Analysis Overview
Threat Level: Likely malicious
The file https://code.visualstudio.com/download was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Executes dropped EXE
Modifies file permissions
Checks computer location settings
Loads dropped DLL
Legitimate hosting services abused for malware hosting/C2
Checks installed software on the system
Detected potential entity reuse from brand microsoft.
Drops file in System32 directory
Command and Scripting Interpreter: PowerShell
Enumerates physical storage devices
Suspicious use of WriteProcessMemory
Suspicious behavior: EnumeratesProcesses
Uses Task Scheduler COM API
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Enumerates system info in registry
Modifies system certificate store
Checks processor information in registry
Modifies data under HKEY_USERS
Suspicious behavior: GetForegroundWindowSpam
Checks SCSI registry key(s)
Suspicious use of AdjustPrivilegeToken
Suspicious use of SetWindowsHookEx
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Modifies registry class
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2024-06-10 09:52
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-10 09:52
Reported
2024-06-10 10:07
Platform
win10v2004-20240508-it
Max time kernel
825s
Max time network
892s
Command Line
Signatures
Downloads MZ/PE file
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
Executes dropped EXE
Loads dropped DLL
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
Checks installed software on the system
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
Detected potential entity reuse from brand microsoft.
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\System32\mozglue.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\vcruntime140_1.amd64.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\bcrypt.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\version.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\msvcp140.amd64.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\cryptbase.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\ntmarta.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\ntdll.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\DLL\kernel32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\ucrtbase.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\crypt32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\Kernel.Appcore.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\oleaut32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\firefox.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\mozglue.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\rpcrt4.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\wintrust.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\xul.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\bcrypt.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\msasn1.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\msvcp_win.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\exe\firefox.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\msvcp140.amd64.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\vcruntime140.amd64.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\nss3.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\msvcp_win.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\dbghelp.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\oleaut32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\kernel32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\crypt32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\msvcp140.amd64.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\msasn1.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\ktmw32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\ntdll.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\nss3.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\ws2_32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\xul.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\combase.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dbghelp.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\exe\firefox.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\vcruntime140.amd64.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\msvcrt.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\sechost.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\sechost.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\wintrust.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\Kernel.Appcore.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\version.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\cryptbase.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\msvcrt.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\bcrypt.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\combase.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\propsys.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\oleaut32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\msvcp_win.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\ntdll.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\advapi32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\advapi32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\ktmw32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\propsys.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\msasn1.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\kernelbase.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\symbols\dll\advapi32.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\dll\msvcrt.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| File opened for modification | C:\Windows\System32\xul.pdb | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Command and Scripting Interpreter: PowerShell
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
Enumerates physical storage devices
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000 | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\ConfigFlags | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\HardwareID | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\HardwareID | C:\Windows\system32\dwm.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags | C:\Windows\system32\dwm.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\ProcessorNameString | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\~MHz | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1 | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2 | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU | C:\Windows\system32\dwm.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft | C:\Windows\system32\dwm.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133624867482196343" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Windows\system32\dwm.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Windows\system32\dwm.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.fsscript | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.ml\ = "File di origine OCaml" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.pl\shell\open\command | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.psd1\AppUserModelID = "Microsoft.VisualStudioCode" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.rb\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\ruby.ico" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.sql\OpenWithProgids | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.wxs\OpenWithProgids\VSCode.wxs | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.dot\OpenWithProgids | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.ipynb\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\default.ico" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.md\shell\open | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.ps1\AppUserModelID = "Microsoft.VisualStudioCode" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.wxl\ = "File di origine WiX Localization" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.pyi\OpenWithProgids\VSCode.pyi | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.hxx | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.r\OpenWithProgids | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.wxi\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.wxl\OpenWithProgids | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.mdown\shell | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.bash_logout\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.bowerrc\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.cshtml\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\html.ico" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.csproj\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.editorconfig\shell\open | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.hxx\AppUserModelID = "Microsoft.VisualStudioCode" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.jshtm\shell | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.r\DefaultIcon | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.ps1\ = "File di origine PowerShell" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.cfg | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.cpp\shell\open\command | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.css\shell\open | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.gitignore\ = "File di origine Git Ignore" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.hpp\AppUserModelID = "Microsoft.VisualStudioCode" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.npmignore | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.pm | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.ascx\AppUserModelID = "Microsoft.VisualStudioCode" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.h\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\c.ico" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.md\DefaultIcon | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.pm\OpenWithProgids | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.rs | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.scss\ = "File di origine Sass" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.wxi\OpenWithProgids | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.jsp\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.scss\shell | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.fsi\ = "File di origine F# Signature" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.ipynb\OpenWithProgids\VSCode.ipynb | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.config\shell\open | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.css\DefaultIcon | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.eyaml\OpenWithProgids\VSCode.eyaml | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.r\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\default.ico" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.scss\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.wxi\shell\open\command | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.bash_login\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.gitconfig\AlwaysShowExt | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.mdoc\OpenWithProgids\VSCode.mdoc | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.txt | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.cljx\ = "File di origine CLJX" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.gitattributes\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.markdown | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.txt\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\.yml | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.py\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\python.ico" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1181767204-2009306918-3718769404-1000_Classes\VSCode.erb\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" | C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 | \??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | \??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | \??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe | N/A |
| N/A | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://code.visualstudio.com/download
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffff870ab58,0x7ffff870ab68,0x7ffff870ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1652 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2124 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2188 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3032 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3044 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4272 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4424 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=it --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=3780,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=4296 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4408 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4672 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4984 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5008 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4704 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4424 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4652 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1664 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe
"C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe"
C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp
"C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp" /SL5="$1001D4,99556431,828416,C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe"
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command "Get-WmiObject Win32_Process | Where-Object { $_.ExecutablePath -eq 'C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe' } | Select @{Name='Id'; Expression={$_.ProcessId}} | Stop-Process -Force"
C:\Windows\system32\icacls.exe
"C:\Windows\system32\icacls.exe" "C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code" /inheritancelevel:r /grant:r "*S-1-5-18:(OI)(CI)F" /grant:r "*S-1-5-32-544:(OI)(CI)F" /grant:r "*S-1-5-11:(OI)(CI)RX" /grant:r "*S-1-5-32-545:(OI)(CI)RX" /grant:r "*S-1-3-0:(OI)(CI)F" /grant:r "Admin:(OI)(CI)F"
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe"
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1764 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=1772 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:3
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --mojo-platform-channel-handle=3076 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=node.mojom.NodeService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=3876 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=node.mojom.NodeService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=3844 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=node.mojom.NodeService --lang=en-US --service-sandbox-type=none --dns-result-order=ipv4first --inspect-port=0 --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=4012 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /d /s /c "wsl.exe -l -q"
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4124 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
\??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe
"c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe" tunnel status
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4364 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4424 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4576 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
\??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe
"c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe" verify --package c:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\darcula-theme.darcula-official-2.4.17 --signaturearchive c:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\.a0f050b9-4b41-46ca-98ea-a55105bbec43
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1544 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:2
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5180 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=1020 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4688 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5532 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5684 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5528 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5944 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=4000 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6004 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5444 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=1612 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x420 0x308
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=4308 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5924 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://marketplace.visualstudio.com/_apis/public/gallery/publishers/darcula-theme/vsextensions/darcula-official/2.4.17/vspackage
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=it --js-flags=--ms-user-locale=it_IT --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=2520,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=4032 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=it --js-flags=--ms-user-locale=it_IT --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=4048,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=4292 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=it --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5308,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=5316 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=it --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --no-appcompat-clear --field-trial-handle=5324,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=5360 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --lang=it --service-sandbox-type=collections --no-appcompat-clear --field-trial-handle=5956,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=6052 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=it --js-flags=--ms-user-locale=it_IT --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=5740,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=6076 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=it --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=6384,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=6388 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" "C:\Users\Admin\Downloads\darcula-theme.darcula-official-2.4.17.vsix"
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Roaming\Code /prefetch:4 --no-rate-limit --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Roaming\Code\Crashpad --url=appcenter://code?aid=a4e3233c-699c-46ec-b4f4-9c2a77254662&uid=effb39cf-69c2-4a0f-99f2-6d4329853f6f&iid=effb39cf-69c2-4a0f-99f2-6d4329853f6f&sid=effb39cf-69c2-4a0f-99f2-6d4329853f6f --annotation=_companyName=Microsoft --annotation=_productName=VSCode --annotation=_version=1.90.0 --annotation=plat=Win64 --annotation=prod=Electron --annotation=ver=29.4.0 --initial-client-data=0x40c,0x410,0x414,0x408,0x418,0x7ff641687d40,0x7ff641687d4c,0x7ff641687d58
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1804 --field-trial-handle=1808,i,4187983616721132354,371559754936607949,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=2208 --field-trial-handle=1808,i,4187983616721132354,371559754936607949,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:3
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4580 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3808 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
\??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe
"c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe" verify --package c:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\darcula-theme.darcula-official-2.4.17 --signaturearchive c:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\.6b421708-5143-4650-8bf5-d0ab48bfcc3b
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /d /s /c "wsl.exe -l -q"
C:\Windows\system32\wsl.exe
wsl.exe -l -q
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=it --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --field-trial-handle=5804,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=5968 /prefetch:8
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5040 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5148 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=4000 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5988 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5356 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1124 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=1140 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=5816 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6228 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6468 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" "c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json-language-features\server\dist\node\jsonServerMain" --node-ipc --clientProcessId=3416
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=it --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5356,i,4879473807508554619,2880436699650194992,262144 --variations-seed-version --mojo-platform-channel-handle=5320 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\Admin\Downloads\darcula-theme.darcula-official-2.4.17.vsix"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url C:\Users\Admin\Downloads\darcula-theme.darcula-official-2.4.17.vsix
