Malware Analysis Report

2024-11-13 12:54

Sample ID 240607-s2em7abe68
Target setup_lossless_scaling_2.9.0.exe
SHA256 32fec5f5a1e77d6fdb8b27016d70c923429b9530459850d8207c925e563dfe09
Tags
discovery
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

32fec5f5a1e77d6fdb8b27016d70c923429b9530459850d8207c925e563dfe09

Threat Level: Shows suspicious behavior

The file setup_lossless_scaling_2.9.0.exe was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery

Loads dropped DLL

Executes dropped EXE

Checks installed software on the system

Drops file in Program Files directory

Unsigned PE

Enumerates physical storage devices

Checks processor information in registry

Suspicious use of WriteProcessMemory

Suspicious behavior: GetForegroundWindowSpam

Checks SCSI registry key(s)

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Modifies data under HKEY_USERS

Modifies registry class

Suspicious use of AdjustPrivilegeToken

Enumerates system info in registry

Modifies Control Panel

Suspicious behavior: EnumeratesProcesses

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Suspicious use of SetWindowsHookEx

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-07 15:37

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-07 15:36

Reported

2024-06-07 16:05

Platform

win10v2004-20240508-en

Max time kernel

568s

Max time network

569s

Command Line

"C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe"

Signatures

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A

Checks installed software on the system

discovery

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files\Lossless Scaling\Shaders\is-P10D4.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-68HUE.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-40UI4.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-9V2B0.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\es\is-47FPF.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-QS61T.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-N28ET.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-JRADI.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\it\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-Q5EEU.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-EAE29.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-C9IQS.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-D5S87.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\ja\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-5SQC0.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-3B8B7.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-AM8KK.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\is-J79JM.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-N38T1.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-3DU5M.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-UM6L1.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-96END.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-F9FO4.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-P8JUJ.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\es\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\is-8C85S.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-2M6N4.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-CVGVH.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-2I06V.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-OLP68.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-AL28F.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\tr\is-JJDR2.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\zh-CN\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-E46S5.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-81E3O.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-SB3CP.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-J4CAJ.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-0HC2F.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\fr\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\ko\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\de\is-73D63.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-PG7OS.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-QP5HO.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\pl\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\ro\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-MUOMI.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-U73G1.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-97RI0.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File opened for modification C:\Program Files\Lossless Scaling\hr\LosslessScaling.resources.dll C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\is-CPD2R.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-JQT9N.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-9MD6P.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-DA1PH.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-IL2KT.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-V6JUQ.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\uk\is-3MOP8.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-LIILM.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-TDMUH.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-PNK9O.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-T799C.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-ECV2C.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-EVIHD.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-AJUR3.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
File created C:\Program Files\Lossless Scaling\Shaders\is-KPTHE.tmp C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\taskmgr.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies Control Panel

evasion
Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-2804150937-2146708401-419095071-1000\Control Panel\Colors C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133622496417775765" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2804150937-2146708401-419095071-1000\{C8BF2264-21D8-4565-BD41-289A3F010CB8} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Program Files\Lossless Scaling\LosslessScaling.exe N/A
Token: SeDebugPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeSystemProfilePrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeCreateGlobalPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: 33 N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1780 wrote to memory of 1616 N/A C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp
PID 1780 wrote to memory of 1616 N/A C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp
PID 1780 wrote to memory of 1616 N/A C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp
PID 1068 wrote to memory of 3220 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 3220 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 1020 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 968 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 968 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1068 wrote to memory of 2232 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe

"C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe"

C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp

"C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp" /SL5="$601DA,5281693,844288,C:\Users\Admin\AppData\Local\Temp\setup_lossless_scaling_2.9.0.exe"

C:\Program Files\Lossless Scaling\LosslessScaling.exe

"C:\Program Files\Lossless Scaling\LosslessScaling.exe"

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" "https://www.bing.com/search?q=iehhk_.exe iehhk_.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffa7d5146f8,0x7ffa7d514708,0x7ffa7d514718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2236 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2324 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2748 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3380 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3400 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4104 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5068 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5056 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4652 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5276 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5216 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4972 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5772 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5104 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5344 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5248 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4664 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2220,4326173909546747581,13077339601949304894,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4664 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffa7e09ab58,0x7ffa7e09ab68,0x7ffa7e09ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1720 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2052 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2308 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3144 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3152 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4352 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4508 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4664 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4596 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4544 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4960 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4560 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4612 --field-trial-handle=1960,i,14995958720992117088,14919069769009558538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa7e09ab58,0x7ffa7e09ab68,0x7ffa7e09ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1616 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2260 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2820 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2828 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4332 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4416 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4584 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4464 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4828 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4512 --field-trial-handle=1900,i,11987758878367459494,13725533132928859463,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa7e09ab58,0x7ffa7e09ab68,0x7ffa7e09ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1728 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1964 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2120 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2968 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2976 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4244 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4344 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4516 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4780 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4776 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4428 --field-trial-handle=1976,i,9999207422252009392,14346663521977007903,131072 /prefetch:8

