA512 | c5ade7b180c85acd9cf54c7c42fc5692589e061fa99d24d8942de3022529950fcf5815c8926efa9e2b0aa9968c2a336985950f1adb9ce68a1fb30deae86d9b1e |
C:\Config.Msi\e66bf62.rbs
| MD5 | 3d061194c8c4ebb00a54bf80ef41ec61 |
| SHA1 | d7760b808ebc837e16a677ff46b58042d8031701 |
| SHA256 | a2c8bbf4c2899d9e311dadada284200cabf3e603ce4ba3adaf62eed3b2abfdef |
| SHA512 | 507b11423e472a4360b561cd54b375efb029609def9f0f264d271199a4dd4727cd6d1f6bec4aa4b34c0955ff10c93f4b8bf0091787bc2c9aaf2673f87dedd3f7 |
C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Diagnostics.AspNetHelper,version=17.9.34511.75,productarch=neutral\payload.vsix
| MD5 | 684ef9d9a71bd35140d6cafcc0c0a0b8 |
| SHA1 | 69742dbc177770b416a72c37607cf30c437b5ef1 |
| SHA256 | 27a8cebb532b5de6e31ce8f1f41828ccc48f351dfd99ca21e63d2833f7a00f2c |
| SHA512 | e15f6d1866a1c190c6b9f597626b4d135efd2de6060a632d2ef686b087e746ba7c3c5275a917b499d8c74afaf4cd8cd75c9c2efd174022c201755a75dca0b9d9 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Diagnostics.AspNetHelper.Standard.40B71FD4972EC0A4749F\payload.vsix
| MD5 | 3ef00944cf4c3040edc1774eac18595b |
| SHA1 | 59f2f1f5bd406cafc0bfe57fb556509bbae52d74 |
| SHA256 | dfabc9f99a171bbc29e6062eebdf8f2e59dcd853c8163b8ff12fe085602e1ee5 |
| SHA512 | 7ddb70fad67cd4a9c7b0ecc13159da1ec995d1a0a082b5cc1ec3c1c44f6fbd69a87c68326a6b3600c0b7614d6811602d627b862165c61c0283ff4329be821d3a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.WebSiteProject.DTE.758F9F19821B83C0FD83\payload.vsix
| MD5 | b78386a994b8c2b0691405704745ad2a |
| SHA1 | 303506170adb5b58627460fc8c5adc0e9e22cee9 |
| SHA256 | f8edfe25c09c86a3b1bfbf873e127a8e327e1f327fe6ede2c605c9fe8ba5b19d |
| SHA512 | 6cea818f7ca14f2585c1be594ccf6b70a6ac54f958eaaef23c5f0679451b7c37699ca46386eda144ce0a0ca0f543e98c548ad9ba0fb821d34dbf11a1912152b3 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Net.Eula.Resources.37569011B3ED40EA2295\payload.vsix
| MD5 | 199999ca21a8013f00cdb2792479eac6 |
| SHA1 | 997941fbedc52fa36476d790e16c4f484013c856 |
| SHA256 | 1ae82e5ce0aaa97f3fc37c8bf9cfce8d18d4951dce6c2b9279178aad513c827a |
| SHA512 | bca79f89192cae5f17a33bf00d293bdfceb83c6885eac958b4d021377a06453bb5ea505577cd4e9c30a1fc1f552d2f5a9f35ecde232976a1ed75e522c649c5aa |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.ProductArch.Resources.Neutral.317AACFAA59D96C5CB5D\payload.vsix
| MD5 | 778138cb797c27ad44a2b3aae61881f5 |
| SHA1 | 5251cd4cb195edd1c9ffdf14857245cc557635da |
| SHA256 | 537277673cc00449c3aaa9e951fe87da92ee01d71c1d316787cb318bf5a51702 |
| SHA512 | aa326f5cacf95972e645983b52ffe78715f2f7079a28e04d7cf5131cbf34e46f3af7829b0b386d963a643d5f548974f9bdabb1a6bffca5f5546a9985bcff27e1 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.CSharp.Resources.Neutral.A39B12EEFBAEF5DA9F1C\payload.vsix
| MD5 | 99b200b1e3c3a137e55492634999f32d |
| SHA1 | 4f86dbe9f23a73a81009e1d138a6001fdfd4cc5d |
| SHA256 | 7738a766921a7b3ece833021f8bfc59387cfe9ce4d096622be3ae9ba600377f0 |
| SHA512 | 3e60c6b088d431f342274aec9a713757b7904e3cfb3e9de0e624e0ccc68112db9abe70525a5fcc78f90cd65f5767544ef7c0b3bcb1d79bdd355ef9910c5e8f63 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.CSharp.Resources.Targeted.506541A08802226DC88F\payload.vsix
| MD5 | 22181432ba24b5c6941ad3a8186af59b |
| SHA1 | 8d89e6a1311c8f67a8096f9790c995661557854b |
| SHA256 | e983e7cb7a9366575139d031e4bf1d9d9a51e7734190606ade22427f4e36d4e9 |
| SHA512 | 9fd4c8f9a554db3b44a17d7579d32eab54f02dcd2915b54d5a34a4ed4565f148f55c2979365f8d8adfc69a5aa82b49e776a599a749bd9791c6098d38b125788a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.ProductArch.Resources.Targeted.AE6F4412007DFE35508B\payload.vsix
| MD5 | c5408ed3457e564b0071f8e002e2d60e |
| SHA1 | 698023c37f5e5b7478d1ed8fdb3047c8c32a0cc6 |
| SHA256 | 63452f7689f39bd35df6facc8ff606883ac73234094c189651c5dd8b6ae21ca4 |
| SHA512 | bfef8ddc5909c6c25c385a029335b9ebff1eea3142aebd9ae256c53c2a25e70d11f8e8efaafd01ea851ff128db0e159b13b6bd827e103656258490db2a16be70 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.VB.Resources.Targeted.20E844196305D742AA3A\payload.vsix
| MD5 | b8f9e8e501041000bf26204a081967d1 |
| SHA1 | b50fa3173b0b87be899e5122b080c88b6c970c7d |
| SHA256 | 47027daffed895a47291efb2d0d00c0859def5f49ac75524e6e717bb9feee356 |
| SHA512 | 44cdce3737b3d74956a4f7d7ace8c909804fbe7083207e4c601d2b9b370232a10c59fa1ef433bd5ac2b4488eb2b5debc1be8ffd5bdf4dec8f75ad4b6e36a1f68 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.MSHtml.5329BE591AA88FB18EA6\payload.vsix
| MD5 | 31da3ebd001aa3f08d78b7a9d6ff864d |
| SHA1 | 2633d67f9a0f6457fb47748f0dbc6dca4dcdcfc3 |
| SHA256 | a7ed387013707abfa929b930965505a5ed3661808b711b246fe38960e9b940ca |
| SHA512 | 9871d0bcedfcd236dd5344d96bd4969136f248e0a9d5ff7a76bf09b6a92ec7a1c886f0fb2cf23530e2aec0e5bc46d487555f91b2b86f4c6b7fdf2eb700fffdc9 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.VB.Resources.Neutral.7E09443BF5645E67D169\payload.vsix
| MD5 | 898b8624dede4072132e887ce3a6d49a |
| SHA1 | b1080a09812443bb1ae6967296f0da27d5539044 |
| SHA256 | 6d7d3930421d4663a2d7fce4180e7a314070e7e396053bf9d87515f4485152da |
| SHA512 | ac19963b0be5f3d9ab47e906b8d186b0d4577763c61fe1d7290905869cb691593b8e702ab6aff0c205c5cf5cb343cebd3965eae3a5852f1589562c99c398fd4d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.ProductArch.Resources.NeutralExtra.1B2A22438D28A8123694\payload.vsix
| MD5 | a94d0e4fc297aa8a07d6e8b2c075adcf |
| SHA1 | 5bb732da9ffc1c7265e8c11f9d5e572d1d36c9bb |
| SHA256 | 3c0aa95a8e59cc205a714dd3931a20f10c25ec090b903cb487daec44cc7f87a7 |
| SHA512 | 389db53934697ff698eef14f5022ccc30a8ffb69a58dc9b0636eae408e6830780eea07fae96b4dd7983a5eef23b0da0431835da679b2aa4ec3ac16591001cb36 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.DiaSymReader.PortablePdb.8303BF49427ED8FAFEA3\payload.vsix
| MD5 | 34ebf07fb834d267a365f7169a6d43f9 |
| SHA1 | 400d4cc482318ef8f827e60dc7ee848cbe80d44b |
| SHA256 | da2a13fd5e73f780d774a2ee625ca2c6aebdd53ca6566c6f8b67e1560d338184 |
| SHA512 | b5289575688734b7729faa677af3a0e5f1a86236523f8ff178df5b29483c2344e427e97ee188541cd407217a54d549a4104890858f5ab89ee41adf7b60322df1 |
C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Community.ProductArch.NeutralExtra,version=17.9.34714.143,productarch=neutral\payload.vsix
| MD5 | 820d87792240e559f296e88428356547 |
| SHA1 | d0ff93d6bbe9602605125ab4703e915edcf199f5 |
| SHA256 | 9019cb1e41450f33138ebf383a8f376998a9a92a13ac6e92ad8e069b7ee4b746 |
| SHA512 | dd8a00ed50a9a3196678c70333c7e5a3e410db3bbbc2f4f6df9d38033e1fc476e221f34dc9e7e03baed3c327076129465a3f3aceda04a978e26f9b7197cf8a03 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.CSharp.Neutral.129D8FD333B777186862\payload.vsix
| MD5 | 3c575706b248e3bac8e38c9a15e8f43e |
| SHA1 | 9fa5e805be6746c065422128573d11af23f31ef1 |
| SHA256 | 8be2661d72980648dfc0aa666dbc4a38468430d61b5a7deea8b72e03581cea40 |
| SHA512 | 5e768db3ae98e52c0b39ca34aa158c2bc695dfde135cb3e7936993a805054cb8076442cdaca9e00eb91502c9b2fc52d0bcd4f8d229dd005b32f65dceb13e67dc |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Platform.CallHierarchy.D9D2B452732B3F669B3A\Microsoft.VisualStudio.Platform.CallHierarchy.vsix
| MD5 | 2fb257d8eeb0f85137e39e9ae6b259f6 |
| SHA1 | 601edb02c672c4618fe7e8bb98e66b0ea9ac6104 |
| SHA256 | 956c9c78a245d2b737c6ed9f24757ebafb48518b2f934dc555be3bfd62e66678 |
| SHA512 | 74519c450fd9ab07fded5a1bbf584c90b1403c57c4b0e8360b9957144ce2b3f284de7094fc30a7bb8554a2b574d7cb7ab31cff6617a3aa55a19b0a6d98bd597b |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.ProductArch.TargetedExtra.281C7E50A83CEA4BF2DD\payload.vsix
| MD5 | 34011f26d8b39c56bee4ab299acd458d |
| SHA1 | 2ad317ba4326974fd6b36bca2aec3db4b633bc02 |
| SHA256 | 51e4aa9b6426185b7e07aa29fcab2e60c0cd66b2f2630460febb787dae7317b1 |
| SHA512 | 726687840b924162b29a54f901156f7ea301a878f7bffa219b5556c7621df47e811c1557be7fb09d0dc8dbb0b0097283eed6a03586af255896df18c673b9e9d8 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.VB.Neutral.D90F05278914E46B2B22\payload.vsix
| MD5 | bb56a71c4c83af5fa9c6dfb00d96939b |
| SHA1 | 70bcf1a511782327483fa2809be00f2dfd569229 |
| SHA256 | 5e1f420e6887fb435b34872b1c3a60b10809b9e1d05e088ac64a6862ecb74721 |
| SHA512 | 49deeb6c7bfd9a0c2c867b3690b05fcbebf2c7b293e8e75a315f383a77c7324ccf4cd63bc1ada6773cc6c46893d7a50faf05bac758d81fe96716550343471723 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Dsl.Core.Resources.C9343AA93BC124BB5BFF\payload.vsix
| MD5 | 1f88f8ca666e443ec44ce33ed6add44e |
| SHA1 | 9d1f9756ac353433f91f44e4276aaafd979f6e16 |
| SHA256 | dcd9f0cb6d564c261f004b6e035e264bbc540b3732d2b38efad26a377ecb315c |
| SHA512 | e92162cc291da7cb96873474bc400938faea073645c33dcc95481e5f2a72fecbc796f0d766d8dd66741b46cf9b3531f620da3bf9ffc819ae7922c2ea1a239a79 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Dsl.GraphObject.0030D61CA34E49B11C4C\payload.vsix
| MD5 | b189ffa62dd9becaf865e26a39dbdd3d |
| SHA1 | fb203b31c5613d2b9a3470d08292e7c041c011bc |
| SHA256 | 3dde9088884fe04224a8770c7a4e3681b0d99dff449fec37a4dc7abb020112e7 |
| SHA512 | 501d4f34534fc819721263a61b85b16761e16c659340ea6f3e80c40add0d42f7f01d84d396c8dfc61cc2f857888de571f82858b2f562cfc9ae6ebbc78b177f06 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.IntelliTrace.CollectorCab.1E50176987D0BFDF9891\payload.vsix
| MD5 | d07454e7f8d15787a0cdc91713211f48 |
| SHA1 | 711721ea7fea02efcbb2bd6cf6d2aa1258619c2d |
| SHA256 | 5b24c4592c5cb838721c08a2d7d70e9585df86321df78dfbfe5a092b9b3b1b52 |
| SHA512 | 4f584890ee217e6766a32a460d434fbd727b726544014700b98bcc73a82f904fe0021c99b8cd8c32951235bba55b08c36b12d05c9de5c45209ffa5ae9bff8990 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VisualC.Utilities.Resources.112FA2CB1A6BEDF56E90\payload.vsix
| MD5 | d917717b688a835b3277873f522e64c2 |
| SHA1 | 6b5ac55702629fa441768b5e9584dbc49951bc00 |
| SHA256 | 04ccfe57cdcec67c5fde0c5fcc1cf58de6d5849f192703cf80a2038683ff45a5 |
| SHA512 | 6a905a0792a72b882118631322deefbce8e4981c797791a8d0e3df5f7a757cdfd8b69975ecd0bd55be45e9b441ba14af0992bb31e2d25d8239a23b1bdf0976e4 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Dsl.Core.875EB0BF4924D4AF50B4\payload.vsix
| MD5 | affca76abc87bfaa6b595fdb2218a5d7 |
| SHA1 | 2fedb61f1f9345b6646ed152a1623957739ea9f4 |
| SHA256 | 8a6411244ffbfe3e0673cd0fc1dd2a439ef68c74d5fcc02fa3bca4fde7f2478f |
| SHA512 | f89c3bf6e43b2a742e81be083a06b2951f58800851a02ecf3adae4970eb6cec812629addfddd56dd355192aac79df5320f1e41c803d9fe51a128e643a1ab4514 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VisualC.Utilities.66DB1CC588B038EBAD58\payload.vsix
| MD5 | de44d6e5f88617bebdb7d36331eef40e |
| SHA1 | f208322c8861902268d8e106df2c85d51cfc95bf |
| SHA256 | 9a2cd661bc5cf065d56e224e11062fe60da76673efdca011be087ae56a8ecdd0 |
| SHA512 | 3adfc2febbb7489166e98d1e7decc9b452cfd25b5678a53c2d2d21e91d79eca9051be5f7d89a423231907d6800baa1f846587e7026f2cf8bcc062646983c40bb |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.CSharp.Targeted.ED3DF30A7F392A88751F\payload.vsix
| MD5 | 2985966be60b47345a23ded2d88fca4b |
| SHA1 | 29a3a03fdc682da418a45441dc78ea258c19c8e0 |
| SHA256 | fc673e2b8198c2ea7444cf67d2a2b2cb765b14131ab2d4dfd74ba681454b934f |
| SHA512 | 6346488a406625d3911da0a723580f8e774a98b8fe9542949b470009f8ec88378113f3f03c2ee2d0d78760c215a655ff33e001f42d0c7820852c968b8f7f7dc0 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.ResourceEditor.Resources.CA54A44FB3C2F26C4923\payload.vsix
| MD5 | f5e5b56f934e78598e75084c71d1f08c |
| SHA1 | 5069d765059a41703de6eb335215d50247327aad |