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.0.945445525\1973588224" -parentBuildID 20230214051806 -prefsHandle 1804 -prefMapHandle 1796 -prefsLen 22076 -prefMapSize 235121 -appDir "C:\Program Files\Mozilla Firefox\browser" - {f5af98a1-ebc4-4f28-b426-e5255097fdf1} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 1892 1ae39cb0858 gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.1.1016865457\24879622" -parentBuildID 20230214051806 -prefsHandle 2476 -prefMapHandle 2464 -prefsLen 22927 -prefMapSize 235121 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {51ac1163-7da9-4207-80c7-64e0bd12be95} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 2488 1ae2cf8a558 socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.2.1930966898\391229329" -childID 1 -isForBrowser -prefsHandle 2944 -prefMapHandle 2880 -prefsLen 22965 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b2020d48-8780-4fff-815c-f4b0564b4b66} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 2952 1ae3cb46b58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.3.1935681604\1379102930" -childID 2 -isForBrowser -prefsHandle 3584 -prefMapHandle 3580 -prefsLen 27616 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f52cfffa-5baf-4794-a90a-41e36e83077c} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 3596 1ae2cf79f58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.4.918397055\847954949" -childID 3 -isForBrowser -prefsHandle 5196 -prefMapHandle 5200 -prefsLen 27616 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3c16918a-dc16-4a82-8d8b-1fd21c124203} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 5080 1ae41299558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.5.1918423865\288205483" -childID 4 -isForBrowser -prefsHandle 5340 -prefMapHandle 5348 -prefsLen 27616 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b66555ba-0b25-46a2-b8a2-65f6ad8e715a} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 5328 1ae41296e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.6.1210710091\90875131" -childID 5 -isForBrowser -prefsHandle 5524 -prefMapHandle 5528 -prefsLen 27616 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b5dec6e4-c420-4cd8-962d-0c7569e825df} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 5512 1ae41298358 tab
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\darcula-theme.darcula-official-2.4.17.vsix
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" "C:\Users\Admin\Downloads\darcula-theme.darcula-official-2.4.17.vsix"
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Roaming\Code /prefetch:4 --no-rate-limit --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Roaming\Code\Crashpad --url=appcenter://code?aid=a4e3233c-699c-46ec-b4f4-9c2a77254662&uid=effb39cf-69c2-4a0f-99f2-6d4329853f6f&iid=effb39cf-69c2-4a0f-99f2-6d4329853f6f&sid=effb39cf-69c2-4a0f-99f2-6d4329853f6f --annotation=_companyName=Microsoft --annotation=_productName=VSCode --annotation=_version=1.90.0 --annotation=plat=Win64 --annotation=prod=Electron --annotation=ver=29.4.0 --initial-client-data=0x3f8,0x3fc,0x40,0x3f4,0x404,0x7ff641687d40,0x7ff641687d4c,0x7ff641687d58
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1728 --field-trial-handle=1724,i,10092833034216593650,9925839594834547660,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=1824 --field-trial-handle=1724,i,10092833034216593650,9925839594834547660,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:3
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.7.1693132181\1265830623" -childID 6 -isForBrowser -prefsHandle 5356 -prefMapHandle 5360 -prefsLen 28081 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {88cad90e-5e92-4871-854e-4bcaedbe285e} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 5200 1ae4097af58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.8.2001533968\1553352704" -parentBuildID 20230214051806 -prefsHandle 6160 -prefMapHandle 6168 -prefsLen 28217 -prefMapSize 235121 -appDir "C:\Program Files\Mozilla Firefox\browser" - {6343b45e-953e-4d69-9bab-be547718254a} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 6216 1ae4319d458 rdd
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.9.1911729028\4384706" -parentBuildID 20230214051806 -sandboxingKind 1 -prefsHandle 6196 -prefMapHandle 6192 -prefsLen 28217 -prefMapSize 235121 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {1386f3a1-6df5-4001-bf33-ae190ca12cf5} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 6208 1ae4319ec58 utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.10.870782959\1126218690" -childID 7 -isForBrowser -prefsHandle 2812 -prefMapHandle 6552 -prefsLen 28217 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3ab9afa9-c9e6-48df-9c36-42670ac27263} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 6500 1ae43020558 tab
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4844 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=6276 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:0e223914-1018-4241-9692-608f995cee53 /prefetch:1
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.11.1600998374\953888264" -childID 8 -isForBrowser -prefsHandle 3532 -prefMapHandle 6096 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a9dc84bd-06f0-4415-a537-96febd020b87} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 6548 1ae4a206758 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.12.346606398\677655871" -childID 9 -isForBrowser -prefsHandle 6028 -prefMapHandle 6896 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e2f40764-16be-4a45-8f01-10ff4aa05c13} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 3376 1ae4a2f0e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.13.535335763\76475051" -childID 10 -isForBrowser -prefsHandle 5668 -prefMapHandle 5644 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {42f1087a-d180-44a4-9b64-af1e16b508ae} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 5692 1ae43c88958 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.14.1861798191\1184982909" -childID 11 -isForBrowser -prefsHandle 7296 -prefMapHandle 7272 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5664441f-5ec7-4e3d-a98f-6c098c156e4c} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 4736 1ae4b764f58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.15.910993203\1409287570" -childID 12 -isForBrowser -prefsHandle 4704 -prefMapHandle 7384 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {fe4890a5-43be-442c-a336-67dc7c534478} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 4668 1ae4ba4e158 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.16.2028616574\567238610" -childID 13 -isForBrowser -prefsHandle 6004 -prefMapHandle 7160 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f20a9b89-50f3-46bc-8421-272b9faf9a3b} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7116 1ae4ba9de58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.17.70069656\1724674842" -childID 14 -isForBrowser -prefsHandle 7672 -prefMapHandle 7368 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ba1b55df-8920-4d35-b26b-02c5000d2a79} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7700 1ae409d6958 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.18.2074539043\1002023233" -childID 15 -isForBrowser -prefsHandle 6744 -prefMapHandle 4000 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {48a1b35d-aa09-4f12-b89f-86bb4d839ab4} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7352 1ae4c2ce358 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.19.456950046\1557924837" -childID 16 -isForBrowser -prefsHandle 7852 -prefMapHandle 7844 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {18db9044-0f16-4113-8457-f4bd06cc546d} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7836 1ae4c2cfb58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.20.1745256477\2133774455" -childID 17 -isForBrowser -prefsHandle 11556 -prefMapHandle 11560 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {25ac67a0-3b42-491f-8dad-51dcb5b5f176} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11544 1ae4d1db158 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.21.238238156\977724675" -childID 18 -isForBrowser -prefsHandle 11372 -prefMapHandle 11368 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {49ae3c23-2658-4f54-b35c-2d729005b43b} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11384 1ae4d0b7458 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.22.740010525\1820959640" -childID 19 -isForBrowser -prefsHandle 11172 -prefMapHandle 11168 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {8c1a6546-16f7-4651-b726-3c3aa6269ef7} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11184 1ae4d0b8358 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.23.241941429\1176164144" -childID 20 -isForBrowser -prefsHandle 10952 -prefMapHandle 10948 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9754b799-e550-4463-ac21-ee1a5bb392ba} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11108 1ae2cf7c758 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.24.477780282\1507945241" -childID 21 -isForBrowser -prefsHandle 9488 -prefMapHandle 9492 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {aa384f18-b1c4-4bbb-986f-730db5a477d9} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 9588 1ae40444258 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.25.266762695\8831683" -childID 22 -isForBrowser -prefsHandle 9476 -prefMapHandle 9480 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3a0a35e1-390a-429a-843f-b97486c35223} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 9580 1ae413e2258 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.26.1263289264\2060092922" -childID 23 -isForBrowser -prefsHandle 9076 -prefMapHandle 9084 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3754f75b-687a-484b-a1c2-7a1fb3882369} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 9152 1ae413e2e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.27.1851021913\1642198485" -childID 24 -isForBrowser -prefsHandle 8848 -prefMapHandle 9236 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d048dd0b-2498-435d-bb73-a91e6a407bea} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 9084 1ae45780058 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.28.165255875\1715919628" -childID 25 -isForBrowser -prefsHandle 8708 -prefMapHandle 8732 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {995c3657-7d5e-4f1e-b15b-71526b360660} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8848 1ae47776a58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.29.1411801295\1268865165" -childID 26 -isForBrowser -prefsHandle 8588 -prefMapHandle 8580 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ea8d1fb1-0031-4b27-b978-913e050a88a2} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8504 1ae47775558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.30.796757650\247042565" -childID 27 -isForBrowser -prefsHandle 8304 -prefMapHandle 8308 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f296d4f7-2dd1-49dc-8840-596402d62496} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8296 1ae47775e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.31.944297763\957121772" -childID 28 -isForBrowser -prefsHandle 7140 -prefMapHandle 7132 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {df5a5cad-df34-49f4-88ab-77779220def9} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 4736 1ae48041958 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.32.1818045800\534617671" -childID 29 -isForBrowser -prefsHandle 11828 -prefMapHandle 11824 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0940d893-220b-460f-b588-f2b9446d5174} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11840 1ae47889358 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.33.1537264109\1429857357" -childID 30 -isForBrowser -prefsHandle 12148 -prefMapHandle 8124 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2cb6bc67-8abd-4479-85d1-85d507734052} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7496 1ae480dce58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.34.1783034346\42136022" -childID 31 -isForBrowser -prefsHandle 12104 -prefMapHandle 12108 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5d75e6e3-b2a4-4a15-91bf-ed2f6d0b9cf7} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 10448 1ae47025258 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.35.1967543999\42844965" -childID 32 -isForBrowser -prefsHandle 12100 -prefMapHandle 12448 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3c8713e8-d7ba-45ba-b216-b39c36574c43} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12104 1ae414d3558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.36.1468023366\420397127" -childID 33 -isForBrowser -prefsHandle 12020 -prefMapHandle 12444 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {1e45293f-92a2-493d-bdad-7d86ccfc4225} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12108 1ae42a7ec58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.37.2057131969\1189937141" -childID 34 -isForBrowser -prefsHandle 12580 -prefMapHandle 12584 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e6fbc2e5-dc9b-45c4-acca-93466a2b7d61} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12596 1ae42a7e658 tab
C:\Windows\system32\dwm.exe
"dwm.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1472 --field-trial-handle=1888,i,15170155571660164634,2389250212591119259,131072 /prefetch:8
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.38.1687582449\880588279" -childID 35 -isForBrowser -prefsHandle 7792 -prefMapHandle 8752 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2a287292-a6c6-46d4-a7c1-b81961283430} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7660 1ae3fa17858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.39.801870617\1711229849" -childID 36 -isForBrowser -prefsHandle 12184 -prefMapHandle 7660 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {20a8e4b3-7110-4df5-8c04-fc1fde161855} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7776 1ae40443658 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.40.1849218461\105926693" -childID 37 -isForBrowser -prefsHandle 7772 -prefMapHandle 8436 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7fa4b4f0-3e8b-43ea-af94-7d3bfeb0996a} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12528 1ae42c60358 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.41.838373333\1188791982" -childID 38 -isForBrowser -prefsHandle 12884 -prefMapHandle 8600 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e0d1c870-9e46-439a-ba83-45c8b4f367be} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8412 1ae2cf40b58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.42.1653525105\536022490" -childID 39 -isForBrowser -prefsHandle 7600 -prefMapHandle 9220 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {42c36008-8f81-4209-bb90-e59fe0125ae4} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8980 1ae430e4058 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.43.1932832067\783281588" -childID 40 -isForBrowser -prefsHandle 7612 -prefMapHandle 8720 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2b76eba3-cb8d-4047-83ef-089c5effbc76} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7580 1ae430e4c58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.44.1654124120\1149090007" -childID 41 -isForBrowser -prefsHandle 7724 -prefMapHandle 11400 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6d250371-8aed-4fe8-a533-2ad6352b7fab} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12056 1ae430e4f58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.45.1575562009\2063678876" -childID 42 -isForBrowser -prefsHandle 7712 -prefMapHandle 7824 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6950bafc-dd10-472f-b8d2-04e82b89efab} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8120 1ae430e2e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.46.1584700999\538426768" -childID 43 -isForBrowser -prefsHandle 7352 -prefMapHandle 7708 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {03b4dc52-e001-4df6-8bd3-1cd86f2578c9} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8444 1ae430e5258 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.47.1903273732\1529577966" -childID 44 -isForBrowser -prefsHandle 7616 -prefMapHandle 7604 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3dda2ed8-d699-43f4-9fe5-e4fbaa1987ca} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12680 1ae430e5558 tab
C:\Program Files\Mozilla Firefox\minidump-analyzer.exe
"C:\Program Files\Mozilla Firefox\minidump-analyzer.exe" "C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Crash Reports\pending\c7d4c63b-73ce-4ca6-89b7-5ab93ebbf3f7.dmp"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.49.529408768\2141508472" -childID 46 -isForBrowser -prefsHandle 9496 -prefMapHandle 8740 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cc5f99ba-e4fd-42c6-9395-3c395e258ba7} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7776 1ae3c784158 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.50.1117452828\1301411348" -parentBuildID 20230214051806 -prefsHandle 1968 -prefMapHandle 3232 -prefsLen 31358 -prefMapSize 235121 -appDir "C:\Program Files\Mozilla Firefox\browser" - {3b633692-9115-4ae7-a04f-4a1de20b426a} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7112 1ae3e140458 gpu
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe
"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1760 --field-trial-handle=1768,i,1594932098444874665,3976272356249235232,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.51.1320896631\611062921" -childID 47 -isForBrowser -prefsHandle 13468 -prefMapHandle 7352 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {8aec393f-00db-4817-ae5d-0673e36a759f} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8740 1ae3e141c58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.52.1080184144\1160014818" -childID 48 -isForBrowser -prefsHandle 13460 -prefMapHandle 13452 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {bb9783fa-cada-42d0-b259-123bbbf08cd9} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 13128 1ae3e14f858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.53.638850757\1123007091" -childID 49 -isForBrowser -prefsHandle 9588 -prefMapHandle 3524 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d3547adb-8a16-4643-b2bf-70da1022f5b8} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11624 1ae4048d558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.54.1988136168\639597547" -childID 50 -isForBrowser -prefsHandle 11072 -prefMapHandle 11188 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7b42489e-7590-472e-88c1-6dc0a723e684} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 11036 1ae40490258 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.55.1433127982\247997826" -childID 51 -isForBrowser -prefsHandle 11036 -prefMapHandle 8792 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {bf529e13-b1d4-4b90-a2d0-59d39918b4a4} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 9452 1ae406aa558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.56.327191909\1013672458" -childID 52 -isForBrowser -prefsHandle 8132 -prefMapHandle 12432 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0be961a4-58b4-4eed-83fb-ac742500b04d} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7848 1ae4319fe58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.57.2041995961\356114261" -childID 53 -isForBrowser -prefsHandle 11900 -prefMapHandle 11912 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {711703e2-23d5-498f-a23c-34da1f7b570f} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 4736 1ae432ab858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.58.850040336\825819099" -childID 54 -isForBrowser -prefsHandle 8056 -prefMapHandle 4736 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a295f56f-b9a6-4cad-bb0f-84598244c712} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8044 1ae43c1d558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.59.155301639\1832826251" -childID 55 -isForBrowser -prefsHandle 11552 -prefMapHandle 9272 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {58bf8525-b372-4424-b7bd-5fb43e653487} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 9292 1ae4577f758 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.60.628726472\1884536600" -childID 56 -isForBrowser -prefsHandle 11260 -prefMapHandle 9212 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6d384875-3668-4d18-9087-319faecc23fd} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8860 1ae47777358 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.61.739100454\587597708" -childID 57 -isForBrowser -prefsHandle 11936 -prefMapHandle 8680 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c3093664-8971-4eec-99c2-c4a7524b36b5} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 12596 1ae47778e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.62.1380218114\688377581" -childID 58 -isForBrowser -prefsHandle 9232 -prefMapHandle 9064 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d8ec271d-e6df-4e97-bef5-2e1fda1ca88b} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 10944 1ae47887558 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.63.2022154440\1414059921" -childID 59 -isForBrowser -prefsHandle 7540 -prefMapHandle 11404 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b5ad033c-9007-4170-965f-113ea7d2498f} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8168 1ae47887e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.64.1836577325\1403839379" -childID 60 -isForBrowser -prefsHandle 7536 -prefMapHandle 11752 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b8083cd0-7d50-47d3-b4a4-1006948155ef} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 13552 1ae47775b58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.65.1238924808\440544520" -childID 61 -isForBrowser -prefsHandle 12628 -prefMapHandle 11372 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9df0d9de-7772-4af2-aec5-92aa06efc431} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8168 1ae47fa7e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.66.1382908927\1184263788" -childID 62 -isForBrowser -prefsHandle 8536 -prefMapHandle 8148 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6edaf540-8958-465d-b67e-9f8c0dc240ed} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 13280 1ae47fa8a58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.67.2026869503\1045313953" -childID 63 -isForBrowser -prefsHandle 13540 -prefMapHandle 13548 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {31eaca39-fa30-4a4b-9f1a-f93c776fb39f} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 13612 1ae47faa858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.68.633896771\1899035318" -childID 64 -isForBrowser -prefsHandle 13680 -prefMapHandle 13684 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {bca9625d-49f8-46c1-a0a3-74fc66626fc6} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 13612 1ae47faab58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.69.104636341\1045333254" -childID 65 -isForBrowser -prefsHandle 9292 -prefMapHandle 13668 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {44be8ed3-d4a9-46da-a9bd-87597628dad6} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 13908 1ae47025e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.70.140240921\2066218287" -childID 66 -isForBrowser -prefsHandle 14056 -prefMapHandle 7804 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ae62d75d-6d35-40f2-9bb1-16a02b7c4ae6} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8188 1ae48106e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.71.2068653327\78792326" -childID 67 -isForBrowser -prefsHandle 8540 -prefMapHandle 7540 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a07e5493-8c84-4523-841d-278c0457f867} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 8188 1ae48195e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.72.288060858\2046675101" -childID 68 -isForBrowser -prefsHandle 7700 -prefMapHandle 14072 -prefsLen 31358 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9caeea3a-b154-4ca6-bcda-97e2ba42277d} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 10692 1ae47889c58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="5636.73.710344727\979670014" -childID 69 -isForBrowser -prefsHandle 7056 -prefMapHandle 5940 -prefsLen 31367 -prefMapSize 235121 -jsInitHandle 1016 -jsInitLen 246560 -a11yResourceId 64 -parentBuildID 20230214051806 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {849f01e0-e267-4c48-a1a0-7cfa3dc65eba} 5636 "\\.\pipe\gecko-crash-server-pipe.5636" 7100 1ae46c3d558 tab