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa7e09ab58,0x7ffa7e09ab68,0x7ffa7e09ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1608 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2072 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2088 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3016 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3024 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4268 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4420 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4572 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4468 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4784 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4616 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3584 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3228 --field-trial-handle=1816,i,16496058720383922668,18018182762023159786,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa7e09ab58,0x7ffa7e09ab68,0x7ffa7e09ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1708 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1936 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2264 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3084 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3100 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4340 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3656 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4644 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4552 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4568 --field-trial-handle=2028,i,100500183753710557,2425981113037254538,131072 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 209.205.72.20.in-addr.arpa udp
US 8.8.8.8:53 105.83.221.88.in-addr.arpa udp
US 8.8.8.8:53 75.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
US 8.8.8.8:53 28.118.140.52.in-addr.arpa udp
US 8.8.8.8:53 183.59.114.20.in-addr.arpa udp
US 8.8.8.8:53 206.23.85.13.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 29.243.111.52.in-addr.arpa udp
BE 88.221.83.185:443 www.bing.com tcp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 r.bing.com udp
BE 88.221.83.186:443 th.bing.com tcp
BE 2.17.107.120:443 r.bing.com tcp
BE 2.17.107.120:443 r.bing.com tcp
BE 88.221.83.186:443 th.bing.com tcp
US 8.8.8.8:53 68.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 185.83.221.88.in-addr.arpa udp
US 8.8.8.8:53 120.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 186.83.221.88.in-addr.arpa udp
US 8.8.8.8:53 login.microsoftonline.com udp
IE 20.190.159.4:443 login.microsoftonline.com tcp
US 8.8.8.8:53 4.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 services.bingapis.com udp
US 13.107.5.80:443 services.bingapis.com tcp
US 8.8.8.8:53 80.5.107.13.in-addr.arpa udp
US 8.8.8.8:53 64.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 answers.microsoft.com udp
NL 23.51.79.204:443 answers.microsoft.com tcp
NL 23.51.79.204:443 answers.microsoft.com tcp
US 8.8.8.8:53 89.33.18.104.in-addr.arpa udp
US 8.8.8.8:53 aadcdn.msauth.net udp
US 8.8.8.8:53 aadcdn.msftauth.net udp
US 13.107.246.64:443 aadcdn.msauth.net tcp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 8.8.8.8:53 204.79.51.23.in-addr.arpa udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 answers-afd.microsoft.com udp
BE 23.55.97.181:443 www.microsoft.com tcp
US 13.107.246.64:443 answers-afd.microsoft.com tcp
US 13.107.246.64:443 answers-afd.microsoft.com tcp
US 13.107.246.64:443 answers-afd.microsoft.com tcp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 filestore.community.support.microsoft.com udp
IE 20.54.108.3:443 filestore.community.support.microsoft.com tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 8.8.8.8:53 js.monitor.azure.com udp
BE 23.55.97.181:443 www.microsoft.com tcp
US 13.107.246.64:443 js.monitor.azure.com tcp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 mem.gfx.ms udp
US 13.107.246.64:443 mem.gfx.ms tcp
US 13.107.246.64:443 mem.gfx.ms tcp
US 8.8.8.8:53 consentdeliveryfd.azurefd.net udp
US 8.8.8.8:53 181.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 3.108.54.20.in-addr.arpa udp
US 13.107.246.64:443 consentdeliveryfd.azurefd.net tcp
US 13.107.246.64:443 consentdeliveryfd.azurefd.net tcp
US 13.107.246.64:443 consentdeliveryfd.azurefd.net tcp
US 8.8.8.8:53 acctcdn.msftauth.net udp
US 8.8.8.8:53 acctcdn.msauth.net udp
US 8.8.8.8:53 logincdn.msftauth.net udp
US 152.199.21.175:443 logincdn.msftauth.net tcp
US 13.107.246.64:443 acctcdn.msauth.net tcp
US 152.199.21.175:443 logincdn.msftauth.net tcp
US 8.8.8.8:53 acctcdnmsftuswe2.azureedge.net udp
US 8.8.8.8:53 lgincdnmsftuswe2.azureedge.net udp
US 8.8.8.8:53 acctcdnvzeuno.azureedge.net udp
US 8.8.8.8:53 lgincdnvzeuno.azureedge.net udp
US 8.8.8.8:53 26.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 browser.events.data.microsoft.com udp
US 20.189.173.24:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 175.21.199.152.in-addr.arpa udp
US 8.8.8.8:53 24.173.189.20.in-addr.arpa udp
US 20.189.173.24:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 apis.google.com udp
GB 142.250.200.14:443 apis.google.com tcp
US 8.8.8.8:53 195.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 93.65.42.20.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com tcp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 id.google.com udp
GB 142.250.200.35:443 id.google.com tcp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 www.xvideos.com udp
NL 185.88.181.11:443 www.xvideos.com tcp
NL 185.88.181.11:443 www.xvideos.com tcp
US 8.8.8.8:53 static-ss.xvideos-cdn.com udp
NL 69.55.53.171:443 static-ss.xvideos-cdn.com tcp
NL 69.55.53.171:443 static-ss.xvideos-cdn.com tcp
NL 69.55.53.171:443 static-ss.xvideos-cdn.com tcp
US 8.8.8.8:53 cdn77-pic.xvideos-cdn.com udp
US 8.8.8.8:53 gcore-pic.xvideos-cdn.com udp
GB 84.17.50.12:443 cdn77-pic.xvideos-cdn.com tcp
GB 84.17.50.12:443 cdn77-pic.xvideos-cdn.com tcp
GB 84.17.50.12:443 cdn77-pic.xvideos-cdn.com tcp
GB 84.17.50.12:443 cdn77-pic.xvideos-cdn.com tcp
NL 93.123.17.254:443 gcore-pic.xvideos-cdn.com tcp
NL 93.123.17.254:443 gcore-pic.xvideos-cdn.com tcp
NL 93.123.17.254:443 gcore-pic.xvideos-cdn.com tcp
US 8.8.8.8:53 11.181.88.185.in-addr.arpa udp
US 8.8.8.8:53 171.53.55.69.in-addr.arpa udp
US 8.8.8.8:53 254.17.123.93.in-addr.arpa udp
US 8.8.8.8:53 a.orbsrv.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 89.187.167.6:443 a.orbsrv.com tcp
GB 142.250.187.234:443 content-autofill.googleapis.com tcp
NL 185.88.181.11:443 www.xvideos.com tcp
US 8.8.8.8:53 234.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 6.167.187.89.in-addr.arpa udp
GB 142.250.200.35:443 id.google.com udp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.187.238:443 clients2.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.187.238:443 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.187.238:443 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com udp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
US 8.8.8.8:53 www.pornhub.com udp
US 66.254.114.41:443 www.pornhub.com tcp
US 66.254.114.41:443 www.pornhub.com tcp
US 8.8.8.8:53 41.114.254.66.in-addr.arpa udp
US 8.8.8.8:53 static.trafficjunky.com udp
US 8.8.8.8:53 ei.phncdn.com udp
GB 64.210.156.17:443 ei.phncdn.com tcp
GB 64.210.156.17:443 ei.phncdn.com tcp
GB 64.210.156.19:443 ei.phncdn.com tcp
GB 64.210.156.19:443 ei.phncdn.com tcp
GB 64.210.156.19:443 ei.phncdn.com tcp
GB 64.210.156.19:443 ei.phncdn.com tcp
GB 64.210.156.19:443 ei.phncdn.com tcp
GB 64.210.156.19:443 ei.phncdn.com tcp
US 8.8.8.8:53 17.156.210.64.in-addr.arpa udp
US 8.8.8.8:53 19.156.210.64.in-addr.arpa udp
US 8.8.8.8:53 media.trafficjunky.net udp
US 8.8.8.8:53 prvc.io udp
US 8.8.8.8:53 cdn1-smallimg.phncdn.com udp
GB 64.210.156.22:443 media.trafficjunky.net tcp
US 66.254.114.156:443 cdn1-smallimg.phncdn.com tcp
US 104.21.56.52:443 prvc.io tcp
GB 64.210.156.19:443 media.trafficjunky.net tcp
US 8.8.8.8:53 ss.phncdn.com udp
GB 142.250.187.234:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 eg-cdn.trafficjunky.net udp
US 8.8.8.8:53 ads.trafficjunky.net udp
US 66.254.114.154:443 ads.trafficjunky.net tcp
US 8.8.8.8:53 hw-cdn2.trafficjunky.net udp
GB 64.210.156.3:443 hw-cdn2.trafficjunky.net tcp
GB 64.210.156.3:443 hw-cdn2.trafficjunky.net tcp
GB 142.250.187.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 hw-cdn2.adtng.com udp
GB 64.210.156.1:443 hw-cdn2.adtng.com tcp
GB 64.210.156.1:443 hw-cdn2.adtng.com tcp
US 8.8.8.8:53 156.114.254.66.in-addr.arpa udp
US 8.8.8.8:53 22.156.210.64.in-addr.arpa udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 52.56.21.104.in-addr.arpa udp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 154.114.254.66.in-addr.arpa udp
US 8.8.8.8:53 3.156.210.64.in-addr.arpa udp
US 8.8.8.8:53 1.156.210.64.in-addr.arpa udp
PL 93.184.223.43:443 eg-cdn.trafficjunky.net tcp
US 8.8.8.8:53 storage.googleapis.com udp
GB 142.250.200.59:443 storage.googleapis.com tcp
US 8.8.8.8:53 43.223.184.93.in-addr.arpa udp
US 8.8.8.8:53 59.200.250.142.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.187.238:443 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com tcp