| SHA256 | b5bbabfe3b5b7ddc650d52eaa816f59d3da81f7b92e857d331185cf649806c94 |
| SHA512 | 7fee2b9cd153430290e1a8b1cb673a418059ee77348d6df25b109eb0af7a20d1337669284afcd4200e068312212d4c06a5bd881cce41041ad35f90ce280f4d4a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.Common.Resources.02EBBD7D60609CA80583\payload.vsix
| MD5 | 72c62fb3ecdfc47f2014df0ee600938b |
| SHA1 | 9b9916e6467bd1df6ef68cbed7140c79facae5f7 |
| SHA256 | eb00b6e0ba234110c438c79906cfd72065019e848f61bd084d9595d6b7b16936 |
| SHA512 | 8e0307246229d8cc413832dbcc88fa898945a9e00c59ad935fb0c3b398c1378a531799ce1da39ed2123cc0d04605f9b334068f361754f141526e29088ca6ea91 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.MSVCDis.3B04A15A03DB2F83DE51\payload.vsix
| MD5 | 814c60e263adbb39516d69fa5d23fac6 |
| SHA1 | 63fd8a61cdb39a6202223caab5f8e88ac20e801a |
| SHA256 | 1fa88175a4679469762ecbbe4c0783d5c671c5137e37384739e3573acd1275ac |
| SHA512 | 35161ba71fff905931ccb96a6f7048059f88a0ee88226d44067dd8711b44636c49eb02ee7019a4e5bf1e08e645d71a53b25ff34009326dd030b37e8e70a50fa3 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.ProductArch.Neutral.DB853F143806FE876BCE\payload.vsix
| MD5 | da1e8088f297e583f2420a873d1c2794 |
| SHA1 | 2344861d8f3ec4f4c6a7a7f2c53863ccd8fa9483 |
| SHA256 | 41fdf5a40ac1d6fa4c72f7ae9ea28f1167517d2d43c5358cfc25db361f626d63 |
| SHA512 | f80d36d530e2df5590e21dd8622edc83012a4cdbe5d542cf4d7862f6403304e9a5e2a24540c07c4fe236cae993501a405a7de5be8f247a0c1905bc8504a1b144 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.Debugger.Resources.898D650839AD5766DB5F\payload.vsix
| MD5 | d4a28cdec823cb4f4f5c884de4f8278e |
| SHA1 | ca5022312a54d27919bd0ec99dc9e6387f7f031d |
| SHA256 | a9b7c63ec9ab8ccf69ca75a2cdbbd627932c474b8c1c95bcdd9961c7e381a9fe |
| SHA512 | 69613469a4577b4f5e7ea92ecb8a897fef7df9a200853b2bf87e0d93ed5ac86734c7d36fc53fb495b579e13911243a1502ff5f646e6f3c8bed7b1abc0061250d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.Debugger.Concord.Resources.D9E77D471BEFB6A7BFE8\payload.vsix
| MD5 | f68dbfc26b463d02bae611078c179289 |
| SHA1 | 7198e6c98252fcaa148938d200c6ce4a93dd4df1 |
| SHA256 | 9b381463102c87f0283ea1e012a197b8e6b5e92c4367669bf9b0d2cc3f5e7df5 |
| SHA512 | 51e32b70ccd0443c1e6bec7a8ea6159b6215680cd76552f077ab9dbc4543c7ab13515315adfe3d7bb4d90cd8deb291a0d97380aca1f99a59fb2756393c4dd125 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Xml\Schemas\DotNetConfig471.xsd
| MD5 | 05dc64fb0f4ba4ba5bba0937d455324f |
| SHA1 | 871a6db8758fe00764bed77a906f31221dd74949 |
| SHA256 | 15020da358a146c10dc2c420a3277648e27bae9b8398ebc9c910c8d24aaa4601 |
| SHA512 | 932bd9a0d02a28f58cfba3372b71b4110b3c646e8425f7af94c2681af6b0aae91b9019e53870aa510261d3cbdc8c363b1ff89ec2a708c995e3eb2b3735c4196f |
C:\Users\Admin\AppData\Local\Microsoft\VisualStudio\Packages\_Instances\08475949\state.json
| MD5 | ca281e8f0d34be923936d8c6e9e98283 |
| SHA1 | 1f33a97313ef5c8e11eae05964b4fccb8239469c |
| SHA256 | a3490bd8e6be97af98586658f3266a7e734e1ca3de816a05e314f1e1fa3f57f9 |
| SHA512 | bf9f6f6202f8265017d285eadd0168c3b51b16449076c1dae17de5c64d64d262d8d70415cd2bf721a60a979181f6b9987a11aea630622b8f34843781251e85c7 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.Debugger.Concord.317689BC0800D7724881\payload.vsix
| MD5 | 11fffc9a4d2763058d2a2b2a664d93a1 |
| SHA1 | 9263d79da1e499e1d7bc86c501da7e85c6b3c3b2 |
| SHA256 | 75f0adf4226631f7233c82fc383aef444342f261c0f5927f485d15a426ef6674 |
| SHA512 | 968f64fe95bf56ce44035af78714725c8d9441360d16586b3ef66dca2bee305e0a7517b1c0915a6962f22aa504288ffbdb66f23cc1311cd0a2e5ee07ef0b8e7a |
C:\Program Files\Microsoft Visual Studio\2022\Community\Xml\Schemas\1033\MSBuild\Microsoft.Build.Commontypes.xsd
| MD5 | fb1faeec676d4796d2827653d7b079bf |
| SHA1 | b019f18e2a0b706b1a5b33cbe1884d3481fa1a0e |
| SHA256 | 2748148a5cf0c97c2609e8e185b2ee2ec334bd26d282a510eb97e9b577ce1397 |
| SHA512 | 4196b06d3a8816c88c5ade5342ff046a9018b2c854fd445c595b076ad664d9d92df1d3be58d4ef91001a6fb0f952297dda585c046f83f2958a00e6b3f6355aed |
C:\Program Files\Microsoft Visual Studio\2022\Community\Xml\Schemas\1033\MSBuild\Microsoft.Build.Core.xsd
| MD5 | 2f4ea4a91b45e31daa071e131a5469ed |
| SHA1 | 1e081b54de8508d98d74f2cd27a9cda5063cfdd9 |
| SHA256 | 73dbe752f8e1d3a911e1102fc58aa05a609fc9813710eced95b55fcef99c7504 |
| SHA512 | be533cd9d0d5cb7466d4c7bff1ebd075defd3d4c8f829b84f1be3fd4e7bf97cab996a2d08249356c252d936492dd86926eb8e8c7ec0e5800449db6e88cebe540 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.VB.Targeted.87C2F6DD9747B4E6FFE3\payload.vsix
| MD5 | 0816537885e99184952951781c88aadf |
| SHA1 | 90b6c7ba7d50765844eab3d7842b4c312004e039 |
| SHA256 | 65547e0c9420818a9f1a27e9e047475e73ea828fd3761fa4de78251c6f30305d |
| SHA512 | 5d9b04d90ed2feda5855f65a22b5826b1fa3e29fb9880b2cf2640b980bc1a27cecea58f1a8019c6eefffa2d87cb1af6f877608d1c7e6698f1234a78c0ec4aac4 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Remote.DiagnosticsHub.Client.9CB74CC7889AC3554B83\payload.vsix
| MD5 | 8c674b3cfc552f743c49b3b2f0550dad |
| SHA1 | ec5642bd3b7f9f9fa17348731173a229ec2b23d0 |
| SHA256 | d4495200ab8434961193438555ed0f0d76fa952939118df32874fff9381c4158 |
| SHA512 | 47e641e84c26a788e4a4c63c7cb1cf727447ca3a1c24cd0cfd946f92cc501a15783fe32edf5ca492616b106539f67450c5b06304bfa48e198c88b0c173f97932 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Remote.DiagnosticsHub.Client.4D6A186C4D6BAB3D7F22\payload.vsix
| MD5 | 71496737f67157412a1d843e4911cfe1 |
| SHA1 | ed3fcf1c8398d6fb7836effa01508fe23ad1f66b |
| SHA256 | e6b9300c3238a1cc433f400cb2c26e45bc6a56517ae84ff5dc80a43888c916a7 |
| SHA512 | 95da6f56ee086134f626134d88b0fffa94f4a49b267ab174714ada82447ce0c6e41cfef25f97548c7d62f3bc0e3eaa649d534822a1829bb9d466c685bffff2ba |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Package.DiagHub.Client.AE165C91D8F5CC2FF5A3\payload.vsix
| MD5 | af9e1aff06918ce3c3026151e74f4300 |
| SHA1 | f0cc76597dbeae3b24e726a3da8711b3eb25ea35 |
| SHA256 | 6709e6ddf7c09a76fe68c76d315bbad6ea153fcfcfb5dd91b308c6bda18aef56 |
| SHA512 | 2fd4c9d6e09a3920991c7b7fa4b9bd5e1f5648856e016db1766bafb3bc535bb66af296f71528a6d8dfaf7ce5db6912a9a97a01501421b62f8e60bfe87ffea56f |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.Common.F65055DECB4395B25773\payload.vsix
| MD5 | 15f333f36b4a19add4c1513ac4b3974c |
| SHA1 | 89a964a51222ccf2cd609aa0999e3aa5bd50f9c1 |
| SHA256 | 3f64e4979890222f73570d109d8b7b920bba999d05ba0492e670abbeb660e307 |
| SHA512 | a7dbf0b55c40deb7cc5f3b512f8c0b7a9229666c9c8221c9d0440975adc094861ec94de7f5df6537dd26c06d572a8c5d64a30647ca1a83b1dadc1f945e1b24be |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Resources.505F57E16EE9D17579D1\payload.vsix
| MD5 | 4fc1f454a872c3e676749542e73fd0a3 |
| SHA1 | f7cca9346704a4ad48145e05f74aba9a9436a464 |
| SHA256 | 908e15f9835f19d55f8614f3b43f4611f82ff3664a92a7838c8ab08ed0f9d231 |
| SHA512 | b0614232268bd14f7a4f0a3beabd8613156d1c3d4d1800cf3751fe912bdafecac5fcabb63cb7878a519113660c5ee08830ea306279241e0cf6cafe1d14f104d5 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Resources.B32234EBA5CC94EE5C27\payload.vsix
| MD5 | 9e50a0d756b6ccbcf8e1b39a4b080a5e |
| SHA1 | 9a9ee8096f3c0959e2e1f9e7aa9382b9f4d34f00 |
| SHA256 | a32e6559297333d527b0127854ca490115489c0e21e30606a26c5baf255b8e19 |
| SHA512 | 39372ad2f04ec50145eb177292fafc56f0a3c5dd08037ed052a36fbd8c90c7837be8b7bced415e31e6577de5b55c1def8e32b476b4b548c7548ce18fb3499cf1 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.IntelliTrace.DiagnosticsHub.80D716DC924F7CC93FA1\payload.vsix
| MD5 | 04008402f61860fa897c54687d51854b |
| SHA1 | 8f12abca16d2b53f6e1ed3d0a168e7cf612e476d |
| SHA256 | 0789f655d0238ac6173e11f5db538336ce8c51f93aea1af41b36aa45645dc151 |
| SHA512 | 9e067f51670507c99db4befe7f5651aabee9dfba0eeb878f72da2f9e925206c208da6e06e692c514016f1a85148b1c184560ae307f95f11e0d55c987c86a4f13 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.ResourceEditor.3BA13C6723D79BF782D1\payload.vsix
| MD5 | 9235b9a960e9fad9c86f14e99cf2f636 |
| SHA1 | 43bf5aad903a889f5895df9ef3ed1b8fc0d4b922 |
| SHA256 | d4567fc536ced357573d52a7818bff1fa366935c5c1a66d20ad86d2488fceff7 |
| SHA512 | fa3be1d5e3771836b33c811fdbf5d042b51f69feb5cf13035a80bc7014d63876680214af6da799cd3d29b1823bf73435545a2cfce8d0aab20ff6d10be2a5caab |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.ProductArch.Targeted.DC1EDBABA2DAC9679321\payload.vsix
| MD5 | f49e42849a1afb56ad6392a9ec520141 |
| SHA1 | 3233d45d07d06c1eb84d5960090bfca51392fad6 |
| SHA256 | 512c5b55b8a8e60a965dd442eb3e11462983a2441af2308ee7a4d2f4cc37f36e |
| SHA512 | 709ccca1e9cd83cd2357851247fc53c1720ef975c31c3b73e331526183a96e886766696d904e117cbf29ba3e6bf962186531ae2f525961c6b81857e5e47f63ca |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Automation\msdia140.dll
| MD5 | c6ebcf54c3755449314b0ed79a1592b6 |
| SHA1 | 6d2518074733724b2dad37796d4718eba1c0c021 |
| SHA256 | 70b3e5a15aea1e6d2c588f01086a8bfc4beda90be15d315277db14862eb7093d |
| SHA512 | 2df5dc6615aed28cade72ee642dee6e5b35699a5e79dc5b4ff8c1b27a827b9b8f54ade05622a55554cfcae4215ff3b9453e9cf4e881d793681db25b2709b8b10 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Remote.Resources.99ECF41BE23336141B09\payload.vsix
| MD5 | c3c159b49d9cf262bb94ec492262b55f |
| SHA1 | 7e1a2b5c7f61937b131c53447cae522cce58d732 |
| SHA256 | 006bd922b53a51433081e7a23b45a87c3e4c43719444c46139a32185c6059f53 |
| SHA512 | 110fd67166084a641795fff64dbf1d50da9ceae69b1b0519e7584eb2eb191d04e321347fa0a2b6de64f400c13d2e31099b90902f34376cb1c72c4496531cdb08 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Remote.Resources.E92F14D3F7B72F84CA53\payload.vsix
| MD5 | 684cb4d23259f2c39e061061ae22acfa |
| SHA1 | c8b107fc83f569fb3e650f6782248841392620d2 |
| SHA256 | d649590c00bf92be41a3b5b0005e845a2fb66ba85c1e3ba4d5c6842a0417a390 |
| SHA512 | ca0a268911fc8a189132f98f0be4696b459dcc3afb1fb9ead4ffdbb73d2bf58736a21b8891962c455a711ad0786a2c0ceacd32b8aee7c6ee54c2c621483b2e23 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Remote.Resources.A9D230DDAB9F3A541B44\payload.vsix
| MD5 | e55e8f1e32f6c70995d0884040b3a429 |
| SHA1 | 2c080157132ea13bd500ffd53e791f225fb35364 |
| SHA256 | c3d692a07f35541e31271fceda74e99cb2a2752d6773228f876fad727649f5e3 |
| SHA512 | 055dd14b7be1a7a9da6fba2dcf9de510c1d022196647ed0b45d90c88a554637ca643182c15f76f29ba64dd889c284a949dc61b2e20758ef33782211e34ac2fa6 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.0A9E9349289D8C7FCDC1\payload.vsix
| MD5 | 47b3abf529384fb49c9b14e826cfe5fe |
| SHA1 | 385e2fbfe526e81637d7131b71afb11786586276 |
| SHA256 | abb48585ff5fb9d54954bb5d0a4af1a03a73d974df031bcc5ad44f1d2ab0c83b |
| SHA512 | 0993f8f3f2342f6e8d40bbac54bda244dad335e9af549a3b96e0b64990aca12611c0ab3d3647c86e167dc37b8277ee2c7291105f5e61deb5bf07c234a96489f2 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.Debugger.44B64EF62B5702A40095\payload.vsix
| MD5 | 657ad4d1927e98779962ca83473047b3 |
| SHA1 | f33d9d6dba92174d3cc3c35229bf735eb0a8bfa6 |
| SHA256 | 6daefa69876d8598dd604ab279c48b434ed941ff7fa5590769b74383e5458816 |
| SHA512 | 626643cec8ee27b149f684db1d76dbc25c9bad702203d3f5836154750d5263c207fd22af9be577fec1ccb2c59a63c65a817e6e6a1106174da3b19c9a8a5a7080 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Remote.Resources.6514E0556DD80EEC20F0\payload.vsix
| MD5 | 4a7998dc3abd03d425f127caf3d838fd |
| SHA1 | c000ffd26b2b9f5b6b34af353f7f338bb9cdee7a |
| SHA256 | fdc966b37b9068c8846b5de5c265663ddd5917ec57988bb49921c87ffe4ad0f0 |