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | code.visualstudio.com | udp |
| US | 13.107.253.64:443 | code.visualstudio.com | tcp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | js.monitor.azure.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 13.107.246.64:443 | wcpstatic.microsoft.com | tcp |
| US | 8.8.8.8:53 | 58.55.71.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.253.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| FR | 142.250.74.234:443 | content-autofill.googleapis.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| US | 20.189.173.1:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 234.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 20.189.173.1:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 1.173.189.20.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 217.106.137.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| SE | 23.72.245.163:443 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 8.8.8.8:53 | assets.onestore.ms | udp |
| US | 8.8.8.8:53 | web.vortex.data.microsoft.com | udp |
| US | 8.8.8.8:53 | mem.gfx.ms | udp |
| US | 8.8.8.8:53 | microsoftwindows.112.2o7.net | udp |
| GB | 104.103.241.81:443 | assets.onestore.ms | tcp |
| US | 13.107.246.64:443 | mem.gfx.ms | tcp |
| IE | 66.235.152.156:443 | microsoftwindows.112.2o7.net | tcp |
| US | 8.8.8.8:53 | 163.245.72.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ms-python.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | ms-vscode.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | vscjava.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | github.gallerycdn.vsassets.io | udp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| US | 8.8.8.8:53 | vscode.download.prss.microsoft.com | udp |
| US | 199.232.210.172:443 | vscode.download.prss.microsoft.com | tcp |
| US | 8.8.8.8:53 | 81.241.103.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.152.235.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.34.232.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | default.exp-tas.com | udp |
| US | 8.8.8.8:53 | default.exp-tas.com | udp |
| US | 13.107.5.93:443 | default.exp-tas.com | tcp |
| US | 8.8.8.8:53 | 93.5.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 152.199.19.160:443 | tcp | |
| US | 8.8.8.8:53 | 4.4.8.8.in-addr.arpa | udp |
| US | 152.199.19.160:443 | tcp | |
| US | 8.8.8.8:53 | 160.19.199.152.in-addr.arpa | udp |
| DE | 51.116.253.170:443 | tcp | |
| US | 8.8.8.8:53 | 170.253.116.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mobile.events.data.microsoft.com | udp |
| US | 20.42.65.88:443 | mobile.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 88.65.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.144.22.2.in-addr.arpa | udp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| US | 185.199.108.133:443 | tcp | |
| US | 185.199.108.133:443 | tcp | |
| GB | 20.26.156.215:443 | tcp | |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 13.107.6.175:443 | tcp | |
| US | 8.8.8.8:53 | 175.6.107.13.in-addr.arpa | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 196.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| FR | 142.250.178.142:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 163.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 172.217.20.174:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 142.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | darculatheme.com | udp |
| US | 3.33.130.190:443 | darculatheme.com | tcp |
| US | 3.33.130.190:443 | darculatheme.com | tcp |
| FR | 172.217.20.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | img1.wsimg.com | udp |
| GB | 104.91.71.204:443 | img1.wsimg.com | tcp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | www.adsensecustomsearchads.com | udp |
| GB | 104.91.71.204:443 | img1.wsimg.com | tcp |
| FR | 142.250.179.78:443 | www.adsensecustomsearchads.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | 190.130.33.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.71.91.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.179.250.142.in-addr.arpa | udp |
| GB | 104.91.71.204:443 | img1.wsimg.com | tcp |
| US | 8.8.8.8:53 | api.aws.parking.godaddy.com | udp |
| US | 184.73.128.156:443 | api.aws.parking.godaddy.com | tcp |
| US | 8.8.8.8:53 | consent.truste.com | udp |
| US | 3.165.113.79:443 | consent.truste.com | tcp |
| US | 8.8.8.8:53 | consent.trustarc.com | udp |
| FR | 52.222.201.12:443 | consent.trustarc.com | tcp |
| FR | 52.222.201.12:443 | consent.trustarc.com | tcp |
| FR | 52.222.201.12:443 | consent.trustarc.com | tcp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.128.73.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.113.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.godaddy.com | udp |
| GB | 23.211.96.23:443 | www.godaddy.com | tcp |
| GB | 23.211.96.23:443 | www.godaddy.com | tcp |
| US | 8.8.8.8:53 | uk.godaddy.com | udp |
| US | 8.8.8.8:53 | img6.wsimg.com | udp |
| US | 8.8.8.8:53 | uip.godaddy.com | udp |
| US | 8.8.8.8:53 | salesproducts.api.godaddy.com | udp |
| GB | 104.91.71.211:443 | img6.wsimg.com | tcp |
| GB | 23.52.176.247:443 | salesproducts.api.godaddy.com | tcp |
| CZ | 104.64.120.52:443 | uip.godaddy.com | tcp |
| US | 8.8.8.8:53 | widget.trustpilot.com | udp |
| US | 3.165.113.111:443 | widget.trustpilot.com | tcp |
| CZ | 104.64.120.52:443 | uip.godaddy.com | tcp |
| US | 8.8.8.8:53 | gui.godaddy.com | udp |
| US | 8.8.8.8:53 | 23.96.211.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.120.64.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.71.91.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 247.176.52.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.113.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | players.brightcove.net | udp |
| US | 8.8.8.8:53 | entourage.prod.aws.godaddy.com | udp |
| US | 8.8.8.8:53 | cart.godaddy.com | udp |
| IE | 52.215.129.51:443 | entourage.prod.aws.godaddy.com | tcp |
| BE | 2.17.107.113:443 | cart.godaddy.com | tcp |
| GB | 23.36.169.30:443 | players.brightcove.net | tcp |
| BE | 2.17.107.113:443 | cart.godaddy.com | tcp |
| US | 8.8.8.8:53 | 51.129.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.169.36.23.in-addr.arpa | udp |
| GB | 23.52.176.247:443 | salesproducts.api.godaddy.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| FR | 142.250.201.170:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | edge.api.brightcove.com | udp |
| US | 151.101.2.27:443 | edge.api.brightcove.com | tcp |
| US | 8.8.8.8:53 | metrics.brightcove.com | udp |
| US | 35.244.232.184:443 | metrics.brightcove.com | tcp |
| US | 35.244.232.184:443 | metrics.brightcove.com | tcp |
| US | 35.244.232.184:443 | metrics.brightcove.com | tcp |
| US | 35.244.232.184:443 | metrics.brightcove.com | udp |
| US | 8.8.8.8:53 | cf-images.us-east-1.prod.boltdns.net | udp |
| US | 8.8.8.8:53 | manifest.prod.boltdns.net | udp |
| FR | 99.86.91.62:443 | cf-images.us-east-1.prod.boltdns.net | tcp |
| US | 8.8.8.8:53 | 27.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.232.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.91.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | bcbolt446c5271-a.akamaihd.net | udp |
| US | 2.22.144.27:443 | bcbolt446c5271-a.akamaihd.net | tcp |
| US | 2.22.144.27:443 | bcbolt446c5271-a.akamaihd.net | tcp |
| US | 8.8.8.8:53 | 27.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | events.api.godaddy.com | udp |
| CZ | 104.64.113.95:443 | events.api.godaddy.com | tcp |
| CZ | 104.64.113.95:443 | events.api.godaddy.com | tcp |
| CZ | 104.64.113.95:443 | events.api.godaddy.com | tcp |
| CZ | 104.64.113.95:443 | events.api.godaddy.com | tcp |
| CZ | 104.64.113.95:443 | events.api.godaddy.com | tcp |
| CZ | 104.64.113.95:443 | events.api.godaddy.com | tcp |
| US | 8.8.8.8:53 | 72.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.113.64.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csp.godaddy.com | udp |
| US | 8.8.8.8:53 | e602a0de7e604ec0a43ac13c9dbb35e8.apm.us-west-2.aws.found.io | udp |
| US | 52.26.59.44:9243 | e602a0de7e604ec0a43ac13c9dbb35e8.apm.us-west-2.aws.found.io | tcp |
| US | 8.8.8.8:53 | 162.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.59.26.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | consent-pref.trustarc.com | udp |
| FR | 18.244.28.5:443 | consent-pref.trustarc.com | tcp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| FR | 142.250.179.98:443 | partner.googleadservices.com | tcp |
| FR | 142.250.179.78:443 | www.adsensecustomsearchads.com | udp |
| US | 8.8.8.8:53 | afs.googleusercontent.com | udp |
| FR | 142.250.179.97:443 | afs.googleusercontent.com | tcp |
| FR | 142.250.179.97:443 | afs.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | 5.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 8.8.8.8:53 | business.bing.com | udp |
| US | 13.107.9.158:443 | business.bing.com | tcp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 8.8.8.8:53 | bzib.nelreports.net | udp |
| US | 2.22.144.6:443 | bzib.nelreports.net | tcp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | nav-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | dl-edge.smartscreen.microsoft.com | udp |
| US | 8.8.8.8:53 | dl-edge.smartscreen.microsoft.com | udp |
| GB | 172.165.69.228:443 | nav-edge.smartscreen.microsoft.com | tcp |
| GB | 172.165.61.93:443 | dl-edge.smartscreen.microsoft.com | tcp |
| US | 8.8.8.8:53 | 158.9.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.144.22.2.in-addr.arpa | udp |
| BE | 2.17.107.106:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 106.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| GB | 20.26.156.215:443 | tcp | |
| US | 13.107.6.175:443 | tcp | |
| US | 8.8.8.8:53 | api.retool.com | udp |
| US | 35.92.202.168:443 | api.retool.com | tcp |
| US | 35.92.202.168:443 | api.retool.com | tcp |
| US | 8.8.8.8:53 | 168.202.92.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.65.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 195.49.178.192.in-addr.arpa | udp |
| FR | 172.217.20.174:443 | play.google.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn1.gstatic.com | udp |
| FR | 142.250.179.110:443 | encrypted-tbn1.gstatic.com | tcp |
| US | 8.8.8.8:53 | encrypted-tbn2.gstatic.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| FR | 172.217.20.206:443 | encrypted-tbn2.gstatic.com | tcp |
| FR | 172.217.20.195:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | 67.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.virustotal.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| FR | 172.217.20.195:443 | www.recaptcha.net | tcp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| FR | 142.250.201.163:443 | recaptcha.net | tcp |
| US | 8.8.8.8:53 | 46.34.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.201.250.142.in-addr.arpa | udp |
| FR | 142.250.201.163:443 | recaptcha.net | udp |
| FR | 142.250.201.170:443 | content-autofill.googleapis.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | 42.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| US | 20.42.73.30:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 30.73.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| GB | 20.26.156.215:443 | tcp | |
| US | 8.8.8.8:53 | default.exp-tas.com | udp |
| US | 13.107.5.93:443 | default.exp-tas.com | tcp |
| N/A | 127.0.0.1:54051 | tcp | |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | spocs.getpocket.com | udp |
| US | 34.117.188.166:443 | spocs.getpocket.com | tcp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | getpocket.cdn.mozilla.net | udp |
| US | 34.117.188.166:443 | prod.ads.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | content-signature-2.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.services.mozilla.com | udp |
| US | 34.120.5.221:443 | getpocket.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 34.160.144.191:443 | content-signature-2.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | push.services.mozilla.com | udp |
| US | 44.232.194.163:443 | shavar.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | autopush.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | autopush.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | firefox.settings.services.mozilla.com | udp |
| US | 34.149.100.209:443 | firefox.settings.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.107.243.93:443 | autopush.prod.mozaws.net | tcp |
| US | 34.117.188.166:443 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.107.243.93:443 | autopush.prod.mozaws.net | tcp |
| US | 34.117.188.166:443 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 34.107.243.93:443 | autopush.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | 163.194.232.44.in-addr.arpa | udp |
| N/A | 127.0.0.1:54059 | tcp | |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | udp |
| US | 34.149.100.209:443 | prod.remote-settings.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | firefox.settings.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| BE | 88.221.83.233:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 233.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| FR | 142.250.75.227:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | id.google.com | udp |
| FR | 142.250.75.227:443 | id.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| FR | 142.250.178.142:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | plus.l.google.com | udp |
| US | 8.8.8.8:53 | plus.l.google.com | udp |
| FR | 142.250.178.142:443 | plus.l.google.com | udp |
| US | 8.8.8.8:53 | 227.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 172.217.20.174:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 172.217.20.174:443 | play.google.com | udp |
| US | 8.8.8.8:53 | img.youtube.com | udp |
| FR | 172.217.20.174:443 | img.youtube.com | tcp |
| US | 8.8.8.8:53 | ytimg.l.google.com | udp |
| FR | 172.217.20.174:443 | ytimg.l.google.com | udp |
| US | 8.8.8.8:53 | ytimg.l.google.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | youtube-ui.l.google.com | udp |
| US | 8.8.8.8:53 | youtube-ui.l.google.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| FR | 216.58.214.162:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| FR | 142.250.75.230:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| FR | 216.58.214.162:443 | googleads.g.doubleclick.net | udp |
| FR | 142.250.75.230:443 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 162.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 20.26.156.215:443 | tcp | |
| GB | 20.26.156.215:443 | tcp | |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | aus5.mozilla.org | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 35.244.181.201:443 | prod.balrog.prod.cloudops.mozgcp.net | tcp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | aus5.mozilla.org | udp |
| US | 35.244.181.201:443 | aus5.mozilla.org | tcp |
| US | 8.8.8.8:53 | 201.181.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ciscobinary.openh264.org | udp |
| FR | 216.58.214.162:443 | googleads.g.doubleclick.net | udp |
| NL | 2.18.121.197:80 | ciscobinary.openh264.org | tcp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| US | 8.8.8.8:53 | 197.121.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| FR | 142.250.178.142:443 | redirector.gvt1.com | tcp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| FR | 142.250.178.142:443 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | r1---sn-aigl6ney.gvt1.com | udp |
| GB | 173.194.183.166:443 | r1---sn-aigl6ney.gvt1.com | tcp |
| US | 8.8.8.8:53 | r1.sn-aigl6ney.gvt1.com | udp |
| US | 8.8.8.8:53 | r1.sn-aigl6ney.gvt1.com | udp |
| GB | 173.194.183.166:443 | r1.sn-aigl6ney.gvt1.com | udp |
| US | 8.8.8.8:53 | 166.183.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | firefox-settings-attachments.cdn.mozilla.net | udp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | 53.121.117.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 34.117.188.166:443 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | udp |
| FR | 142.250.178.142:443 | redirector.gvt1.com | udp |
| FR | 172.217.20.174:443 | play.google.com | udp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | cdn.vsassets.io | udp |
| US | 8.8.8.8:53 | onlyutkarsh.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 152.199.19.160:443 | cdn.vsassets.io | tcp |
| US | 152.199.19.160:443 | cdn.vsassets.io | tcp |
| US | 152.199.19.160:443 | cdn.vsassets.io | tcp |
| US | 8.8.8.8:53 | cs22.wpc.v0cdn.net | udp |
| US | 13.107.253.64:443 | wcpstatic.microsoft.com | tcp |
| US | 8.8.8.8:53 | s-part-0036.t-0009.fb-t-msedge.net | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| FR | 68.232.34.200:443 | onlyutkarsh.gallerycdn.vsassets.io | tcp |
| US | 8.8.8.8:53 | s-part-0036.t-0009.fb-t-msedge.net | udp |
| US | 8.8.8.8:53 | cs22.wpc.v0cdn.net | udp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | cs10.wpc.v0cdn.net | udp |
| US | 8.8.8.8:53 | cs10.wpc.v0cdn.net | udp |
| US | 8.8.8.8:53 | raw.githubusercontent.com | udp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | raw.githubusercontent.com | udp |
| US | 8.8.8.8:53 | raw.githubusercontent.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | filext.com | udp |
| US | 104.26.2.6:443 | filext.com | tcp |
| US | 8.8.8.8:53 | filext.com | udp |
| US | 8.8.8.8:53 | filext.com | udp |
| US | 8.8.8.8:53 | cdn.privacy-mgmt.com | udp |
| US | 8.8.8.8:53 | cdns.symplr.de | udp |
| US | 34.120.221.78:443 | cdns.symplr.de | tcp |
| US | 8.8.8.8:53 | cdns.symplr.de | udp |
| US | 8.8.8.8:53 | cdns.symplr.de | udp |
| US | 18.245.199.47:443 | cdn.privacy-mgmt.com | tcp |
| US | 8.8.8.8:53 | cdn.privacy-mgmt.com | udp |
| US | 8.8.8.8:53 | cdn.privacy-mgmt.com | udp |
| US | 34.120.221.78:443 | cdns.symplr.de | udp |
| US | 8.8.8.8:53 | cp.filext.com | udp |
| FR | 143.244.56.50:443 | cp.filext.com | tcp |
| US | 8.8.8.8:53 | with-contentpass-net.b-cdn.net | udp |
| US | 8.8.8.8:53 | with-contentpass-net.b-cdn.net | udp |
| FR | 143.244.56.50:443 | cp.filext.com | udp |
| FR | 143.244.56.50:443 | cp.filext.com | tcp |
| US | 8.8.8.8:53 | 6.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.221.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.199.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.56.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cockpit.symplr.de | udp |
| US | 8.8.8.8:53 | iab-category-finder-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | ups.xplosion.de | udp |
| DE | 116.202.77.6:443 | cockpit.symplr.de | tcp |
| US | 8.8.8.8:53 | cockpit.symplr.de | udp |
| US | 8.8.8.8:53 | a.teads.tv | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 216.239.36.53:443 | iab-category-finder-xddc4j3vva-ey.a.run.app | tcp |
| US | 8.8.8.8:53 | iab-category-finder-xddc4j3vva-ey.a.run.app | udp |
| DE | 116.202.77.6:443 | cockpit.symplr.de | tcp |
| US | 8.8.8.8:53 | cockpit.symplr.de | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | iab-category-finder-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | ups.xplosion.de | udp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 8.8.8.8:53 | ups.xplosion.de | udp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 8.8.8.8:53 | e9957.b.akamaiedge.net | udp |
| US | 216.239.36.53:443 | iab-category-finder-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | e9957.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 8.8.8.8:53 | jsdelivr.map.fastly.net | udp |
| US | 8.8.8.8:53 | jsdelivr.map.fastly.net | udp |
| IE | 18.202.99.160:443 | ups.xplosion.de | tcp |
| US | 18.245.194.122:443 | d1ykf07e75w7ss.cloudfront.net | tcp |
| BE | 104.90.25.54:443 | e9957.b.akamaiedge.net | tcp |
| US | 151.101.1.229:443 | jsdelivr.map.fastly.net | udp |
| US | 8.8.8.8:53 | 6.77.202.116.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.36.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.99.202.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.194.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.25.90.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.xplosion.de | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 3.164.163.4:443 | cdn.xplosion.de | tcp |
| US | 8.8.8.8:53 | cdn.xplosion.de | udp |
| US | 8.8.8.8:53 | at.teads.tv | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| FR | 52.84.174.6:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| SE | 23.34.233.33:443 | at.teads.tv | tcp |
| US | 8.8.8.8:53 | e9957.e4.akamaiedge.net | udp |
| US | 8.8.8.8:53 | cdn.xplosion.de | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | e9957.e4.akamaiedge.net | udp |