Files

memory/1780-0-0x0000000000400000-0x00000000004DB000-memory.dmp

memory/1780-2-0x0000000000401000-0x00000000004B7000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\is-CQ6KK.tmp\setup_lossless_scaling_2.9.0.tmp

MD5 d7b514bf909e1e4d0f26a0595d3354ec
SHA1 88fd37a48fadb910a3a96d0e8c0b5ef559ab210d
SHA256 4e1ed66e3aa81ae7e561324d504088482c73f97fa2c0bccd59e83512b78b1259
SHA512 997bb2d23c217e1f7b589bd4440b26177a6d061b3406892368c5527f569283b56db0f6d48cb74f9a00c534ede50d05e19268e2b04fc28ec33cf5c5dcc87eb9de

memory/1616-6-0x0000000000400000-0x0000000000717000-memory.dmp

memory/1780-8-0x0000000000400000-0x00000000004DB000-memory.dmp

memory/1616-9-0x0000000000400000-0x0000000000717000-memory.dmp

memory/1616-39-0x0000000000400000-0x0000000000717000-memory.dmp

memory/1616-328-0x0000000000400000-0x0000000000717000-memory.dmp

memory/1780-329-0x0000000000400000-0x00000000004DB000-memory.dmp

C:\Program Files\Lossless Scaling\LosslessScaling.exe

MD5 4c8d9566dc1e5f1eae914a546ee819a0
SHA1 8b16f43b0c84a43eecb24aad51d33795752a3b07
SHA256 b5b9671a6e309afd15a595ca96ce2d294f26519c73e68c4909418a3129c6db68
SHA512 5a7ded63ec2c6d3320d14bdc876c4f51c1a7c6e1c8a89028f646c03a2b393262db3b16d66b58903a83f0aa34218a8649aeeec0cf49a0ac9a404d29336bf85532

C:\Program Files\Lossless Scaling\LosslessScaling.exe.config

MD5 2a2df45a07478a1c77d5834c21f3d7fd
SHA1 f949e331f0d75ba38d33a072f74e2327c870d916
SHA256 051099983b896673909e01a1f631b6652abb88da95c9f06f3efef4be033091fa
SHA512 1a6dd48f92ea6b68ee23b86ba297cd1559f795946ecda17ade68aea3dda188869bba380e3ea3472e08993f4ae574c528b34c3e25503ee6119fd4f998835e09d7

memory/2612-333-0x00007FFA84713000-0x00007FFA84715000-memory.dmp

memory/2612-334-0x0000020CD88C0000-0x0000020CD89B6000-memory.dmp

memory/2612-335-0x0000020CF2FC0000-0x0000020CF30A6000-memory.dmp

memory/2612-336-0x0000020CF47D0000-0x0000020CF47F6000-memory.dmp

memory/2612-338-0x0000020CD8DF0000-0x0000020CD8DFA000-memory.dmp

memory/2612-337-0x0000020CD8DE0000-0x0000020CD8DE8000-memory.dmp

memory/2612-339-0x00007FFA84710000-0x00007FFA851D1000-memory.dmp

C:\Program Files\Lossless Scaling\Lossless.dll

MD5 021db5d732b50c2a59050a4b273bef23
SHA1 6748e468f6ffbfb812699242f7a108b512a9bce5
SHA256 a2415b8f51f767408ec19d4c50ee46eb6f490aaa7e147c5f555f1202ecf8f518
SHA512 44cf4bbda762ed47586816752396b42faaf2f07d173e6b69e6e49f75f0dcacafde48fa0ea5735b70b89be6a7eb56883614d7c78c104968e24d5c40561a884ffd

memory/2612-342-0x00007FFA84710000-0x00007FFA851D1000-memory.dmp

memory/2612-344-0x0000020CF6D80000-0x0000020CF6E32000-memory.dmp

memory/2612-345-0x0000020CF6EF0000-0x0000020CF6FAA000-memory.dmp

memory/2612-346-0x0000020CF6E70000-0x0000020CF6EA8000-memory.dmp

memory/2612-347-0x0000020CF84D0000-0x0000020CF84D8000-memory.dmp

memory/2612-349-0x0000020CF7DF0000-0x0000020CF7DFE000-memory.dmp

C:\Users\Admin\AppData\Local\Lossless Scaling\Settings.xml

MD5 9722d4173cdb869a507c57629b6aecdd
SHA1 e816426039ca9a684a60b8923780550c19c85ccd
SHA256 5d1b53f734db6ae2c37c6dbbeefa03c6745dd033c7b55ffeeb03a11aae6bc8c2
SHA512 488e3a82ffba4f8d4e5eca9c3d81302e075bfc2c2319fe9c1d3c1d6025c2b0ddc752dd53d06a6cebab1fc0720a0e11068b2295d683069db6a33aadb06e3438d7

memory/3040-363-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-364-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-365-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-375-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-374-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-373-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-372-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-371-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-370-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/3040-369-0x0000015DB5D30000-0x0000015DB5D31000-memory.dmp

memory/2612-376-0x00007FFA84713000-0x00007FFA84715000-memory.dmp

memory/2612-377-0x00007FFA84710000-0x00007FFA851D1000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 eaa3db555ab5bc0cb364826204aad3f0
SHA1 a4cdfaac8de49e6e6e88b335cfeaa7c9e3c563ca
SHA256 ef7baeb1b2ab05ff3c5fbb76c2759db49294654548706c7c8e87f0cde855b86b
SHA512 e13981da51b52c15261ecabb98af32f9b920651b46b10ce0cc823c5878b22eb1420258c80deef204070d1e0bdd3a64d875ac2522e3713a3cf11657aa55aeccd4

\??\pipe\LOCAL\crashpad_1068_QLUZBLOJJZQUYAND

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 4b4f91fa1b362ba5341ecb2836438dea
SHA1 9561f5aabed742404d455da735259a2c6781fa07
SHA256 d824b742eace197ddc8b6ed5d918f390fde4b0fbf0e371b8e1f2ed40a3b6455c
SHA512 fef22217dcdd8000bc193e25129699d4b8f7a103ca4fe1613baf73ccf67090d9fbae27eb93e4bb8747455853a0a4326f2d0c38df41c8d42351cdcd4132418dac

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c749e3c102741bbad6d5169f296396e3
SHA1 c473584539ce90db957fbf14134147bfd79527aa
SHA256 8f4e9edd5a32ab66fbc0d0df3eaa0e963005455ca98ff2957a2dd47a05727e54
SHA512 9b5d63ac876ccf2cdfd0e3889c21e12dba46b09aac3e083e2149e8c1cf71ed6a891d313a1d49b25ef2927ddae7f02618ad0835c07688102cede1a7257e7e2393