| SHA512 | 9ce72eda39475d97b392b28bba68366840c21a0a99a0c9d041c15833288ff94dbc21aee169c0bf14836d867d209feadc8bc089b2944cde81d73c4dc04752f759 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Editors.0D99F53108C8F73DCCC6\VisualStudioEditorsSetup.vsix
| MD5 | efb66e9182acf9f7a3dd9e9433afaa84 |
| SHA1 | 49c5ce8fc16e0dedea845e7f73e2e748a21a056b |
| SHA256 | d623339977170080bc320091db23aceabc037ef2d89971ffc6622f251e2b0e07 |
| SHA512 | ad1e9f5cf7c8601c748f24cd3af92c6c860156ff88ea038edcb2d7a39db00314a03a84901e3a661373885a4acb0deff1ffc0307d8499e0187ec6d14c44b04264 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Remote.940CCBF1CAF82783A4D7\payload.vsix
| MD5 | 4497b880cf07670f4e19334df9621421 |
| SHA1 | 302297e3065d8b3ae79a09b04033281eda901197 |
| SHA256 | ef7e20b3c0febcc41b2952bca28b2daf0b99f0c110bf9f555747515682e71fb7 |
| SHA512 | ad66770a341cd289ba88f5f2516ba467beb40fe63141c415f42c68e5eed29d57619cafc98fdf6923dd00026217c93b21838d2d975e6748c2d7306f09826b0148 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.TargetComposition.Remote.081B385BC7E3A08838FD\payload.vsix
| MD5 | 750ead9f52d010fdac87659c3115f775 |
| SHA1 | 6776bbfa6771fec07ce7f375d01c19d1ec35bcd2 |
| SHA256 | 2fc1d9656fdfa1ac0f536d8b62886d7fdbf4aaf72328b463e041085313cbee9f |
| SHA512 | 0479d42cf6b41f29492cd110385166e02c03a41306c829c81630068b9a1469e1e4917ea8f6b657d8f0fc438acb74de43f5344401dc6063fe762f895166cb3a38 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.TargetComposition.Remote.FA22DDCB6D44800C9183\payload.vsix
| MD5 | 47bb980ea61b00bd0fedf6af4050be7f |
| SHA1 | 1ee7f8564d24299f0d629ab24767d2e9ec5746b3 |
| SHA256 | 09b161f4c88dd8da5ebb36847082b5231c0278ebfb42de66dc6755ff137e2852 |
| SHA512 | 4253260ce4eab61bd08d1a9fb25d6742d92ed8b0a6aac26c632f7fbefc3ef9ec8ad149641e106c8758aaed955a9ad1ae2da1acb0c05ce32da4766ad72ce8641a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.TargetComposition.51B7492F8C3B971FF74C\payload.vsix
| MD5 | 3f7c3d053a8a11fe8854834f4ca1b845 |
| SHA1 | 896771e9712682bab60fc043823a22486e68f8cb |
| SHA256 | 66d8aa3defd54b277d0c942a5ef3537d01032eb1bf9e417bbc14ad48a5dec350 |
| SHA512 | 16b94d71e06f694d76f53c0663a0b76dc82e204fdb8a1aa3b15bbc8a14b0f704bf5d48b56f80e6f18f65c9fb03da2ebf79e157f840c9591fb5d9f5eeec59607b |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Managed.Resources.3B00894A16B139E2E817\payload.vsix
| MD5 | 0fa0ed0d55109212fd23bdd2a6069449 |
| SHA1 | 5abfa160860efc6e06e6cc33cf3db3c3c69b3a24 |
| SHA256 | f911a7e6264c0a4207fff8a2dd597c44c4dc57334605f04fa24254431f372cba |
| SHA512 | 1c84653a8ce604ac81a1dbc829e76ef8aa1432b24aa05aedb747036946860d590b52b85f0f9fc65807d4ebeeed2e590ad9e05ea1e6b4a00e3d79eb4890fd1261 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Managed.Resources.E8A354F6BFB5368F4880\payload.vsix
| MD5 | f015a75ffa5b393406328b7b0b8622a3 |
| SHA1 | 9d45a9d87fbd2edda548893cd43414f7ad3dd17b |
| SHA256 | 242be29580b724947b5e52ff7b25b4c6ddcec1463eca448303913de0ecc54647 |
| SHA512 | e4686336ffb61d5fc13aa4f0f6129cc93a086864b0f8263cf1ba0064719bf9598c3f311b3a7da6367e8f05ed2bb50a1f434b7f33f6dd51a49a89810608676361 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Managed.128BF207E08D0D7E42AA\payload.vsix
| MD5 | 0a47e6c7a687cf9d8d3586cf8da48a94 |
| SHA1 | 4d7c14f618d03d5819c584b9952f115db55ff449 |
| SHA256 | d54428573359fea3290493edbe0ccde4f7d9ebdb8a940ffeca1d627915f39c53 |
| SHA512 | eecf31ae3b2271402acfb81797bbb502235d53f678ecda6cb1911219c6bb403b8ddafc0ca438b7568bb37a7f6b765d129c99ac465f7cf35771cbf1244a322b10 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.FFB8FDAD2E6A284DB678\payload.vsix
| MD5 | d6566f853484bdb2d990a32d2ffa17e5 |
| SHA1 | c8e9e7c1fabc53f9c34c0078f94a94a8fa51386f |
| SHA256 | c562642335bea8911e1696b50d96dc4b953b81f730de8e2048eed9ebfea600a1 |
| SHA512 | b6dada1de1f737d2e98a99aec33936a6bacee0899739480340af1f222cfee1f60ac19be9033454ab8134e13cbe587238ad177b331b15f9e07fcf7493e39ed71d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Concord.Remote.C3DE36956B8B0E72EC53\payload.vsix
| MD5 | 751c5842fa46953f1ff582e459eec11f |
| SHA1 | 3e733a79c9caaee05248e6088861191fcd3f50c9 |
| SHA256 | 7caf2a356725c3d1f100dbc0fdb557a68927585b94a9ff4ac23cbe102e125221 |
| SHA512 | 8db5bc73507c3c0cb4f4da4ce07f6f2b080566eec107cc5e99c90698c3b4964e5984a6b047b5112830d915af1704d4053476606d420eba50c3f5ca24957b33f1 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Roslyn.VisualStudio.Setup.ServiceHub.Desktop.Config.0D67DC810E870D922CF5\Roslyn.VisualStudio.Setup.ServiceHub.Desktop.Config.vsix
| MD5 | e7e285381c48fca66be679735fb42bf5 |
| SHA1 | e0863bf71c671e75f4cf86ec472a7ce1682be799 |
| SHA256 | 13b4484974ccd3d161c0e3e2b49da1cf3aed3d427f6e36e4788ad22957aa69a5 |
| SHA512 | 047b171b6431d06a04a4d72c360766797a639813bfc917693941ca5cca92033ef2075eaeaf4f60e249015496ebf11a372dee8171771f776cb91876c990992339 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Remote.C51DDA59FE465C37EADD\payload.vsix
| MD5 | e9781cf4fc9319c6df04bbadd536f25d |
| SHA1 | 92f68b884cc9ffa688d3573425716f9487252283 |
| SHA256 | 48d30fd95ca4251cc98da26d30fd10854e1c9291a8b8d583689fcca6ffd3bcc8 |
| SHA512 | f2e84ee4cccca7906ccad70584570ab75ae95b032670c6adc0a545ceb840f3ed8161e0d8ded01ef0d0cfe5fdb33735353951e15e27373048c85d6d95bbec946b |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.CodeAnalysis.ExpressionEvaluator.7294DC5BC7D3DFF0C5F8\ExpressionEvaluatorPackage.vsix
| MD5 | b2eb1cddaf8603b2e7013bd0ffab7b6b |
| SHA1 | bd3c2fb4e265cf70924d3f6e6fd25c97ccf80caf |
| SHA256 | 7107f8ab859c0e0a2d304dd34bff7a39d9ce58d87bb591a60dc71daa2a8c22f5 |
| SHA512 | fe8aa4c4dbf53f55b9f09bf6eba5932d0a9c963db7208d65622f4a6b5326ca6844aeecafd8ecf8eab35460891e38108280fee635a0d616015490fd90f3eba54e |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Parallel.Resources.A11502958C43EFBB6367\payload.vsix
| MD5 | c0e57e8c5225dea1aad97ad6f7a9f7bd |
| SHA1 | 75cbd996a680b07ef15c817d58bbbb6662542a12 |
| SHA256 | f7ddb564b3169c928d9c0345f91b3b8a0b249b9d1c221a54273f1d3537249b13 |
| SHA512 | 6390e80dddd52fbf0b2474cf1f4ab00dfde746cc2de2d591fbc25d1d6d5b8d2ca858bfbf3981b9f9eee492b00f142cf238b5b3861fae175f859eb69658ac555d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Parallel.324B50EBB3EFD6EE7C34\payload.vsix
| MD5 | 641970b48a47f6c7a1d8bb936d6ba911 |
| SHA1 | 34ee8171d7561fcb10d4898c3166b07ffa04bc64 |
| SHA256 | ccf618e15baa0dd73dc0310c420c322943b816da2a6044424b83c0d8eecf7384 |
| SHA512 | 1f91dc95cab8a1627ace8dbd5a0778ebcb85f0399d0497c7a32dc28ed2c0ea023f90a3df2994548f56ee552d616af61be2279da1d547d1170a6590ca69fd248d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.CollectionAgents.00680D2726B31A69C535\payload.vsix
| MD5 | 3c8d42dacbcd5edc8dea951edb8a57e1 |
| SHA1 | 3cd7ef332f28a734d29e7490ad1c321959d2a4b0 |
| SHA256 | fe94d99095b7f4e654aac2d33ce8e2b98882fb11de1e0d2379fe6e0c9d346541 |
| SHA512 | c7a448c2bc3b39c022fd046d2fb1006e75cfd4b3db4c58eec86ade0c2a6673671a9c287cebb44b948796b250df18085a63a77f15cb4d34d41a1fa515624a67dd |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.WebTools.DotNet.Core.ItemTemplates.569A79CD48EA9BDB48F6\Microsoft.WebTools.DotNet.Core.ItemTemplates.vsix
| MD5 | 5d4ba3a0a75d4d3adab49c9b09dda62c |
| SHA1 | d9ed4bc6b6e224f84fba9d690bc7dba13032383d |
| SHA256 | d51c8e877ebfff9f6131bbdc90c7800c0130ab0f9844d567f62ad81708ae3aed |
| SHA512 | 71a04f5dab5b2645224dede41b56bd5f7308c6ae201287a37c55bf2075e9781c87eea2b3e86eb9fe7cc4f0167aaaf03d35c9611b545956b89f60594c89670ac0 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Remote.9E4103B486DBB731B277\payload.vsix
| MD5 | c845cded27ce99b91ced752fbe176957 |
| SHA1 | 4f68549f3cfbf293e2ba39d1d316da6cfbee54ee |
| SHA256 | afccc905a98ca8361b4ddf072c43127d79b647bbf66dd79e4ab7399c733a8836 |
| SHA512 | 60ef42b32b47bb7ed0561aba0bfecdce15e8646997d55012aa05c08a6136be3f2c9b22cd97a9c6d5385c585dd66be07906e98daa9d3bf3e38617cb61b3ce7f9a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.WebTools.Shared.29DF325B2BA932D5A8F2\Microsoft.WebTools.Shared.vsix
| MD5 | 77901e1db5b0581c1da3f803b2810366 |
| SHA1 | 9322b7030c7c9bf6714cca36df338d8305a2e61c |
| SHA256 | b5246e1c6c6bb81793747e531f473add557d116120fda84e956f34704d86d426 |
| SHA512 | c4a5e58f3f4e750a075162338dd4616435e7efcebfbe6ffc8c118ae6c0cda183dbc15a5710995836b13978039e85ff262e43df3d38aa40fb4b4fbcabfee69f89 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.AzureAttach.CC1D0AF00C61F720703B\payload.vsix
| MD5 | ee4c915d3838b964419e1655447e30e2 |
| SHA1 | 9a6a6c5fd29a041521818f732eba2ef3e000fc53 |
| SHA256 | f634b9749f04a8db3351692e36b2147d49dcedfb235ef9c643fd621e2ebb8776 |
| SHA512 | 40aa0fa92b951e8e3b3ef1c2fdc3a6932e0b7f570d7d9a6ddbbeb998afc4784a0f2298fe49131838b44e317b32e4f61dd70185e26f4fc23f74d775d94029743d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Managed.6986D569728482B75180\payload.vsix
| MD5 | b8d531219f9aa613f3100e6e4a454918 |
| SHA1 | d9450e98aa21712e01a17bb755ca8afddf32c278 |
| SHA256 | dad6a3819914e23119692a2282a811961185928778f8c98afce6ce62778138dc |
| SHA512 | d6a2a3be36a8953e324455b15c71d38f206dcac2f7c1547b9155419e2a5907278a5e49701d3821781781e3451b187c01fc51a0aed25dbe2e841183f865ec913d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Web.Azure.Common.8A9C7EEBB39CCD01B061\Microsoft.VisualStudio.Web.Azure.Common.vsix
| MD5 | 16bc4e47eee624385d9bfc6e2284fcdc |
| SHA1 | 900cd878f8392260b5c4821f65378996f21d0407 |
| SHA256 | b5520bc2201b662a953b934bb0aeb401367e0b45a5e632161ecef912ca831e84 |
| SHA512 | 62578e4b5431caaf53c2e4aba2cf43283c249be8b603121ff2b64b7258f09642a803c3ba27d2162f3484701e78c8130d34c55c89b0b9022a2a7d83cbbaf107ca |
C:\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Script.Remote.Resources,version=17.9.34714.143,chip=x86,language=en-US,productarch=neutral\payload.vsix
| MD5 | fdcbbc60e66f2015fca0bb3acfd3e2de |
| SHA1 | dccea3ee7bc2d571b6f4d173acf35dd2c98ca8ad |
| SHA256 | b2f19d26e6a54d525390634643a8288334135dba805a920acc0fe4559f35780c |
| SHA512 | 76180c64801e9fdae118f65bfe74004e98bc98d480edffca6965f3a627c3b706bce0051a2484cbe711a70fbf5232fa1e677177021890a5a132c353d5f92080d7 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Script.Remote.Resources.39E6540EDEE4756F47A5\payload.vsix
| MD5 | e8a205eae58c83beeebcdf9c3cfde0e2 |
| SHA1 | 4176ac42eebf7a5d98d8baeeedd48fd9630f65b7 |
| SHA256 | 29151c33fd20ab4e238eb651afaf7d5239eee01ac6d497fb9f64ec06a3526a26 |
| SHA512 | 0b9ae33025afe117a933483d8aa4f8f548d406329bb8f76c03b880b972fdd2e238c68124116de3e566db9dc03356c8fc4ed1c6c443da09630ab1eb42b1f5ba76 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.VSCodeDebuggerHost.EA1388AB7B15AE79D68C\Microsoft.VisualStudio.Debugger.VSCodeDebuggerHost.vsix
| MD5 | 784b9fccc7c74f7283d56af744e3f464 |
| SHA1 | 456328abc39c2fa5cf7d53a4a3bd12022d6a8cba |
| SHA256 | 02d4a7d02e6571862f81801b543c1e78be0b511185245dc7d6846f1132608b56 |
| SHA512 | 716805d7322f6e30f28883180e21b411c3bd85ff3d96064702fd41dd1b1e5d3500bb1667d69bd6b557f50eb236d1e2de638b867febb377860f7509b98c7081c0 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.BrokeredServices.C26ED6DA411CD0E9865A\Microsoft.VisualStudio.Debugger.BrokeredServices.vsix
| MD5 | e8264f1ad752666c321f5d5532b91923 |
| SHA1 | 59217518c3604fa03de2646e661e7f8165818630 |
| SHA256 | e29900f14caa6aacce968231dc7c2ff4c357691d024aeba805394255db27afee |
| SHA512 | d445cb16f08502243daa93ceb6af474c1bac75473f2cb23b9154ad72cef47530b38580f568987beda387a0a5baec79a654ffce70d548fa243079d15a656ff7b2 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Script.Resources.9664525BC33E1C24D047\payload.vsix
| MD5 | 0abcc72d9acf9bd57981b5e984c79d6a |