| FR | 18.155.129.21:443 | tags.crwdcntrl.net | tcp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | 54a4c536a339cad1787c8aa7a4b28a9e.safeframe.googlesyndication.com | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | static.nl3.vip.prod.criteo.net | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| FR | 216.58.214.161:443 | 54a4c536a339cad1787c8aa7a4b28a9e.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | static.nl3.vip.prod.criteo.net | udp |
| US | 8.8.8.8:53 | pagead-googlehosted.l.google.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 104.26.8.169:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | adx.adform.net | udp |
| GB | 18.244.138.116:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | d1jvc9b8z3vcjs.cloudfront.net | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | pagead-googlehosted.l.google.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 104.18.34.178:443 | mp.4dex.io | tcp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | mweb-hb.presage.io | udp |
| US | 8.8.8.8:53 | d1jvc9b8z3vcjs.cloudfront.net | udp |
| US | 8.8.8.8:53 | i.connectad.io | udp |
| US | 8.8.8.8:53 | ad.yieldlab.net | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| NL | 145.40.97.67:443 | prebid.a-mo.net | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | orbidder.otto.de | udp |
| FR | 216.58.214.161:443 | pagead-googlehosted.l.google.com | udp |
| BE | 35.210.58.154:443 | orbidder.otto.de | tcp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| BE | 35.210.58.154:443 | orbidder.otto.de | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| DE | 51.38.120.206:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 104.22.55.206:443 | i.connectad.io | tcp |
| IE | 52.16.255.71:443 | mweb-hb.presage.io | tcp |
| IE | 52.16.255.71:443 | mweb-hb.presage.io | tcp |
| US | 8.8.8.8:53 | track-eu.adformnet.akadns.net | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | track-eu.adformnet.akadns.net | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 104.22.55.206:443 | i.connectad.io | tcp |
| DE | 51.38.120.206:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | tagged-by.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | am6-prebid.a-mx.net | udp |
| US | 8.8.8.8:53 | ib.anycast.adnxs.com | udp |
| US | 8.8.8.8:53 | am6-prebid.a-mx.net | udp |
| US | 8.8.8.8:53 | tagged-by.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | ib.anycast.adnxs.com | udp |
| US | 8.8.8.8:53 | orbidder.otto.de | udp |
| US | 104.22.55.206:443 | i.connectad.io | udp |
| US | 8.8.8.8:53 | orbidder.otto.de | udp |
| US | 8.8.8.8:53 | e3120.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| DE | 51.38.120.206:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | hbopenbid-lhrc.pubmnet.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | i.connectad.io | udp |
| US | 8.8.8.8:53 | hbopenbid-lhrc.pubmnet.com | udp |
| US | 8.8.8.8:53 | ms-bidder-bid.prod.cloud.ogury.io | udp |
| US | 8.8.8.8:53 | i.connectad.io | udp |
| US | 8.8.8.8:53 | ms-bidder-bid.prod.cloud.ogury.io | udp |
| US | 8.8.8.8:53 | blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | eu-tlx.3lift.com | udp |
| US | 8.8.8.8:53 | bidder.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | bidder.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | eu-tlx.3lift.com | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 104.26.8.169:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 52.17.55.191:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| FR | 142.250.178.130:443 | googleads.g.doubleclick.net | tcp |
| FR | 142.250.178.130:443 | googleads.g.doubleclick.net | tcp |
| IE | 67.220.224.144:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | 4.163.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.233.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.8.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.58.210.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.55.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.120.38.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.255.16.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.55.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 144.224.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| FR | 142.250.178.130:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | euw-ice.360yield.com | udp |
| FR | 51.178.195.213:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ssbsync-euw2.smartadserver.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | e8960.e2.akamaiedge.net | udp |
| US | 8.8.8.8:53 | ssbsync-euw2.smartadserver.com | udp |
| US | 8.8.8.8:53 | euw-ice.360yield.com | udp |
| US | 8.8.8.8:53 | e8960.e2.akamaiedge.net | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| NL | 178.250.1.3:443 | static.nl3.vip.prod.criteo.net | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| DK | 37.157.4.29:443 | adx.adform.net | tcp |
| DE | 37.252.171.21:443 | ib.adnxs.com | tcp |
| SE | 23.34.233.189:443 | ad.yieldlab.net | tcp |
| GB | 185.64.190.77:443 | hbopenbid-lhrc.pubmnet.com | tcp |
| NL | 89.149.192.241:443 | euw1.smartadserver.com | tcp |
| NL | 178.250.1.8:443 | bidder.nl3.vip.prod.criteo.com | tcp |
| FR | 142.250.179.97:443 | tpc.googlesyndication.com | tcp |
| DE | 18.157.230.4:443 | eu-tlx.3lift.com | tcp |
| IE | 54.76.91.7:443 | ap.lijit.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 89.149.192.241:443 | euw1.smartadserver.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid-lhrc.pubmnet.com | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| DK | 37.157.4.29:443 | adx.adform.net | tcp |
| DE | 37.252.171.21:443 | ib.adnxs.com | tcp |
| IE | 54.76.91.7:443 | ap.lijit.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | udp |
| SE | 23.34.233.189:443 | ad.yieldlab.net | tcp |
| DE | 18.157.230.4:443 | eu-tlx.3lift.com | tcp |
| FR | 142.250.179.97:443 | tpc.googlesyndication.com | udp |
| SE | 23.34.233.189:443 | ad.yieldlab.net | tcp |
| NL | 89.149.192.241:443 | euw1.smartadserver.com | tcp |
| SE | 23.34.233.189:443 | ad.yieldlab.net | tcp |
| NL | 89.149.192.241:443 | euw1.smartadserver.com | tcp |
| US | 34.120.135.53:443 | oajs.openx.net | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| IE | 52.208.202.34:443 | ice.360yield.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 34.120.135.53:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | 213.195.178.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.4.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.230.157.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.233.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.91.76.54.in-addr.arpa | udp |
| BE | 104.90.26.20:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | e8960.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | gum.nl3.vip.prod.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.nl3.vip.prod.criteo.com | tcp |
| US | 8.8.8.8:53 | e8960.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | esp.rtbhouse.com | udp |
| FR | 172.217.20.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 8.8.8.8:53 | gum.nl3.vip.prod.criteo.com | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 35.190.39.111:443 | esp.rtbhouse.com | tcp |
| US | 8.8.8.8:53 | esp.rtbhouse.com | udp |
| FR | 172.217.20.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 8.8.8.8:53 | 53.135.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.202.208.52.in-addr.arpa | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 35.190.39.111:443 | esp.rtbhouse.com | udp |
| US | 8.8.8.8:53 | esp.rtbhouse.com | udp |
| US | 8.8.8.8:53 | 20.26.90.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.39.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | u.4dex.io | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| DE | 162.19.138.116:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | u.4dex.io | udp |
| US | 34.149.40.38:443 | u.4dex.io | tcp |
| US | 34.149.40.38:443 | u.4dex.io | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 34.149.40.38:443 | u.4dex.io | udp |
| SE | 23.34.232.193:443 | e6603.g.akamaiedge.net | tcp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| US | 8.8.8.8:53 | u.4dex.io | udp |
| IE | 52.48.246.250:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | ag.gbc.criteo.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | gem.gbc.criteo.com | udp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| DE | 141.95.33.120:443 | id5-sync.com | tcp |
| FR | 185.235.86.73:443 | ag.gbc.criteo.com | tcp |
| FR | 185.235.86.243:443 | gem.gbc.criteo.com | tcp |
| FR | 178.250.7.13:443 | dnacdn.net | tcp |
| NL | 193.3.178.4:443 | ads.us.e-planning.net | tcp |
| US | 8.8.8.8:53 | 116.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | e6603.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | 38.40.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | am1-direct-bgp.contextweb.com | udp |
| US | 8.8.8.8:53 | e6603.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | am1-direct-bgp.contextweb.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | gbc2.fr3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | gbc2.fr3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | gbc8.fr3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| US | 8.8.8.8:53 | gbc8.fr3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | ads.revjet.com | udp |
| NL | 89.149.193.104:443 | rtb-csync.smartadserver.com | tcp |
| NL | 89.149.193.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | rtb-csync-euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | rtb-csync-euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | ads.revjet.com | udp |
| DE | 23.88.7.99:443 | ads.revjet.com | tcp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.176.137.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.246.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.232.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.86.235.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.86.235.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.7.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | check.analytics.rlcdn.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | eu-west-dual.ads.stickyadstv.com.akadns.net | udp |
| US | 8.8.8.8:53 | check.analytics.rlcdn.com | udp |
| US | 8.8.8.8:53 | eu-west-dual.ads.stickyadstv.com.akadns.net | udp |
| US | 8.8.8.8:53 | cdn.revjet.com | udp |
| US | 8.8.8.8:53 | pix.revjet.com | udp |
| US | 192.229.233.6:443 | cdn.revjet.com | tcp |
| US | 192.229.233.6:443 | cdn.revjet.com | tcp |
| US | 8.8.8.8:53 | fp2df3.wac.edgecastcdn.net | udp |
| US | 8.8.8.8:53 | check.analytics.rlcdn.com | udp |
| US | 192.229.233.6:443 | fp2df3.wac.edgecastcdn.net | tcp |
| FI | 65.21.74.17:443 | pix.revjet.com | tcp |
| US | 8.8.8.8:53 | pix.revjet.com | udp |
| US | 8.8.8.8:53 | pix.revjet.com | udp |
| US | 8.8.8.8:53 | fp2df3.wac.edgecastcdn.net | udp |
| FI | 65.21.74.17:443 | pix.revjet.com | tcp |
| US | 8.8.8.8:53 | ats.otto.de | udp |
| BE | 35.210.58.154:443 | ats.otto.de | tcp |
| US | 8.8.8.8:53 | ats.otto.de | udp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | ats.otto.de | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 34.98.64.218:443 | u.openx.net | tcp |
| FR | 99.86.91.35:443 | check.analytics.rlcdn.com | tcp |
| FR | 99.86.91.35:443 | check.analytics.rlcdn.com | tcp |
| FR | 99.86.91.35:443 | check.analytics.rlcdn.com | tcp |
| FR | 99.86.91.35:443 | check.analytics.rlcdn.com | tcp |
| FR | 154.54.250.80:443 | eu-west-dual.ads.stickyadstv.com.akadns.net | tcp |
| SE | 23.34.233.33:443 | e9957.e4.akamaiedge.net | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | am6-prebid.a-mx.net | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 34.98.64.218:443 | u.openx.net | udp |
| US | 8.8.8.8:53 | prod.appnexus.map.fastly.net | udp |
| US | 151.101.1.108:443 | prod.appnexus.map.fastly.net | tcp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | ms-cookie-sync.prod.cloud.ogury.io | udp |
| IE | 54.72.196.75:443 | ms-cookie-sync.prod.cloud.ogury.io | tcp |
| US | 8.8.8.8:53 | ms-cookie-sync.prod.cloud.ogury.io | udp |
| US | 8.8.8.8:53 | prod.appnexus.map.fastly.net | udp |
| US | 8.8.8.8:53 | 99.7.88.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.233.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.74.21.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.connectad.io | udp |
| US | 104.22.54.206:443 | cdn.connectad.io | tcp |
| US | 8.8.8.8:53 | cdn.connectad.io | udp |
| US | 104.22.54.206:443 | cdn.connectad.io | udp |
| US | 8.8.8.8:53 | msodigital-d.openx.net | udp |
| US | 8.8.8.8:53 | cdn.connectad.io | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 35.244.159.8:443 | msodigital-d.openx.net | tcp |
| US | 8.8.8.8:53 | msodigital-d.openx.net | udp |
| US | 35.244.159.8:443 | msodigital-d.openx.net | udp |
| US | 8.8.8.8:53 | msodigital-d.openx.net | udp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | eu-eb2.3lift.com | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 104.18.36.155:443 | ssum-sec.casalemedia.com | tcp |
| US | 8.8.8.8:53 | eu-eb2.3lift.com | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 76.223.111.18:443 | eu-eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 104.18.36.155:443 | ssum-sec.casalemedia.com | udp |
| NL | 145.40.97.67:443 | sync.a-mo.net | tcp |
| US | 34.98.64.218:443 | msodigital-d.openx.net | udp |
| US | 8.8.8.8:53 | 75.196.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.54.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| US | 8.8.8.8:53 | assets.a-mo.net.cdn.cloudflare.net | udp |
| US | 8.8.8.8:53 | sync.connectad.io | udp |
| US | 8.8.8.8:53 | track.adformnet.akadns.net | udp |
| US | 8.8.8.8:53 | assets.a-mo.net.cdn.cloudflare.net | udp |
| US | 104.22.54.206:443 | sync.connectad.io | tcp |
| US | 8.8.8.8:53 | sync.connectad.io | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | track.adformnet.akadns.net | udp |
| US | 104.22.54.206:443 | sync.connectad.io | udp |
| IE | 34.255.67.138:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.connectad.io | udp |
| US | 8.8.8.8:53 | raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| DK | 37.157.5.84:443 | c1.adform.net | tcp |
| FR | 172.217.18.194:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | raptor-prd-ew1-alb-2127381300.eu-west-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| FR | 172.217.18.194:443 | cm.g.doubleclick.net | udp |
| DK | 37.157.5.84:443 | c1.adform.net | tcp |
| DE | 62.141.38.122:443 | cm.adsafety.net | tcp |
| US | 8.8.8.8:53 | cm.adsafety.net | udp |
| US | 8.8.8.8:53 | cm.adsafety.net | udp |
| US | 8.8.8.8:53 | sync-eu.connectad.io | udp |
| US | 104.22.55.206:443 | sync-eu.connectad.io | tcp |
| US | 8.8.8.8:53 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 104.22.55.206:443 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | 138.67.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.18.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.5.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.38.141.62.in-addr.arpa | udp |
| US | 34.98.64.218:443 | msodigital-d.openx.net | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| DK | 37.157.6.233:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | track-eu.adformnet.akadns.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | user-data-eu.bidswitch.net | udp |
| US | 8.8.8.8:53 | user-data-eu.bidswitch.net | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.6.157.37.in-addr.arpa | udp |
| US | 104.22.54.206:443 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | imgsync-amsfpairbc.pubmnet.com | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | imgsync-amsfpairbc.pubmnet.com | udp |
| US | 8.8.8.8:53 | ssbsync-euw2.smartadserver.com | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| NL | 198.47.127.18:443 | imgsync-amsfpairbc.pubmnet.com | tcp |
| FR | 217.182.178.229:443 | ssbsync-global.smartadserver.com | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.178.182.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 216.239.38.53:443 | symplr-analytics-xddc4j3vva-ey.a.run.app | tcp |
| US | 8.8.8.8:53 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 216.239.38.53:443 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 216.239.36.53:443 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | cdn.privacy-mgmt.com | udp |
| US | 8.8.8.8:53 | 53.38.239.216.in-addr.arpa | udp |
| US | 151.101.1.229:443 | jsdelivr.map.fastly.net | udp |
| US | 8.8.8.8:53 | 4983e7908004066be6d1fc2123e59129.safeframe.googlesyndication.com | udp |
| FR | 216.58.214.161:443 | 4983e7908004066be6d1fc2123e59129.safeframe.googlesyndication.com | tcp |
| FR | 216.58.214.161:443 | 4983e7908004066be6d1fc2123e59129.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| FR | 216.58.213.65:443 | cdn.ampproject.org | tcp |
| FR | 216.58.213.65:443 | cdn.ampproject.org | tcp |
| FR | 216.58.213.65:443 | cdn.ampproject.org | tcp |
| FR | 216.58.213.65:443 | cdn.ampproject.org | tcp |
| FR | 216.58.213.65:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | cdn-content.ampproject.org | udp |
| FR | 216.58.213.65:443 | cdn-content.ampproject.org | udp |
| US | 8.8.8.8:53 | cdn-content.ampproject.org | udp |
| US | 8.8.8.8:53 | 65.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| US | 8.8.8.8:53 | csm.nl3.vip.prod.criteo.net | udp |
| US | 8.8.8.8:53 | csm.nl3.vip.prod.criteo.net | udp |
| NL | 178.250.1.3:443 | static.nl3.vip.prod.criteo.net | tcp |
| NL | 178.250.1.25:443 | csm.nl3.vip.prod.criteo.net | tcp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| FR | 216.58.214.161:443 | 4983e7908004066be6d1fc2123e59129.safeframe.googlesyndication.com | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 104.22.54.206:443 | sync-eu.connectad.io | udp |
| US | 35.244.159.8:443 | msodigital-d.openx.net | udp |
| NL | 178.250.1.11:443 | gum.nl3.vip.prod.criteo.com | tcp |
| US | 8.8.8.8:53 | am6-prebid.a-mx.net | udp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| NL | 178.250.1.11:443 | gum.nl3.vip.prod.criteo.com | tcp |
| US | 8.8.8.8:53 | c.s-microsoft.com | udp |
| SE | 23.34.233.128:443 | c.s-microsoft.com | tcp |
| US | 8.8.8.8:53 | 128.233.34.23.in-addr.arpa | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | e8960.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e8960.b.akamaiedge.net | udp |
| US | 104.22.55.206:443 | sync-eu.connectad.io | udp |
| NL | 145.40.97.67:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | a.teads.tv | udp |
| US | 8.8.8.8:53 | ad.yieldlab.net | udp |
| US | 8.8.8.8:53 | e9957.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e3120.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e9957.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e3120.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | e6603.g.akamaiedge.net | udp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | am6-prebid.a-mx.net | udp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| FR | 217.182.178.229:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 147.75.84.158:443 | sync.a-mo.net | tcp |
| NL | 145.40.97.67:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | id.rtb.mx | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| NL | 79.127.227.46:443 | id.rtb.mx | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ow-amsc.pubmnet.com | udp |
| US | 8.8.8.8:53 | ow-amsc.pubmnet.com | udp |
| US | 8.8.8.8:53 | 1x1.a-mo.net | udp |
| DE | 52.58.184.186:443 | 1x1.a-mo.net | tcp |
| US | 8.8.8.8:53 | 1x1.a-mo.net | udp |
| US | 8.8.8.8:53 | 1x1.a-mo.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.184.58.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | euw1.smartadserver.com | udp |
| US | 216.239.38.53:443 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | ups.xplosion.de | udp |
| US | 8.8.8.8:53 | cdn.privacy-mgmt.com | udp |
| US | 8.8.8.8:53 | ups.xplosion.de | udp |
| US | 8.8.8.8:53 | at.teads.tv | udp |
| US | 8.8.8.8:53 | e9957.e4.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e9957.e4.akamaiedge.net | udp |
| FR | 216.58.214.161:443 | 4983e7908004066be6d1fc2123e59129.safeframe.googlesyndication.com | tcp |
| FR | 216.58.214.161:443 | 4983e7908004066be6d1fc2123e59129.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| NL | 89.149.192.241:443 | prg.smartadserver.com | tcp |
| NL | 178.250.1.3:443 | static.nl3.vip.prod.criteo.net | tcp |
| FR | 178.250.7.13:443 | dnacdn.net | tcp |
| FR | 185.235.86.73:443 | gbc2.fr3.eu.criteo.com | tcp |
| FR | 185.235.86.243:443 | gbc8.fr3.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | e3120.g.akamaiedge.net | udp |
| NL | 79.127.227.46:443 | id.rtb.mx | tcp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 151.101.1.108:443 | prod.appnexus.map.fastly.net | tcp |
| US | 104.22.54.206:443 | sync-eu.connectad.io | udp |
| US | 35.244.159.8:443 | msodigital-d.openx.net | udp |
| US | 8.8.8.8:53 | e6115.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e6115.g.akamaiedge.net | udp |
| BE | 104.90.26.20:443 | e8960.b.akamaiedge.net | tcp |
| US | 104.22.55.206:443 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | ib.anycast.adnxs.com | udp |
| US | 104.22.54.206:443 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | ad.yieldlab.net | udp |
| SE | 23.34.233.189:443 | ad.yieldlab.net | tcp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| US | 52.182.143.209:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 209.143.182.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | contentlists.com | udp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| US | 34.95.113.57:443 | contentlists.com | tcp |
| US | 8.8.8.8:53 | contentlists.com | udp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | contentlists.com | udp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| US | 34.95.113.57:443 | contentlists.com | udp |
| US | 216.239.38.53:443 | symplr-analytics-xddc4j3vva-ey.a.run.app | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 57.113.95.34.in-addr.arpa | udp |
| FR | 142.250.179.98:443 | adclick.g.doubleclick.net | tcp |
| FR | 142.250.179.98:443 | adclick.g.doubleclick.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.vip.prod.criteo.net | tcp |
| US | 8.8.8.8:53 | srv.contentlists.com | udp |
| US | 34.111.106.232:443 | srv.contentlists.com | tcp |
| US | 8.8.8.8:53 | srv.contentlists.com | udp |
| US | 8.8.8.8:53 | srv.contentlists.com | udp |