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 be07ac2886af9b98d5c895fd6a0e9ecb
SHA1 0d038eda2b38802ace5156eef8fb95821113129e
SHA256 417956ef86bab213f8508eb569e54075cc1da4665f4217ad9f60c18f4d099a0e
SHA512 af64a6a287acc854123c18c23bbdb1acb2d6412b232ae559f3ac32017b0812e5fb89df768cdc361487525499ddaff2c66691bd3b92f215f37d99ef1fee879639

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 327c3c7f4ba51cbb5525b66336c036dd
SHA1 50a7bdd0761c7f7f67eae508ded88133246f395a
SHA256 11970db339b2e5da74c188b6e847c4b1c59de286fdf3e326a8e7ebfa53bb494a
SHA512 d5c9e9af885e50323c58c73d91fc86ada23f4da44ab5e112bfe65cbd68b170176154d0e084380a342f1cfe264006c808dc57acb58866b39559aff65d083f6839

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 206702161f94c5cd39fadd03f4014d98
SHA1 bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA256 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA512 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5af425.TMP

MD5 192fbdf0de5a8f5aa8f04ee070d13e64
SHA1 00c17bba8c46718a2673512c6b5b30c4d9a6b014
SHA256 9efcbe810de157050dbf1fd0f4839cab13cd65ec649c8a1aef86ab6126ed28d0
SHA512 6960a0b13521dee4d7f2fe5083d07ec94b904009a00828c7b36885755e329312d391658db3d222a0762fa54057264bb2ff6c1bd857fc65e35c5d671e62d93297

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 5c90e533de544d20ef03a7e4376ab802
SHA1 2a52da6001eb10adfa0bfc5e408dd5d903d40f7a
SHA256 661c5547b42f11fa35b6da1fa5ddf8b3a808d7c2b9f5d06ce5be4028ab48bbb2
SHA512 6efb60afe36bb5c6d3b48072d0a895b782c9a2447a0b9567a8f11689bd4b9149dd4a9f878a96dbfaa5c84fcb173fbd7efb85e1dff62269ecc8ea3ea5b2f605ab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 925f0b473ab8b412772a1a1b7564e13e
SHA1 77697ab0c3f9c555b6f5dd76af9359952db8cb58
SHA256 41586eac8e32339a371a61fe69c97f346aff816c6e7cf129d703fb4c438e00f1
SHA512 2b8d877f1ec0c09e2d76763cda951d7b65ff99e6c2a33cc304964cc7b913f1881a262575216623ace211b97d98139a1ba9cfbd360af59c6cc6e48c52183a5b26

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 d620945308c10de5f5a0f67dad9c47bc
SHA1 77c676574dddd86b3412f61c1ba4fe7a64ff3952
SHA256 777a4a29fadc8171798bb0ed8b4538ad580b84f4c85618b39ee81450eba03b6e
SHA512 52665b4f3a59f27c9a47c2e20ada3ea6cfaa4ecf884070ddcc03230744da0c80cbf6f1ed310006f9c7a4d18cddc7752b84463a3ee2e283a6a2ac5e48d659b4e2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 c65c0272f17d8de33a1781710815bb98
SHA1 77ce0c575045b9cb796c2727de5f5eeaa187b1d8
SHA256 99dcc6c6cc1b807fe3b852374b01df1796364ab632611863e09ac1e71ba60190
SHA512 1ba8ab17fe9b66b45c20ac93421898f90e3dcc1f5b877998e58499a316240cc60194abd657db1461dd9996786cf6bf88934393b6cf8f81853015c60fb0c92b4e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b1eb5c32d0979b9b2d619549ce28d734
SHA1 ebe76bd6d5a41b4e91fc5ecfca4de5c25e7161d3
SHA256 b11bcb50afcadec52befaa593e598599bdf45dedb7047a5b939604ff263fcefe
SHA512 9ee00036a6f29c3f8a84b86e7b961adfa9314c540ef10404110d6bb38b099b72d2f2b001c91b15a20bd99b5dfd1cd8e24530ff4a23b8fa63c92a7dc6c207084a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 7eee8299ba9f6df5a8e73dedfac6b86c
SHA1 508007ce29ea53e93c6075cb037b8f77cd677014
SHA256 a8e3661293ac0ef9a54ee2d949024a946265ba6cdadcc26335e7a289ec7999eb
SHA512 3d283c2138a627c7355e437e93dcad14cdb49cef947e8cf2b3e7e083127a9f34a96967c01176aa93e569f6e908d76b57f3e326480ad1b1fd6da2507f6f99cb00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 50e23763339312fcadb989b692728f9c
SHA1 fbd7c573b9eddb66610f128fe77738ff97b33681
SHA256 072a769d06e5764da2bad0d7dc8e9fce864192ca46a6356b8975c10ac07564dd
SHA512 114b30534b8f104cb4317a8734f753c6194d5619efb2f28c4c8e5bf985e703e6caebb6f19944a7cb71abb3132b4127638f022dc38e995b1f4555bbfe17ebcce6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 20240a2c02d7037cc2616834ff3245a6
SHA1 56e2a1f87e78f14e66132923a0202025ae12a109
SHA256 9e8bd02676d36cf9a19ae2787a529b20b0029d1a435c148d7dad9e8d478e2c75
SHA512 c952f26de87aeb928937549e3bb9f6f0d62cdb7bc4ecab972fef6d38aa03ae249465c3eb204ddc2e52d5e12ed4d9fd388e84540ea510d01571a8a2d1558224b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a4334b763a07584147c8bc3cb44fb484
SHA1 f1d02f08f0361ed317cb1bc34c0301db1ade520f
SHA256 4ba1301236a2959b983a9540bb28bd71e311f39263d6aeecec8700fb233d3079
SHA512 697696fb07287eb61b4acdae21d176b7aaed8a986f5e8d321a86cefe44456b9816f39b8a69c7af73670b04c43c3f6e6230e07c9be5cf48a214bf1e37432faec0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 2af1b73bd83be2813b302d9e5c7d6bdd
SHA1 42b0d1d07356ae585e6ea907f31bbd5d1c744263
SHA256 53dd7d25dbb0ad13e8411181871ad5debc3056bf5c9ab04dcf8b0c22a45336f5
SHA512 d2716199384b1dec20eb391d3f74a0f7727a4c145c77411cd08ace1579d609c296a6d90c34ddb5907e3610eafa4a8defbb37848383912cad25557724632ad237

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 632334014a2892b78b143d769c51f744
SHA1 2207f796443d024ae55a1c0d38be8d649df64123
SHA256 de4066fb703793901d8b5fcd84353b6af5d2d0c2c2723132ed76661ac5309150
SHA512 6c26bdfd517f09bcb053b414e3e0f7c346be211d3d23cffea9dc76ac766fd96b9534759f113d672fc9948aa7b21a25f083976f44fecec3051bf851a58d515fb7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 acba1dbb990cacd9bf97b122fb50f2b2
SHA1 58acd22b714adc202158b48380bfecaf4060f804
SHA256 503b312de605c16cc64ccbd998a21f2192bfdbd51b6850b2ac80a281e8a49f9a
SHA512 3ba0a72bb9c3cb2e77a06f731b85af376a71df4581e6706f1f75e662b32176ed9a27b8414471f91b9cdd8bc454d83883282f905aeb11496f977aafdf7d17025b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 824adb38181751c4af3b9d28d09371c8
SHA1 c7e9fc03377da4a1ce2a80a7a5be6830d3348d27
SHA256 f64585b3bd06578e58ba800aaabfb4d9cd0d2c75433f9d0b3a16fe7633310bef
SHA512 787a5918cda2924fc4ba58d9f7c586c06ac7fa4d7ae4353136fefb07f0bac3eecc8878da089f623bff18fabee177430f61ae7f0565935c6206d66570844e8da2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