| SHA1 | c45ad06dbfe045efac2dc3c02fcb3c6bf52baf41 |
| SHA256 | e125cf7e10102d6f76057dbfdac2196992a53d8d6bcd4441eb9bd98a7732d1d1 |
| SHA512 | 3cdc463d0e63f413726dfebc507349cf97006a371c480fb6bdf17d1932bb2c91ead51313c34843d3371c3592bf6ace90e6f03fe5e3583086e115e1ffda6fbbcf |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Script.Remote.BFD764655B8E7479621C\payload.vsix
| MD5 | 0fe7e076ce7fa05155bdf2f79f721fe5 |
| SHA1 | fc73ff1f25ee9efd317b863d612af3302de21c1d |
| SHA256 | 8018d0af3d8c31cbd7284ef60f2b8cd24e808e800c5d579aa21c2523db7a4d8c |
| SHA512 | 7d05f002190cd4645d320bc48089497c364643ec058d59760d0cd90777c06916e3b8805e6e790f0f939a3a7161be3711cc133d3b28946b16347961f38a2bdd73 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Script.Remote.DAA1B1560031901D2623\payload.vsix
| MD5 | 98a3a686564c5151b5fc4c6d533d7882 |
| SHA1 | 55cf0747ed4267fce098405613a71b3a3b17cec0 |
| SHA256 | e06e7ec1312b2f68af83f63ac96199e195c976615ec9a165c94564ac77c8c379 |
| SHA512 | a3370840af5cf0f59d71249b778d7bdb23501326ef73ff20447427bf637f38f8f814ee29bc2273874cafb66867b2e66196ff1bc022c5f28f5964dd130cac9b96 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Debugger.Script.59C23B19FE506770E87C\payload.vsix
| MD5 | c0b49f799987a9e67f3936d6babeb289 |
| SHA1 | 23d3f3337952dd8596ce3cf0ffe973ec459fe14a |
| SHA256 | 1cc30beffc8b12ce2738b43dda452f81f15ec4a87c03dc886addedbc9ce91db1 |
| SHA512 | d59e40897264b4efe88b2d784e80ec131ba7b07e68dbacef4874a577f66dbc56b3111d1414302f35422f7e0cd4b2f2df613d720714297f7a6ff2cfdc4a3fa18c |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.MinShell.Interop.Shared.Msi.B607A3A9FEE485B70A9F\cab1.cab
| MD5 | 3884c956ffdd8dde5a83f71797ad7d31 |
| SHA1 | 892f0bd859dbce676752f3aa476ee5856a769f77 |
| SHA256 | 2c847f4d3579510cd1ec7cb12ce0c24a3a5bbd4dae87776ba5a69f4a0cdb1f6a |
| SHA512 | a514e58a22e4218031e5f8d4cb435bfd633b9c0a2a48b94ad446ff4323cdb2528330da3f5e88ceb9682950512cae99e81372203582abaa183b5095d4d7e4648d |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.MinShell.Interop.Msi.5510E6EB98D26349E5B5\cab1.cab
| MD5 | fe0342b9b0d74647ce9ece07146d694e |
| SHA1 | 3d13a6705bef6e7bb8e2cfa6daf0afc4f7eeb9fc |
| SHA256 | bded5a08f1b9baff93ad054bd23dd6e97958f10226797db2ac0e3cd1899ed93c |
| SHA512 | a7fa463d296695a08b3e01871d0bb0388e73413d532d6bda9f8e97442f60b035482137b38f5cad2731a708781502c8fe2f0b97e8f89e41cba8a432819fcfc01f |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.Msi.95F0F48C67172EA931CA\cab1.cab
| MD5 | bb71aab85f98a94de6bde28363eaf3fd |
| SHA1 | 0268302edbc0ac2faf96fd0c67bdeb79346a90ea |
| SHA256 | c4b523d5e0c4f1bce30a4c0d1b2d9d892a7213d8e1d8ac820b7c9658eb04d750 |
| SHA512 | 9a6aaddfa43449fd9cf559c8fd88000970e055dbfc35f61e84b014267b543dd811fa9fc56bd75c3594ef74837699e372d55f621b4f0da3cf643df186659a0bbc |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.Msi.Resources.5F5F0A21E5F404B582F7\cab1.cab
| MD5 | a61eb276551ad59dd0b6e9c922adc6d0 |
| SHA1 | 497cde060d8402adf620e96f527b175bbd17b955 |
| SHA256 | a5087a6e485f6ef4ed98379b711c3d0e9b8f2ead88be42af07fcdf895a5091d6 |
| SHA512 | b7fa370314fcc5702b3d8c1b037a5a4e390e5cc29352044c601c2d736e6faa06a897437256b5a354e0a14617488a25c3317c6568235eb608a944f8a1d0ce575a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.x64.EA9627648AF37C880735\payload.vsix
| MD5 | 760d65f0940c149738777679b7f6368e |
| SHA1 | 038efe2be03d5df44f6ae3cda789310ad61510a8 |
| SHA256 | e50b8f4056698d465d924d625a6af904c21e56e7be2a471e1fab8358a92c5344 |
| SHA512 | ea8ad39a8ba6036606ea87082708847c484a89d8c5027e67ee7de66ce59690672371e1a4faba952f24b90082c7b7f2fb476b7ae7b679806215530da9d5631578 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.x86.2DBC62384D1578993BC6\payload.vsix
| MD5 | ce627107bcf864e8e6a37bcc4b64718a |
| SHA1 | a5f5bfbd7a72058d6a9231f1d496f9c611a01111 |
| SHA256 | 677b5291c60b2234e7df89aa3636e43cf0d06c8ef9f84f7332b019f4400dc178 |
| SHA512 | 23d91998894de30b19185b410c49e16e05a24f4ae24d91d827df04eed469a3905fa84fedad48f4feabfb5370ada9cad793a14016de3972c8bb0d38673eb0830c |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.ProjectSystem.Query.90D913B395D3785DECAD\Microsoft.VisualStudio.ProjectSystem.Query.Vsix
| MD5 | a4e516840dfca6180fbed59db75006a1 |
| SHA1 | cd0272b1e07d8832c1445487ee608b69fea9a52b |
| SHA256 | b51ef1c5bfe245ae1e0280056a271d26b502b6bbca2bac93e925ddae01c8f7e7 |
| SHA512 | 2f34bed5e5c25217892972699cb96c42b0d0c2b4bf124230667d31df5ce79b67d1653e3e51bdcf3a07e46c2d36719f9fc36c79ad612e0c469ec04e58880c4b5a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.ProjectSystem.Full.F2388A4812675BB2688A\Microsoft.VisualStudio.ProjectSystem.Full.vsix
| MD5 | 6a23a974dde0cddcb82051a47e826549 |
| SHA1 | 93de759ed76220098acd936f5766fc0239c8d88d |
| SHA256 | 03e22d6c5014199835dd4676e6da907bfb3a1e7339f8179c5b0c77ea34b89815 |
| SHA512 | b3b3703c3bb14b2f6658e886bb8a74e60192f2dd0bc3b4cd736ff56264ebe0b8df69f70db43c6458f1ffceba5da89630e19ac03d9852f37203c7a04aef33c3ce |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.ClientDiagnostics.Resources.68C5473E180A1BEDBEF7\payload.vsix
| MD5 | 04fb8b4baf51ffae5a6cfe684a020773 |
| SHA1 | 9c161099991f7d4fd4aefdd6b55ae7467ab874ea |
| SHA256 | 57c5d50906b55814ea10543e13f7641c378c1a486c1115f4b0100a220fef46bd |
| SHA512 | bbd28ad10d99f499811e06fbed9fddf37b50106ade66b4ccb79bf815778666b287e57b8183c81f705f571e0eb28f10b57967c418a9bd1a5f04cb672546cd97a8 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.Shared.Msi.8CBD959E536DD8C52639\Microsoft.VisualStudio.Community.Shared.Msi.msi
| MD5 | 9dd3ec5d6947b1657591ab2eda8234ed |
| SHA1 | 760888579a74baf9e14c6599dfe7f2a8fa510316 |
| SHA256 | 8586950a5f6ed486ec1c636260c49128c6a43b325e42b215a85dd19316c67333 |
| SHA512 | 26790fc0705a695e967da870dedce908d39cf8d3a498a82c408bb54f3d4393b2aaae6186ff4c76fc3ea27dfda41e7c85e41c696cb11bbc6ab19a873d2211bd2c |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Community.Shared.Msi.8CBD959E536DD8C52639\cab1.cab
| MD5 | 1ff333d187233edea42ed210e95e9421 |
| SHA1 | 1b983885a45c4a9d2d201283ee37f8dd2ed36c9d |
| SHA256 | 57906c2abeecfb3208d73838f460b48f6f1c502e11fabbdee3dd61a55c3a1334 |
| SHA512 | 138f98f901a13ec7adc2b73ff12307bf3d8b4da8640911c29a3c34eb7f23814506b5851063295c3fed1d4a87e1bb7fca7813c504d7fb7f2fe6613172d34b972c |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504073453_62e3cee96c3946f8a2f1589af9543ee3.trn
| MD5 | 0f969aaadc657be29c48e86085a5cbb3 |
| SHA1 | 7e65c7527b919a9744a00f46a26d31c927eb586f |
| SHA256 | 902bacee4498f3d54f893c5a1e7aa2a2b1f9f68c98edcab8b982483b2341e648 |
| SHA512 | c9ba4daa723d8a178a6b4f9405ca3afa16a1e2127fa7f475fff014c69fadc12226ca1f3be609a17e4ff917508d97452e0422f7fc35f77174811994652c694e5e |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.ClientDiagnostics.19A27148C97DA95DB5C2\payload.vsix
| MD5 | 71480c5490365a6991afdcdf69a9989f |
| SHA1 | a3bc2daac0fed39aab739132cbf3fa81d09dce2c |
| SHA256 | a2b45871612906f2f52445b179eae2920b7f8f96b2d596bcbd3a9c795af34a6c |
| SHA512 | 15641046bde4ba84af614c6dc00e793c000be2ca69fe2ede20c50a99a70170ad52a1a1a4cc0833b1e2d42dcc1807c28dff31197e8041d6aeedb5d2e8f58386c7 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.AppResponsiveness.Resources.B53BFCE942548407B75C\payload.vsix
| MD5 | f8c35061738ed9ec10c5abce1856a9a0 |
| SHA1 | be76a928b2c007a2d34531f782efa4b3084bc2de |
| SHA256 | 5d60a10e6ba4b56177483ad5fd6c2d74760ddfdadaf29c086dc2f6fdaeb616ed |
| SHA512 | 3bbcd584b1fb8282eac0f5053686c497c97e2b2e94ef8d40d1fc1008695584d8aadec800ce2b0e5ad1385a70e46c81d5b12f8d52fbe1188c3045cf072193551a |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.ClientDiagnostics.Targeted.EB30461A8D67692E4AD9\payload.vsix
| MD5 | a0ea0a53859bba15d9459e1eaf15d66d |
| SHA1 | 9c0cda600959b89ac5822058608b0925dc6ce80d |
| SHA256 | 8406e6ba99bed55356e90da123fba2910f464177fd219f6f53f211883076fbf6 |
| SHA512 | 227c6cd63b141a0ad51067252af10d077fae657d924c6ef1ae970c819d7cd154f3cf624078803a4a7e3575213bf311f47da8f0ba1bc371e8e470e4a7cb0afe4b |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.AppResponsiveness.Targeted.2747ACC25850883CF3DD\payload.vsix
| MD5 | b96ba9cb38bbdb0c05f45ab61c201815 |
| SHA1 | 1f87ef12ba44b3b5d43904376605de33fb94b349 |
| SHA256 | fe13403d3878a303f08a0fa2011f69ab8554e8935bec76a16209d194b445d18f |
| SHA512 | 915943e8752782fe1a6bab11003656fbd333b62fd093350ac4f919d217a6440288a5edcd24e6af394285dd2d495b9e603376016f2f70345088ebaef9dab2e4f6 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.AppResponsiveness.EE0A154D7A74BFC6BE4C\payload.vsix
| MD5 | cce9a21308400abe7463e01e4c17b32a |
| SHA1 | 61678b7dc5fa53ecb26e9c804dc9bfb578e04368 |
| SHA256 | adcd83117ccd920a23fc06ff8c8dbc61b7e538b66d9ed686d0e10bd1cbec6af3 |
| SHA512 | afcf153732dce774a3e1f7b3928dfee2385b580c53b6327d58424c86e00aafd9771a7acc2f17549352b62d756250071fba3bd3a88066b5b5d7ddae12dc16fe50 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.CodeSense.Community.94F908C55ABA7C07DA5D\payload.vsix
| MD5 | 7713b87e62b40ca79ded8eaf3feb558f |
| SHA1 | a89128a2b64f7a551be7b582507c68172370cde9 |
| SHA256 | 32b5b27f34dc6a8f3acc47217eaa0c7672c82436ca0fa7040097af761594441e |
| SHA512 | c211b811c6465edd7402a607c52c2694e6efc232410387613d0f02e6bc0e42b2c62b13be3951833f92db305411ca57a730e1f26b24fc7941514b5d1106a347c1 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.VC.Ide.MDD.D6957104723577A1289B\payload.vsix
| MD5 | 758fe56ed943c1e5a0f60137f2d98f7b |
| SHA1 | 06bd5682b5f1afbf6e82c71132a0f9cca2d76fa3 |
| SHA256 | 1dc52e973ff001f97330b6f40d5232e4121a4a9c7d17ca498396db2ba1671808 |
| SHA512 | 6fdd128e5d639610e3090cb4ab73a99cf11efddf1810f24186150d40b34c0a9be11a6be73caf653f62ac6f4aff212dd57c292f88891f402b5a7dd5dce03afece |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.Cache.Service.9AD52F32C1132A2A6BB2\Microsoft.VisualStudio.Cache.Service.vsix
| MD5 | 6b426a5eee0e24da735060562f443f50 |
| SHA1 | f2cf964dc5db46f5383012a07fc05cb4c42e87a1 |
| SHA256 | 1cda52f375d5b803c47f0f57d832b580fa14a484bd6b735cc1349b0be707f58f |
| SHA512 | d5d5728c9b290d0d3a8423a6845823f40b19a0498760778848a910bd9d6a16fb6c8d1e67865e17bc872064a98c697d02debc6b9df07a1ffdb5103e8c767a5b98 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.VisualStudio.ProjectSystem.CAD493C80EF517CA179C\Microsoft.VisualStudio.ProjectSystem.Vsix
| MD5 | d9ac36bca711d0a4c9e99c7e3ccbc607 |
| SHA1 | b11afc2dd861561c9dbfd5d392841b2f4fe80891 |
| SHA256 | ed41f8f56921c4dc7e4745d5b3cdd20ee827378cacfeba4fa7ab6b1c5a0738ea |
| SHA512 | 9596dad0c2674cb6906ee2ce0630bfe152e352f7b30b4e68259bcbacf014f15382fd6e07df7a2f83543627f84070d8a7794a9fa871d848154eddb00ccda9e624 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\cs\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 6df424bc48f41fa2f94efb1850b2ddb2 |
| SHA1 | 8ef47fed67e2833003fccc5d0db10300b327a892 |
| SHA256 | 8cfcf65b801087615324fba53bf41092d6c284bab0700fb8b6cd2de842cb7a64 |
| SHA512 | a6522c99f2b3671bb4d4ab2c53802c357bc205b25271d06cf3ae468e18b39910c0a61f8544cbb00ab40d6a8925e01a7894a417ad3b18fa502cce7f1944862289 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\de\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 09c598d5f1c98c45e721e747c92a4d93 |
| SHA1 | af1666fbb443db43f60cb1a49222362c5d71aecf |
| SHA256 | 1bc733a4f1c10ee54d707e0f82404df46d46ed95254c3ee87dff9496a540f0f4 |
| SHA512 | 10e28ee40c991c3d003e9c140e16eba0fc7cebb983dc3e8bb4a1adbf89374daf350f6684bc2d98bb13e4c1eb91b98216962b8dfc75b5dd8e81b1dbfa9f35d3d5 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\es\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 5a1db18f90100d81166f75f096e2f4ab |