| US | 34.111.106.232:443 | srv.contentlists.com | udp |
| US | 34.111.106.232:443 | srv.contentlists.com | udp |
| US | 8.8.8.8:53 | 232.106.111.34.in-addr.arpa | udp |
Files
\??\pipe\crashpad_216_MTIGGAQZEMPZPJKZ
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8339bf837b1fc685aaa63da976ffaf8e |
| SHA1 | 628a91b33fbbcf084e632786d9e7fc1572df5e25 |
| SHA256 | 4e9758ce51418ceee6b9a59b2aea578fc539b7b4e4ebe94783f01912178e1e18 |
| SHA512 | 441a0cfcda3e7edb8a2e45a0670f2cfe02c0e19b1e7d886a107836b07cef521875e918f70b5caf58a2c1cdc6e90aea1ca8a0f53c037127888ac6ea2b793d9c4c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 18f86eb578b5d755af153310559faee5 |
| SHA1 | 941e95d8b2af7bc9f516da3c0bb86f8533ba743a |
| SHA256 | 7fdcc4f000ca3dd2f9a367603ac233c3b1f33fbd629fe7cde0e0d0cefc9a67f4 |
| SHA512 | 06ed695caa6630f648f8608f5201ce2ee5a0848d2c7622524ef508c7b7c912e4ff65ce903e251401c1f947eab95f87ba6b33bd1877e0790d84fa0d7f63af38d2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 99d181d5dde8a0d6a729b88469dc5ff2 |
| SHA1 | 4538547e53c88d8add6f8824211b2d7d40722874 |
| SHA256 | f87d956dde2b4830a12ece2a4f0a3e97d6aee9ef7e595e0c4a4f841896cce11f |
| SHA512 | ba737590c545cc063d650c8f3798e2bbb11d07b3ebaf4f46585ec0354b537f325a1b6640fe218927dacc09f53a640ab89d4b02f04d399e57a914fe29d9cf7e4f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 90f283920ffa011f926f8438ecc8ef22 |
| SHA1 | e750fd1f4559345425cc5233ebf064ea0c3cda05 |
| SHA256 | 8ec81efbd6afcd2e5f11087d328efb1798c03fe1bfcf897ee096eae576b085b5 |
| SHA512 | 26540b642234b057abe7b4ae4d3051037aa32661d09ec571731798c7bf89963cbe006a5741b1ebc00c8d2e94783b99a056673e36e45e3142411e31f2f946c3a6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 735d5dbd943a0223416fd3e23269d394 |
| SHA1 | 7709c97afa67866d626f990ca58bbeff4e8fb0fb |
| SHA256 | 682246a6fd8a47d267532a281268fdb1fdcbf8b6cb9f1aff783c0252adb20f07 |
| SHA512 | f4d0ceea257aa604ef127f3592e97ea4ed1bac4ba40b7f7654ffbf1e386fd7970cdd362b96040e816339389c97aa793ad3ba245faf2db21284e7fc6054e1e080 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cc768c655225147115f758ac55e141f0 |
| SHA1 | ef93833e41c9c0d717238167c3dbc376601d108b |
| SHA256 | 9f6f172ee43e03012aa319adcd29a30c8f949bee487bc45dae42f41205023c8e |
| SHA512 | 9961be56eb4b22d6634eb21cf3aeb69d3a31a2184b4c4961c1e4f2044c422c39ed86c8f00e3e8b247294ef04f05a7a1828562fa62708543d3b94065dfa1f73ac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | fd1adc8717f519fb8c6de6e4ff5534b6 |
| SHA1 | 6b96a1c0722d3b2635875c14a05cf5f1f9639127 |
| SHA256 | 558bfa46a0dac5beb9b52b4b8f222bb787e4d56eb9990d4c4baa06df69c04536 |
| SHA512 | a800805afb5277051d5ac3e6831d582af7e4acafa85a3544ab739229dc3fddae63d83a8815337a725acbf2850edeb7c7c0b2e3a373a733da6d5efbfee9e97710 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe586184.TMP
| MD5 | 0587bc68c34e517e1d59380cc167d4d4 |
| SHA1 | cdb102a6bdc3a263d14fb8ed06c86d7451a6bde5 |
| SHA256 | 0de067b547c71cf167339465ec70b7835b6cb8bee7c3948568be77bee3b16230 |
| SHA512 | d5279a402493d61440fe538e0d3b2b45ce1da801d07854f05252cb6ae6e03f6b47afeb13066da0b9a6fa2c5fce96c8077c390ae8851183da7b760aeaed918c49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 0fd296468400dd72d637eb791c79b6e1 |
| SHA1 | 697c6dc1b3665301fe43a4e47b60748496c587e6 |
| SHA256 | f6a998ad2b687c6003495baa1bbc1c077c1de7a358a3cad75d4517beea945b89 |
| SHA512 | 064fd2913ef6edb39b41e7c23a79f7f7e3c81eaaae0cf57aeaf7dc03d030eb7469b72e0cb3110c3e3bec656be01e520bbffc40c45cfdcfde8116774a21ce8f77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 13ab952a7669fa974d74b718d9027124 |
| SHA1 | d08e1f5a63b344ced1cbafca61d18aa3e31a2345 |
| SHA256 | 6ec04edd0cb8bf257206a4eb7938888d7ebd2d7b5b3a44d5cf20c93a0969f950 |
| SHA512 | a5cb0244c68f0f1c8dc6dd806c603120ef132eb6e5d75884f15049725c62b327787889efa72ff2d1305f5bba126fa77070a70b334ebef8df752a568fd52cf161 |
memory/5732-194-0x0000000000400000-0x00000000004D8000-memory.dmp
memory/5732-196-0x0000000000401000-0x00000000004B7000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\is-OFIE8.tmp\VSCodeUserSetup-x64-1.90.0.tmp
| MD5 | 8ae52fc01f13e521c75276cf7af9625f |
| SHA1 | 94bb90bc0da93b9d548c91986c8b4b7c6168da2b |
| SHA256 | 935ff0d75f56f29ad95436813ea988dc1f679aaf225eafc44367b4fc8a4f2fa1 |
| SHA512 | cbb8d0e90db37d277c5bd92be2f2297599379f245044ae426cf9f5841b98f1cf0261c0fa90ec9b5e4a2f791d0e79e5b4f8bcbe8f04784708f2bd5a7498c768d4 |
memory/5880-201-0x0000000000400000-0x000000000068E000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | a49694335c88edce311a338bd01be4df |
| SHA1 | d7dbea689eea095d6fd4a03d6a64b1a74efabdf5 |
| SHA256 | 3d33dfb313bb4db4480bcdf32ad0281f60f003c52cdc1b8b8e0b524116056021 |
| SHA512 | 97c44bd40717c774920ab4ee0f29b6ec1b7489ff360d96e76db6ad38553cea7339e27b1504afde8dd6cbb913f057bd35d6478bc4148f6791e8c7a51ec7992ce7 |
memory/5732-214-0x0000000000400000-0x00000000004D8000-memory.dmp
memory/5880-224-0x0000000000400000-0x000000000068E000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d32b89f4794f1e3ab596055e777dfa79 |
| SHA1 | 634c984285630a8a683ba245450940df72318a53 |
| SHA256 | bac34e0f6160b873eaf4b33f5079fc0faaec6a843659f9948e770391f8bb919e |
| SHA512 | d00368f05faead6ef90cde99776428d890ca42696f009c05e9e2f99f19b864a89585798006524ea713867b0277277766d5715f2cd93d979d027b388314491fc4 |
memory/5880-236-0x0000000000400000-0x000000000068E000-memory.dmp
memory/5136-237-0x00000000047F0000-0x0000000004826000-memory.dmp
memory/5136-238-0x0000000004F10000-0x0000000005538000-memory.dmp
memory/5136-239-0x0000000004D00000-0x0000000004D82000-memory.dmp
memory/5136-240-0x0000000004EC0000-0x0000000004EE2000-memory.dmp
memory/5136-242-0x0000000005820000-0x0000000005886000-memory.dmp
memory/5136-241-0x00000000057B0000-0x0000000005816000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_vg0gbsex.glz.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
memory/5136-252-0x0000000005890000-0x0000000005BE4000-memory.dmp
memory/5136-253-0x0000000005780000-0x0000000005790000-memory.dmp
memory/5136-254-0x0000000005E00000-0x0000000005F02000-memory.dmp
memory/5136-255-0x0000000005F80000-0x0000000005F9E000-memory.dmp
memory/5136-256-0x0000000005FA0000-0x0000000005FEC000-memory.dmp
memory/5136-257-0x0000000007160000-0x00000000071F6000-memory.dmp
memory/5136-258-0x0000000006460000-0x000000000647A000-memory.dmp
memory/5136-259-0x00000000064B0000-0x00000000064D2000-memory.dmp
memory/5136-260-0x00000000077B0000-0x0000000007D54000-memory.dmp
memory/5136-261-0x00000000083E0000-0x0000000008A5A000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | c4740712095f9463aef73b7090a41094 |
| SHA1 | c61ffa0810f663c346e8e04d9fd02392312cbd1d |
| SHA256 | 4cf5da9166548f3a36bdbe17a43b7262996b0e40d1a4d47a74d9f4b9433ac458 |
| SHA512 | c1ba1d41aaf6759ca4eb08a34c240e35652040aceb51fa6321a1ca9401c77ae2293ee73cacbf20b5219818a42d422c5bd9ff205079b790af68baa17522be1c77 |
memory/5880-1243-0x0000000000400000-0x000000000068E000-memory.dmp
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\licenses\is-2QAVF.tmp
| MD5 | 575506a8774d119bc036fc34a0a3b08a |
| SHA1 | 87864ccab15ab97a8698c1bdaa7db88d7a8dbcdf |
| SHA256 | a8e9fd8d817925e0457587f9252dfd977bf17a4155a7ea67bf230d3283036a79 |
| SHA512 | 39f515f5f7da39fd6e026cc3f7bbb269a60c635a51338073cf752352635936834280a68c1deb46fdfb263293716bafdc31ef569663175b0bea6385acbc36e24c |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\ffmpeg.dll
| MD5 | c5fcffa31f4baeeae61fa502c170f10a |
| SHA1 | a2e8234964baf9675fb46f57565f66778a7365e4 |
| SHA256 | 863648f20ed0b260fde039bf39a4195ac67785696a4cb608760cdf09d6c0a5d5 |
| SHA512 | bfcaf35b6e694f8487d990ef76f840356fc70da0a3ec38f6eef4fb6b7039e458e8c407d790df313fcad3c37a05eafbca54edde7f00e8da9f999bcff0828db59e |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
| MD5 | 74bded81ce10a426df54da39cfa132ff |
| SHA1 | eb26bcc7d24be42bd8cfbded53bd62d605989bbf |
| SHA256 | 7bf96c193befbf23514401f8f6568076450ade52dd1595b85e4dfcf3de5f6fb9 |
| SHA512 | bd7b7b52d31803b2d4b1fd8cb76481931ed8abb98d779b893d3965231177bdd33386461e1a820b384712013904da094e3cd15ee24a679ddc766132677a8be54a |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin
| MD5 | 71a50af311e53e55c80ce4d8637e78ea |
| SHA1 | d573e40be76a2f9a3ee87fa03f90d5eb6ada6b51 |
| SHA256 | ed6f20ce343485562fe6464d1dec1cd9745311947af9f158545e084bde2f3773 |
| SHA512 | 710debddfad874d4c53e9f895522f4b11b1c969f1e12cf49153081c4071afe82bf1b1a6b9287c76d8167c412157c8dad2d6ab4f8b2d134b9e54a3d189220b0cc |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\package.json
| MD5 | 388c8a7bf9f62ca22065c5101f59335c |
| SHA1 | a95bebda48fc2e58c6913588909b7b00b08423db |
| SHA256 | ac677918b85ac96dd9cae3cba52e98e5d6e193b1590ed8dd297f8dcee3af6fd4 |
| SHA512 | b37c9b3d4f83d93f72ee871ad56be062b9d91423af325fba7b4a88c2850f85ec0a1c4899dafe782c5607d3f33532e00a7671fd03d786387f8925df84e68015fc |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\out\main.js
| MD5 | c215e504b41ab51e67d4a0ec044f3b10 |
| SHA1 | c25302c61af684acfa7c6533b8b28b495407633f |
| SHA256 | 02f2f23063a51ea8da28457b0972989a3967eead96b58526d8ae7bc05155df0f |
| SHA512 | caf161c9030a673b2719fd21304f80482ecc5d2cb4b6b43aeb2d4b1b7898f084655c003ec26a38bcb42715366d117c894b9410cd91a2d6fd51313f53bd451163 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\product.json
| MD5 | e1588e5c4dcb7eda048fcc360e79ba73 |
| SHA1 | 1aff00a6abd18d6d59739e2582a71d0b950d001b |
| SHA256 | f6adb83325393c4499472eb07d34c54fb3e8314fa00bd5aba7daaba7f439e373 |
| SHA512 | e02e87752f7c43dad3c0a18f8b3d4b3fa69647b0f49348fe01b009cb26cea4402346ee217ba82c45e1a8870492642afee71bcefee9b7b41bc5a0d4d348302ece |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
| MD5 | b3bd8aaa50d9c0a25088e7ca87e35bf1 |
| SHA1 | 314be00e28f9c4013c7b9b619794841673309794 |
| SHA256 | 270b93fb1d0864bc1ba01ea26c060b9594f08ba41ca86ca8be26ebedfc5d6527 |
| SHA512 | 7a012cc60d06336a92a8661a278839bd77d6a96499447ea8c62fade8859c370bd29e06a40079e51fae48900961d57ccf5235d3759b959837f15b072dce0d53f1 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources.pak
| MD5 | 03da07673fd4a330cb7a1a94ce85ab80 |
| SHA1 | 83194fe30b11a3631e8a53c37d85a8c937826462 |
| SHA256 | 486689de4ca1eddc42e2190bca10801fe91453d1e0410a8467096608b9850291 |
| SHA512 | 55919994edef595bccf3317d9d7b6e4118b120f2c0e92b1baa78da5f68a85cc94bdd6f5c9c0fe38dbf19cd95ed462cce131d877027add931c8c9a5365bb9a67d |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak
| MD5 | 6e8a153304acbd57aa430fedab373679 |
| SHA1 | 3a2e43a3dab567983435f58d20ef17def93ee30d |
| SHA256 | b72bc56b564ae09913047ae8048d505e461a468384a95ecc247e46aaf8f1eebe |
| SHA512 | 9db899dd854744b88bbca421dacb55cf7f654cfa613833517eefa0434c8ee5514f59995854f6c1aa3af8424015f312e8c6dcf9c373010e78547685e92b317bd5 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak
| MD5 | e02160c24b8077b36ff06dc05a9df057 |
| SHA1 | fc722e071ce9caf52ad9a463c90fc2319aa6c790 |
| SHA256 | 4d5b51f720f7d3146e131c54a6f75e4e826c61b2ff15c8955f6d6dd15bedf106 |
| SHA512 | 1bf873b89b571974537b685cdb739f8ed148f710f6f24f0f362f8b6bb605996fcfec1501411f2cb2df374d5fdaf6e2daaada8cea68051e3c10a67030ea25929e |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak
| MD5 | b1bccf31fa5710207026d373edd96161 |
| SHA1 | ae7bb0c083aea838df1d78d61b54fb76c9a1182e |
| SHA256 | 49aff5690cb9b0f54f831351aa0f64416ba180a0c4891a859fa7294e81e9c8e3 |
| SHA512 | 134a13ad86f8bd20a1d2350236269fd39c306389a600556a82025d5e0d5adaab0709d59e9b7ee96e8e2d25b6df49fefea27cdccefe5fba9687abf92a9a941d91 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-main\main.js
| MD5 | a8d54dae43038926ff7d2c4e787fb7f2 |
| SHA1 | 491000d2116c57cb0301039f218f43a2bff15d68 |
| SHA256 | 2742b36d3bdcd7709900eab686deea39ab00ce52d15889612390227918c178a8 |
| SHA512 | bc844f485acd10b01a43238f198e69944c4dd1f6baa321c136fbe3b279d6a08786313793a96de4b50cbb2ddb8d6f7379f4aaf8fac0b793a7dc14a52bacabc221 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-main\main.nls.js
| MD5 | 6e9e72077a9f4f1dbd3aa97842096264 |
| SHA1 | 22137b4152505f07658f5ab1ee5e9cda61d3ada6 |
| SHA256 | 224e277c143cdab35447e782b4d59e44d6a3a33ad2bb631c9aca33ac55679fd8 |
| SHA512 | 149eebae3ebdb5ec445f411ce6aacc1cc41c3fa38d48e6e7687d26e2e712862e981135a21584083a172d96a77036c2e0fad3323aae7fcfb52b3a3bc21d856e74 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\policy-watcher\build\Release\vscode-policy-watcher.node
| MD5 | bc7c1f521efc501b4d205c809eecafe7 |
| SHA1 | 98ad71b553dd3b0296ccd15a5050670946f0cba7 |
| SHA256 | 483dac448629515dca284e7bb91d08029f530d8c6d687ba53634f33b7a833cad |
| SHA512 | 663225ad5883eb9aaa12dc09915b0b706c896d75302703ef34a228e3a651910a28421fcc8476caa0f1fb118a47c1a0c29156d9686dae5b9ac6fa3d6be7bb63b5 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\deviceid\build\Release\windows.node
| MD5 | 11f2e223d028007ba6818c04d877f7a4 |
| SHA1 | 4b1763040435a28cb4f6dbf1f6e9c42e8d39d8d7 |
| SHA256 | dce2f3da9115f589a33fbea9d1d5a4c6e81cb8a868cf2bc7719d7aa7fc63d6e2 |
| SHA512 | 651929e3c9d3f6ca9614d1ffbb92f606bf76340606a162f4a1feddb448142537f9f726eebccea274e83c74a74df9dc9c7eadd04d5af1323b6e7eeac0b815bdf7 |
memory/5880-2437-0x0000000000400000-0x000000000068E000-memory.dmp
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\native-keymap\build\Release\keymapping.node
| MD5 | a8f0f7ab28e40e662e69497dc530fc1b |
| SHA1 | 5822fd5e082ca1130b8baa677aebead23e3671e8 |
| SHA256 | 3ec7ee22af8cd4636bfb7cf0a8e1dfed0856d3a72ebd2a0969b9286aaae650be |
| SHA512 | 080e7aac908da46262e90ac15c2272c4cd06076bdc9450af92848e90f72353e14d08eb3cdacfa912cff4af927d4442ef672a3846c104ff1a97b0e8a6016854c3 |
C:\Users\Admin\.vscode\argv.json
| MD5 | d6e18e6879e8f42c70bae935b55d06fb |
| SHA1 | 9a7b7265c6fc31e660c4a0443295026b85210ec4 |
| SHA256 | 44780391f1676b1115ce13e5b9a79eeb6c3f2a9f5568120093a355d1fc594648 |
| SHA512 | 52d9bb5d74cb1002b01667e73296f15947153b7c66d28947fd4c06e4598fb94ec5ae23cbe52eade1f03cd9b5d015af051c715c1858e059d7e7af52cb5eaa12f1 |
memory/1672-2502-0x00007FF8056F0000-0x00007FF8056F1000-memory.dmp
memory/1672-2501-0x00007FF8051F0000-0x00007FF8051F1000-memory.dmp
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
memory/5732-2458-0x0000000000400000-0x00000000004D8000-memory.dmp
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\native-is-elevated\build\Release\iselevated.node
| MD5 | 300aad99bf2a4e9d1ca48b84a01c4809 |
| SHA1 | e0d014dd770e7c84a74bce3140b27e6bc76b9966 |
| SHA256 | 727f00af5581a0e0193585bb08c5b740e8d2366dd7037b66accc0b0bd021230c |
| SHA512 | 6a5f605fdacf17d46f5a9532b88eeda58a246f9d33d55b58a56d51393c1bc5a1664d883e10effd305db91265a2ca2c7d7d3869de6e4114168ce7ecbab72aac2b |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\windows-mutex\build\Release\CreateMutex.node
| MD5 | b8b98f2fb3fb448f45d2bb50ae3e3ac4 |
| SHA1 | 4bdef5e730a297873538d40dcfd5ead740bd3d6e |
| SHA256 | dcc6499e709995508449c0e0f5cf7fbb67a1dbd891c82a3f8150f3ef94058758 |
| SHA512 | ea5e24368e4043ca606129e64973da5afed45f4d5a08c56dc2968db8f274f3970bc99f7f053d53f39bd6e5518d3e4c9e52d66a4b462ebd644d6dbf02957434dc |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\sqlite3\build\Release\vscode-sqlite3.node
| MD5 | 4a6b1e27d362aff0310f6e62e743b516 |
| SHA1 | c40dff328f97606438dd5a952b2284eb3fe86732 |
| SHA256 | dc2409037029e1948e75b17a1aa566ceef96adbef7dfdb7377d13e0e1b4b490f |
| SHA512 | 647b2cda44823b95b1dc7b52a04308f95b53de8e00bd4d1b4dd007be520c4b6e7a3b3228976f70e17429b7d220db4160d4d3cad592536f257246debe0f68f86c |
C:\Users\Admin\AppData\Roaming\Code\Shared Dictionary\cache\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\vk_swiftshader.dll
| MD5 | 805f80ea9b15cfe408f78785e7b423e3 |
| SHA1 | a9f5a9ae831ca553234b42197d8b135811ebd005 |
| SHA256 | 2bef019810356788ab3272548db31faf770131067fff5a7ff4dd8adf22142d96 |
| SHA512 | 1b37f1db1556e3e7feaa3ad86361283269726ef741d041db825d18146a32850bcd9f49bab3f3b74002c0a20b005661e93ca143561f9947d3f177fe1ff283b662 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\libEGL.dll
| MD5 | 22be81e45fc2c995805d686371e1875e |
| SHA1 | 6307f5bcf42bac6af43f310e15fa8277855a831f |
| SHA256 | 48ad803bc965fd2fdb5c16e76cb0fda34c1bf6ef0f8627a043eaa0a1f9d7dd13 |
| SHA512 | 5d7f502d62e0bb4ec88bc4bd0e834078af873c10ae7f6aa3f7e9949929ae905eebff29f81c618647b1c1f6267b953467a5170cd0b55aad9a4a24aa676398cad0 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\libGLESv2.dll
| MD5 | 67971dc41ae68b8bf4596af671cc4937 |
| SHA1 | 6beb665309f414c039c4ed5f4561675d410b681b |
| SHA256 | d3a4152251340bd9e32a81c128edd9885c3d1dfa21f4cff32f8869739e77d194 |
| SHA512 | 53d2678c6d7af43d2b9e57b6c26e937bec0dde4fca77e6b6fd34f03dc7f4b0530d1778ed49025d491f00f03c462b70362b328a99fe175a6da7becafdd6108a89 |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\d3dcompiler_47.dll
| MD5 | af605c4d138f44deb3d5ef3e39a05b30 |
| SHA1 | 8360312e95a53a838646663ddd35cc3a75071a7c |
| SHA256 | f0a8b7fc8d27901ac2f6201bc6926cb3020bbad9e011a04ca97de3f240ea6e75 |
| SHA512 | 303b4377711a85078e92ed92577627ce7afa9ac84071600167cc7468d5f9f92d39a43b45f2fc6f4a74e980649e22f3780467ff5b5fa8778f84e8a4a7b952fa0b |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\windows-registry\build\Release\winregistry.node
| MD5 | e82aa8e01455c637c4c3e05801fb5807 |
| SHA1 | 3097683841486979afd5c1124a8d7d99333658cc |
| SHA256 | 23156875ee6ac2cd580b4ee1ba8a03777a2e104168be5d1e66341cd62ec01c07 |
| SHA512 | b9658101c72f538564d8a987fb3a88ec3d91c3119f889ec6ceccf0c00f0b4fed5b66cad53b895a4b692c5e67d8868efdace05a20da830308c0aca2480804781c |
C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\spdlog\build\Release\spdlog.node
| MD5 | 609f02a08f0d824ef055fbdde02f7416 |
| SHA1 | ec1563be6a66300f0d3fb2588e962f78d3399ec0 |
| SHA256 | 29be19498ed68ba02c84c28c66e7e75fbdd6628bcc977e7b579a2981122ad0fa |
| SHA512 | 89ef2164f82af1ea4b39e5a9a2741d17a9670f26a90b37f26262a6fc1481330316880a7c0c3c91f5e6558f998962832a911cc135f9d5cb2fc03b03e481af2da2 |
C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json.vsctmp
| MD5 | d60f940841c93e1d1d4c80262f0e2204 |
| SHA1 | 15b53126bfaafdf32a26143882e0bfd7a4d2aacb |
| SHA256 | cf2cb3f04e7244b6bb6b9d48e413b2bcdce5ac9f99673684c738b4a082ff73ba |
| SHA512 | ff5c7baa62d91463721d3c78177713b32b3cfa3a0cafec5f4c033dbbba089ff0c3baded9765180dce614f2ecb66e2b8d05554d5bfb17da1ce05a8602a35aff0c |
C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json
| MD5 | 5c1ce6adf84977e803fdffc956dfa089 |
| SHA1 | cabaf7226389cbc64b80afe0652e3db322e3b50d |
| SHA256 | a3dbcbe0b308f613515f70ee324fa1a7880c55ce9b34bda36bb4286e024ef73e |
| SHA512 | 17efe297359b5d4d4a610eb4dd1f0b7e75f27add57b9f50d9bd3aab7c034259132acceec274eb1e30fa06fb3e5491b2fd725d10e04b9a6cbf5bf1d36a62dc46e |
C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json.vsctmp
| MD5 | b6d29fcdd98aad1c5af169b4f9da9e11 |
| SHA1 | 7896b3f829e0fc91dff2f58ff823fbf38b7c3a71 |
| SHA256 | 93cebc9748da077f5b96c6ecff23f80ef1b23d5c2bc2042f6444cbf1da70c47a |
| SHA512 | d05a6ec245cb04d28402eb0d9339a10e47d36c395b219c91f9d91ff9256f4d3fe82987b84542fba988e9599b77965c2844b69d9b482f1adac246969cfad7ace5 |
C:\Users\Admin\AppData\Roaming\Code\Service Worker\Database\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
memory/1672-2755-0x000002840E670000-0x000002840EDAF000-memory.dmp
memory/5904-2843-0x00000193C75D0000-0x00000193C7D0F000-memory.dmp
C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json
| MD5 | 3550f07d72290817ead9deb6c96a3e64 |
| SHA1 | 59ccd8ec11bb2009e5bc67029b4946cf96d3bcaa |
| SHA256 | 0dc080371e27f557c8b0445e396f005d8a9755d7d3503e1d6d52b2773ee71c77 |
| SHA512 | 0ccadf06299826f8ccfd5f4a5300cf9bb1bfea1891aaab9b3e6ee58579d2f7aaba4ac218d32f6c371df5cdb6e8dcc02af0ee35b53b734206a2c0e4f38a55792b |
C:\Users\Admin\AppData\Roaming\Code\CachedData\89de5a8d4d6205e5b11647eb6a74844ca23d2573\chrome\js\index-dir\the-real-index
| MD5 | da7c2519ae3afefbef60920b13d56c4e |
| SHA1 | b665abdc6402fb00846e6096fc4e352c6c1f63b5 |
| SHA256 | 7fd67bbbc3a88b1032aa95a6f3c14394ff8c2c12cbf1688a4026e6421147e456 |
| SHA512 | 3690b4f41a197bcacc052cd49e0e3fbbecaef90873b8260fc9b36f129ebe1499c092fd6714d102a4cbcaa823a49786980bfe20798b7dec59f18fcc84d32de29e |
C:\Users\Admin\AppData\Roaming\Code\CachedData\89de5a8d4d6205e5b11647eb6a74844ca23d2573\chrome\js\index-dir\the-real-index
| MD5 | 0097096d3acf31e55cd21e2ec3fe56ca |
| SHA1 | bd7fd8b8fdfea9b537de4c9882eabe8a7c361017 |
| SHA256 | 6b6835310aa8507553d15a2220e45c6e0e9deec230333eab897d9900e569d113 |
| SHA512 | 29bb198851a3f1d073b8ea534eab1cc3899b04ca006f8eaff89505a4924cbaaa0ff869cadd27b122b948e90e3656ed37c8fa9cd55a8699f3e4396dbd859a9a51 |
C:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\darcula-theme.darcula-official-2.4.17
| MD5 | 1b4a693962a10b1f8e3762c31a4b0e91 |
| SHA1 | 674b33e0fe75be6fed351aaabe56c68bb0bd6830 |
| SHA256 | 2912291a1d8168f07d5098eb4b0843af6f126b86ea36c276ec8b0169862d56b9 |
| SHA512 | 250918b69603a7911be8255eaf2dac6e5588c4c629eecd4adcdb1e88bfe9a59c4c65971496861e9f8839f584179ab24538b5460fbe4266409890ea5780f1bacc |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\625b85b1-b32b-4fab-9865-998a6a639734\index-dir\the-real-index
| MD5 | 5fd278d444e3c62339060190a71792e6 |
| SHA1 | 3beb09f59192f0b9002d8f5bb0f639917c0f2eb3 |
| SHA256 | c23397fd7a8104d18bb70318fdf9a5ea05b7f68ffed23792dc60ba15abe9abd4 |
| SHA512 | 75918f85b6c709de6d05ef7028a0a402505a240917343e0499f80789797cba89d033958cf89a37fcc2f2ceb9ad6ef6af30b1e634a5a08487be88127331f25cfb |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\625b85b1-b32b-4fab-9865-998a6a639734\index-dir\the-real-index~RFe599bb9.TMP
| MD5 | cde9838ba6a5a3387b2ece75f865c3df |
| SHA1 | 1aa6a0ddf5fe18cb3e1eee27538d9afdc3d3b51d |
| SHA256 | 04cba28ffcf9711fcc2ce47467976eb4fcdd0553814ce97f502491c9ebe0f137 |
| SHA512 | 09b0c891324cf8337b8cee7fca976467ab60c00c51aaea9f6846073e3392d6ec54b959fd8456e1f5e4d563c1bd78f99ecd31ed0e5b0a0aa546598d34573310a5 |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\index.txt
| MD5 | c60aeb0988e16ad8fb803516fb26ae15 |
| SHA1 | 97ddaadc87d52d49a48506dae793fc7818cf025b |
| SHA256 | 6f9c2fd513ff37926a1f103724ddfcbc260fab7eb667007e0ea5025e98a336e3 |
| SHA512 | 8610e06e2e3cb1b1e56c1bb5237afe68c7fb6e500a42a36f81e913e365769dfabb8b432703edda8761522864d667af2958dffe0da1910284fdb9301bf45eb2cd |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\index.txt~RFe599bf8.TMP
| MD5 | f47cba46d40c11fd7a58ced32af788e3 |
| SHA1 | 7204a06f9d7edaea2e88937b396c4e023a33f7c3 |
| SHA256 | 2db9ba5867765d6f9d6e5bb80e057384697b5ec2bd981e6f9915a3838041f136 |
| SHA512 | edd87a84827019cb6227e07c040fb12b8fc058e656d3e5c1621e739630e632fadb8fda9adf07c29d2a7de122e510e49a522a1d0d4c4ad4b1cce3d44502318f57 |