MD5 4f9d58547367f284c0fa5c840c00b329
SHA1 afdf5a998830ad8bea4d57ad8cb3882ac911b43f
SHA256 3104d7911ad5190e95f4bcc647740dcc286325ca7a57f46510cd7970aeced0cd
SHA512 7d21bdf059b4cbb5a1203c8c7333ea91118bab3b6d935f59e7e89637eb31d2a28d69033ce8501431dfbcccdb6df1f05d86cc4d99af01c68270a5577b795eb350

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

MD5 420c92784446f49963c8e9caedd17425
SHA1 ef05de375fedec2795f9a9527483c17ac6d211bd
SHA256 fea5580fd2f268d43c0f781d9d3aa8659d4fe926e1db572c0a2ac8ff6f30fe52
SHA512 9d7bfed436ea499559a9fa7cc37ca7d67c6508112c89466d8d0978a082450a17eb80edb6ce8d00b15c6b8a9958f940a159860726ab11fd9eeea46bb872fe2c43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 6e2133b333ea43a7823a3c7b0c425b51
SHA1 09a7f22861dd7ee58e17412bbc7081e18c7331e4
SHA256 ff5c265ee919aba3e4584013a50b7018d3397221309ef60234a672dcaf25c8c2
SHA512 7fac0c007f6f261cd8e5c55a5a1c8e125ccbc3cb2f398540c45ef93ebfb7cf2f3bac8249676dd0e9dc36ccab341010dcc2c8b218f399b884e838418a06770bc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b95840b9f2334106d47d71e169aa1da0
SHA1 6ce73822637cd9d8c807fe7f321e5a65befe1d2c
SHA256 7d20953bbd26eedba7bc6f7da029a201960edec8b699f7f20015409cd0234f64
SHA512 ba3c482a765db3be9d99e25b95dd3959a7b60192c82ffe296fd9f30096cbc5dc2752dde0d5cb9092f90c6b0664a35a9ba00dafcb6b460a09d8b5d55f1b7fadb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f846116230b4864a78144d6508358b77
SHA1 d82342e0de709db1d7f62759255dd5ebe949750c
SHA256 cbd9ee0f31678d4117e3bfaa36de631e5c826ff935daa70609122baa4d2c326d
SHA512 b6c7d80efaf9e679eaf4db95523a65906eedb972d8a7998d10589fde07830450908a676e0f0328499ac49851b88393dec27279ce749c10039421b5a1ffceafc2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 056b0d4509d32cd5034184ab15f53daa
SHA1 c62b4431273bed05ee73f863cc4aaad766eb5fbf
SHA256 a69c8c443a7da88fa34f8a7bd9e990257a5b117adf7a353a6a60531303124769
SHA512 a126512eaa12b72ac1815be7268ae1101790a1aaccddc6200be2cb43f307a5f564ed5dfbdd16b39ebd6df4f78a06ca12e569e94d59de002ab306dfb4e960f367

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 3295679f21a962f8a29df64be0a7f80f
SHA1 f038fd0947ffff7c9dd76d5cbfb4d535df7519e7
SHA256 365795fd9aa373a27952e1f257444eb2a85eb129924a3b33bee8300953118810
SHA512 694f04aecdcfd7fef588631a448c3dd9fe5d14c5539728199e37febdf06d54056d5813a8395b1bbe48dd1474fa1138c97a953a188472809968f8b2d383e09dd5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2248c54d309c7c3faf70ca6f210063b9
SHA1 d7d2fb672386f9cea04fd3c2860d7a3c966275a6
SHA256 7260e656818c5d256f4557830dc5bec80faed5c9e0159d71aac5b5b32deba92b
SHA512 3154bce292b28176629ce25971b1e0b628514562e49baf7b98987b72dda1714bd6fae8b669b5b9501eec589144e767c64740a5905d57cc57966ba39752a55eda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 2a8dc41448435ffb74904bb5ef578f55
SHA1 cc9b2fe9cead3773683015e63461cee7adc36627
SHA256 5b4279f3b2d7455038dbd05620262ef0eb0ec3649053a90cc6d7e2a86f7518a8
SHA512 502edb6f05e5610106cb77b22a934d4ae35a8df4ac81a0ae99947ac95e26fc23378cd734ddd479fe27ae7b374280e8dd40531cc3f4503e4c20602e87673ddc98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 4a183656f5ddc4fa7d4c62fcf3251c7b
SHA1 c1cd5ec63c01b03d7b1418e44c4c9bc7fb18a4c5
SHA256 068e4647b1517a2aa14e27b4d08c6c0f7d0bf8623c1d110e1c962c8b355c6c71
SHA512 773c894c39346442429b4864152caaf329989321795990f7260a339413a46997fd5ed550685b88d31f7deb1c898774fa8f32cc189d416c238a871c01af2255bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 1e1e7ac124d879fdaf3aba63dc3a3fa7
SHA1 3a7ba497ebfe91fa4d75920cf0651974466d3262
SHA256 c51e669061981cd448bef2cb5c73bec6ae997d675984c5206673d54d02470c2a
SHA512 1eea325c0c300124d65267f2b30d0711ec06462466e15c0eee566426b9e5c8a3a9a0090a2523b6fddb1b21333c48e6c12fd6c08f334b73c69f1d11b0e12d81b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 2cd879c3b1b25f881f4b7ab71b67a095
SHA1 e8c477526bb5bdddd659fdd44606060d83e703ad
SHA256 d15ec0b42a1305238584533da0ddd5ec2959a76896cabc74599185af8af9e92a
SHA512 95c25065ecb23b375e233d554beb9c5fb61d877f6b5586155d5b5931d270cedfd4508a8fde3dfee5073af2215b256d7cffde9f77923d41909d4168d9bc61123a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

MD5 961e3604f228b0d10541ebf921500c86
SHA1 6e00570d9f78d9cfebe67d4da5efe546543949a7
SHA256 f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed
SHA512 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

MD5 009b9a2ee7afbf6dd0b9617fc8f8ecba
SHA1 c97ed0652e731fc412e3b7bdfca2994b7cc206a7
SHA256 de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915
SHA512 6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

MD5 e86c8e28cf96a20e2de57e8d761e5285
SHA1 c4290a4b3b002f1c44069486db25533b18bab0a8
SHA256 4ac73bbbdc66bc6c937f5ce5a7d8794faa45402a573243b8f419be3fb771e20d
SHA512 263c4c20dc3c8d9b7935c44aff522630b308b15d347ed44f22ec1adc035cb9b80df6c1f37580ae42403fffb654f833ece06ec10eaab736855a31c985fa917da1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\3cb80bc9-7c2e-4a53-8a8a-95f31ff1e290.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 95245a692a74362e08b33d2d21929c16
SHA1 997c3e90fd92c1c80d8639a5d69da9e81db4568d
SHA256 b8a0699e60c2a6912427d57aed71ec8ecba947a6bec2cfd501667afb5deda9a0
SHA512 70723fbc90973c8b94d43246c0aadda22f08e953823f75eb06708e94b79815ac0dbddb8b4513d8740c46be48b092b00c0b409b0456cbc6903b51cbbf5c1f034c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