| SHA1 | 90bdb6ef4a39ccbdb6c7dfa14aa2bc51061362a5 |
| SHA256 | 00cf3368ea561601d1d8acff83b589215d6ebc5c7c50f400f622536a0e77027c |
| SHA512 | a281f02bdbbcc3b885c1d442e151b5d1cbcbc976ca31acd30ea48ff660b023884cc429560236fb7f3405d9e61853855b88e60218fbdb90e81626a93cc58209ce |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\it\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | da0ea24a27347ac4fdc2cac731300684 |
| SHA1 | e4af6a6cdd38e083be784d67efa6cc32c52dd9c8 |
| SHA256 | 7ca92f69c60006bed569cc563ea068276b5ebd16efc852396705efebae257d7d |
| SHA512 | 562c83c4c9897b0d6993656c75f8dce033f04bf646be382c229f1c6237625480ca53b1acef23c6cefa4ed448b022b24bc23dbd658f6fb46bac1396cb5a1ae893 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\ko\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 74bb2375714cde6ab4eefe885a0f6c0b |
| SHA1 | 16da18d75ab09f3a4dbf4f609171da49f6d85efe |
| SHA256 | 46143cceaa4213480d25504c9999473514ae7d195baf44f2a94700679c72fa16 |
| SHA512 | 9ea13a1574da8b837aa52a7cbc35f643baa7b2153c53bf654b1d39a969c2b2ad380cf48997b8296ea3a43896404df7040e29cb9c0d2bd49d0e75dc790e3fa6da |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\Microsoft.Bcl.AsyncInterfaces.dll
| MD5 | 970b6e6478ae3ab699f277d77de0cd19 |
| SHA1 | 5475cb28998d419b4714343ffa9511ff46322ac2 |
| SHA256 | 5dc372a10f345b1f00ec6a8fa1a2ce569f7e5d63e4f1f8631be367e46bfa34f4 |
| SHA512 | f3ad2088c5d3fcb770c6d8212650eed95507e107a34f9468ca9db99defd8838443a95e0b59a5a6cb65a18ebbc529110c5348513a321b44223f537096c6d7d6e0 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\Microsoft.IdentityService.Clients.ActiveDirectory.dll
| MD5 | 8f3f539a76f3dd2a02601c67379228c5 |
| SHA1 | baf5ff455256f42a7db969e041ea641c769a9ab4 |
| SHA256 | 4c939c75c0bc5bca69abaacf999fc0a4f13cb29431066d7b57b7b62003fdfcc3 |
| SHA512 | 1dca319f151cfbe49131da0ec48b2bf1a939d6ef8121ceb9fd038a8eb908f6017601e81e190a5e3015685ad9057bf77367d96bb9f7a4c8ee59aa6c0997c4671b |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\ja\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 9649909deccaccff34005d2b9b12c62f |
| SHA1 | 7a58cabc5f9e41c18dfdf8ec4f6315138aec8715 |
| SHA256 | 54ed6b36474917d2cecc5c4f2c8e1fce415ee242180c60aa8f509ddd4d9727b4 |
| SHA512 | 242e122dee06ddcfbaf3bb8d008d7ac4287c420c597f25d957d0fcd318071238e5220374cdcd4c5649d7be8d03e47675f2458d48b5d963a4fd85c346a60fbf46 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\fr\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 0ff1c23809446198de161c0fe8637717 |
| SHA1 | ee81e68bd241d2f8fa9307cd8f30a5dcf4b5cc93 |
| SHA256 | 3eb06462fae5b23621f0d13eaba3e5bda69dda8529a32d9b5f8063fe38424103 |
| SHA512 | 8501d9546a56c6d7f8f45df30e866b25e5a5a944f2dc1eea0439908b240fea0db6641a94725075162e487f35d805d6bbe127163e41f2a35354e9c3463cc6a85c |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\Microsoft.VisualStudio.Imaging.Interop.14.0.DesignTime.dll
| MD5 | b340a021abaa327244b5f02542bd1def |
| SHA1 | c4471b8c3bf60ed300ebce0bd843f017d205ad5c |
| SHA256 | 21e9388960143eab0323b9b56443b6c47439973b1682653c37e0e50217e3bb08 |
| SHA512 | 1970ebe87910d0b7759cae3139bdb78b73e04b3c5a8a22ede42b772e1dc73bffa05d82a5684aba1b90fa265e30e510806bc5e782117ddd620612625c0a6b2d64 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\Microsoft.VisualStudio.Validation.dll
| MD5 | a627fd8565f6f442bc7555c94126e988 |
| SHA1 | 4d096f96ec09228d508701e3d288f854b9906c21 |
| SHA256 | 83ee28811e6815914191db0c1d65278f62a20995786bb1d416f48e8a3e290274 |
| SHA512 | 1b4bfe6e74658b00ebed000d82c5bfc242d505b3d48eadcf07334e316feb9aa791f7e803f27903cb7eb1ee5ec5900de4d87afc0a7e6a482f25e2cc84ca9c9135 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\pt-BR\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 758346b48ce3002236870510f6716e9c |
| SHA1 | 810e4f9ac118a4d7efbe826f71f521848cedd44c |
| SHA256 | 5744dcee99690c8196456b76df5db7892c9c93047cebcb1f3e8ec184b6ef1698 |
| SHA512 | 17670fee96ad13322f33869e6336998390b8a16f4bf49c001c65bb564aa13d604bc9b73825b74f245b4c3a4bceaf0e3b67c500688285674a03b780869af04c60 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\System.Security.AccessControl.dll
| MD5 | 527595c86ad17045a101d567d7d3279f |
| SHA1 | 83014e2a98f7597b9a26e424a0759e5a3d2ecff1 |
| SHA256 | ff14c5f628b9a6798d173aefbba0a43d61e66f715108e2576ac0d3dfab9071d0 |
| SHA512 | 9ebaaca1623bc8e2fc8df158f338b5e415670fa53e212bb38771e7e25af9688301cc4aee055c5b64e33f8aa24729ed896e0be8e2dbce54386583c660476c5dda |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\zh-Hant\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | ded54548c8f8a2de0b80b5e846b11447 |
| SHA1 | a993aa8a7c673be77c2c8a79e8a328f3d6ed4296 |
| SHA256 | ec06693b9ccedc1c7fb01eb5cea324d15358995fa5240dcc1fcfd555d699db76 |
| SHA512 | f34879eb5681dc46fa6f74bfaa126fc686d949287734439ab691cea83002e095e019f6611f3a116c3ddef85476152c62a5abee3e9ce318417ce65dfe3e94a464 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\zh-Hans\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 0c0a5962ddd24b6fbb76a7d970558987 |
| SHA1 | b85e48244a918a90ba2174ef8292297a3135a1fe |
| SHA256 | ccf4f39afb6108bc8b3101293c7b46e27c9d109f1bcf2fb048e8b01c0e788ea9 |
| SHA512 | 761bdc5b4857ab356aebc31c53edb59d1414f4c430a1d7903143f44522bf242c4fced4511213d87e899ec66f2cf94f819642b864549b3e021136aeebdccb0918 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\tr\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | a6727fdb2ff24ed4d58fcfcd79c90d05 |
| SHA1 | 4cbe69317e0d47d9e312bf46626abd3cf30605b1 |
| SHA256 | 9906e106cec66987188e5729acd2c2b9817ba06e7a10a61ec22339c258f061d8 |
| SHA512 | d79711c6326c163c4b4c637e36798a5703e83ac323ca3ec9348593f5d319560bda6be6cbe60e100ff344231004c969ef59af0bd3fb848ce76a88bc41c4067baf |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\System.IO.Pipelines.dll
| MD5 | b18213904b58c0bd01a31d863dc06d9d |
| SHA1 | aa1cb86d7a3cae382ce753c80a82683deb373f5e |
| SHA256 | d3b818a4f7a84fb0ebd8607dc22f9333367c5d0e02d9e7800783499169deae61 |
| SHA512 | 2eb7acf6ed61ef1da4e4f35f931ca689a913a04c01c83091513e6df25aa6ab68d36faad16c5bb6a4cdc20a7960c9c36d549c20aa82d89572cfd5febda7bca49d |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\ru\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 8e6a8143ada421b00da3a728aeef6ae6 |
| SHA1 | 34111b4d93341058d80c9aabb2d076ed84544340 |
| SHA256 | 85dc35408e0f7fa0f3b1be4a9e4bc654450af7635c8b9493e6598f465e693b3c |
| SHA512 | 0d7cd2809db45bbd413fcceaa73d1d72b2037292de80adffe210387456505e7435ecd50c18740aa4f42da27eafa9ed89fd7a9aaaa665494c61cad82d9e34424a |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\d5txmlcd.sek\pl\Microsoft.IdentityService.Clients.ActiveDirectory.resources.dll
| MD5 | 347502d058ff9b3d17db74f28636eaa1 |
| SHA1 | 1a5e513666186d2fa5eeb7dcfcb0e0fc682b6069 |
| SHA256 | e0a32bc05ff0c33992c884e393db916a9b1fdadada285bbfb7461879544077ff |
| SHA512 | deb350758383bea03aa5d0db04935a7a77a68f570a2fae43588f1704ea7a36a5568bd502a1dda75cad792d54188e2b99174bf13ac8a0c5ce526ac0e59bcfbeb6 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\Packages\Debugger\msvcp140_atomic_wait.dll
| MD5 | 29805feedeb4bcfe80b4bcb621547cd2 |
| SHA1 | 174e0bb77fe99e5f819f3cde9104c4ebbf7cbd42 |
| SHA256 | f67ceb2d330285c19718a5736ef812d2099d6b96a0926298228c517bcc8da5c6 |
| SHA512 | 83f5965249829b94159e4be4b89876252236719153d6569d6dec3ad7fdf5b78271790a496b97924e99265c80a3e55072a13d24de44a82f5e0f3390ef1fab2982 |
C:\Users\Admin\AppData\Local\Temp\gghujain\Microsoft.Net.4.8.SDK.80C03852A6E633D033D0\sdk_tools48.cab
| MD5 | e5539e2120a3c3ed69bb9541591ba6a0 |
| SHA1 | 0beae4dc94a19950c49e40f958bd4563da548cd2 |
| SHA256 | 131fa7cd8d661a151a13077a4bed21a4d187c5070b223c28fcf1a2bd1243d817 |
| SHA512 | 5483571270258ec0d6ad6afd878a3ca680a5a27db7804e138cd6c02556c4e1d38a7650e81412a0b4431c48069449f31b20091cacff53bcb55d99a0ef0fbfa8db |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x86\msvsmon.html
| MD5 | f7770b8d28f0a464327f073cefb74d70 |
| SHA1 | a72501d5cf6ae7efaf9a63e0c9f03f896deeea2b |
| SHA256 | 31f2c14df0df1e47f0340dbc385dcd994d631962c60054260092f7728d2346dc |
| SHA512 | e5801eb4f9913a31911aca0c397c1b18ce1bbbddb0b08e70e51eacbf6d8424fa758b83e95b5f7275396a2b6931c2db4a076aac06aeca4dd1f751ee3b6d01692d |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\iisresolver.dll
| MD5 | 0fa0e41dda518099287295d50fb430b9 |
| SHA1 | fa635fb4894c1af589e85d7aa7801575bba71bce |
| SHA256 | 77dc8c187d1b75f9faf9af5546dd8b3877f740ca1dc1cf81c34d85d115c0b001 |
| SHA512 | 8f5565b593d3e55d3a7eeeb84325db7cb9d768de577213bb2ff187555481aa7ab95cd4670e933e2b4ee842d9b88b2a42185c94e1e572cd9dd88692ffbabc56b7 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\vsdebugeng.manimpl.45.dll
| MD5 | 678aa7b9436b5646f6e4d82968726b1e |
| SHA1 | 2b992c95dd00c16f0677626191efb05b73162ddd |
| SHA256 | 24148da7672c26e5d84c141f09bb3d2307f2971d87d08fb6e8e12941416e3ef3 |
| SHA512 | 7e4661018061b2ae37a8ec2546ce7350a18c601438606c0ea35c7d5c48659d75a71461ff61726f052538d22f589723122964b2971b5a2a152854e348bb7315f6 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.VisualStudio.Debugger.InteropA.dll
| MD5 | b6757ec5d9e84fb2da2457c02676695b |
| SHA1 | db12bdafcbcc43d30492a54e499685edd041acd4 |
| SHA256 | b2b5bc30ff2bae2491e4cce45011d58fc4c15af79f6945b808f08be96d2f2d29 |
| SHA512 | 9bd8c6bf87a4fd1e086ee8ae669eacf8f58d92032d7f23ce1aa075b548993b6b99f9a61fba00946d1407e4afb53695afe93b66d16944e0eea7fa84530f815ddc |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.VisualStudio.Debugger.Interop.15.0.dll
| MD5 | 513dccdaa90ace47b80cbda18024f393 |
| SHA1 | e32afd241f5c20e55824de22a45beb77a8b31867 |
| SHA256 | 4bf2eb44beabf8900471282a62c15cfe71f64c18ff1a9d8104391260e2b846ac |
| SHA512 | e4e03294278ac1713e7332aa394f9910a46af9a9ec2d6091493399c65c175dd3ad166d198fb05e154a328ec53612e3c7280475de1fa3636755c4c10282ea3ab4 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\System.Numerics.Vectors.dll
| MD5 | 387c4d07c0e7c45b6d73c61b5936a102 |
| SHA1 | 81580d6788f5ccf418e89f8a5fd7f720d60bd811 |
| SHA256 | 17924e5dc87e0d6229d2dd0bcfc1fdfabd820901b13a68baa89fcb80c4d1a67f |
| SHA512 | c7bd03dbb2daadf43ba281287ac92e3922cddba64702c524083537b9af920cd64b8555a5d1b10dff12bf8b896518fa0ad0de5b598398f6469c9293cfa529bf91 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\System.Runtime.CompilerServices.Unsafe.dll
| MD5 | 93ae20e877512f420abb5b2d8ebe1446 |
| SHA1 | 802bce64836f3efd2f74ebd0e767ce341cb021a8 |
| SHA256 | 01748200f2400c742aa689f1f5101bd6298efdfd92c00c18f4fa473847235ba9 |
| SHA512 | 2c8b7cdad056d03b51356ad3361b431600c8674e49a182274fdc481ba817042e7a3be85e6a23c7f2052561f22c81e91f33f992a31c5e48e1e31029132f3efbe1 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\symsrv.yes
| MD5 | c4ca4238a0b923820dcc509a6f75849b |
| SHA1 | 356a192b7913b04c54574d18c28d46e6395428ab |
| SHA256 | 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b |
| SHA512 | 4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.VisualStudio.Debugger.Interop.14.0.dll
| MD5 | 3ebd624720f628eb2e941bf49b939ef5 |
| SHA1 | 89ec8250b7bfa456e0a4f8d3be053f803ad02ef3 |
| SHA256 | edbb9acdd32d383d6571fd52466a717f9d72898087d0b51f9e755d7956d45934 |
| SHA512 | d74c4ccf4bd8b087ede813a5632d1229b9020f4854d14093a44a618dca671bc4455504087301e31f239ad9d063fa951a6a90ad6091febe747233b68da116197f |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.VisualStudio.Debugger.Interop.12.0.dll
| MD5 | a11a698e5f1c8b02ab225a2952aa90e0 |