memory/3320-3030-0x0000024C4BD20000-0x0000024C4C45F000-memory.dmp
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 0cc2a4573d1a60d83c11e5d58db121cf |
| SHA1 | 0639246bb43fad14393206b0de92cd430f6d35d7 |
| SHA256 | 8ef4222b5e244de8bbae88628bbeb9d1237406987a3f3e101e27acd9ad1e3646 |
| SHA512 | 7106a45099e98492652ff2eb6ac039f8fab80b5018f2bf2c266f1bc2608d80bb52e92d8ec74fc465741b1331cb010d03a031720c903083ab4ef372feed06ff4f |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity~RFe599cc3.TMP
| MD5 | ed07c0469f08b3cddbcb1bb5e1fd5df4 |
| SHA1 | 276711ca5994319f01d6cf10b529fcf87b4166d3 |
| SHA256 | 6c71f4270637641ec2958712caf649d6c73b5238088a2ad616532e9f138a08a6 |
| SHA512 | 52b3b1c377648bf2567bcc1f598c3abdc7f4a143d1e6cdfc8a3eb5bc71a5f9c67675e74041f491f7bdb30386891eafef9d85864c471106af526480e328776ca6 |
C:\Users\Admin\.vscode\extensions\.6c696c38-1585-4bfe-aec3-2774a197c1a2\dracula-pro.png
| MD5 | ea89a755a405579a1c06f384b730ac13 |
| SHA1 | 0714498974909e3cbb3bf03eddaa5a09cb1780e6 |
| SHA256 | 2195facb43ae0b0a55d423aad3f61b375c97138c6916431e56f5fa0bde08e736 |
| SHA512 | cef38b8cd6ca27bdcbcea83a58607e7cba0aa495f0b8e424377b323907b980b3ad477761d57c10255374af167dd1f59ad02ceaef393b4d1cecfdabc49342ee17 |
C:\Users\Admin\.vscode\extensions\.6c696c38-1585-4bfe-aec3-2774a197c1a2\screenshot.png
| MD5 | e1d5f0c0464941be427a9a96464b6da7 |
| SHA1 | 9c13aaf2ac9c0bafb83b4b5bd284c87699a50410 |
| SHA256 | 54245c66cf46a4d117edb350775d73c63dbe735c89e8c3503c07127c1b3042da |
| SHA512 | c73d2dd2853a7a913c99927ff62eb16faefbad49a1baf2e00bbe279ebbd8a2c5ec86897724e945e149cd59c945eb5a473ed8f898c872ae2bb9d9538853783cff |
memory/2820-3066-0x00000111A0010000-0x00000111A074F000-memory.dmp
memory/2032-3074-0x0000020967800000-0x0000020967F3F000-memory.dmp
C:\Users\Admin\AppData\Roaming\Code\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 06d1b1b0237d587244b798676c652915 |
| SHA1 | f6d21a281ec064d7ddf6cd9403723ed20ccf199e |
| SHA256 | d6cf798d0fdacc6b6ae9e2054a027502305429d655311bfa0d870800fbc430a0 |
| SHA512 | 7798f3ba079703c741eb4642229aa01f9e21e96ca6f383313c6b2296210e3ee6c148a2da31a3be0a555d3d1bd2d0e3a8c22a493746fed7179da6b1c12d945fbd |
C:\Users\Admin\AppData\Roaming\Code\Service Worker\ScriptCache\index-dir\the-real-index~RFe59c317.TMP
| MD5 | 408b4943f5a12bd311d6df42402815d8 |
| SHA1 | f6b6049d9d7c8a929502ba64c5a8194459618bc8 |
| SHA256 | a2771ba692e5284135acb34c338d7cc802234bab3a16a518f428f2e7c54e7db0 |
| SHA512 | 514107d89bf96eec3f5599481e47241db9d103732c7c6711f1437fbdc3699e0bbc333e51449d779171e72a8f6a776e23834a549c3f99d8c1594a3487181ddfe4 |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\0e996169-772f-4efc-9c08-1690f700a490\index-dir\the-real-index
| MD5 | 8165b80dae6d45642725dfaa87f17335 |
| SHA1 | c501dc726dbb4ecc2866bb439dfb3338181e595e |
| SHA256 | 06f2470dee7457e86fb4222199d605e99bf49605b09d5e4b1c94ab4df2ceb473 |
| SHA512 | 93ef9a8cf27daacb997fecf7e78b79da3667d445e1c47cbc6d094c181cdb252ec5dab55563b7a6cd4c70e73a5c730b420899e6d66bed53ee8cd665942bc3132e |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\0e996169-772f-4efc-9c08-1690f700a490\index-dir\the-real-index~RFe59c337.TMP
| MD5 | 952e06af98d9cebe970e0e677cf44b0a |
| SHA1 | b8221ed598a7bb448f2b1352643532cb0363d8d2 |
| SHA256 | 964f521aa39acf630c05f4f257fe43c16021ee17e64553542216a2e4abe9bdd4 |
| SHA512 | 129a70090b995c8e6196cdf0775f6d2d14662167afdee6def6f5604f54f7e957ea3e5c56fd5a2fef0a4ea5321b5676a62f4b4f6ead5a6955a68b0060137da0a9 |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\index.txt
| MD5 | eb2d2797e680dc4406301b4707608728 |
| SHA1 | 4a6374eedf1e1f9b505370c5868f7a0ee812e60c |
| SHA256 | 7264d9a1f6666e3ea69ae76fcee0f614eed8c5a9a86e60147da81fc8ca93ec78 |
| SHA512 | efda6b35947cc2565fa377e426aaca15b548c073c660ad9653082453c147f863923836ca6e6a82893d84a9a7f18d67066e03ebd72a9ffcd9c30d32059faa68e5 |
C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\index.txt~RFe59c375.TMP
| MD5 | 694df82011ed2f3dcce68b9615356cd3 |
| SHA1 | da8afa12779485120a2398ab925358493507b4c5 |
| SHA256 | 13ce5bc48483568d61ad3012b4fe509a635ff0512fa5ba1fa0dd184a57fc740b |
| SHA512 | 2ff8c28004552852e55c3210e404db373c5be2c0029bf352b5ec4ed99c2462b1f0c4186ca4a6dbf4fc499969dcd0e37d4c6267199ee8f98853903c332093e2de |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 3be88f86553375b67b51078c8e7c5f0c |
| SHA1 | bc8198b32f5a1c05920c6ae14ba39243a604881e |
| SHA256 | 56a52e4f95d0b482d0f7ca529e91f506703e36e921cdec8cde2ecb583027fa45 |
| SHA512 | 78be003460ef4db4dd06ff6b0282b357ae3c8947537dd4f1a3a6f8736ddd66c1c16372e8fa2ad808f2280627bc56266dcb9db429da8cabf0177fb77c7072adad |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | c6f5210528ee1dbb7ae3a402ad2badf8 |
| SHA1 | b15d04af46c22388a99310e65e2189392b7020b5 |
| SHA256 | be8a792234322bbd900bfbab83090df90b491bb565919eed8f530d537cca5c27 |
| SHA512 | 4331bcf312f39b63c8aad12cf9b0597e2640efc40a4a8f4b98adb17ffd7db5e0236262996b81c2b695597187c7171aa5ea2f9ccfba5f3ddbf87e9af77ad42f4f |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State~RFe5a5a66.TMP
| MD5 | 2800881c775077e1c4b6e06bf4676de4 |
| SHA1 | 2873631068c8b3b9495638c865915be822442c8b |
| SHA256 | 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974 |
| SHA512 | e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 035677758c27d035ea2d8cd277ea5b15 |
| SHA1 | 52f1dda6427ed1b92388d186a822bbb32b2cff26 |
| SHA256 | ec9849226582ddd18ff4a1c216f00762ac325011e0e472156e305f212ffa03cf |
| SHA512 | a822f85d9b227a9ecd0e07ec2424ae4ca9d72c9c33aef17a3a6b1d3dae795d10dccccdd8b92749f2f45054aac07f1b56e18f9867e1609d35061d2e3ccbd58164 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 864716be05a6fb99f78b7e9baf20da77 |
| SHA1 | d3ca1f254ead22d3b4bc48eaeaa2c625493b85ed |
| SHA256 | 6ef9b00d6d362d4625d04ff81705fc2a118592ea68e7ca2d334979dac726bed2 |
| SHA512 | d451a4880458fa6f1c0303cb3268db3bc886f4251b4ce842e4b0aff176e896242778ce42f2d4f59325f262205c81e903c4a8cc6d1baef235293df99ec0891ac4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | d13ca45c747d750c2e0cf0f450af4420 |
| SHA1 | 6ed8105e4db962007358a345d69ee1e7343ea91e |
| SHA256 | d0a429c9c526c693b343c3eeb25e1069bd3397f5d95ef4a28ebae2fe2fadd73e |
| SHA512 | 06c33c9bbf7cad72558e633512b0aff6f5c329c6ed1e99defa9a16b06181096b20fbd61ccc7a4bb55bf54de3e5fa7a0d0d3347686974b42859d5c0b480b3c550 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6c46892d55a5cc2dec391dad9ae22841 |
| SHA1 | 5ca667975a9a837a0c7bd1413f6c858b91e9cf05 |
| SHA256 | cff7bfadf941e2ce864737ac04f6ef1d21dc2e5717d55104a5c0f2376025466d |
| SHA512 | f028c8455cbd1f9df1cf5018796372e7929134072f416a695c5e525c402d50ac2c5b3d849a7cd6104b10eaa38cdeac7a13093a5245506db7605e023295a1b13f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ee6730c63bcf24e203d1a06d61947375 |
| SHA1 | f5d0e023afd3264c1332c323bfd4fb420259b7f4 |
| SHA256 | 483f9e26d4480ec8678f0c58b8564a613c8130bef52fceb57dbbc706ec85c607 |
| SHA512 | 3a22717f2e45af23b9bc676b77c8d9b6baa1c0a2cfed6c29b2e36a1c734c8d671c5ac27f86f216649e6dc1bf67a3e661f3bc372ea509d665da1ed8fc2a37470f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4aac0314bc7ba75dca08c545605df664 |
| SHA1 | 648016068413f049494c3c594adfe9b873217bc1 |
| SHA256 | c65264f776802ee547cbbc42f599ce6b4992103915195707171cdd4c75e350de |
| SHA512 | 22184a27ab860ad83144b479ab8bf3f819ada993800331858cfdb3f73a3b3276b138935968b4803c7fc0f97a89175e90ad4383997825df508284dbc5c595999e |
memory/2516-3389-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3387-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3388-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3395-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3399-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3398-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3397-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3396-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3394-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
memory/2516-3393-0x00000145E6CC0000-0x00000145E6CC1000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a9801d332b69a24b3c8cd53730609bb2 |
| SHA1 | 0e4a1251e6a02d0d639087fe5ea6af1a6827880c |
| SHA256 | 467fa07f9dde0306a15b989a141d0d742f67af9cb84eaeb296fd4ab74170cba1 |
| SHA512 | 924edc3bf4f54bfbb770bfb80e766664f2dd647eff04c305f5d4e940ffbe9fb8a10aba2c2e02d42fa07283fd812665c32f8fe9bc652e00811c3baed779caef00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dfd47058c67570bbc80907f8b2c9cd97 |
| SHA1 | 55f3259db3f896035d38934b204ad55340dc273a |
| SHA256 | cb6ac5d402ea752c1825e17e56e166c333a44e54efde89d28e414cb2f0175167 |
| SHA512 | 80f5d055aa8a10de393f7eb083ef8f637cb12f23378423c3cd6461d42498fe79a7ec13396d2cfdfb1b354991c60dca123a4a9ab2d6a69f678fba7c87de2b89b6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 26caf021d1785936a4935806a24f6b9d |
| SHA1 | df7afeeb0dbf4f011b1cf4f75f004d432fc664eb |
| SHA256 | 01921ec968b689f836a3c274b2b70a7abb51e5006bbac878ede5b2e52aaa7e88 |
| SHA512 | 0576d40c48cb3281ebeb846746244a503b984703e857f0c35b0af262962a6879bf7923d7aa89f1e2126d7a7894b2c85dd648e7ad32eac6af7e8e01d9fbc98e00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 54aeca6bcd7bee54099497653a0c2d39 |
| SHA1 | dca20775e8e6ab07090d9eb2b1fb6e84d47d25ee |
| SHA256 | 1561acb3d73f1a30f05b8fd2e4fa6b9acd1a666efe0e56e522a17a2b8f4c7006 |
| SHA512 | 85df012685a6d51044b95dc676ad37195891b9ece8e43d74d81b5da23fa78278635d506b90c99725295013eba79487e03fb8fb3714c713c9474ac0ff9b271e07 |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 36fbd856316d39a6bfee5f86ea5149f9 |
| SHA1 | 62d30127a8c0c64c75db4a5693273e19ccaf30a6 |
| SHA256 | bdeb0bdc346834ed34e08abd14d6ada9de8565585df607b8d5274f50e4d64dda |
| SHA512 | a735aef33860c26dbe133e086f408b6db195139bb63c73f1c2ccd2c2c8295c9427c4d845ed7437f9cea069dd115a2698ac40b7e17fafd83b49472c175ebf81f1 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | d3f98f26eb6246a368f358e732e11d06 |
| SHA1 | ca568fd24faf3ce4305729052473d7c2d2a74610 |
| SHA256 | ca0a03a8c2d841fc5785360b6efe7ee955725fe5c2c12acb79e442e6e417dcae |
| SHA512 | 008d3af6006e0de369e1cb495c70cca6bc81554face89fd9e94a1ca2ce5eb2324ea733dda3b1f3a429a7c1e27a1d4e599131bd5342e25f275b2d617fbbc8f08f |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | 547f1faf8a13aaffc43f8d6e29e9a770 |
| SHA1 | 554016f3bc0c3e60ed7cf32d4364ddb5466c44d6 |
| SHA256 | 4b874729eb6ce08d4d3da2efa67edab8648d43c7f206e5830822e78676f800c7 |
| SHA512 | 6f0a27b1a4d10d2b53e13e92b5c4c8e018aa98faca9a74515f6b894df657f871421f9e9c0bd0d1c8c505d0f1a6ac675bfe5980574d063ad2a28203a65077225b |
C:\Users\Admin\AppData\Roaming\Code\926d31d5-8030-4036-bc87-3dfa39626a58.tmp
| MD5 | 58127c59cb9e1da127904c341d15372b |
| SHA1 | 62445484661d8036ce9788baeaba31d204e9a5fc |
| SHA256 | be4b8924ab38e8acf350e6e3b9f1f63a1a94952d8002759acd6946c4d5d0b5de |
| SHA512 | 8d1815b277a93ad590ff79b6f52c576cf920c38c4353c24193f707d66884c942f39ff3989530055d2fade540ade243b41b6eb03cd0cc361c3b5d514cca28b50a |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | 6d8b9527b9d121d29b157e1647c57a88 |
| SHA1 | 0ce3428b201dc9b7601af372ba31023e78b34a89 |
| SHA256 | 940b2d3835bcdd20920cd2214a84adf99aff7fbddedd1cf42dedd12773ad6661 |
| SHA512 | 03a070c9182d03aa75b28197989a4c5ff71585ae98b772044faff904b79f9c601ca35159f1cf3bf58feccdcb58f2ed6341c42eb9a8772b34863c6f3ff98134a8 |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | 4df4574bfbb7e0b0bc56c2c9b12b6c47 |
| SHA1 | 81efcbd3e3da8221444a21f45305af6fa4b71907 |
| SHA256 | e1b77550222c2451772c958e44026abe518a2c8766862f331765788ddd196377 |
| SHA512 | 78b14f60f2d80400fe50360cf303a961685396b7697775d078825a29b717081442d357c2039ad0984d4b622976b0314ede8f478cde320daec118da546cb0682a |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 264a281fb078b711e96806bd8d586c51 |
| SHA1 | 1b4fb611f6bbb95ccb7d16ccd749ae85a74be396 |
| SHA256 | 4d52ccb581cf1075b54dd7f0c58b01ffd3db37946e11c0589a925c9d1bde270a |
| SHA512 | 03bf0e4c88a120c3ca9aea2edc978e92b4e2e6ef4efeabbaa15b9720bef2dd231d5a177cee009cab7f72d15532a78c8e3017018d5494e54140e9672a742c701d |
C:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\.6b421708-5143-4650-8bf5-d0ab48bfcc3b
| MD5 | f617c1ac99425cc7b9ca6cd05ecddce8 |
| SHA1 | 95989133ebd6dedeb0e5de5911e134549987a7bd |
| SHA256 | e96d5f6d656cb67143138d6fe3fdd93d2738079762524da960ea2a0607baaa05 |
| SHA512 | 44180d58a92ac39dddb58f9d581a74d6eabfeb2e2b384d79ace1ead65d05ab42fe488d8334ae7d598e826c3ee82f09aafc6c792107d47ab5ddf4c454282622ab |
C:\Users\Admin\.vscode\extensions\.91b2e100-372b-4c87-a5df-d6f8c14dbab6\package.json
| MD5 | 724d9eb133041c506c1bad657dc2e6a0 |
| SHA1 | c5f1a045f1ecc79c4b81b09de767a3c5b9f8cbee |
| SHA256 | e623832d19c5f2f6ce454176e1cfd986c93ec2591bf3658df5b731344a822924 |
| SHA512 | 53326c626b2583ef29cc4b3235336a53eb23ae16ad73c376cd34c53ed0d556b88e0f12a79e65f15c43ac7c06fd8fa8fac92d4e95def6193cfdfe8eb7cf22e376 |
C:\Users\Admin\.vscode\extensions\.91b2e100-372b-4c87-a5df-d6f8c14dbab6\package.json
| MD5 | 48e423582cf6fd082491a78eea5bd0e4 |
| SHA1 | aac5a60b9380b3df02f4e6cfea3e4ede31cc8459 |
| SHA256 | a459ee4e9d1e9fc65e881fabb75a0c4bf6547cd4354c4011d00657245d60ba92 |
| SHA512 | e8e68636f0dabcdf71d13fb5b0671e76523f26dd06471eb6940991053e4ce0d6ace257f84db53fadc1730cf1d96b970b37b7b834d2a5b74f61afc4a1d7f11a58 |
C:\Users\Admin\.vscode\extensions\extensions.json
| MD5 | 3977bf3a9c860092d13c08b9335e70a6 |
| SHA1 | ee5832c140b13d9cc054266331532f7e5df0a5a3 |
| SHA256 | ed76bd191f1446ab27964d730cc962586974ea367bca164e13f81c779fe13323 |
| SHA512 | 48fcc76ed8cb2d9e388513a8a839a5d8a2c83042e2ef672ad5dca23c7418fc4e6a3d597e01313f4ffb60bf0a7793c5980548d1e65db3aa4c5dfe8718ed2f8c0f |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 5c4f4eb7a876876b9668eb42de57f3f5 |
| SHA1 | e286bcb844b35b42ea622b28b44df92dddb01261 |
| SHA256 | 567bba9716f1023380df0bcee5ec222806eb9d7dffd2271190daa6000f5a9cbe |
| SHA512 | ba6fcc43d9dc667029e3bba1824ac2d56c1a1ba30eee6c9c485cd1924157d8cd1715da9ae40dc4a6de1d896f9b07708f93ce58061676f6c9b4f0317ace952dd3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 05aefbf4a51536e33b6f5e5d8af26f7c |
| SHA1 | a13fa8576dd57d687367e7a183de700623632eb9 |
| SHA256 | 6d67cee9d0239b807f85c13dc20cf1758727c2ff0b81851f27121cbf2ca45516 |
| SHA512 | e31e1984d8267f5e76a20f29bca68e469ce640a600bb8de3e3203b7bc5e0a1d60aea841410318c7d1698769c04b0ee2be9d107b26ae584d919549eb013b64c79 |
memory/1312-3681-0x0000014B5DF40000-0x0000014B5DF62000-memory.dmp
memory/1312-3682-0x0000014B5DDF0000-0x0000014B5DE00000-memory.dmp
memory/1312-3671-0x0000014B75FC0000-0x0000014B76042000-memory.dmp
memory/1312-3683-0x0000014B76460000-0x0000014B76562000-memory.dmp
memory/1312-3684-0x0000014B763A0000-0x0000014B763E4000-memory.dmp
memory/1312-3685-0x0000014B76750000-0x0000014B767C6000-memory.dmp
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | 6f8b1eaae554df5e20f4a6f5fc984acc |
| SHA1 | 70d929a7e1e5c32bd5dec1f1200b9c553a41f3ff |
| SHA256 | 78b997ddb8b268e9cae55ac2ffca07b810fb5ffadc93198eb4b8ee887506696b |
| SHA512 | da30c4d8fc40286dc41a31e49c2c116869ae25f311dd4b3029f791d3d43128aae36cca8dbc7829afd47f59e369579755699519706802142dc7a642d29319a1e0 |
memory/1312-3701-0x0000014B763F0000-0x0000014B7640E000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000057
| MD5 | ddcffefac58f205ea194e1612e7c22a7 |
| SHA1 | 4db6276eccafc0030490f970824b55dc327bfebd |
| SHA256 | 5f12968474e2995c485a2c256a9819dde04e78b6a13aacadfba935ed7970234a |
| SHA512 | 4b8561f2bbc596382e9c22515354b94df9613844a2c6b6736dd7c1f6c51305e235c58160d8e5b3d6f5fa289dc55f6fd675332e4a13d07fd35282d61e227adc13 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 98e3de4701adf56679e5b269eb461abe |
| SHA1 | 037e59a1f1cedc677440f9168cd41f4c7ade1cda |
| SHA256 | 8d08b8ec9e030c491d9f02b14e9ed0d536a5888fe71b253c2ae6cf2b5758fba5 |
| SHA512 | deb3befcb3bde15ca1b3d5bec944183e79fdb52028bc754ea326afa1354ed4dc8623c2caa4982f952fce8d4fcddc83a66fe11e1fe3532eaf3dd2040f2cbe8c4e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6a67d4ee5f45c85c1c822c3997351675 |
| SHA1 | a62758fd5fdec9b0d7dd4cda14ac73e44545a746 |
| SHA256 | fc11fb0a0d368e1dc1acf468bc6769ae6d08c09d93cc97388a5c9daf301c23f1 |
| SHA512 | cd101a1621483dab56fa867bc37e96645e4819597a8b684cdad844915e2f37cc4426d23d9a2d65e4a245e730e778122878c55b43f32bff97689413fdcc3d6b3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b421eb403107192afad4a477d2a122d2 |
| SHA1 | 4d1f1dac539f7a70a08e2a6e5c0aae57f2eb4dd3 |
| SHA256 | 4dcf7add7b3c3012643ee9ce036894692c1f1d3e70f6c97596b4e5399579e917 |
| SHA512 | 4488b16506a284e861a7fc1a44f6c550e77b6d51c75a91f2aea4ba6ef9bcca2b3e50450d465438c93418e4a6baadf8ff0d50def426bd2e9bc9e17bb7e29e01c7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5da981.TMP
| MD5 | 850c8060fc33503df9655111a27664cf |
| SHA1 | df136e0c306d3c64a42835496ab4de95a36b79fb |
| SHA256 | 524bb21c15986fc5a2ca43efb0358d4b219386f577b689bae1c2a1381d57499f |
| SHA512 | 428492a94fb08fc46a68d14b3a0b8327ab070c7c25f9ba6c4b9b96c15d6ac813e43bad6666594dde91a1f66c1b0f509bf93ec5c72f1c344f6ceb8e0e023117df |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | a8f7b2bbc92bbcb83b0a2191478bb2f7 |
| SHA1 | 6a4162b6fb9081239035a753140d5e763b9f4619 |
| SHA256 | a2c748e8750a78b7009f32c5d666f2c0588c0564f0fe22ccedf3a78bca79b8cf |
| SHA512 | 5cbde03f9cbe6f700a1e32261d0dd22c2726426fcc55fc5d5013ecdaebd669e92a2fed787dcaa1cb98cbbca7734add19a7b87c516fc442f3ab10a42a0dc336bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | ec899dd336d93917f4d7242c77a8505a |
| SHA1 | da96db48a58f3b6d27f48c5fa63cdd4e4fe3cd4f |
| SHA256 | 0e5319a479a9c9bf8ac6e1248cebe092cea686e2fc65b42a8b4d9bb6731b813e |
| SHA512 | ad0bfa37073bcb58156a0ca6e6f9c7d9c15ce44b4984d26ef9a3394a1f1224e3dd01fb2b391afd6e8b4e6995b878c30670d6ebc3ff69a817b4490c7110edf099 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c41214bf97c29f9deff5c7656057727d |
| SHA1 | eceb6f0d1501471e5f2346f76f4cff2803b947f2 |
| SHA256 | 95d3ee46ae3a3c3db8d795edd2385fd4260b23738913108783eede626473ead7 |
| SHA512 | 3a9e5efdd21f98f076b46b49e3e4c8beb8d85b7138348e36bbb7c6686fba1089e6aeea849abb260f75acf86cae3de76f1923e4c4c3464656ae99be963167e779 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0085044c41ef3d4729f12e5f4d8a823a |
| SHA1 | f456343756f0ad3a324cceb1d09c9dc2f77128ed |
| SHA256 | b7bcd8e9068947f862c6db6a58ff8a7a3f0ae694a2f700612110f5443bd65024 |
| SHA512 | b4cf14c0465c4b02b841c976713572ac0dffd140270199584f4b1eab0639c8784e7d8a11741c42645d765c6c83cb1858fa2731812278add3325d4922cdade768 |
C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json.vsctmp
| MD5 | ff3da170a1c5f1204cd433e676c28dc1 |
| SHA1 | 99f297f089d6ea8f6f0671edf2b06269bb697320 |
| SHA256 | e7f43c551403e83988608c129097655d38d44f5770d52b6f0016e967f79a0607 |
| SHA512 | cbda00047e54e0e42bc8ebab2cea1d8f321ed8e8199b6c73569ca00f95083191b55228494eecd9bf1155b68baf68965ec40d1eba4274c2a0dd8593b6b3612954 |
C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json
| MD5 | 8bdccccbc2f9f947fa4155ca1dc3c622 |
| SHA1 | be7f3215a81b61e8b3d9a2461884d394b91f1811 |
| SHA256 | 81f0a637364fe9a73449b4c1c4b7163fcdf5db615dca792e710286d8deaef560 |
| SHA512 | d8f081f03fdaab16a44dd51f34a832a472e0417586253bf93818cac5afcb5d07cbebc605e6671f1829624de8b7604110124be7dab84689904e80489b133508c2 |
C:\Users\Admin\AppData\Roaming\Code\User\settings.json.vsctmp
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Roaming\Code\User\settings.json.vsctmp
| MD5 | b500d2492fed0441c4b744ffef602b8f |
| SHA1 | 13dc1aeeead12eb49b18ab3eb3e0afaca0cffee3 |
| SHA256 | 7213808f075eb11160a7450c8e6f6542cf8fd14485a099292d5b8967d910c6ad |
| SHA512 | 9acb7990f3b87bcaf4e7b19314ae5a9a9e6a93023ccd5db0f6a6448937b3c56eb272c04d3ea1ca6ea1a0982f345fbf047e06a71616097d6ae69584695bd67e43 |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 2afcdb1543215c763fcb8fef3bc6f5f5 |
| SHA1 | 05a4924e01db912d51d7f7363303aec26d538d6e |
| SHA256 | 3ab463e36e8cf077c8a2da8590891ecc0ade17e73c30ad415d2fef1aa4759dd9 |
| SHA512 | af76ba7c95152c192248756f428938f44024ecf7dfbcd7a7d5f891becf8c6af9eaaef8a17354a0b85da8ce7282d9e60b6310f4743cdc70c40bf7b7edec86587f |
C:\Users\Admin\AppData\Roaming\Code\CachedData\89de5a8d4d6205e5b11647eb6a74844ca23d2573\chrome\js\index-dir\the-real-index
| MD5 | 4b6bde01adab3c3b2948420512db1bb5 |
| SHA1 | 32ed378a8e0eb4e62b51b1a478285bd60759c1d4 |
| SHA256 | 254a4c94b6dcf7d806fc15f9f22a9d60dfab6383e86e4f35476ca28833b3a410 |
| SHA512 | c50dbef592e84986004c74d274c39092f9775958fe2233abf44c49539d6a553bcb0649c8f429564ee1914d30cbb55e7b972ec2f162e2671902c7e433742c02f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 34151439eee3ae5895316f72bdce4fae |
| SHA1 | 6f128f8c9de4af7b398ce080b06d0c91c34cae37 |
| SHA256 | 5efac98a797f9eb3fc15b2283b8da8d3257dca1b06150eeb41e2f0e73011f01c |
| SHA512 | 807777533a843b4957df8c5ac32d097dd92cec6b172e23b6e491eaf29d2cb77f3180ccd2e34358afa3e568f89d20b94ff02b0f6adfaf91f891a9e0355074b094 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\activity-stream.discovery_stream.json.tmp
| MD5 | 5733d00a9f9e1a2983d0a975fe441c1f |
| SHA1 | 18ab5cbfd803c230299b904bce223e15f4009d1f |
| SHA256 | 1fa20dae5be218611eea2212f0cf43f4c0b6fefee821711acb667146ac9d96a1 |
| SHA512 | 8da22ed3b27dedae78d777ed02a3af6a7d657f9e34c22b8a3ac1d72c380a8c30ca01aa0b680aa980b30399fa66d1a031fb86e9769c49a158bdd2e5bfc1f881b2 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs.js
| MD5 | 5fea5c08671fdb0f4f03f7017ff7be74 |
| SHA1 | 5f4be437b8ad8c23cc20a3e15caae9c7cd45fb6d |
| SHA256 | 8ee88c13559507cc6eee575558facd2dbd7dd0975bbab2aeb13ba5094f359d72 |
| SHA512 | 9e9e44530324928414b0b673b5af681721097c56ebd96e87c8f8b9ade9927d3ad0d543a29f4314d22b48f61f53df0116a50600e1974443cced4e4ce8e10dda8b |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs.js
| MD5 | 35151a737503336b88f4d94648ce6faa |
| SHA1 | 02f15ac4edf644680ae0ca43ccedc8cef48f0fdc |
| SHA256 | b8a4c183eb9a1c8ee4024542eee992d488382c8869787dbdcfdcc105640427d0 |
| SHA512 | ac6e5f003b73fd808af69ce34b285f1de7a9090e20fed139df6fc905e9b60672d2c7842981e68424ef520c80b9f8c30e1b5d1c8880ff9e101cbb8a16e8ea4756 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 6857551bdbe021790bb44a8ee908549d |
| SHA1 | 254c57644d1f296efb89af418e14284571efd242 |
| SHA256 | 71e6f3468613b3d303db69c2a633bcdc5ee2e3db53b6de9b8951a0ebf40b748d |
| SHA512 | 055bce30bca1dca0eadeb7973de66d01922934f5895605ef30c56087d6ee4abe2a0cc250b1daa0068b3e83c70430b333e93ed1237542c09fd9d512175a574f85 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs.js
| MD5 | b396ee4fb3e2aa3393479d748ca674f5 |