MD5 8829b7c66082f314b79e640937f7d9fa
SHA1 16c41dcc982ed18067da132b30cfe0bd5c660fee
SHA256 d038177a95e09adbc548b1d4aa51bd1dc54518ba86b7a3f11809e2a82450ea50
SHA512 b9259e0dbaf2a52046b05036d28da29e9429540ef9217dc780913616d69a659da33316fad442644534683bc5a7af164e9d5bb804bfa8b8d80f433cf0530c1b56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

MD5 d30076da8c6e10a74473162deb77d0c0
SHA1 d873e6452cdf849df679ceb0152b7e57e32043d3
SHA256 450a321ffa4e23952a155231070cbaa18a4805fe00cfd7cc5adff2b393123946
SHA512 cb224fd830576e1b7e6a9e55b40a6e30b5207830dede5a8f7c5c5cc868f32616cae12df7808975e84653ae55dd9e1dd505515e2faff2dee2f61bb267054b8a02

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

MD5 5a1a7d54a071be6083c2e92141a32327
SHA1 e8075c0ed1b9dac5e3d02f33e5b91bdb99bcbb55
SHA256 aabac8a7f49d5ba7d30e3cc73db33efa39eaf3e256abeeaaf4badd2cbec4e14f
SHA512 126f9bfc54fdb5cc7ff2334621a8ac1c31e965573fe88e7f485f47c65bff1a9489d33b8c58ed00e994f537b70ab73ee4b90d32fcd53f4d264f6dbf2ce1e7dcba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 69997e4cf7818d924bbb7dfd8c645bbd
SHA1 d8149296c7e96c76ba3a8b6945cf598617389beb
SHA256 41210ea72de8a05fbcf3e6c80428736c33fd0eadcf2de2cae0fc29831eaaec1a
SHA512 17c5529edfb6a699bce2328795b5f7f509025cb3c53a6a2504870b10bc059d5306103a02b85ef4ccf43d8b80b1db70ed6240a83d668f05d88c66f4054c4fb43d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 6fe95926db4d8e13918abda0560ecea7
SHA1 cec7de7d0a328e0e60df6de998c19bdd0f2705c8
SHA256 331079ea9e8b0823eaa718baa76964fdd01db6f31cab0351d1c6fc6113c12ed6
SHA512 a0f8e112c26cb263e403140002c95aa97813946f4d828c97abda8a9ef28f7620ce0df4f8cf814b011be539fe2e4fbec3ed859373710d535cc53bb2f029e44b30

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 87c2b09a983584b04a63f3ff44064d64
SHA1 8796d5ef1ad1196309ef582cecef3ab95db27043
SHA256 d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0
SHA512 df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 aa12ea792026e66caab5841d4d0b9bab
SHA1 47beeba1239050999e8c98ded40f02ce82a78d3f
SHA256 65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1
SHA512 0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 fac49e161e404a2a94033d91245077d8
SHA1 fcdd095a60d94e7fedb86bf29c784007b4d7e9c7
SHA256 782fae8642551618ba67e354c7335e274ffeb931ca0c02698e5cd8ca5931a349
SHA512 0a3e34ab9bc45b40f7c2b2c26896ced8869a78992e1a8fae4d0dffd7815216a0168c19661de536b6174f168f88563185ed87929c04a7d8238250960bcf562bb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

MD5 d64b1e53894a2f212553e31a6d1f763c
SHA1 700fc391a1e215834663c209e73810ee4ced48ae
SHA256 80025146bebba243d81a23d2ad3423c4bd54fbc8528d0031541d9a3e86b2c009
SHA512 489ad147ff9adb58c1975cc32d93f0950897801e866ee09a5f53a5d6c4c18cc766e1763a1001e86a8f90a6ab3663a943a92c8606cb919e144424936ba812ebaa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

MD5 dbbefd45cbe4b6d482e67c9ecae1758e
SHA1 9de4d088aab4ad7eb2e5514584bbb53c9b2a2640
SHA256 c27c81a7b6edaca1b58a69ab50953e909eb04eb5ac9ee8b60c7b6b7aa562f06e
SHA512 08c1042bd8eab7c6720982b48d4104be199aaee981945a76d984f0cf27f1a03909f3768043ebbfad96d135cd88182d8fe65fa8720805195247cdde57cd5780e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

MD5 3e65a759eb597d536c08c3466c03044f
SHA1 1c9d0f5879c7e1f527765ab41b3de74d66c8c761
SHA256 7ed3b56b5bfd67c469d2f8d92eed2f3edc75603ed4166ee8f91257ca2477a256
SHA512 1eb1b28a51372aaecefe955a578c09c827c96f3148f71d1cde0e55e45380a55fb1558b4fc0e477efd8ac0f65136fd7688d899db14c22f0aa32b4834ab94694d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