| SHA1 | f31ffb1647593b7dbd0058934b6279a7bb1ddc83 |
| SHA256 | 090d418caa62109ad7c1b316df6d6f773bf673ff1c1789b4af32e14542ed2867 |
| SHA512 | 6683679b329bd021bfbc77a6ad6e549bfe7ba2c8195dd1e4e4d9fffd96a53e9257c23261cc2f7426c933ceb3d23b5d41b3ba7012e8a0bf8346df233c7ee58a43 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.VisualStudio.Debugger.Interop.11.0.dll
| MD5 | 105f5647d43d5c8567b80b2d7656846d |
| SHA1 | d4bc5283b3b38a1169435a08f7f8db248845966d |
| SHA256 | 89e7e0e29cf281d95defe638766b9f67d6025101fb7d14d218ed6a53b2900148 |
| SHA512 | 429c0213d9265684127b91258862474dc3514231561360bb5264d979a3d5034169b064c2d1f6089f0c3a8c2050e48aedf8616eb180a927597f1edce126083799 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.VisualStudio.Debugger.Interop.10.0.dll
| MD5 | 96b127d2ffb6c525876fa5d25c0218c0 |
| SHA1 | 110b36369fdc40574c71895cdee45cc8b385c578 |
| SHA256 | 1f34284d40b5e63b57a9c1eae593f15bd69b352303e6807530d9cec97017ab95 |
| SHA512 | cba3300575367e350ac54f058490e1b71e72c6b2a45ebdae3ca97ca8b814f09f07e26d611565470b637d4afced12f80a190471dc8c3601fa83388c7ada09d29b |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.vil.dll
| MD5 | 5e8df4ee7738f29a15c55818962d1088 |
| SHA1 | cdd98e05967a9ab5f093450dba0e420d35b10ed6 |
| SHA256 | 4514263e06aab071e2273bebfd50a3d10e64a27e86c2ec5e412ee087da2181bc |
| SHA512 | dceff992108b41633166e6f77620659b5b6cb49d9824aaec40667d36444a458bce5d5623311e440f02c94b71727476412400dd36af547ed94f84a7196aee3ba6 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Runtime\Microsoft.VisualStudio.Debugger.Runtime.NetCoreApp.dll
| MD5 | 7864c66ee6da943313d548f36df5cb0c |
| SHA1 | dccb890beba172bbf2fbd34149f0196727e026c7 |
| SHA256 | f8f2e39913d4d1a7039639f9106afab6eaff54bbea71e1a485b6eacf8ffe0005 |
| SHA512 | 2994512d5f5ddea7122358e6de74b7145cc90773ee6a1a7b89ce56186e674bd706d9cbca102cb8ff22e7dfdb58dc2ec3d5aba3eab0020a571e9afc3d37fbbaff |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Runtime\Microsoft.VisualStudio.Debugger.Runtime.Desktop.dll
| MD5 | be2ac2b162e6cfb7d2f49988ef82d686 |
| SHA1 | d42948d9bf6e23376b7ef0f2dda3ae7b0ba3da6c |
| SHA256 | 750cdedda51049f926176a3228a2912cb45e1e762958c9ffc415d12240eb2bd1 |
| SHA512 | fa83b1c1a5da27cbbc6f2eaf5b088ece6dc4f077a4d7d4b8bec216dbc9c748db49da6dcffd04b39a3493ce9b1899188ec8ec7d9c13e31e486991e04e6ab20685 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.vil.host.dll
| MD5 | 29ce70a50b43a5aa4980ab4f378431dd |
| SHA1 | 18f78f4e0bfd7e7375aeae2678804f08370390e5 |
| SHA256 | 51ba5d358d8fd5275fb5e61e8b5cb1d68763ee9826d2a59d69ccf47472fc28e4 |
| SHA512 | d4e32dfbe9c9727dbaa593f2002ec76614657a255f90039c3a4568ba9d8feb24cadeb7d481af93b405e71d5ab5c88089ba1de1e936ecdfc1f98837968904a8d3 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Debugger.Metadata.dll
| MD5 | 8672b16e0467889ff4feacdb348a0bd9 |
| SHA1 | 093c582bcf78a998cdfe71ef13fe3f2fe252d776 |
| SHA256 | 513df50168d428e191eae8b3362b3ab54687211ca401e804e59faa1a63406144 |
| SHA512 | 776a1254aa7d1409efb03290fcc354657f34aab48e5ae6a2d59df2bc4f0779f615170d888233c3611b4215082350191b73b0aa0061a0906536b0c1a287f5205a |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.DiaSymReader.PortablePdb.dll
| MD5 | c449a58b91e0deaf92b4503b8f20e26e |
| SHA1 | efdf2ebd504b1316adfc1d499a7af85a6c2c78e1 |
| SHA256 | 2df7545659037537facd68f8d343e790152e4ef2ba832af4751a5ce095dee96a |
| SHA512 | 39f972dcb30c37f62f364faef49e5ab0a90f4bccbdf3603f2fd3975a27f93f5e711b870a2f183426ec3f170b6d9f7c7781c5b67f58b15a591b3a2a81b85de8b3 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.DiaSymReader.dll
| MD5 | 8b70fc0ba4b1b92aa0f6816cd4ed1bbc |
| SHA1 | 65691ebf1db1d1512cb7e5b7ce7dafa08b22258c |
| SHA256 | 7f3e7543321ff4c2675b94e56a4a32c935c11c82fcc60d4f6cb611cb0a8daadc |
| SHA512 | 97ce2326e24ebf7d62481a84577b038c8a721314b1ef35f6c2b446a3759e7b38a35074be2d4d2ee677cd47518a915536b62886fcbaf37d7c75bd388e4ce9d0a1 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.Diagnostics.Utilities.dll
| MD5 | 59a07ded8f6a9e1e65a17e1ccb8d7429 |
| SHA1 | af7cc5d417045cc4657ceb3aeef8eedadd350b64 |
| SHA256 | 1575a18a8651c84c4321b83acf7091a439dd24a39524c1c824a43b61c658a18b |
| SHA512 | 80227eee6bb0548ce28ca10a2fbb67269e7f24dda652f8a934e2c277ccfc4834d18af0b47d6fbca5d3d580e3e43c45652271a8abd34940fa5b490461c15583c5 |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.Diagnostics.MemoryGraph.dll
| MD5 | 0999f9878af8c08706817cc117faa564 |
| SHA1 | 3442e56b86967e90294052c913125cf8197fccf3 |
| SHA256 | ae416490b051e0a0a4a57b711646a08c8e997896b043051990d9c7aff137d104 |
| SHA512 | 42e61a52239153a7499c50d81d9c768c3759cee13a1e809abcc6017b9521de06ee6d36200661d5d35cfc1e319f2617e6b40d0a9aa928f0fe1824c3ad96cee43f |
C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Remote Debugger\x64\Microsoft.Diagnostics.FastSerialization.dll
| MD5 | b766ac55b0ca262e4a2edd827b027510 |
| SHA1 | c3ec35c2a239f4a898f61596b59f21492a65824e |
| SHA256 | 8e157977d39e520aa844a5fe41d968ecffa2bd9ff78433066770157e81bf8e47 |
| SHA512 | e08a5e43b38ca1f07ab6274cf5e720196552db932a34e76ea2b49d40a448f2e3389bc5270ad92de876e1aa29ea369a19e72e328301171669803655998ebd5506 |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\product.svg
| MD5 | 9151993dd715abe2dcc78cf93e47c8a5 |
| SHA1 | ee24b624de07047bfe68c04a0a87688f73a74ec8 |
| SHA256 | 2c6325b7fc7e8bb6504b0eb367d7249b068ab173ca9c8da84caa27403d412838 |
| SHA512 | 4c29f79d6c3c1612c6f794c9d3b991bb335a16383e2c0e69b04257e216bd14c1ee3e90007b03505259b9ddbad6b1a316d64941f4b43627aa668365165868c2ad |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504073523_f61b07c58aa542a596c4d4bf3de36470.trn
| MD5 | 4b882999062c0cd984c20e0ed4d30d15 |
| SHA1 | 649b28baa30c29e8d7d0c2fe71301137e2282c7d |
| SHA256 | f20ae5b9f24c09ea36a02c205de5fcc3ab67a03dbdf4c742619d4d9be15df62b |
| SHA512 | 96d3f8d3950891a0b06bf3171f504c9189294ea892babfad902a91af7bab3051f0826bd0050c9544233fc8c826ea57e37485255998b839be5a5b410d7f8120f5 |
C:\Config.Msi\e66bf65.rbs
| MD5 | 196f19dd0cad7593aa0f12766aa34a9a |
| SHA1 | 594920ffa02378b916f04692c7ee6f63bcac1d50 |
| SHA256 | 6d43515244568b2edc2aa638154743121b7ee32f8a8a941f0d3ea44399da86fe |
| SHA512 | d63a2db71866d71435862f9bf84d07e081fcdd6cb956b47f1760ffa504862ab3e67cd543a7ee65aa1c2e2881df459a7e9dba5d09d7a584b16d551166b7e076c7 |
C:\Config.Msi\e66bf89.rbs
| MD5 | 19e0598cd427573bd2675a60717cdc0c |
| SHA1 | ada4adff391b0c776be2de29b589c2aab59320df |
| SHA256 | 9adee1a9886b0059eb30315a71d7fef1e44492e04f6b3ac20e4e61f5533e3b5b |
| SHA512 | eba018bd2159cf6c4390ad9e2b487dc5958e2465284b6e816ca0d921b1d5b220405954d288108e9accf42aca77cae928f5483c1ff5de95ccef00164e133092d2 |
C:\Config.Msi\e66bf8d.rbs
| MD5 | f19448f6a4461304424ac57a9a6fe62f |
| SHA1 | 0aa24a93bca0b43ef7503eaed3610f5a62d72a34 |
| SHA256 | f272af0288ba298857e399ebf12d4a5369d52fd06c9ee01729fbf01a924e1c73 |
| SHA512 | faa1ff59082e9e5ed46654bd3c4a5b03878995d3962abe6550db6b5c40b1115e8cb14872f6bbf2b6d213aa0a8b664cf87bc01880ec1725ef1f536de9ac9da924 |
C:\Config.Msi\e66bf91.rbs
| MD5 | 433f13837e7b2369a620c704ab293fb6 |
| SHA1 | 3e54f124b685971a609d725430144307f4dafc21 |
| SHA256 | 600b23c2650435f118846235629fc3e7bbc181d62a97d8d807634ed58dbda605 |
| SHA512 | 72c7f39b86f27f5d0c59074e9c5da7195d6f22204e5b4238a6d6ca569664132b35690bcdcbdc9db428bc1e2bb2486f1bc624192ad408365da206b61578981ab9 |
C:\Config.Msi\e66bf95.rbs
| MD5 | 9c8a5a32e4248a462e40fb284bb3e3d4 |
| SHA1 | de6e9c736d417af69c98456a7a93bab15a88a3de |
| SHA256 | 42db3c659d8d41667c7709ffc06653b947762d22ab2489112ad22b33d9126d7f |
| SHA512 | f59832634ee9eadce1c642fa9cedc20583a3f1032b76265e6515858af32e11c4b4c2cf97ce888d66f7fb1a54346431bb4f49006643b942e97927e72e9d95a984 |
C:\Config.Msi\e66bf99.rbs
| MD5 | 87702e894dbab844c8e26e1ab129398b |
| SHA1 | e760ffecbb4ef901a68476c8b12fde3d51222cf6 |
| SHA256 | b0402261ed12b00eda1fe63b954bbe13282c8ed4a85e7c32078ebc54d8178475 |
| SHA512 | 818e0f89f7704af8291f59140b40f45cf019cf3f9897d6f8e3ed05510c39025a931422194332eeb2f16af501bb227a0d3e1dbd63ef479ddde367f278090b9371 |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.packages.json.temp
| MD5 | 102e469d21a2cae43f4c58b43bdabda9 |
| SHA1 | d5edf7ebfe84eb565230025056c95ebc4529da60 |
| SHA256 | ef69ae71ccea7822f8e46f85551c33044f69e7c3cdd3307e2d7057156fceedd5 |
| SHA512 | 168268676ef36470d176cea6e6941548da3e9d101b8c3d788f0b8022e84f5b6fddfb51c736590215ebc13aed0498fe56f4310358a7c03075e8b85acb2015477a |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.packages.json.temp
| MD5 | c9955110941429dff96d02e13ab8a5c2 |
| SHA1 | 82c0ae28ef7565da4dcdfeb4386a83840f22c98e |
| SHA256 | b10ff0ceb340862a1d3fdee1f24a3a380dbd9dd9e035e731f20ffcdbd1c4257f |
| SHA512 | eeab44b16338336fd7cd002d5691e9dc575eafa9b81e841910110ca9b4ea00efe6978e3048a48030eed8e74c6e78dd2844345bac9c92717cb9edc98c6d4204f5 |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.packages.json.temp
| MD5 | 3103ff329f518f49d6f3318b69ce4085 |
| SHA1 | 40143253c9fa2e2d67a2a4268c2804d2a2e6b767 |
| SHA256 | b10c51a0331b06faf8e3bfaa3650f562df53a7c03ac0cb9fc38b3b9783626b7c |
| SHA512 | fb4cd37636bf46f644dad83d0eaa04336c49f835a9615d6d3d1f7e83e414cc1afb0fec678d20b7b76d93c91fa5861ca5153fa276640f0dfb7d5ebf367d3586f4 |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.packages.json.temp
| MD5 | 5d34b6308ba8cf55acb0e2b6134dfa61 |
| SHA1 | afc426ca003f27ead5f4628a03c90f4eea5ee46c |
| SHA256 | 0b6c4745ce282ef7e23dd987e3daf3e14ab6f6b9ea57a591ad57daae07688361 |
| SHA512 | 38aed36653f2b870fa42b68f1bd616a8be09dcbd15b891455653b51e75e654178b36f38cb843073d9c9fe93b650b68c5d3337b8453087c9c61436a63385a633a |
C:\ProgramData\Microsoft\VisualStudio\Packages\_Instances\08475949\state.packages.json.temp
| MD5 | 0df0fa5439d5af5ab775ab5ed566efeb |
| SHA1 | 330cc28189847fc48af7f42f9dc7e334ad10f671 |
| SHA256 | 127839032f2f5d9b35a1769904b481c0ebe59cd361d78b07529e947fdbc7b3b0 |
| SHA512 | 05a7dcc1716ae25310b08864004422237dc72fd443b5425e8eba6f9fda10cbb82ba0ec90b71316d29a6e95dd69f96eb33e7d191fd248612570e26f081ef507f0 |
C:\Config.Msi\e66bf9d.rbs
| MD5 | 151d9d9ac424beebba97ddc0e3e0d0c9 |
| SHA1 | c6fe5a5fddddce94a140f92e545cdc2cc90a863a |
| SHA256 | 70ec011a4bda558c169433b33e551055d3b952ff9dd757129e89bdd43b4752af |
| SHA512 | 3a65b9bab531dfd5e198da9a2f5c7a63b0a08acb98daeccb706c4aa7ade69048992e88ac5d7f6db2ed54898d13f4858743c32de0f097b3bc1783ba4b0eeb703e |
C:\Config.Msi\e66bfa2.rbs
| MD5 | 5af3d5ad8b10e2e55f94bb91f909c5e8 |
| SHA1 | 4cf279c606544e2ce311cc35d0b25fc2f78fcf22 |
| SHA256 | cb41cb3b2d3d961d74e62251ade46f01b4832e9a6a6d991ade6663b9f1a8d8aa |
| SHA512 | 46057dd5bca036216e843908eabf8aa7f7927898246d2e332fbd1a155394b0107ba60dc0894daee3988e54dbaedd3c6eaf777d4fa1f44c112f4892f338448a02 |
C:\Config.Msi\e66bfa8.rbs
| MD5 | 1d891873c7ecf3892f15be78a0093e03 |
| SHA1 | ebb79ef51e133d4a67ce5fc9998f08f0c0038259 |
| SHA256 | 6bf66cc6b22c0d9cdcbf73b1ff9aa192a3e9c79a9be177fb85f28d2f7f510a81 |
| SHA512 | 23fd8271acb009544a007f7a1ebf554139e9b122cfc58e3d929e7acc016a74688f98940ec3ef7d0d004dafbad25460f6178642dc318b352106315b908ce2182d |
C:\Config.Msi\e66bfba.rbs
| MD5 | 52e923a21479cf985133f0c20bd038cc |
| SHA1 | 6f3f4cee9e974bd4d2e33592cbe614741dabf814 |
| SHA256 | 6a0e425718659b0e157682a7e17a7e9a2db76a660a5acd5507fcdd6681e80cc2 |
| SHA512 | d19e96741b9f706668cd2d2f5fc3e3a4b883dec650d8c6e39eb554391915386caf15a0c663ade3c3f5ea5d7f02d13b49049fc3f0f60ae953e9b9a4256be5b2b5 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504073553_f8970932e3b0492abd3aedd194b4d843.trn
| MD5 | 42ce12d47b3916005236833c4b686dbd |