| SHA1 | 3964a6f27e18009a6bbf792d398cafe3b8df83f6 |
| SHA256 | c3ae6173007be5488cb877be201c8fcd248fd33d09a12aab90fdeafb207253f2 |
| SHA512 | 430609deea31a7fde62e4dc194a1353c0f3cc0bbb335c84b7fe3ea0830625cc05edf9499196af146beb20f6f30308e4bf49de3307416ef0e8cd488fcb59a3747 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | d2b70ed9ceb00f1705b5a36f54d6a76b |
| SHA1 | 3136472df95286d0aa2012fc14d757807893f4fd |
| SHA256 | 0bfcb2f01b96c7b4dc05af987b68747fb21f9c61d4be17d8641197b783ae120d |
| SHA512 | b78c2ad862ba33433af0d6a5c06ea7d439cc7b0e9b19a237da21be1ae667d746114b87abfe75f7c97d27e786f3d041cba95d5b6af66c811f6570c43732b04f0c |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | c7a9962ce6e6d5144a2f3f9f8d1737a5 |
| SHA1 | a005434779da6b98688b923b4f7c22414374d71d |
| SHA256 | ab75c32208434d09ec1022342fa860463298421f7e54480acc3166122023c6b5 |
| SHA512 | 2d813bdd96c6e7210c6a1080387cd8091005be52d0e77bf9447cde1574be6674d3f517c3442890086e03167562b609c36396938e03fcb25431c279f0906349d5 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs.js
| MD5 | b411e0dd6328c13a15b3aaf5d3447166 |
| SHA1 | c6ceb3ecfce3a43b4c10145216130339b98ddd59 |
| SHA256 | 921aae5de052796085885121a5c59bc6953cb0b5393641c548a11ab5c821dbc6 |
| SHA512 | 8d24e28395f191c085a9c5edcc11a70120baa353eb969ce2a391c1fa5e849ccbf75da5bc34cdb88925ced00bbead59c9afec11e93bf5a2bfc8e96f4f3c4690bf |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 07c680f235e498931af68f86dd9e8c16 |
| SHA1 | d7f3c508e56642f64f20540bcee89777be9f9025 |
| SHA256 | ae0d3de7a0e501d7e7142d956c539bbcc3196eb99650b5b75f577066c1be207e |
| SHA512 | 20b5b194056784b59fc8cadd07714bbc68f8410daeac4af55126d4ec87974c0fc38554413c0e886f1b14fc5d5c4e8a9ac870e77d51f9f9ad06126e49877c3c02 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 7539d99732582556ef86d51345412f7a |
| SHA1 | 6373436df950438347d1883071a2577a0907177e |
| SHA256 | 0603f825affb653375e3532e49c85dfacf977a4dd3f6425c20744b7511b9f910 |
| SHA512 | 07233894de93cfffe923dfa184896b27e6bbbe860451a5e2fedfc28956a8947772928aeeca7233a8991bac3a4470e4c136e235532f2a2259619761650f73b79c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\10553
| MD5 | 7bd459fde0b2c330a9d99faaccba742a |
| SHA1 | edd26d545f031dc02efd00a5bc0cbdc5bf05a84a |
| SHA256 | 05f69ce72e16eba128b275ce7503a2e1dc442730a4e41638bbe2e5bb802dab4a |
| SHA512 | 97b9ecee41404b4849bc8c8d4ca55748c359f5b361e0f0e26295e709fbeadaf4ebcc171c103b7fa6aa6bf99ef8732ff46ffe4abb1632658c83241dd879ba0608 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\1AE988AA66BEA53E8AA3F948435F1118DAB6E1DD
| MD5 | e5e86994c9cc38782ac1cac53c53d34a |
| SHA1 | ddf18afe493ec9a0a1e9d017e3693b0cecf261aa |
| SHA256 | aa329093a1729576c95ea44e689c985274e15cba846a71f657f236b17a2a32f1 |
| SHA512 | eb5a4d01de72a2dca459178748d6a4f3b1470e44d36eef354c914036ed7c53359dba901da78ffdf0948dabce82430b7f114758f415d22bfc4476a6b132a1b4d0 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | e585aa18bcc0c235b3b4626acfc9c838 |
| SHA1 | 2465a471f1ba1e69ab2564c38e44f5416daa290d |
| SHA256 | a69295576c4ed3906affa7ab9d8d947dd482315e7da482c65419675c31fad63d |
| SHA512 | d510b3705a0957e4fdae6519155b9b31fe1e591e3ac0c0de15b40d920025201e48e7a0a0375fee0311bf995b454a1f92bfcfd3093b7dc62c364c812820cbe3b2 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\15002
| MD5 | 79e76dff455c5d55246ca4ac64b6fe06 |
| SHA1 | a4247cd1973737e2333b5077c513909e120cfb73 |
| SHA256 | e13b4a460c80106c05e7773679a061a641e6ae9273ea7ebcf0c8ac25b5b0f72b |
| SHA512 | 40ab6d8a2459a036817724889edde714d87cab27ce0d2d2f81bce4b92952257b72aab84ad3da60375055feeae3d031c6b60559fecbbec0a9009abd5f33af1901 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\8614
| MD5 | 5bbff9e0e43a1fc7d9bc7a7041d8766b |
| SHA1 | 1e3475827e93430f23903c7d3f6308ea7e35fb48 |
| SHA256 | 56b7a13425dc82a05cd27d78bcc9a8128a7433c765cdd0e8d01aeeb22c462630 |
| SHA512 | 5d57024e724659a67e66903c16e0fc7d035bf958670e70d9b6507419a7096a969be89e8a753971e624c1fa1f29b10bd83c35e378b164e2eb9e8122aad0dbb04b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\27085
| MD5 | d9af5db381c900724bd12c8ff8f1d229 |
| SHA1 | 25c6c208621f986efcacd81d45b351b029fb6e79 |
| SHA256 | 2f5619ebe01adf07e4c25c7f2db10a305fa26ca39e0b2c4e27e5922e805319be |
| SHA512 | 317d339fb7855284c0698e7edfeb3be500f7db747ba1c8952cda6dd9f401972ce26e3d171acad088321d31ff2877817a40d26857205aca334471c32b1afb97ad |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\4728
| MD5 | 55bbdf808309512f42d31545e7e80616 |
| SHA1 | 9dbd6655fbc0deaadf540178b8be4349609e3742 |
| SHA256 | 80cb9425cd82b770a57530524aefc4b616a20698a4113db21fdd789ac00e1cf1 |
| SHA512 | 6051b1e0922cabe50676e8f376675fb6a7951a28a1c7a615f5d61771cff19bd684abbc6de6f4037b0a1cf772bde7c74d870693aa92c9ba66da49540a57cb1017 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\7380
| MD5 | 4dc6e9c3d3b16bd74ad531a104b0a7cf |
| SHA1 | e971b73b8f8bd8256f99aaf7b08a9c06c83ad722 |
| SHA256 | 86b2e36de6717a80c27d47edcc1d3620d8fb090df6b4521ff3ab18076917626e |
| SHA512 | 754f5749a4568bf2f9b3f5ec6838ad357ab48371d4913d35ef878732c2ef91531ac6a6857829afd7283839478d4e931af971a858799f96d0a4762c6f77811024 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\9975
| MD5 | 57726796251471dfa82ef4f42c41d404 |
| SHA1 | e3f37056e7bad39fe484c08d224b27f8ff68e483 |
| SHA256 | 5d6e2cc094082692dfe00b881ddb59f773abc18f1aa6a07992a9b897fc350ee3 |
| SHA512 | def37d258dc425dfe0ccdcfda9b1b7996c235cc42e1b9c279e8f852a5ecba88629265b69c79bf4c6607820850c54be9264c7d070a77cc84edd751630b23d4dac |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\13017
| MD5 | 609b24df9c3919087a16d4b22136628f |
| SHA1 | e945b2cb8f7913063c7816fa9eb024eb606323da |
| SHA256 | 87165e9e275d706cf04a2812778e7465f932fae90169c2d14c5e4017599bfa37 |
| SHA512 | 7c284596b787fe5a0a88d9b2222a3a2984518585f2bb25aeff94ea6163214a1980d2a5924343806d03fd709ffdc990d4607eb13ac4e4e255f865da6fafbc0a3b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\13129
| MD5 | 075387319c35e15a49c5286d0ae42fe0 |
| SHA1 | 306c7785ae2256f2478af4545ad3325ef4d37625 |
| SHA256 | 908539fe13588ccd37ae724ef9dbe3e8d784f4c7a7f06d4d8977d73e2091eb45 |
| SHA512 | 340aa1c73c75cdd3af40100fa4743646980b0be100cddb303a55d20e3a42c41655aec12a96791acde44d395c6d7ea458f309938004287bdda34bcf8a816d8fe9 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\29569
| MD5 | 901d3579c2951e8da2cb366144e6ae9a |
| SHA1 | 3361803cd07833eaf8757e0fe082a47340d774ec |
| SHA256 | 572ef9deee9fc2b522dbe14d5b144be4e67845fa60b6a460fb748f1ca88577d5 |
| SHA512 | 5e6e57babfba314d8462405e9bfd06522865021d23ae176896d067f8e7d851055346bba280726e8a67b463ee1f3d0bdb58f28bf27a748c48595a50be1992c472 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\9863
| MD5 | d17d0e3cf9e27fed9e832021fb913d54 |
| SHA1 | 714c72a3588e5908de9ba86bb53d7ac65b129854 |
| SHA256 | 44db6021a98d2cc69670eb40ebcb0466421e46a61940b8a9cbf842f04ccdaa5b |
| SHA512 | b507e0f195a407651cdabf30948ec5645ca55e17bd37704b5a1927167b886b8ae62d36a270fe6ea29eb3da76e18c958bc03551068fe14a1f835c5307fc0dece7 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | d05012b57eb72ff8f5fc186999980294 |
| SHA1 | a37c89a42a95638e8482cac5c3d49312d80dca72 |
| SHA256 | cdbece94c6f6b751696b399bc80737fdcaba67a038647595bff90296af393c5e |
| SHA512 | 6db392370f1fb62bb9f94d051957f1c0f25a674fde1b7356a7b35b02672d6d49b974d25610323e6493e141e05098f0cbfe0527ec5bd302dccd1a7ad99c0577a0 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\A941F0B998490DF3D3D832FDF105994B547EF90B
| MD5 | d2c968758005b6bc2cde3143e838e3cf |
| SHA1 | 05e3b4df69bdd1a99219c5516b971aab5d9901ed |
| SHA256 | a5dc708f65a1b3bbc0df80fc1ef4731595083316b3f4ec1fecc45bf697038e4c |
| SHA512 | 37ee479fb342606acce4bb039b67e845fd1a25541390f93dc85b44601251a76f998312e8e5674efef066970e15e26bd164f6dcb65219809a536f94bf90df0a7d |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | c98919f85465acdb0f3e0474c21821c1 |
| SHA1 | c8e3d55cf6a343697f219291be0d2eb45ffdf9fd |
| SHA256 | 950f965ccccade8f7cec51276e9bf137005d41e65d9b3a223e3210e6d4be23a5 |
| SHA512 | 96361024d2e07a53f726297db29ac01a8fc169cde9925b8200ddd16f4b236ea2f661354fba757a77dd4a4a95eaa931e1a9d9a3e4f90a72eea055490923ea9a5a |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | 7ee6f9ca01b79a4e197efec264ec25b4 |
| SHA1 | fa9eeb3c370621009721ddcc44f7814980571285 |
| SHA256 | fbbfa719a33a3c2c4d4b2ee9a28a40ab78d6c0d0a95a213faaf98f24a9860e4f |
| SHA512 | 6b18187c411116e524d7ea231c2337ca5c5845ad8a45e6c6a9ef74a696993c4d50ba6aa91340514ed266c64473eb2ac2fb3c83db3eeff867320eb69769005d8e |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | 04a2509260808cfcf5d15fd1fdce9cc0 |
| SHA1 | 3256f52868042f67e32e7d235142bf4198f90858 |
| SHA256 | 7551ca85136595bf9865ce8e31d9fa8a818f898c60d0c55c1de60ecff897f6bf |
| SHA512 | bbfb42bd47506ca83bc2c9db3432caeb71c57055416742ba7580805388ce87f4818f63d6e80bc4b974ab0b774f184814a5d252aec22381ca9192db1a5c10b161 |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | be261aa4b46506f6d6306f2423f7c78b |
| SHA1 | 03ee877b60b741ed8af5d4239ddb79596247f819 |
| SHA256 | ba4d7033a3d03d2c869c45f287069c13660b66f972ab61ea5580ff6302bca730 |
| SHA512 | ab251fe2f40b0b9eb46e585fcccf5eb42b1639c4d831d801f45fb14f5b1b9b33fee84e03ca05c5716227d6803ce2df2a091711ac6161ca8f0124d399eba32029 |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 18f9847ca8894b38b190ee9718bf9a16 |
| SHA1 | bc13f7cf43f60af1d0371a13bd2e42f79e17f5d7 |
| SHA256 | f2780bd50383037c9606e23ca54daf37022411c0995fa10cbbba702665642e55 |
| SHA512 | 8ce3fc09b08b29d0703fb85580be650649a08a65a30f10d9fc6240c1a5c0effdded1610c6750a7869ecd3e5452a4be4095ba5f2bc27f7897ed7c06e75bd5cb0b |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | 6a8ec7e8651d3bb15f7be9647ad9dec9 |
| SHA1 | 77d6fc156e6339659da5aca55080bc4886cf90da |
| SHA256 | 8de79f4058788cd343ac902f15e24de047974d196e6d82b9eb97c8e3e9e210ef |
| SHA512 | 8ddd93cac8c4fe795d74eac39c8c222a3cd9903cc68a1eaadb01365c88e26b95e305c76a9f9fa5c288f1105faa48f8cbf20eafa180b4e0c35c39889608e21fdc |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | e1870f213118994656c9d78b0542280d |
| SHA1 | 1b544a3fe2de9e50e20982fdbf731766b91eb933 |
| SHA256 | 20a4e4b3a5412fec431aa1298fe0ab33f2429649a996e235302dacfce15020c4 |
| SHA512 | 96abd738fde593a257750d29d28dbb18d0b87a6c27e773034b7fa225fabfd0afc4fbdc0ebd0f567a2b9c71789e31823d1d68e56aea986239fe8a73244f24533e |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | 379a6f4e65ba2fc48a066bd47303cf37 |
| SHA1 | 486462665a0d9917d9ada8a213c47679a56af8ff |
| SHA256 | 799d4940ee35f1c19f54e7e0995fb47fd3d7895883341dd53ab0109054bd4204 |
| SHA512 | a3ba5bf45585a842046886c06aae0d801dd88ec6954fda01bb95c46a2187c2baa31a5e97be4bc3a8d51dc3c36f2c95a30eca8617b173ec72dea6bb96ebe669f3 |
C:\Users\Admin\AppData\Local\Temp\dnpgQjsb
| MD5 | f5021d442b133819acbe6c19e3bac197 |
| SHA1 | ae984d8c9b1be0c0a4e4d2858cfab993983e811a |
| SHA256 | c94cfd86539709674dc69fe1fe418a9df4fdf5c0e1ce117efbd3a616274f1320 |
| SHA512 | 020b2d465dda4d2e2cd6e6f654943dfa6c138bfa48aa51590b9434053483fbf984769c472e3175d1133191b1580f48361adc10424beae486c04c74fe621aebc9 |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | da3f9f00a858a037ef68e5c33c5274aa |
| SHA1 | 44e4811c613f478dfe7253b73f6ef8c3c649da62 |
| SHA256 | 2a18e4af069fd7de610770a912e46e58bd885ac84685c5ba93a53c06b74e12e2 |
| SHA512 | 6973334cbce98518812bf325234c683a00d4b0d19de74485ba746dc20b8d6ab37f3777b7ede9362074a88a7dba4dffd1bb024eddd95217ee87d10ffd1b2c2e41 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\1ced32d74a95c7bc.customDestinations-ms
| MD5 | 60026698a50ad864a4236313df7372f7 |
| SHA1 | 112d6b72b9400a7a6acdd1aeb261144cfdcd0d1f |
| SHA256 | 7f1e4e33e330b849eba98ad7547ad1290cb0f118983039ec3eb756b48a3871dd |
| SHA512 | 408a023de4bbec28b8c8e533c379237010fb3a843654b8060d11f86efa72e596ea55dbafa02c82882f2d8dc1ecb8489ac78862f14b36a66fdb41556f113daa31 |
C:\Users\Admin\AppData\Roaming\Code\User\settings.json
| MD5 | 57df28c0ca54351c3002189008b92e52 |
| SHA1 | 239274601db72a7229d969f2431713a2b89db829 |
| SHA256 | 7859b189375f8b25850c86cc3dedfe0a34d5415737ffc87a3a219d0cf53fd292 |
| SHA512 | 92eb8586b005773a332f0cb10dcb196c04fdb59a81e0f6f2bf52623b662b4d836397fe639a57b674d07c0869180d84214f0e4a2fb38d07aa1e1870ebb26ab3d8 |
C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity
| MD5 | c9e3320b7fce3b4183abbdb42328f455 |
| SHA1 | cb7a2a786857a0261b72dfdec219646966a2b0cf |
| SHA256 | 52a832b253be18cd2d7c115201f0b799c7a6d23d032808c58985214179dc638c |
| SHA512 | f686882deb19800044247baadc7cba1a2290729752da3280ddb115aa42a7641f6c91be9e3be3f2c9e3715f4bc69c5cee5c49b6d1a5863ec5d5ade3b0cc745837 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\383A97A57B113BD106DE6984E6DBA5F537327263
| MD5 | fc68b6b59e12c3d44279786beaafaacd |
| SHA1 | aadf93f04f7c582bb0dcd4b985b912d3cfa4fb6d |
| SHA256 | b4a40751975789e12624c07f79212c74581ab460d1e7e847021c83b0050db0a9 |
| SHA512 | a37a537c206577290752d99e565aaa3c75b022a279c64f2442a36030a44920503eab4bbde9d8931fe17eb3527ecca4098a56111e3fcf4bc0c99dbf04faddccaf |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs-1.js
| MD5 | f17c6cf43c5597f937a54c47d80d090b |
| SHA1 | d27174ddb1c8f24a890e9bcf42e18fcebb2c31f9 |
| SHA256 | 2463199f917e0ef541dde6ec599f85ca6dcc9b9f7872ce490594b76c1655a4b7 |
| SHA512 | da15b1ac17022c3fc317f15253705bfa9b8364c71d887eec6d16dadceb5eb149cf378ff5ef66fcc681b0a4896987781b213c7bea1cf48e590afdb715e2bd31ca |
C:\Users\Admin\AppData\Local\Temp\tmpaddon
| MD5 | 85430baed3398695717b0263807cf97c |
| SHA1 | fffbee923cea216f50fce5d54219a188a5100f41 |
| SHA256 | a9f4281f82b3579581c389e8583dc9f477c7fd0e20c9dfc91a2e611e21e3407e |
| SHA512 | 06511f1f6c6d44d076b3c593528c26a602348d9c41689dbf5ff716b671c3ca5756b12cb2e5869f836dedce27b1a5cfe79b93c707fd01f8e84b620923bb61b5f1 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-gmpopenh264\1.8.1.2\gmpopenh264.dll
| MD5 | fe3355639648c417e8307c6d051e3e37 |
| SHA1 | f54602d4b4778da21bc97c7238fc66aa68c8ee34 |
| SHA256 | 1ed7877024be63a049da98733fd282c16bd620530a4fb580dacec3a78ace914e |
| SHA512 | 8f4030bb2464b98eccbea6f06eb186d7216932702d94f6b84c56419e9cf65a18309711ab342d1513bf85aed402bc3535a70db4395874828f0d35c278dd2eac9c |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-gmpopenh264\1.8.1.2\gmpopenh264.info
| MD5 | 3d33cdc0b3d281e67dd52e14435dd04f |
| SHA1 | 4db88689282fd4f9e9e6ab95fcbb23df6e6485db |
| SHA256 | f526e9f98841d987606efeaff7f3e017ba9fd516c4be83890c7f9a093ea4c47b |
| SHA512 | a4a96743332cc8ef0f86bc2e6122618bfc75ed46781dadbac9e580cd73df89e74738638a2cccb4caa4cbbf393d771d7f2c73f825737cdb247362450a0d4a4bc1 |
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1
| MD5 | a01c5ecd6108350ae23d2cddf0e77c17 |
| SHA1 | c6ac28a2cd979f1f9a75d56271821d5ff665e2b6 |
| SHA256 | 345d44e3aa3e1967d186a43d732c8051235c43458169a5d7d371780a6475ee42 |
| SHA512 | b046dd1b26ec0b810ee441b7ad4dc135e3f1521a817b9f3db60a32976352e8f7e53920e1a77fc5b4130aac260d79deef7e823267b4414e9cc774d8bffca56a72 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-widevinecdm\4.10.2557.0\LICENSE.txt
| MD5 | 49ddb419d96dceb9069018535fb2e2fc |
| SHA1 | 62aa6fea895a8b68d468a015f6e6ab400d7a7ca6 |
| SHA256 | 2af127b4e00f7303de8271996c0c681063e4dc7abdc7b2a8c3fe5932b9352539 |
| SHA512 | 48386217dabf7556e381ab3f5924b123a0a525969ff98f91efb03b65477c94e48a15d9abcec116b54616d36ad52b6f1d7b8b84c49c204e1b9b43f26f2af92da2 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-widevinecdm\4.10.2557.0\manifest.json
| MD5 | 8be33af717bb1b67fbd61c3f4b807e9e |
| SHA1 | 7cf17656d174d951957ff36810e874a134dd49e0 |
| SHA256 | e92d3394635edfb987a7528e0ccd24360e07a299078df2a6967ca3aae22fa2dd |
| SHA512 | 6125f60418e25fee896bf59f5672945cd8f36f03665c721837bb50adf5b4dfef2dddbfcfc817555027dcfa90e1ef2a1e80af1219e8063629ea70263d2fc936a7 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll
| MD5 | 33bf7b0439480effb9fb212efce87b13 |
| SHA1 | cee50f2745edc6dc291887b6075ca64d716f495a |
| SHA256 | 8ee42d9258e20bbc5bfdfae61605429beb5421ffeaaa0d02b86d4978f4b4ac4e |
| SHA512 | d329a1a1d98e302142f2776de8cc2cd45a465d77cb21c461bdf5ee58c68073a715519f449cb673977288fe18401a0abcce636c85abaec61a4a7a08a16c924275 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll.lib
| MD5 | 688bed3676d2104e7f17ae1cd2c59404 |
| SHA1 | 952b2cdf783ac72fcb98338723e9afd38d47ad8e |
| SHA256 | 33899a3ebc22cb8ed8de7bd48c1c29486c0279b06d7ef98241c92aef4e3b9237 |
| SHA512 | 7a0e3791f75c229af79dd302f7d0594279f664886fea228cfe78e24ef185ae63aba809aa1036feb3130066deadc8e78909c277f0a7ed1e3485df3cf2cd329776 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\gmp-widevinecdm\4.10.2557.0\widevinecdm.dll.sig
| MD5 | 937326fead5fd401f6cca9118bd9ade9 |
| SHA1 | 4526a57d4ae14ed29b37632c72aef3c408189d91 |
| SHA256 | 68a03f075db104f84afdd8fca45a7e4bff7b55dc1a2a24272b3abe16d8759c81 |
| SHA512 | b232f6cf3f88adb346281167ac714c4c4c7aac15175087c336911946d12d63d3a3a458e06b298b41a7ec582ef09fe238da3a3166ff89c450117228f7485c22d2 |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | 62b5af467ca0040b0930bbe95af7b40e |
| SHA1 | 0e06a0c8d5befcecdaf04d97f12e88c7d4798991 |
| SHA256 | 7f2eba227bedc98a63f1b30b1c4675ffec813e5d9c0f232bffcd143e7b61f44e |
| SHA512 | 507d9efca98c5c75ff609da6e0b282e7495ee9727957ee77be8279c265aef43d570956c9a75af478866ab4ee56094313c5afa961ddc9cbe8a79bf2e5cd8b329f |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | d08ec9c63ba292eb05543ec42f39ca7c |
| SHA1 | cbafdb29404e5b28c3eb6e0497aba51a32ac5789 |
| SHA256 | 3131c5cc34fd4b3f291611901076f71e5b9dbfc72858cae655a3c3da76d40815 |
| SHA512 | ab00b32d2bac253717b37d71a43de08feae14ec3575780a7e14e57bf8891b981ee1781a62739382b448d5a934709ab30c2ec354c6452d52086822e65d66d9eb6 |
C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State
| MD5 | c3e0eee5bf2966e1d6bf330ba790dde5 |
| SHA1 | 0453a89e7c1583575ebdec001f293c5df5973390 |
| SHA256 | 22f92bea33dfc8a80392dc9b6add4d54b8e54418d761c53a65cd640c9fbf682d |
| SHA512 | 2bea68ad2b2183c0caa9efde2f6d5766117b05d624881f601244114b0df837d1838b32bc8c5886aac41bf668db2d2dd79c7d33e95bc06b08e328ebbb8200d1c4 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\13022
| MD5 | de224c733354cb2f4cf9c56121377416 |
| SHA1 | 20d013e9d2c39b384bff7861a5377f2dfb42e399 |
| SHA256 | c62290f3d5379cfe7a222408bced33a7486c10dfe6f49be23145995bc5859864 |
| SHA512 | c4d0978bb13aeffd3086f86d6f164c6d41c9e56007dd44e0b71fc5d6cbf0469cd61f1bec363229d89bf9f8125e74a396cc712b61909a7736a3d18989800ad0ad |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 642033b570ae59987f122b11be849c1e |
| SHA1 | 21438d5eb58e3e83587da348cc2aad7a92225e2d |
| SHA256 | fe8261801ce14bec0a621733a89a9cd6ebf93ca581961102285c79815b1648be |
| SHA512 | 8cffb390190b534e7f7f16d1dca81c18348ac96f5468ccb7a9013513b821ad1a4e5588127913848968786e666a0cd62ff917c64c305c21826a5c2007caf052f6 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | a28f44bb3a3df610a018be39ee0ffe20 |
| SHA1 | 048e9728984c7c3a5ed5bc85278e4f81c407e5a6 |
| SHA256 | 6097241740b91328d116c938c4beb5b85206a00bb63659fcc3a9ce9db4791651 |
| SHA512 | dfbf0337286140db1ff5eb7078482dc18bfb57a1686b84c8604535cbc305be287ad838928841a4597bec0c515d6fa929632d250465da1762b4824a80bf7294a4 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\5B23235D54208C34AFF88FC6F18585FD8A8F8FAD
| MD5 | 3d162cb216cca699d08d6911a85f6305 |
| SHA1 | 1e435e3619583442510a0c8095ee84c540a707e9 |
| SHA256 | a141dbf091f6bf06caae579f8d3b922eb9c930859f821ab16f362139333885f4 |
| SHA512 | 49a5224ae1f50da718d3ae227e0b25b64b593e5fdcda160a35b823244333283bbd1a8c15443547e52238c09cfa358749f42ec5bf81684ea525b57f25b951ba47 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\6E0FC36ACE0B17334CB0C493E9B79023984EDB6C
| MD5 | 049eddccf50f58f93de18379f56d6b00 |
| SHA1 | 11b27ad02b7847f81c2da87241525175bfa4eb3b |
| SHA256 | 5150b8439d3c3a2286a4c2a5d4a127bd3e992a64c01e317307f7a1ee6553a1e1 |
| SHA512 | 4e68cbaf8516db4f0a9fde6dd79be1fcc74c1c71fb1dd93046d4f84dc37bfd69a2d7ebf91051142597117603e7a51abef8eaa4653b7e38e8b71df78f7fa966c8 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\18224
| MD5 | f95803ae280d7b4368b27359a9f5e88f |
| SHA1 | 0987c0febb6133d80585be7babb86b40ba971c6f |
| SHA256 | d265663bb8e622ab69948802dbd329a1b3ad0b0a6b25208a15f1a213e30de348 |
| SHA512 | 145316e8a3a746f9b5ab34c4f5072685b2d8b06917a9ec4ac0bde9d667e37f5f4d0eedcfa299407a7473e0db0a3b6f919f04f08f72228a56a0bc978eec44d429 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\31286
| MD5 | 50de9ebdfdd01ab504a47c8bfcb3303a |
| SHA1 | 2615c885a9f19574eafd65cb08e2c20c9ecc7f06 |
| SHA256 | b22cbd58518a1f096e19b24e07a0bac0428df9450130d910ed2db21355b6c21a |
| SHA512 | 13fd1c776da1a02eeafb94552e9990f5c8365954c4377dd22a92069384a6d99bbe6e465a91089d7f80162c0d1a995636bc7ad6224f2a4d39a83787f238161566 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 98bdb4ba0a02f835eb7b64b9e840a856 |
| SHA1 | 55783a7237bf437ed1e5db7faa90489a28bf03a6 |
| SHA256 | d06094cbed302d5ea51d9471fed24f8d21b162c5159bfefca689d63ccc7386a3 |
| SHA512 | e25a995749e091f4ba7ed5d141f95a06f5a306c392c85bd4008192a5c6c518ef6072bbe6c47887b7974989b2fce8a6cea38bc6dd7a6cf2e6abdee8c7a748bf03 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\1065
| MD5 | 61e9886130cf2d98da399d401653eac8 |
| SHA1 | 05cffa8ce2ae656d047a1a4eb7837334b07ba667 |
| SHA256 | 13e9620bc7097b38ef5478d7c91c9cb347afb73648bfc56fa295a2d0f0a2d977 |
| SHA512 | a8506dcb4e0a19282af18f579491c0890d48f48e67525deb20d19f289ee1265aba482bdbc98c55dcfadb205799b13cfad322f3c0d70d9ee7447c33b292c17a3c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\31062
| MD5 | 9fec3dd2dd433c07d7affa49d278270e |
| SHA1 | 65a16b74302f9e01e060389db4cf719ee950ecb0 |
| SHA256 | 14230209ebdf92ed97350b0535d8f1aa842c3d4465a1be8c4aae58553ebdb11f |
| SHA512 | 5a297607b1ddeee577cefd3622da97f5b2b08f6001224345d25deaafc02efb1ea51fd3b2492ef30799cebebe48b4ff000bbe5c767ec06cc7b12a814a1f0b0e2f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\17999
| MD5 | 90dcf0ecb46af2fb5d3350e76d7662a5 |
| SHA1 | 2d54388cdd6526c0a218ea85e64751f3a39019c1 |
| SHA256 | 3b8e2e356299e95f02b4e072382d5972217fbb4daa790c2c9363002c5f38e893 |
| SHA512 | adbbd8b6ddf39c74b7c0b0d9472404a24ee4dfd708de6d352f9065096e11ba5431e2318443ff9a3133cc51068df0f6ba2957d79dd8ff03d66061fef849bd8fc8 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\CEC587FCEC3407DB136F33D8FF69B1B00F493C51
| MD5 | 1a56d4f7e6429a699449735e72194183 |
| SHA1 | 6c30eb31cfb16852508a662925d6951d6623722b |
| SHA256 | 2cdfa256ea8732c81bd7d5d102ac57e0dc4c79696ed9d2ac5f201d7230fb2e12 |