MD5 64f70b30f49753b403421d46805e641e
SHA1 9d99c81e8ce64b5ad1c178c89dcc0029daf7cc68
SHA256 c3215ffd77328d18dc05cef31753c63666e949e035481856d72cd3f545d1a2aa
SHA512 711c0f4988e71aac31074eabad37be9da4b103a06a06c6aef4535c46e3d8dc0358cb7709b88d8dcfc92609addcd711dbd59aeb9d5737049c0331197893659ac8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e3c981037898e911641887928c2db75f
SHA1 dca119121bd8f115b3562d56e9f4e74dabe96b63
SHA256 9e190a5c1e482030a93b3d44d4f602301417093132daf267ae4d936fde9e3284
SHA512 6b62a190a72d84fede3c99f9ad235dd030849104a1ccc80fa92bf0f394b658a1c53e98ce40dd470f7cc9ee7b8f04d4a40adf204699a57d3232616113b18fe12f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 44fbf7bff8bf73902f0aed2da0405730
SHA1 b0391e6a57987d67322ecd890191dfbd2a6fea97
SHA256 b595421d9ffaa1c109d28da347151f224214ae23dccc1657e1cf52540e0b6730
SHA512 ede975ce14019a09ef0fceef0221f67e888b26858750795bcb5f5eb2142e9f48b471dfdb7ecf62598b56512ca14720160ae1d534134aba52eb48fbac309de2ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2612805b34b44fd082c309889db71dde
SHA1 a684f2a17fccb1f0307ae8fa8ad664d383b19cae
SHA256 17d67c691f85128365afb2af7c0d6347aea72132c0657de2b091a03bde438ea8
SHA512 d38c929a5957cb74048ea8cced9ecd2c6dab68afa66552d6bd3f8ce3e7c5d1165ba8a0e0ccb1dbd250ccd84306eb5dc5671b39b0cf4d530b66c7f437d8890ac7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 0eca00d39baff081f74d2ab3b6b10b8c
SHA1 9e4f22cb625388dff07c7281bd6f76d4c3bac4a9
SHA256 e74f9f44b468a068f5e908a6835033738b62224bb0b9e1614f399bcb57702a19
SHA512 228aa221fb6657ef1bfef2b44ef143baa268f63b0e24591e1533040e43fc0b42efd7ca4bc0f906d023ba51249d513f488cd266e5ce352f9f91ed89bade0275f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 162efd770d9b675c03c09b6db2f006ef
SHA1 9dc4137f62b2dc67fb6520cc18cebb874c534cf4
SHA256 62aa58eb116f9a1212c5e8a21eeb941b67e7fc356507ccfa6fa3484f1c0440d5
SHA512 c5ffbc1918dcfd9aec8f8b96a64bf4f20fdfd9691f5b2e4b52dd49d0c1027f2d056e67b4d0f867a6e52f82766a26bfff3b728bf2d9f566eda45de7f58a484f6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1a686f1ef9845a5b902a3b45aa2160ee
SHA1 faf90630255cfd4f5eea3f7f7b5d09ef303b2b1b
SHA256 59a566c95320c4899078b37a01c255491fddfec6db1c2d5f770d4701ee28f99e
SHA512 356886feb09128d2376d220be789571efc40d432fd667a5cc0c8ad2902318dea197e7c4b2c9d4e1002a757f6ac63207d11444fdc2ba726106e10f033efdaaff0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 f8eaa7021169bb8ca6d9eb513e3e30e0
SHA1 1817f67ba9bfeeab7aeb3267d7c68c507f212730
SHA256 2bc445847393e3eb1473d0a3068c059c9ca74564a8637b04abeb7606e5df30f7
SHA512 b29a95756e914f06b94119bbecf52fcda9586e22dcb469bc0c7a554c954893115b2e41da1b42183d0e26df87bccd17a06a73ea587b7022e4aee14a43f674cc2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 14261783cebb6c00f44c3c2aaf1d07ef
SHA1 255179879e3be185e7405905b6ba8cfb89791067
SHA256 5baf56428ad806a0b519ba255a5cab553cc7b188f0718d724e05888aa2fa1751
SHA512 0a5e22de2a1f8be2b821fd2492c9dbe1bc32226ff2874ac07a9a41177ffaaa88e289e1262ef2699f7a043f25424edad74301e63c30402fc0e9764a7204b41f05

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3745b18ad32f7ccdb73d5c007c074ac3
SHA1 d59eddaac58c919f7182af1775c22b79bc73d32d
SHA256 46efdb68201d969df696895171f4f1d7f6f9a7ab2e67b78b2c9fc175dda5c77e
SHA512 eae2e3ffbcc4c8f39175bffbf6be9caf531c2709fb0a6c6bc17e8ec767eb47ba5b50c0b0f536d537b1d971b7af1f104d3b7c3c16a0ed1203e880428bf33500dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 bf082fae2dfa2fd58a57949b18e13b7d
SHA1 57a7d50ff56af675d4aec2fedf97d72861604f0d
SHA256 348065e4da597d20b89396d9091b7e1ed5a78947bd392d19bcbb57044d7399e6
SHA512 bda01e336ecdec05f696febefeb14396f5d912d63abdcfc870f34ffc9d95dcae2b502da23928d54e959d030f0b30e42462873d595d9b0da5caaae637ac21a6a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 0d05712704ba3d94968ef3898de917cf
SHA1 451cbdb16831f8efebd0f0a9ed823d5245f4afb6
SHA256 470acf409b187dd316b5df11b267dfdc659c40b3ee5182f9b3503a235a550185
SHA512 c15b685767e8121d66371303e254d94a8657a61a21e4ac7ec683b76950b7f63bbcd6746065c6af26a77148d3200bd42881406e37ebb84b5d02a777a1eac34c13

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

MD5 3d0a3aef3b73d329de1ab3f31103e0f0
SHA1 8cb7735b1bc0a0d64fed65c8731264575dcc9d39
SHA256 345432c65ac1d720bb2d6cb9072e3635f3c42418f070ce06219273546e8a786d
SHA512 b83df210373ce7c6722a3fce218e5e3ea1574bac8cacd57fbfbcc42be56df5cd5bcc5c27256c399b93956d7ef5cd4a0227a6985da2a4b24025cf46beba721eb6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 19fd0e24b06640c8ff1fc63adca44eb2
SHA1 2c557a0cf409f627872a576e3da609a3169009ff
SHA256 5c4e1d78385b342f1e01eabde1dd65d24a86c10b492ed77ab96365b0457c0c60
SHA512 06888a0497a24dccdb700794c8094a7624d1d03ffd4ebdac3220bf858d34956fbaf75c9e075077e7ccc76071980836604f0b32368a6214dc876db8104a4dc967

memory/2612-1515-0x00007FFA84710000-0x00007FFA851D1000-memory.dmp

memory/444-1518-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1517-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1516-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1525-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1524-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1523-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1522-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1521-0x000002569EE80000-0x000002569EE81000-memory.dmp

memory/444-1520-0x000002569EE80000-0x000002569EE81000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 97306f0a4962f7bac63f336000b6d90a
SHA1 424481fbcc05c16d2950ec6015f5c31822f01439
SHA256 f347c2c07c187cdeec34a8bc0b63327c11c8e8c55ab24e3b3f28e0b0583bf2f1
SHA512 0fb915c6f468e504034140b582acbaf78a9860c001b08ab653f9f978918f22018ee3f6d482e6a76bba0faa91c1b881f44a24a2e266244a5bcb04d514ac4d379b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 da4ef42d6c587bbe02869f64213ae6b5
SHA1 15fc1ffe6972756947e2d27b90504336c62c299b
SHA256 ae7d21ea0c864a891e597b3e81a62cbf21e860932e6aa422155a6015d538729d
SHA512 98b15b2f0eb0af20f04cf4a628176ae9c9c2e675a2eefde1514d23fd05f7a925e6eb8949d68e2eee71279a711f720b75e2b08365c3de886a0bd5f9e0eb3cf3e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 410ab33cec5f8e12c216367a3b2f866f
SHA1 45cbb5c94a02b5675bd50445373e724719458b9c
SHA256 ff7486a9727688665bb9a94dcfb5423ea91fd107c160be6ce8d4fb5f06c8f181
SHA512 74cc6b9813b3e40a63060b887e5e280a0e045c9885756f08ec6d1bf4755de5e683fa3d210dc8e934adae298fce0b3a38d2ab8fe634d9589339014b2083fe0bf9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6fb610c6c731d9ffef6da2e5471bc905
SHA1 75f4afadb55abbe1a16cda4b8d4f9572c4489604
SHA256 ec2342c2d26d06c548d6c90ab8edd1508f0bebb201e9ee1238fe72f1c9ff977c
SHA512 63ba0ee90a3134f16ad60dd5779b7e7e06519453f5ef121eb8b617c3988629577aedc74b78a887dd4610bbd88b752b7092a038d12471278f3d6b2cb3d8fb8056