| SHA1 | c44ae2dc921eb8dd76752afff87d2d53a16f348f |
| SHA256 | 0258b53bf21b60af96f774097de34897ba508bca363475ecef4cbc4f27e88f28 |
| SHA512 | bde5054035b9929a895f2beb8da437638ddf79534f887bf3b24404093a1bd6e6766b5c20413ef621b76c2205027e578573f16dac0d9eef8a2e7c3de69e9f1130 |
C:\Users\Admin\AppData\Local\Microsoft\VSApplicationInsights\vstelf3e86b4023cc43f0be495508d51f588a\20240504073604_fcc760d7004742e88ff193ce7c2c67c2.trn
| MD5 | 813f99dac79809a5510f97a829686693 |
| SHA1 | e9d7359d7943c2cf12d43b312b3562bd42b7f7a5 |
| SHA256 | 6f3c8220753abbc38bdfe5115747fe595144fb72614a309dec45aead2bd3d956 |
| SHA512 | 842777c21d5192dd064a82c84263ac6ce7d498d43ac86690935a9c902c8e859311dcdb16ca49311248209d942a3a131b54fee8620a667cb3ecfe584c6cc0635e |
C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat
| MD5 | a2f2741325c9da9f067037ea5fad73f3 |
| SHA1 | b814205f33da9305d6b98c12ae9656203d83eb7d |
| SHA256 | ade62cca32d1be6ed40c638d19c6ab141ab5e927539a65424ee230549b65a722 |
| SHA512 | 12959cec1902cfe6dd3b303679cda9cda7d185c0b9f8f8ab517b17d1639545da26050709cb2158071489c940890d50d4d1318b0f4cdd0d221066946421865c50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 7b1de3f364651c4cc82be338acd93662 |
| SHA1 | d0e6f82ce394c7943121a19affe3321e2a35c27f |
| SHA256 | f8fc1c0e75d974f5fdb0fa81261cc91c69379e5bc992a93047ee75e6993b7828 |
| SHA512 | f702522be2b684af645a18078b17123e74d163ec4bf8176377ee9aef773f73edf58747977dd5ebd09ab23ac1a935bb640a59ff582c8cf0f7f81ca0257445961a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 437557a6320691d4597fd92e3f1280c0 |
| SHA1 | d44833a371dca8e2dc4b72f3cfed7ddec60dc65f |
| SHA256 | c34f68b39a3224b8d5aa91f190c2bdb97a8485c61fab1d41c1528e8d44536e04 |
| SHA512 | 19188770b247cca13842323514a82f14efbbadefd7b6ddd3966af2d12f310b4f62ffdb1721443fd6305e9fb4f54edda0a4d459a031ea585f3475b3f0642ac0ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 314a9fd9cd5c90173afabb2bbd651034 |
| SHA1 | dd517b16425a6c36d5d20fc0b7db1f0a5b9ae6be |
| SHA256 | 57b6e7abbfdefaaa957e5b6fa57d4aaaf29c3dba6359fc66ffd09dcc21d10790 |
| SHA512 | 92c8f4e1d7ea6be5a4c98da35493d24c9dd4e3e15e812d611c10d790ccb1597737a03f77677425a4961506c308bc1fc07154f85482816983c051fe2773de306b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | 246251430331e59e5e83bda3913bb0f9 |
| SHA1 | e46587b1e4feb258a13c905c074c99c80a18c300 |
| SHA256 | a71da4a47f7d9f1d66ce3550c04b444024310cf75056762265c6ffba044b12db |
| SHA512 | 38408d7713ea7261523dee42d3562af8c1a6b06efbebdf9516e8e87aef48690000f45d28e5259bdf8f6ba7010a2e5ac6c56c4f98a82e37541d1e8e3876891265 |
C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Installer\setup.exe
| MD5 | c31297188ec9fbaa60449f769339963e |
| SHA1 | 8502d9e0cef18137529f0a46ad6e69a1577e6cae |
| SHA256 | 2e2eff110475dd3dfd732ab514e4692032e67b2d228d0081634a87f45cde5ff9 |
| SHA512 | 9525e3e08b953fe36270c7b4868959e9bded055c5577e5ca94d79606b671e6660d180f763b54a276bf356e82d7073901c373e0b40cfca924cc4b38384c20e22a |
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
| MD5 | 28f5cf3c1d590016d7e5ecb1843571f5 |
| SHA1 | 406f6637234211764c4e13753272caf704ffec2a |
| SHA256 | a975a3a4ee010fbcc6a60c8c1798a19a1dd795655b4b629d20053bac9c5a3da2 |
| SHA512 | 0e1fe3d1cbc9eb36c41a534b26ae95603bfad4e2f593fe1a8df9570209924772a0668d3c4a20006fdb700fed1decaffaebb189f34b8474eae0346ae924c6e938 |
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
| MD5 | 9d7241a7f98d6146b89b5ad7fc683cc7 |
| SHA1 | 1ae472b1bb9b58372db111a20c6b11d9269ca2a5 |
| SHA256 | 45d77439a919040eab3a31bfd205e8fd393a73af3e54d388e8fde19c195e82bc |
| SHA512 | f4d3036927730f8a8c4f0d636818640181703c02f42ddb0c295243fa27621abb2b035e8e5e4384c7aa52d49dfdb3920136e37d4a08c31711e30631f699cf1e34 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{320DBE12-6ADE-438C-B2C2-67576D477675}\EDGEMITMP_1B1B3.tmp\SETUP.EX_
| MD5 | 5070a34dbada1aaa375cc572b5fc7d0c |
| SHA1 | e74b7ef714755870976abe3d2b4a7db0b9cc21e5 |
| SHA256 | 03e7a32e1f10fced6a07dfa4e6cfd92510d4bf6929d423798e4fb5ca91fe6c20 |
| SHA512 | fed3fcbb64a59070b0efd677ca2edc982d28e37cdf7283f2777af8aca7d3760a7eefb8d01b3c2bf4b4ec3708a74c3412f0dede91e31dca1b6f8a4e4edc673aa7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | fe0564e60bca98f07f3cbaf8ac77999e |
| SHA1 | bd3c7c933500606e6777f58304fff8e771da4c96 |
| SHA256 | 755a85b01ce80f82a2613f69f59eaf79b3d8529beef6cd7d56bce885ae424554 |
| SHA512 | c200c9e3725af83aef01b361a3cf2f9b6fa477fdd8602504a9f42069bbc4af0d146ce85a6c61599aff8a10eeccbfcb42c0dc39d7e038a758afb0bec5b91d62b1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 576b2359ec640c249927f42fc02325f5 |
| SHA1 | 1e890c2f2f21bf79cc5da73c33bb7be2915ec0c6 |
| SHA256 | fa4e6c8b1fb5525d36dec02fe52755caeef268bb19da7a0b5e6c498720332f3e |
| SHA512 | 8e5a91590408e78f846afc9467c831c4f060141939cb585aeb5eea0be88ea55547f337abce0f9fccc727e5941a926cf95119356eee0b52fa4fcefdc0b5eee5a6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d8b7321ba34e323cdbab279e89e82f5f |
| SHA1 | 3257aea7f3b24f91dcff8fc77284e90a8db860e4 |
| SHA256 | 4df960fbc70e16e5ae5b8e7e78494241d43371c71c6a0c453634c2f944802b61 |
| SHA512 | db42c33a046599ee9b9f2d6b90f62bfff6a1341c59d667a5fc3578fb160ac29d4fb9f1c30ebc0d0cd3859f8d8866e7f2e0c699f32517414e88d2bab6f631ff8e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ead7855b83be6bde0235de4f849150df |
| SHA1 | cf1129725f72e3077579de98be7df761a51d2636 |
| SHA256 | cab62552f333e876bc3f0fd5ec9dd0e6ef801ce03eabc78b47a76e3eaa3d53a1 |
| SHA512 | c1890893ac7854a84d860882cb75c25860352392b3cdb7d19df734beb46f2b03e0b4221810e7069f6b4f8ef0d1c5e247240ad15d5b5b19cd7be2d63638f0d2e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c2
| MD5 | 4714c74108cdb7dbbf8283b10c1ccc1f |
| SHA1 | dc4043326b0d469b71c28818aed1f9392c1ad37f |
| SHA256 | 9ac8cec78f64586b8a31d1267fffd962c8f823745949061be3d62b176d047a45 |
| SHA512 | acfc7d376c193a3ca7eb9930b4b2f2734e101b719c6bf586687e9d15fad9b3b758ced81442553bba95e3bdf1a05e7b4a39f1b0b443e170931ab5694b7c59a572 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000dd
| MD5 | 3bd6e8b735a61d32c66e6c3750e903c3 |
| SHA1 | 682c567a2bd2530afd794f5999030a03f56305c1 |
| SHA256 | 809bafd21f2e8f5aee3c5b002d865086ce84e5cf4dc4a18c2e6d9f7ad88bbfc7 |
| SHA512 | 875969bda2db5d4199f5105f49e50268b5aecc1285d7d86c2e8fa1cab1986de727b1fbd8e673244596d0ffe10a3517f0b8827fda4df6bfbc4f95f0bd192438be |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000da
| MD5 | 63dbcaee419c287c164643d4ccebcb1e |
| SHA1 | eeb12b80f3d6cad460051eef77c8b7934d3adbfd |
| SHA256 | 98800c993468ea7b8f29a55457e46b20792f99d4f1a8c35d5844366ec41bdb44 |
| SHA512 | 15094477f4a0912cb8e5090069755b6ead4ff33f02ca10aabd1a1c98102f74b1339d5d4f3de23a6573332b940327c4ac2e6ef90cf9d4ac6d3482a99a87f7d3c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c0d711ca86013cd05060cb54ef25728a |
| SHA1 | 24293f9e1bedf886fac9839be54fcc523130bbd6 |
| SHA256 | 26983c28b8aa4f784c411c52c811d3eadd05ede3d720a9aaca47406c6053e688 |
| SHA512 | 2360cc7b3ba6063cb5986e392a9fc8aa0a7bbeaa51b0d999e14d404bbbbef0da663b8a0a743f4fff10bf077f15654831eab4a384563600bf5411e4508400a9ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 26d3f1a7b423cdd5fd784c57170fdc7f |
| SHA1 | e9e757ca6f477aa2da63b258944710d1be9d9e74 |
| SHA256 | d8b1e0ab48f87fc56b6d6659807332191a8490689d9d2207e1e1515cb96b9045 |
| SHA512 | 5a89a8926744333dee9ecb1c39cbba199c521a457d28743059ce0ba4133c839e1d6bd58ca1ef432f4a0d922982935b0e54858047fce411ded59a8effeeb7ea22 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 44c4d6d7c19f0a8a84780b51556b8557 |
| SHA1 | 2e084de1f851b5b4f93a54bcbc1204a3a0e323ab |
| SHA256 | 0205acd4703a46e0b99f10a71bf7df235e8ce51e2a809b6ad33c6613f6d51698 |
| SHA512 | 941a1bc38af50677f4ed1ebdf743f5c4b00f35aae93b664dfd475d15b8012403b7e44c0947f6350e2811c87808119b8c859552b3ca5221df7b6c29ae3759c10a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 06c626fa07e5ec5bfcd466472f2cdaf4 |
| SHA1 | c7531233193073a9a24ff2167a90fb80b9736f80 |
| SHA256 | 7c54681edb4a1c730adeae0573bb15a5cf7777f52f39d95b82779c439328f40c |
| SHA512 | dc6e2fa3a9d48a7e91725cd0917d994a8a3be335bf4e9da11299a0bdda670768d0acd116c23155905dd940231278c5c9929ec274cbfbb15bd92e1870defea613 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8bd205e410c800a9e4f30cf68e1c139e |
| SHA1 | 331584273ac1222d081b503e800f460c1a158449 |
| SHA256 | 4528d23da63a981979defa74c156c133664178c278fbabe4977b8bfb667f4541 |
| SHA512 | a20bf83708baeaf0a6746f18c2a5b754a1664bea1f22331f52e058a3bb6dfc9bc4e2062a3a5bd88013810cb4a290f069daf400000082ef68c937e9f80866fe8d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4f010b438eae0108f29405a273e53008 |
| SHA1 | 4d7a83132ad6dc001dd95aa11a75694e52d288a8 |
| SHA256 | f9a392ad68db71a9ce64684b3f9a84df5d3b22856e93105e43c83eec325be9fd |
| SHA512 | ffdd245be29e6271dd5f686b6efa9dc85a3f2ef9f753d404c2fb60375cc6bbb961ed97599f4645b59e81ced98d9364465ef463beb54bf8a71cecdf374603b009 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 1666474594bb920747797c9487371068 |
| SHA1 | ac85ceba294889bb486c8d4ff4b397ff36ce3b7c |
| SHA256 | 5ad45aaebb195b85124b7f72a30ade1f5d2749bd15fdb8c237fc3fcaf50adbd0 |
| SHA512 | d725976d55a1dc8c3853ca53f0b52a61da530c52cf0b6e18d26bea71f170b7b8345f2345688fe21d53811195a749170d9e53911ac6a287278f516c429c5220ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4fb3596f3ff6c65ee4ed7699280dcbec |
| SHA1 | 00809ebeadf8e48471997c7e6c8f26a0632f6a52 |
| SHA256 | d86c049e66256aa8310d4c13c97c92585492aea125316a68f2ad509eef939a5a |
| SHA512 | f2bb0f19a20592a87a81e184aab2dbdc870619f5e467287de6c8d926f75884331046efa559768b9bbdc6d7a4b00e247b265da051adb47ee8a7c41c12e24d63c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6f07fd50d32813d142cfe317032ff2b6 |
| SHA1 | f56b067aea9ac862e0cb823d69f07db13b918a45 |
| SHA256 | 5cb2aaa1847acdeadbe1e42698a9a19e6e94de1734988c32683da03e97e34cf4 |
| SHA512 | 6b664cf0f265b0e2594b7ffac05200f55484a2610f2b83d2840528e8bfdc10b7cb3295368a9e92116052e767b6904d62417916868d4efdb1bb5def2250a6c0d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 12fe511f0eccbd4f6537a651c9ee7f6a |
| SHA1 | 6d8c93ed0dcfa6a8c4979bd4dac4fbd90f41385e |
| SHA256 | 968760c61185792254700043e76caf45ee40b3ad1c7d880ab85998534ebccc82 |
| SHA512 | 14d6df7db58ce1a9a9c0614d0883ead70be5b3bce2f58df25f5364e63e1cc6e878aef4d744506daf89c07772ef66d7aaf065acd43830e4048b532384fec4e09d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 2f59becaa64d5d10d97a55cf5a19a6cf |
| SHA1 | e4729a92f2273b99d63a1c34d1b210186f9d8c29 |
| SHA256 | ce305efe5b24ce513caf31c323481cff20a2161514ecf6519a0a7ccafff81eb2 |
| SHA512 | 9fcc4b63661d0b91be9109eeacfdd9aa1ab4f52b65b758ca4c3e6fef4bc5d9e856501e830e9d145667b465c3c212d036be189766a8d94f72a840e94fa4899d81 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 762e85bea1d28f151e010fc681edf547 |
| SHA1 | 4e9db181ad8b80f3a51b916982a6017f711bb408 |
| SHA256 | b19abda87f6fc86a708f5abfa8515a016134c750b58d6d8d3c58243ec4c047a4 |
| SHA512 | bbf86a973d48bb591b29c96ad01801f1fc32225ccac0902325b8668ac5481d7015d37b47348f39a19c21c00bc4d2cc00e1f49b3103410748b94230698a736f99 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 51a3928284126c0814bf7198d6a13cda |
| SHA1 | e082de25f151a7a897aeed395eea95a2348a5219 |
| SHA256 | 67768de882eb2aea76bea3e22e74734b6d96e3d2bc50c74dfd0c6519c3e3d9fa |
| SHA512 | 5d0fd3fe4662386b5f72002ee37bc2a92c8256f84341557c392f7541e685ca779a8e7cacfe68f4444d3d8d79fe17d14b914d11aeb6fa81256c8b9f9b2f177c1b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fe53a200d0ae57551339122ea02ac8af |
| SHA1 | d0d8b199d8e56bfdb5fef689a2840a54ea6ee4ea |
| SHA256 | 6dd05940f491d127a258f2d6850538112eda673462faed002450cd483c41f1a3 |
| SHA512 | 7be5e859ff69bc2f492b8ce323d564eae9300dab88e59ce3fa96f7bf5ef3e351be70c744c68edbf49addaeb86ca33b16a38f544798b31e031868aadfc95e97bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1ced3fc213c7824f76457c401bfa3d88 |
| SHA1 | 51fb3161b34333ba39683ad4f8fa9ddba925e036 |
| SHA256 | bc6c8634e5ef30aa371c1dba6fea82167b1720056e36db09820f7bd6ee07086e |
| SHA512 | 794932f38dde9618b1f14686c38255f471ac48dfdafd683aaa968ddfb82ea60669cda9b9434b8690487b7ea34b8c4bd1c0e34858bb5bc0db220dac404968d305 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 7b152ce7b159a8053525a189dc2ec3f6 |
| SHA1 | 72c35851696f3e6a4c7ed673fdc578a963467d50 |
| SHA256 | e17bcc94d38d7dc11040783173fe42cbcf3ec304a877f9cba4b4a58e72400a06 |
| SHA512 | bb6c10fe817e62dba8499df5c432150a8410d2c106bcd9761aa18848e74e013e92a2aa1f112d66652294e5c72befa36cb95a54bff6a876464fd50e247aa5ee49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4f82e33a4edddb857dccd2dd8639ae05 |
| SHA1 | 7837df514d4e118b1a45f7b844e2fe44748a0d07 |
| SHA256 | 99a010e894db6b907b9ea395b035de3a54d3c5ef4bab18c361ad174e68905715 |
| SHA512 | 0b25167de640c3c4c54b44b1b4912121a03758604ad270e30c42d473e7be71e6fc1cbc2f2806bb7bfa57e53d76d34402268d8d59038633178788b249faf75f5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | bb1aafb7b997c4e256edeed65c1ca1d8 |
| SHA1 | b96074c2ce0207acb89e4b063d47a72e46bd4e73 |
| SHA256 | cafe262a7919cac1574f8dd268363852bb04e7e3779663533b0d56d677922152 |
| SHA512 | 954bec0b844ac51ec178420750184db46fa3d5152b398e8b62251e4899ff7c5827f8b0d71ebbf8da1cf5cf56c9f968bb4d6dbafef997de9ab05efc1400e08d67 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\index.txt
| MD5 | 9d4d5e96d296c5b16ecd63cc74094049 |
| SHA1 | e7fe0f71d68859ba4df89f7a5d42c02992ab2469 |
| SHA256 | cf22d90ce30a25033543f9e4e64559ed08fcea6efa902581c7488f0462a773ec |
| SHA512 | e5ebf9bfdc153bd89d68a283cc72e3e5d9c860ecb7ae3d1d6207bcee00f4a214944f5d18dc88f73c8853ce1886b0ad51d8f351057e8cd18bd36c7bbd15cfc003 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\index.txt~RFe706d47.TMP
| MD5 | 22c1e3fe162e46f25da875ac1403e924 |
| SHA1 | ad07e45ee16b10c8aa499dcd84977c0052f62c50 |
| SHA256 | 213bcbbd2550d40cd5a26b8806c022380e15bf9f9cb5109b45a5cb901836e0e4 |
| SHA512 | 0c7df0fb54d8f74f95ead40a2b37b101ab21686cf56486377095f454c3cc7f11f996a202e3392f330d6ec3404e9be64f793eb4d31f89334bbfc531382040b29f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ba4bcfe6de8e8792_0
| MD5 | 77cbe9cb0b4650ada5fdeee51521a723 |
| SHA1 | 8d2c905b37435405787578fd10bb8565be426208 |
| SHA256 | d4d75c16ff3059a9e7a8ba698a5b7bc0579b5e64b69d75ddaca746072ff789e8 |
| SHA512 | 4d46188bdca070638ee91c4d8356ee031af360c1a8b9c2f4dbd057b4c244ce004a5efc55d4171ed0e3d78f94b539ec597728a415d0c6dfc7334520b90b7026a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9162b94055a51205_0
| MD5 | 71a69e039cf2841f64be2652f8d6374e |
| SHA1 | 425c2f866341ca212f039caa79f66ce18ff58593 |
| SHA256 | 4114b636eff382a43d37c725c66ed1d07301c1669706d68993fdedf1377fd1d2 |
| SHA512 | 1eb13ee1d38309912db06bfc7d56f31ea6fb7bec2e600eaae0e99b5e6222c76d2481399c8491910b73c7a75f6a11df510523638c956348cd163e1e1c4d77ea9b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e5f8720c55c9d1aafc40f90ea965dcdf |
| SHA1 | fdf28d72fb021ec28adab1b1d581b57625645d26 |
| SHA256 | e9d774395ece6a15b2bc20d815db2d7125aad3a08af67680aeb35263f345410b |
| SHA512 | ad3124a56a5c840541534c01ac8a3f1d5ca0e00992d3a5f7730a27067a0e92ce49d2923c07f3a9a27c9b8f117dc1fd195a7a7801e956528a02c293a3c945a9bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e52f7b3fa8749883bce94be5ce2af59a |
| SHA1 | 8e3e6474293e57ca110f8f0a28b56ec1317b2ea5 |
| SHA256 | 9bec8ecf07c8ab89fecddaedd9cc7547a30f6695a6c023e99768dd571752b0b9 |
| SHA512 | ac6ee680865c67e1a6c81b381fea9b3ba85772fc64f9fedae08ff6e43246fbd82e6e037ae563b0d16fdd5ccfe6f8cf2c0029adae7466b9a75d247ea974776ad5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 329b477b6f7899c8c298e5a6ae4e2743 |
| SHA1 | 059da817ee6efe18a29e31792e252697f2ce91de |
| SHA256 | bd877b3581e2e10327b46d24b92f6cb717c9482e89797d9265fda683a77afdd9 |
| SHA512 | 997e7552fedd5cb90622c1656a943eec3a82167f3b38b234fefd532f4dc3aac667306e36e34b155537c55be35205262a77fce3ce126d4c6a0df3c8a7a605c656 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | e2bd1a7e3f5b1923d97c50ca724b9c3b |
| SHA1 | 8f89332bb17d44ed13280df409c9f1a3d613d16a |
| SHA256 | 21ae201da20d2f6ae72391027def1601fb79e9d2d909dcc3753bc21690e1ac15 |
| SHA512 | a9d3edc34c2947b0d2bc91ebbaf3c3fd6de1006828d72165cd9d957c09f017d43a663b2cd9997c102e9675fd07a5b8c3ae89246c073044c5b531d985e60d8d76 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 7b47a9ddc476ac29d12bf49445710d06 |
| SHA1 | 2d5135b037c371aa6bd361b392555ad8e8c7058b |
| SHA256 | e3bbcea2655ad412cc3753556424417de8024d0e0e6b8ff68d8edc3b7347a789 |
| SHA512 | 7d9fc51b0822a710fdef23db509e70a2d75624063efe8103c3799bcfab04a292383763c9ed324698a3d1296fa84ab3550d6f3ae7be4d46779778d647012ec35e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\64527c3b-7f18-4be8-ab6a-13ba6a0b16a9\index-dir\the-real-index
| MD5 | 8838aa93d1143bcc862276fcbfaa9fab |
| SHA1 | 2bdba0784e2b711156189b97de94e1946bf0589a |
| SHA256 | 5e5c7315c697c19a18acffc33d70ef9a22c4ce6b96b506344860ffc6fc9103d9 |
| SHA512 | b4d4b6fdb4a650d025d41c2afdb6b9e7ab23a9c9bd6be3f937909399b997deac475e3cac8702e1d65e53064c94659c2680b179819a3e32952f1ed0343a43756c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\64527c3b-7f18-4be8-ab6a-13ba6a0b16a9\index-dir\the-real-index~RFe70bc9f.TMP
| MD5 | deb9c123eb73353176afe7feb6fbd256 |
| SHA1 | 565243ee6ae70b1e9efff4aa2f3aa2861dfaf5be |
| SHA256 | 0ce06a59904a9f9687a5865b0061aa6878837d4e29006e330ed3864d8dbe20e0 |
| SHA512 | ce53ce0cf177f8fc44a34d76ef84b1ff927afc2a7842ccb9a9b24ed92ec521c7ba632aab1d933d338d7efff10c6c387b5b1ac9bdb517e3b322b64cb21e16797d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\45477cfd-011a-4209-a033-8dc8f2fc4646\index-dir\the-real-index
| MD5 | 30f8e766ec26ff4780b59e827eeb026d |
| SHA1 | c670820279ab3a2b32621dd0585c14765106512c |
| SHA256 | 6d5211b04b2f0cf0a7fbb6f26ccf6bfde3da0de330815cf5219250c87fc21b0e |
| SHA512 | 71423d9e973beb3ae5382cbafac3e2fbf0048c0b6486a3e2c47ff42af4380ccc3895767e7616e5b0d382cade26d9bb85a791ba5d9085f69ee944ac332a3ceb06 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\45477cfd-011a-4209-a033-8dc8f2fc4646\index-dir\the-real-index~RFe70bd7a.TMP
| MD5 | b956e529dee9662a827edcfd96687313 |
| SHA1 | 84c9cc0542bd281a83dc084f02883652a531d7f9 |
| SHA256 | c8d5a67a8e766bca54f8944a03277a005035bf50d143af5a8b0617272dc39158 |
| SHA512 | fe93a6bfc82853bcb0d16a6712de736dfa2f31baa92c60115492a6947136b996ed53e844d93a54e8384cbd1631478c537743e2e27a6de036884fee44059ef616 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\afc87b8500687400dd5e6129aa7eccb3cbbb3e0e\index.txt
| MD5 | e66ba816c068db43d952d27e9ccc868d |
| SHA1 | 0873198dde9d6a1e462c38841d4509aca94f7f1e |
| SHA256 | 405fd82b98cfd55495ec1ea37e62cbfac797fb0f2580e4f2bb6f503d66f48c6a |
| SHA512 | 8d4021a2a007d647c6f3ef6d254422c9027ef53d9efa9d4edf7a7d098a2961e2834998cfbae40a5bd5c17076eb943c9dce0f2e086c3b76a86c665f246815cf7e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e656004ec81cf95f4493d079f4fc1fbc |
| SHA1 | 3ca9f8faf7f8f58a0131ea95b9b4c8cd71238e60 |
| SHA256 | ddbdc1656506a080f6445f08efaee1087b487618d8f508ced07128a595c3587a |
| SHA512 | f4ea2da754ff445ffb61a4376fbfc93d5b5d2d0ea7762cba002bab7bc715936bae23d58648c013af413e0b269937a3daff6d0631332a61e34b23e8a262295c21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 84ffce239259e6ce4406f03140f4b4e5 |
| SHA1 | 51a3608f07e54c10d16877271f4034ae994955fa |
| SHA256 | 50dd1eeb3473780fe376c83ce76566ec8bde358ceba00403ac265b765fc05d18 |
| SHA512 | a807fa5c441a751d00f15fac46e91f1d739a22230216c44999091cbd120ba89502b722bf4f18bfbd475679d7de0587f363dcac4b9aff3aee008b579169ef27e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 16f2d355be5e39b2753c3b52a931c807 |
| SHA1 | f7ab07b9ea0cf84feadb07aa22a25b353e5febf9 |
| SHA256 | 56d121df54be1bce347b85fa2c92693f64d76f55ed408e20f4a8fc753381b62d |
| SHA512 | 4a9545ec222c4900a28ee503a82dd9c76456123336b3346317c50fcc4caf4ed39c065ff5ac290f4a2df4d72fd2d44219a5414bf8588de7703cfe65615e63386f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 964ec2bff7c305fc1b399a5471c3abbe |
| SHA1 | 3765caf00037aed425e707f5eb892a8bfa7fdcec |
| SHA256 | 081b18a63d098b6d446f5e00e893c534b8af53521e2dadff3a3d22e16e917f22 |
| SHA512 | 7c96cf7a7fc513736a1d60ca82a85e979c8df1d5fd7d57f90a3052ff76aac0e766288408c23561cf828eb46beade31d3bf6c2f49e82165a08d40da9873e07e0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4c7040e249cccc2bbb3dc9e276cd94ee |
| SHA1 | 2719af1100ebc746c8905733b96f66ed8b54fd6e |
| SHA256 | ce3cf49b49c31beb5683f62e123b43e42c60acd0ad482a61866c4a1e8bcd8d3b |
| SHA512 | 3854cb90e0e3c69d2742ad873ceadbbfa768f55b0b080a34948e3d3ba1e8f89494df72bdf2baadcf9a33e1e91f4b5ab7082d86621b9cd77db9b86ba41278403a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000148
| MD5 | b1e8fefda2ab3fe8eeba61379773ae78 |
| SHA1 | 71420d40c84c1a407141a18aa866d06440b4ee96 |
| SHA256 | 7ac83fd3e83f969e37112a43097e04c346ea802b93b6577d525423dff07f6a2a |
| SHA512 | 43aa71357b45a861b4986a30ec07f34bc95a24a655f8882632f915c6940a480f45f9672eedc891d060395a0a9039915c2a3d43135a4f136663c7517622f796fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000161
| MD5 | 0d778c660d1f4d5c5ac93a48abe5c6a5 |
| SHA1 | 89ecc6a9e773d649b9b1848cf96c11f6cd2fee75 |
| SHA256 | 1d841bf0a3cab6cbb3d638140c3a8dbe1595f65ea9e3f4e918756ae4817b07d9 |
| SHA512 | d7afcc40d72790a1b462288e805a99dfa047d19ef6c16859a47cb4e34b33001e4d135458987e9af600f9507cb5ed3a7985ad6d57b9565eecd56665929d1013d2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000163
| MD5 | 05a053ce8b2c0a891cde52ae7f0383fd |
| SHA1 | 9c5f3127b96dd8f30c850f32b064378632ae7fca |
| SHA256 | 2dfd915be5bf4fe6e6d770d99caccb554f0111c517dc59bcfc36528b933df510 |
| SHA512 | 938bc30233db3f6a6ab1e1b26ab97ee58ddf3b0d2ba6bac7d259e44392c7d302938454a9ebfe0b06a9f9eecc785897999d15d0fe6bee0cd14bdf78ee6cee0d22 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_2b0e0b06cb2fb92f54bd0bb609a034b7.safeframe.googlesyndication.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2430a293ee913a9fc4ae4e952e876f14 |
| SHA1 | d849bed3b2ca4d0d3ed785a732b1cceba2622868 |
| SHA256 | ba18db4ad09ad72bb432b92902e0ed3d4c16047841e5d4f2d607c68824c38e20 |
| SHA512 | 229e9699dd74180c99b8d05a50eef1815e2c535b8dc1608eb5b6c993b8be99e8e75a89bff7d1c8e6291e688c9a3cec5a2c008ef50a26bf8f94352b136de304d0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 701c71110254ec8cf62374aed0962d91 |
| SHA1 | de70b5cec46e1d43e7b0b8be862ef30a9915704e |
| SHA256 | 0ed4670576df14807853c7824676df3dae54fb86d87679b2581d25326d3a0a7e |
| SHA512 | c7538801224302914d1558fdfe2ce6dfa94671ab1c9be9d299cf0e08ca7fe025daa6fb72c61b5755e597bb7768a9ce3c170bb3c46e5411ddceda842170ca2078 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_2b0e0b06cb2fb92f54bd0bb609a034b7.safeframe.googlesyndication.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 46ecc1ccb69fea27b77f166bedcb5575 |
| SHA1 | a38ddd0931ac3990622dc16a136514d89953bb29 |
| SHA256 | 9d40a70a25925135484bf703a222814258c3573f5ff9129de61d034babb51ce7 |
| SHA512 | 211b708108c1f6929586ad6ae356b3fa9a562781a4e8056f00ee3025dbb268aa327eba76f8c4badbe83e1523862741efa0815d638059175de96cf41239d35ce9 |