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 809192ac7b5eaf0e24d4a0b21f81b9b5
SHA1 95b0ec93f28f62489dbac9175d15e5bb3ece9f37
SHA256 ed8f46d1a858fa8708f85b591c5f6ee37fe76a6677a88678d12f45539be08758
SHA512 1cdfdda0beb3cbf54669bf5cadab5b54e3268d8aa7bbad005fb24b04ce476cd3abce7c349e0bf2dc771dd56004bdf160cdcf0af198d9ec65a88d5d221c18b64e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a6f876a0f5835ef32183726efca1cbb3
SHA1 7d7167bf425c859b6a81b105386e54f36690d80d
SHA256 406f0bac4d37261c7c4bad44304c8f65e8799aa2d0cb7c60b28b63fbdaaaae46
SHA512 6775bcabcf8dd3d91a177262ffcf2ff347574cccc9b01ba571566aca416970d414afb1c953d075ff086ca90eecf3241c048523daddf81eea020b198bfd315966

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 32226cf513f151b38eb086373c32ab09
SHA1 ced01d6b3f2d31ecd47fd49fed88ef9b2aef7133
SHA256 1f8eae8b7c9e8f34e33c5e915da200aeac6681743a9572d444325dcc4b9c8873
SHA512 28bd760fd167cd7a6497288fc2366f00e4c80f405a05fc33af75a17b2b22b289ded7ae6f2d57b07716980b6c185333d9c49d2d51157d646f713a3aa91ccb4457

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 29682bcd8bd57c5d2d9691ba689993f9
SHA1 4f439929fd773ea2d65368042d57e8d89de080f6
SHA256 9b7355ea8e48c0e56b13dd7ec5f294dfa4a096441e1c31edc46655c4a79e2a00
SHA512 039380ac4389203746136ee5d464fb2b00e543154bfac809594c32a84d0e3ed573603f127f45038c6ffa8e5cf03e52f751561d00ba672b63af63df13e0029921

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 2dcd495ca30d4962b38d9468cea60a0f
SHA1 39017f82a05826c266a89eefd68ad827ceec6f93
SHA256 4986bde3a0d90ab41e67345fe9cd5cfdec65282d0a0a0a22979ca07e5c7942b0
SHA512 4a438641b9c89e97ad12ebbd2c991d8b224cbdea5f5896c679df811477671e9c16644afbc3ae850b39ef0a4addb63f784ef8cef58e2bdf2b35088c2ea794c9eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5fefc8.TMP

MD5 440bb0b3c09577304bb21c7808399080
SHA1 1c3acec9b08c020b8408001da477193ce473acdf
SHA256 bc9b5c1e70db133b67b3b1f2b4fec087e8a42179b7d53bb383f1b0a3f37cc8a2
SHA512 8a9f8d26937d113c456a77b30028a3fa9f8309fc00668f8e8044e9474cb04343720a43aceae25a419770b1cb7c590365d03089950c28aa95d68ef728e278d87b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e320c31bb67dd680594a9ab731cfb343
SHA1 930b5b960665d6467a7f119c1a02d5952a0d6fc8
SHA256 545e77589309cab189acef1ec77b7c754df71c1e7f6b89a19a32d6e2927051ae
SHA512 93e35d86219cfbe3ad6ddd2c4d7cf935c2fa7f17cf8fd19650e0c6d713530d4f19518a0f3b2441c7fb148eb5ff965817241064cbd463b05ab73f13e95ad711b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9f96b55711f14e4105911642d27ddada
SHA1 b5e723a1ac2a8290d7db27a111a6803594740b6b
SHA256 ad4a714da6ac810833bd5e1742bdf11683918c27304283fd9f8ed3a7069d0c24
SHA512 511638344c47d63f11d42b6b5cdf4b5194ca4dfe42b820d8521a0587565f7756300a44091566546b93c3a33618e2654bc9b753b9bd7bc6eaf21204f1c252efab

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Browser

MD5 de9ef0c5bcc012a3a1131988dee272d8
SHA1 fa9ccbdc969ac9e1474fce773234b28d50951cd8
SHA256 3615498fbef408a96bf30e01c318dac2d5451b054998119080e7faac5995f590
SHA512 cea946ebeadfe6be65e33edff6c68953a84ec2e2410884e12f406cac1e6c8a0793180433a7ef7ce097b24ea78a1fdbb4e3b3d9cdf1a827ab6ff5605da3691724

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

MD5 bc6142469cd7dadf107be9ad87ea4753
SHA1 72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c
SHA256 b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557
SHA512 47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

MD5 cd69bf494ce09ad3489945f849b71440
SHA1 3b5ef9be595b0929f068f436609225640cd28003
SHA256 90528fc1112a7d6b5070ab1655e1aba2ebc7d68665eb027caeb7babf4bf92ab7
SHA512 73c0f3ea902d7f4568920798e8ac4612e607e7fd9a46c64aa59d10db3fd4dae97ba046a5bf3e3954a9536e5caeb20402dfb8be44f8207f769858516611719f76

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 18a085c941028b5f286b6db8f04a32e7
SHA1 062c5e98a87098132d489690e1b2da955b28ca9e
SHA256 f66e7102a193e6a1253bbc3a221294c8618cbeeb90d2713269f6c96ee4bf6d89
SHA512 d9634164368dd8a676f28c822379ee316fb0601f13719c2f0229fd117301aec4a3c3e39aa767e542539fab3616239daef166a7002a1e7ec9894a2eac775e828a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log

MD5 240ddc69041431ba39f9f0facec59ff3
SHA1 59a8492a15f7a8c0ed940e9e447128e7ef03ed8b
SHA256 e72dca94f165df2fce1020f6b6ef87cd4282c359fac136e65446815b09eae176
SHA512 34eb08ba818b0b1f66110fa170b00c2a2140ae0542641cb309b936772e5a4f6cbb35f33e347cff6dd89bafb913d058ecee180627d99167d9c34b31d2eff0362c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 479b7ec614dfb88f2dbdd6bab721dd19
SHA1 3e22d0e565a5ea8eb8869a7cc6d91fc696c061e5
SHA256 661459a04dbdbd2e7fda9406b3c88b3ada47ed7338ef1b73ef2b15bc8b81eb24
SHA512 cbc60a8a15ff27c21a64a1feb2c6b1eeb20fbaf3271dde27955ee23c77c98b9aa29de41b7c694eca519b4bfd847f1b98cde8fbf3659ced77714a24adb079d32e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5564fed5aef51b1f55e437f764d22cad
SHA1 c1914e71596ade321c0886f2dc29b9b53a0e16dd
SHA256 79670f9100bfbfc41a357dbd99a071dc13839c8d6fdf456ee52e9d7cfc192830
SHA512 b8adc72a78c223d7555eabd14757632d5ea6db38856f85f74bc2d21796eca95ea08762f63c5c7a888e81fe62ef7ba0a01f88933d3bf1b315f163a70a138dc54e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 774fd4a0ea205311839163ae7334c31b
SHA1 3540759f1bc4f681f9c7c8cb42135815b8b176f1
SHA256 a0c3a782ba15b8f7dadedfc69cb61614742e142109403f94b72a77b43ac00a35
SHA512 da30f2fdd1c46fb0fe4200a58859a77b96a9985924dbb5062df3a3bdc66bcf37924910224fd6d59e4ee9d21a69de6b19d6c4a9cfec77e9992fce5042001c9e53