| SHA512 | e2fd1e83b725bb570c81b7ce7b6ecd7e24d5a4dada0f57e075895fe46bec1deb9f36932301157c372ce1c4554edad3d9772e5c99883b8e09e6353eab48db2eb8 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\D7D40C8E15B37A73EB0C7C450704B659626B214D
| MD5 | bf1bade63551cb10a092c9c8962211cb |
| SHA1 | f194164573e63837d177e47ea35413dbd7217666 |
| SHA256 | 226271f7a68d5a5e48b655f92e8eeb5fddb69dd4f18694452d7f92f7a21fe223 |
| SHA512 | d271d0960a0ff847da7b3e074d9e97e026c50a36bbc6b190bae313abed8bcb5ca856930f1693099827f9395a818a2825b294c99026a65b44a4377c76382cf0f6 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\14453
| MD5 | e9d0aa565d80da93ea0943826cb54e77 |
| SHA1 | ccea3f47b8af9d332afa7788cbdacf94af0397e2 |
| SHA256 | 52b42aba5e7b3a74ddca648edb2d53c92c3a9d074f5a43dc55f623c592b7bfbd |
| SHA512 | 801639905b577df5556bfd21f3677478240f77d1e0fde92183eff8e04c8ab64851e3852e47e0bba0f705d5b1fa682a5f4c1b5441c6bcc25087e5f71e48158d47 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\26364
| MD5 | 9b0322bfd288fa035b02055eb848dc0f |
| SHA1 | 45de639100e47c6ca9946fb2597f12e832d411b7 |
| SHA256 | 1af96e6629a8ecdf69f401820470a9668b8fda821c7aa3908b978f49eda40bcd |
| SHA512 | f7c2d8e2642d48d63a64889ee7d6477947b68027dac2defe950f18aca8045b742a97bd492e217ac963a9fd5fdd878557795270b9f2ec004dcae60fe52c9bf64f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\3617
| MD5 | 9b7649557d486de57e4cc770f86e5275 |
| SHA1 | 479068c50bfb9b3778ad9109d7b16a0884f56a32 |
| SHA256 | d4ee106cc091725ed89b2c9512e5e89a6b3343901c375b78d6c66ebfb4906fd9 |
| SHA512 | 19ef3df202097cad97d380a5319ec53a5d0dbb53d27b8ee7c930a3a917e06dc480d7f7737e67a83ca1872d068069bca2afcf289e42454c8fef428c536715de94 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\23323
| MD5 | 23dbbd244b12d50b7e7d031a48d3bf4c |
| SHA1 | e85da0f90d1fb8beb84cf9ee2a6d456e6d93c1c0 |
| SHA256 | a012e345ae37c702de9dc9f05fabba33b66e69671cee25a22468c7d05cfa0f4d |
| SHA512 | 62e287d98df4b0e09b866514613fa676ed7ceccde48d288964ba974d2cbf769e3263821fb18d373d4e5441c4961e091b9b8a9a43b4baffd615026b36278a33ff |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\10260
| MD5 | 12492516ff05648dfe21aa2fade200ae |
| SHA1 | f0ca1b5e63892b41637402c31404b77d952513e2 |
| SHA256 | a48f41b51e51e566eab2c6a9c1c74190b1cc871bca4302a69f9c7699c0cc1cea |
| SHA512 | 505ac30d9941dd50457b07ac0957e343e388df3792626344c843332f6cfe52b0f9499fe14fcbfb4fe19fa878ac781c5cf7198a3a88ecf9e0279068c95047970f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\28732
| MD5 | e48d8513cae7e1e6b7564fa86e7a0e74 |
| SHA1 | e2e2c668037d7a027feccef41f2cb02f987a22c4 |
| SHA256 | 1403e5ff12a755357239bc99bf9d6db839823de6075464467ed717779f863de9 |
| SHA512 | da6bf4458b915f038c24915258271fc9aad0bbe1e53981f06d8b1f3ee5087dccb95bc17597c4524f7f095f64f2f022b8d48b2f745336040addcbb734a3285bde |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\927C368A0B960260B5082832E33B7747C6416733
| MD5 | d183fd377f09d54b42e74610780dd0f9 |
| SHA1 | 9e0e46aa33b44afbc0cad887ff0106e80da163d1 |
| SHA256 | c2b13b524a369a1dd8444cb15c83474c7e0bac2895594b84c4b84d00a21dea33 |
| SHA512 | 4cd3e622eb0b60079adb81b491b1ce8103c3a8c5487e5acc0d8f7d1f92fdb9b52d38f4ff2909cc1b9f3f60cac83a010d5c116bf69b8c03ded14de0290c8b28cd |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\24963
| MD5 | f76939f59747f75ec755e02dcd222646 |
| SHA1 | 3d048b37157b113c6fd49bf7ced2a0e2b315d5a2 |
| SHA256 | 33c36283ecd0e475be1458ad82a329d8c00af189ccfa161fb5140846e66e7293 |
| SHA512 | b649a5d8fa2f118b0c1ee8bec53af9ab07aff6d719f01427d66a8581e56ba01147f1ecd93f04c78a6a26e7c0d9693a1ebf8459fd01cd6cdb71725678a9a931a4 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\15417
| MD5 | 21a948f658bae03dc6b595bdd6303c21 |
| SHA1 | bfd69f0e4e922171ffd545296504acc06fae2a32 |
| SHA256 | 28312da705f681b873addae5941f683abfd20ccf1b5cd89100626cc42cd85db0 |
| SHA512 | 8964d25e54df389a4bb3345756fa536768e969a8eba3a41255a05b693c2dd65e63eaaa65b27a3864315e287dc2e4af8072d6b074df2593a710c7683031d9cff8 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\94C26F07A8E576295A6A4BB30D5D5B344A64E41B
| MD5 | 06756ff312dc63c4db99f3779656dd68 |
| SHA1 | 65736032b8ea34417d249d1e836d99bc803a132f |
| SHA256 | a83a1bce08e95f53b9e8855172125e9d35d947e2cf25a01c17acc4ba64aee758 |
| SHA512 | 12fd18fb848bd7c67d5574ba9e7ad9db5098a31ec58fb731c00a0b2f74e8978861e067cee0680125aa87c015c5f3c964ac6e68cca6b676a7d73ae1232e8bbefa |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 18459a2e9b9735cd6281c5133c0fbbf7 |
| SHA1 | 9ef0ba2eafa0ef0bd1ae9266bfc58bde0a075794 |
| SHA256 | 6a756c4c7f9b14009b745904a090733ad9bbd4ab19fa20239c67fe5e426d2743 |
| SHA512 | 178f5da289495211ab8f5c26e66a55440037d160df05f5b29ec33f58a67e5fb5a71c45820bddf05567b58c7e156c5b18975fa9cd16b4870a46c5782a8682419e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\storage\default\https+++filext.com\idb\317435419s.sqlite
| MD5 | 8400581dfe41394ae9899a76acc780a3 |
| SHA1 | 4959b13dfecce222d9d60ce0e5c0b9c10afa9978 |
| SHA256 | 91f0aa2fda4d464824901614d091ab341e4e6c4c49918605286dc5eaeeb8de70 |
| SHA512 | c5836d3e1732db3855883ec6c271037e2d2ebf62efc01d40ec10ec192caab6fd00dad4ccb68a1c4f3a7b7e1412dee54381f5b97d32e709a6c419d28b3a4c55a7 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\18394
| MD5 | 14b14b52bcd122b715ef1a7994458767 |
| SHA1 | 1fc897f58c66e460d89761ea75e685cf91e621a1 |
| SHA256 | 3d176792d6ec9d5f27e795d95541a08c200f81d6a5fb65501ca6bfcba7bc7bcd |
| SHA512 | be9e0f6b4412ee1f9d5196119dc1af45b3ec55ce7a01439f58919dc0f1babbdeea80bbdf889b57a67823b9ca815672d3371eec8db628c6099ed30b5f9e145d59 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\3873
| MD5 | 4476cd7ba362cbc79bd0eb5792234b4d |
| SHA1 | 419c1b9840e6dfbb05c43729e32cc3731eaa39de |
| SHA256 | f1c4a468bdc067ef8f23f634b3a681d7af121ce9dad79d907f0932b5e6e840a6 |
| SHA512 | 1680f22b62cb33967c4e9af5c379299f8dc21d9a1af200d3950591a17bb5fa1a511a002cbea6c50957e6af78180b63ecedf466f33ee46dcc35f10fbb979e5b1e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\1ACB4D7C1D74CC8E58424F3ED1629729BA5CEDF6
| MD5 | de3835879a1febb06fac632e56270738 |
| SHA1 | 706e04bc2e57b0a3a1e9db163b2441a45e1bde38 |
| SHA256 | 0e55aca11e91eacd91bb05affb274346e84c8abcb4cf17d90bdc454875413862 |
| SHA512 | aace3238350f9d5d8b4f9e7790c2b61ae820e0b62c68bc7ade91852e2b940c8b56d627c4da83645d20750b9d00e225ec21f241b90a9c1db294832119c5d1234c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\30527
| MD5 | 9ef11758b93eb7d958276e3c36391fc2 |
| SHA1 | 3fd34268f51b3f973e1963bb776efe4c07bbc908 |
| SHA256 | 2ecf04fc0cb86f6e19303a395798a5d193c1783d1c0622f7a759f355461628d9 |
| SHA512 | 0869ca5478a1bef5bca2e0a57c770be314f9e82f3b5cca1242450f6ecd16eac51017a4b5f584a0ccccca4488273e38ba069cc8dd0618d9a2b6a8c0cc086254ff |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\27328
| MD5 | a62c9c7a4cd24c73f70966c6f3a934d2 |
| SHA1 | a96539b8a3f61e42a41182984b0062e2142f301c |
| SHA256 | fcf3a5d9161bdbc6c9e198aca750461b96118920e356532486e342454db129c5 |
| SHA512 | cb1f49697d5afa313265f15698b6a0700a99e2681dc79af24cbe7b150d239740982f5c1ce0fb53ee0dafddf25a494d252e1c43d86697b787aafcb0d99ced832b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\5602
| MD5 | c2dd18e12ea28dfa51dec5b46c757c5c |
| SHA1 | 26256b7ac10015e164f8f689d2650b7554ea71d8 |
| SHA256 | 1865458478f2a04fda34708d261116012ac3f0272f6654404dfaf727ad2b201d |
| SHA512 | 60217c4fda376c7c19ecd198aa9f3cc18e3e780ee1ba0dd74fc321dd35534e6c1edaa47ec2c1ebf6b889ed5e89a79ad0aeb8e0b96a44ad6385d0c7fa4bc936c0 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\jumpListCache\simEEJg2eq2KzaQvQvuPjw==.ico
| MD5 | 42ed60b3ba4df36716ca7633794b1735 |
| SHA1 | c33aa40eed3608369e964e22c935d640e38aa768 |
| SHA256 | 6574e6e55f56eca704a090bf08d0d4175a93a5353ea08f8722f7c985a39a52c8 |
| SHA512 | 4247460a97a43ce20d536fdd11d534b450b075c3c28cd69fc00c48bdf7de1507edb99bef811d4c61bed10f64e4c788ee4bdc58c7c72d3bd160b9b4bd696e3013 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | 9fe93a4d3f61f69a9031a020c38bdf2e |
| SHA1 | ae9d0a0e578697c084adb8bef9c60b94c20159c9 |
| SHA256 | 930d7647b32adbac2ed4ef2f1414e95bf01058e84c917bdbc200932d802de0a5 |
| SHA512 | 702f08177f7dcda54bb3eacd5653afeaa9894cbfd0f0ffa3915a9f896f78c2c8b8d00dfada2fa107bc301fe78bd2b7f0c8cbf5ef2421c07375640bcc6d38b403 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\D02FC2103406B4D678DA12894BDFB8E820A775B6
| MD5 | beba740e057465c43f37c515aa018370 |
| SHA1 | 0169ff893dbd2e622e2b4b022cb7c175aeed0ae8 |
| SHA256 | 83eea90b0efda79c356a2a016875c035adb1f3d12eb4bac474bbf2a4021bf5b8 |
| SHA512 | da712c9a7c9f151232fe5f8f72c2f979ff197d93ce37eed82d3cee0c587b2636a72d278f64089b68f725f8b405d92ec1b51185082bcefc498789ebd9b24f2f5a |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 616ad8e54b7e9bff57a293c0e9c2e4a0 |
| SHA1 | d5c00fa659070e824a274d51efd81c55bfb1ebeb |
| SHA256 | 9427816c52da13ae9b46bef1b50d7e46427d3d0c795ed017cad24973e60e0e48 |
| SHA512 | 17bccf04579322b7ded22b62983cfcf9715013d47643d664bce700047233e2fac9bfa090aeeed0d59d236353071c2e24fb8c04afe3214c20d456cc76ace2a0ee |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\8081
| MD5 | ee2be5a2b6e486261f9f6617ff598f96 |
| SHA1 | dc61baf78162539951a45d662cfb8d330bdc557e |
| SHA256 | 473551afaea6b4064abaa6750edc4f57ae49fdffb41272369f9c69b31bdb6ba2 |
| SHA512 | 74d52969a36cf0219301f6bb21a8e54a4792955ba213e8a732ae8e501ef197155de8176b7898324d32f77303996ba942a320855d028d11269b5ff04b72b2c215 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\11407
| MD5 | 995f8b630f7d49ddb1f2b82b14fe3363 |
| SHA1 | 63663e8580db0af3b921b08d59f9bac7f30a645c |
| SHA256 | 84f6cadec767ca244a0d12b6ecb40cc9254bc6c0af9031266fa9bbce39bf146a |
| SHA512 | bad0e7d9815c08ce843f4e207819cf44ff2a38d3ceb0d6b675a43ae5c06b359a0665ebdf761c227e540674e9b946c98acb2d7ad1ebb10a9a1c2149f6401ed9c4 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\868619CB5024E8271527EC2FD0FFA010BBACBBA4
| MD5 | 6887db32b3f12aecade8d2f666bbfc28 |
| SHA1 | b5723003483c7f73ab29a3f07df035cf8b633dfb |
| SHA256 | 1797a10701780d1f5787cbf0ab076b4088b72041ae4dd6009d55e479aca2de94 |
| SHA512 | de14c44a55ed0d5753aa89c37140ed838f81129c98de85c852b1cd32cd0fd172d4f7c10d6aab008dbe5af19f23f967a8005fa0f3f44dae932e5fb6c380b156f1 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\23259
| MD5 | 4da0fdea03851aa153a65586f708e9c8 |
| SHA1 | 9f1c6df6488e7e18df69bab35d069d69fe27bb09 |
| SHA256 | 7d49667a2d8be5e745b677e1f1ebbb56e6b4dbb7c600a1d02ff93ece652c2c30 |
| SHA512 | dec3742fab5728c94e92e069c95c86fbb8db06e3326f7e915373aef0bc7bdc0c0e1bb5c0baebbaf64edc7b8ad0d4dd36739cfc6feed5d2f4562493baecc51fe0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | aab2790a5f6031a8b166f733c891bf1e |
| SHA1 | 0e8f8183e2f5a5e31159327238bf920ffe7552ba |
| SHA256 | 7a881e5210430f45935c7fed4d303639f4a601399afcd2842aa8f7d02e96256d |
| SHA512 | fbb516677033dcc0d1c12aa3b82ffa89dde91fc01a97060615ccb4f6ca14028e5ef6791f7c56d3a7220a48d61dcfaa034fc00b5bdf76cb9ec6beee7161f738e7 |
C:\Users\Admin\AppData\Roaming\Code\DawnCache\data_0
| MD5 | cf89d16bb9107c631daabf0c0ee58efb |
| SHA1 | 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b |
| SHA256 | d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e |
| SHA512 | 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0 |
C:\Users\Admin\AppData\Roaming\Code\DawnCache\data_1
| MD5 | 8d34454e47a70a1a150e00a097f40697 |
| SHA1 | 9a8952567c34c0de2bdb41a3c8bc70cdffe36e11 |
| SHA256 | ec6ff1a9ca66e8de9f789af4d252896f561ed4e60e2b2ba151a7bf113d07e63d |
| SHA512 | c64a3d4a2bfb5887c94fd4d4ba8c3c887115d89bf844b239fdcbf9ba015ef6ac176d80749d675587d0ce2dc3159a4e753e7cb9954988dc87d81b68dc7d732c37 |
C:\Users\Admin\AppData\Roaming\Code\DawnCache\data_2
| MD5 | 0962291d6d367570bee5454721c17e11 |
| SHA1 | 59d10a893ef321a706a9255176761366115bedcb |
| SHA256 | ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7 |
| SHA512 | f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed |
C:\Users\Admin\AppData\Roaming\Code\DawnCache\data_3
| MD5 | 41876349cb12d6db992f1309f22df3f0 |
| SHA1 | 5cf26b3420fc0302cd0a71e8d029739b8765be27 |
| SHA256 | e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c |
| SHA512 | e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\42C8061EC7607AAA00E28C3863A61A3D1A95D804
| MD5 | 2b9fcd620b23363a0b355bdd90dd7506 |
| SHA1 | 4adcdc8abc13871c91f64920310b76958bff146e |
| SHA256 | e8d074891d156eac319c6d1453819e13bf12f09ad87a8ca37c615ddf2818e9ff |
| SHA512 | b2e841c52cbdf25111caa9df22a652444b8ae62b6bb36b4b7810c0235bf7b73fa21de50f8cf6309f9423f8ed9974d912194d6f14a585864b6819d8ecb92673dc |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\22097
| MD5 | e0c8c97e29610bd31267f8a2ac090a3d |
| SHA1 | 2df14cf099f84b339b581c9aa8aea37a6181cf46 |
| SHA256 | 5208c62dd3b0113e46072975ee767b7ee6fe135735a7d05643b2f19a08034a23 |
| SHA512 | 7f5ea5cde4f2059d297a66c977e70f2151ce4eb86d5d94093a1d2b2d9f9da7212c2c8eb087f15d121a3b0b7681a7c940798c4e667e38d93cbe3ac9e400a69e1e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\1954
| MD5 | 377037512728608fbbc423488647cea4 |
| SHA1 | 57f522502c506c7998b5ccc5cb80a5f782d1891a |
| SHA256 | 71422fc5f3a8f17c768da11774141bd9e6a20804b63904f2a20136452e229015 |
| SHA512 | 31f748616e237e9f411003b3e3bf045b13eec1e24f16a73a7d5d9a52ef4fe9018b1e7ac0815349e6126b27a2d231541259a0425d21ec978a270a86154f00d32e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\2627
| MD5 | b645e9716c0ba994a36d67e9f86f0920 |
| SHA1 | 81a141f6ae981e0afb106f3fbb92658851b2af4a |
| SHA256 | 3d559eb324b2460164d795345b6e6439991477844883d3b5dae5e495f90d57db |
| SHA512 | 62b0a408276410065329f3f32e68502a08526807cfed5131ca3c3028db2662289d14d90199339a71af2fa6e84eddd5b5caf3da80c030e88348bb16f7a90b1b2c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 00833cab9b3e18f7dcc5dc9a9609ab33 |
| SHA1 | b356b0fbce1fac279d7b340fba1ad0f9b5f22750 |
| SHA256 | 6ed663d637047e8ef6697947d310e6d08c7c0dfdfc242f51a727a7c149cc852a |
| SHA512 | 6c44522e6bd906e10bd72a86ce02e221fdce5351807f590d80df536f78283e9968dbb661db1c2a0af1d35b8a472f934fcf12bc670ec3f260a4dd1a4af20cdb5e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\6802
| MD5 | 807dd3ded82d94c6269bd33f9e58b6ff |
| SHA1 | b2cdf4a0ca1a936795c599c2c3dc8d1d2fbed2cc |
| SHA256 | 071e1897f5eb3e565db5909ccb7eb7c45b242ef5efe8fa25921a8147a2312bef |
| SHA512 | 6abe10f49dc9e98d2d95e0f5a59ab855f02fa34346831845dbadca934d573f7b85327cf6eaaae9ff1a135f9ba737151907f7798bbdfd8121b2a832fef8e1666b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\29773
| MD5 | d90331060be626412842602b47167044 |
| SHA1 | a0e06e2b7ddedb69576c84f389de39376db0b147 |
| SHA256 | 3290785c44f7633a117648d12703851f6c77a25cb3d2f9ca9e69b76c189c13a4 |
| SHA512 | 5147429efd7f70c2296cf764219d5991126e07cb5ed3db509de4485c28928791515e4676e7323720ecaf8e6a897d4f5539347dc5bd9702f23290c440bae7f4ae |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\9843
| MD5 | 337387420507839032361820ffe4ab26 |
| SHA1 | 69b88762027d89eb9b4c10168ee4cba3f9e70b9f |
| SHA256 | 72cbe2e54da620bbd2d0e6559532aa31bd55b7353f74f643ac698ecd4a47f9b6 |
| SHA512 | eadaac1611067c56219aa82f3c8210a298e4138721f40e0dd8491463ae2304c51b9d23a07cf39c4f8c5a6f0b655dbaaf574acd38f0063fce53f8a188df4531d7 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\9507
| MD5 | 057f9cb6e04c30130692d1eba945ffc6 |
| SHA1 | a4cda24b3cb4fd43f73ef7e1e89351c14c6114b3 |
| SHA256 | 0912afc8d91d2ed7824651e83c149d1aa99c034809aa3b1878cb799000a60047 |
| SHA512 | 64dcdd42d1f3852b5e106557c747f62c75d7c6fbf6f96f98caad0023293535fc909a485a4b282d7acf586c2ebf0d92932aab8dd5a43205d3e07ff9371a8ce27b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\23009
| MD5 | db94c923b57cc4b048e6d616e755644a |
| SHA1 | 22cd802f1c12ef81d5ac139157f97d810ab05055 |
| SHA256 | cf9d06878e92720bc85de9e3e5afc13fc92d77efd5f9f8b5e867f1ad667b7806 |
| SHA512 | c6b8a55f9a3df74a5048e88e81e18aac5140eda7645d3d45864835e570a7df70894a132ef8c8b2786c9da8925623b5f175005d71f5ff0da85c1e55e3c5a71c68 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 8434733f738bf059666ef8e9fbd5c7e6 |
| SHA1 | 391b451824daebb78b42f85256ed02b1caaeeebb |
| SHA256 | 1af26450ff46ffbcc6f90f6e0818baa51b43d71979bd15e2493249b3a1f61464 |
| SHA512 | 9a26afaac866b4d42bb01376cf3d05511f0c5a7cc3e48a3d968d66d68c8ca04a31dc9d398c12fc90752a41cc45df6b774a2eb2e9744bd9242d9f053c0b048040 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\5497
| MD5 | aee1df2a40781169777e34df99b2242d |
| SHA1 | e61dd24b6f745d996cc86d08b26a7c0410957d05 |
| SHA256 | 5e4e47308c38c57e9366aad6a3d7bdadb44197867ba94ff3be6ff0813955cf0e |
| SHA512 | a1dbe403e592c49306e35752063455676d70eaf21acc7016d0702e9c829af1f73027d89e25c6df8e25b656d542cf49362ea3f47bf41d0359e481e5922fe4a672 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\18718
| MD5 | 530d6de71451cab4ae2c1b4a053dffa7 |
| SHA1 | 16708bbe21adbd011a69b605358feec99d5ed665 |
| SHA256 | 9afea57d3ad1920a5935c4e40795b09a16ffdcac66d6c2064a5545b86504cd1e |
| SHA512 | 69ffb6694950a008fc92279abbfcadf3d69576783387f54c4e38be49681d4504a31fd6b35653995a69a6f00cce11b750229a3a108521f66f71ae9f6483e5b59e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\2513
| MD5 | 9079e3198edb9871f122a17394cf0a8c |
| SHA1 | a22366f9e642e35107e1e2144899e487f022a2f5 |
| SHA256 | 80488007982f56626909edc5f7619a4fab52bd90f202811ab9f036c9a258a4bc |
| SHA512 | 0ff19ae815bbadf00f5bda640ea656222f5751bbaa914f2bc79c31904c6af116d3383190afabdabce911bfd97eedb70155fd2224e7d33c628a244260c1988102 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\12449
| MD5 | f055debdf1dcbac6133fdb8e20d8b4a2 |
| SHA1 | 23131174f5f6bb98d0cac87852f0206498246723 |
| SHA256 | 6c30d25a0f88163cd4bd2b54cc085507930fa1658fa81b025abe652c1d816634 |
| SHA512 | 7c78dcb90ae7e34dcaa06b74feefa64055772e9330417818941779c55286d56ed6f41d248c8f6ea928b91810bc26bea2b61338797b47e79e9e5571d3e87d6369 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\5705
| MD5 | 538a3427d9a9e498e36bb70db13c1358 |
| SHA1 | d71f3aa3cf2339199105792442521b08a0200b16 |
| SHA256 | ad79c5b5de9e3366a72401e5eef5e6bb3cb7d7befbf8745bddaf2d35999b408e |
| SHA512 | 99c4e71f69b869acb19bcd6dc210925a1b42794e22ccd6795b5becef4da4a27b4e9726823d6b0a891d4b42ab85782829fc5e325cc1c74bc754fdfc8929c6a5f7 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\23043
| MD5 | 90d9201f4c29d2b27ea240cc6d4f10bc |
| SHA1 | 94d863aa28ece161f0680aed0de89604221e0976 |
| SHA256 | d37e5e8c0d444360becd6702939726ed23dee5ba56013a8257d1cf9dd0801046 |
| SHA512 | e0e457425666c3ea2472fedd0926e8eb621c822d028fbd3d3acac6a5042d3bd4cc15f7a7374238e3a16122eff555bb4e29acfbdd2efb603d2711a31832c87511 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\14716
| MD5 | 57985685c67cb5f47c3a987630d72f2e |
| SHA1 | e15922670c7af821b29f6696412b6177fda38a9c |
| SHA256 | d03da85772b2d260374b66372d4083a6ecd0a51001dbc6e71a528581ff913a85 |
| SHA512 | 06acd46b98f620f0ee85fe3df4d8b3a1b5bed141ea7d24c46a3951d5e4c503b48968cc4d18e42c36d2dacc44b61f2f4e519b1ae971aaea39e692183d81800fe2 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\11451
| MD5 | 7f76d1e750bc103dc344e4da1cfe0797 |
| SHA1 | 0ee23876f7b376003dd019f339cc22e20b834020 |
| SHA256 | bca14590ccda3384cbbaad1ebac5fdf16944c5574f9383c52c5c31d471487fbe |
| SHA512 | 084a608e73c1283800cf0b579a9a0307eb402d4b561d27c743f2205f6afab4b9946d4850c0105011741ed7630c6e45d42c4a5731374b5951a8ffc0ae51f2c1b3 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\1654
| MD5 | 9f9211a60a8bc2d212a7a702c64153f7 |
| SHA1 | 27401ecec25e6aae92281a334e55e64b6f26e7d4 |
| SHA256 | 71e80e3c3e037e4d6502df8d5aeea1f239623ee8ad3fd15914a99626a5d8df70 |
| SHA512 | e95ff4d49b990c123bf6d7bcd2ce7827924f99631ac151fcc9a5441aedacc20c5983c063ea6633642ad28a06b4565de1091dae95da34d2fcb592a642bf464075 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\10328
| MD5 | 4019ea9f3f7423a12c36495382ee1f2c |
| SHA1 | cab230979f722acbc87f368498fd658844f2cd93 |
| SHA256 | 727033bf656bacd4fb35f9a5ece4d6593c5dbbbdb45c533c3cdd8332baf0c8b6 |
| SHA512 | f60c99f14f8184e11d2618240fec11ffbc59b2623acc14638a06af9f05fae0d84b70b66661eb55fa236a645df58ae7e9f453a44c4456fd4dc1db38408fc53b3f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\21359
| MD5 | ae762f786a066f263579b9502207d1bc |
| SHA1 | 10f8d7fab503bb7fce9fbee98182e8eda5e85058 |
| SHA256 | 99ef9e51e2f0553be85b05f08465b382e39492898d2dbbb5e45a5d984846df4f |
| SHA512 | f4c69103bc848fdb085208eef61cd697e19cd4586f64c77846df8e0ca942bfe6527ce0224b47de0e002f9bd77c402c1920d9e0488d56ac28ef2ff86ab6285ea7 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\29798
| MD5 | 7649daee6116ae8107115f6529b21b09 |
| SHA1 | c9e0d5981dcd4f1fce9d3c49485ea34b95ce6615 |
| SHA256 | 3c9cbc9f48dc160adfa1dbd6737485cf6ec2932aa6d624d74f37fee000807e4c |
| SHA512 | f5ca2e0ef349f52c19582352cf237bf2d99df3d054de2f942e9d43b95b610962cb581c87d200de3394876350d8abd80d44fe5fc1074237d85e6b0c75eaf1fa5f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\16074
| MD5 | 2a278034be733735bf8849968bb061f9 |
| SHA1 | 7368d87ea842a5034ed12956da9ca5b38b9ee105 |
| SHA256 | ebd12096c41d6b37001eca8a31117c3d0ea9e88541be9e929627ed24c488e601 |
| SHA512 | 04187298e6a90b7bf585dd6d2e07ba1a4edba9f407f61039ee19aa4b73eb878fbbd37f21c033519ef03f6d663ba811d180cebe34fd1d3dc7c6a7c5b712a753e1 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\5829
| MD5 | bcb13637708404e724103bb25e8b8121 |
| SHA1 | 716b276831db4db61c8268262491b682fd16efac |
| SHA256 | 8f38780c700ce4ef693dc4c49bb5483f8119f04dd2982b0d15910405655aa6a8 |
| SHA512 | 8f47597ef12e65988f244c1169c2fa621de0af131fcb5e679d089bcf4555a78fdc253bdd8374dd5c11bafbf57a0578c186cee5a39f01d4da09918db60e1cef0b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\25646
| MD5 | 7e4525c5ddddc6aa254e38b283227766 |
| SHA1 | 011a8f5b9650e3b54eda43622edb3a05892fa3e4 |
| SHA256 | c123fbe439da1df13ccbab86536b78243d280561ae4ef6644db746a69425ce79 |
| SHA512 | b6cc836d5c120b046ac13f4fecf8fde9a5559e7b8b9ccaf561d9024051b678f2e8bb73a86354813f4501cdd7c813768026a0ad6bd8dcbaa25ad078979d32c85c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\doomed\15513
| MD5 | 51ad8c54ab1ca7f2426ff9791d566b13 |
| SHA1 | e5586d8206f82d64a5bf0c84e30912f4ea467008 |
| SHA256 | 623f6fdcb0a1f6c0a7410914adde9dcedaab5a89c17558e495451413ec8b9b67 |
| SHA512 | a057ccd2d02da8314ec6329359023298d397b2a86c3ed34bd66d40fe94dd945188e3e88244bff62ed6576e7f19ac673dd08120a9d435e1df97d7b0e34ddbabf5 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\crashes\store.json.mozlz4
| MD5 | a6338865eb252d0ef8fcf11fa9af3f0d |
| SHA1 | cecdd4c4dcae10c2ffc8eb938121b6231de48cd3 |
| SHA256 | 078648c042b9b08483ce246b7f01371072541a2e90d1beb0c8009a6118cbd965 |
| SHA512 | d950227ac83f4e8246d73f9f35c19e88ce65d0ca5f1ef8ccbb02ed6efc66b1b7e683e2ba0200279d7ca4b49831fd8c3ceb0584265b10accff2611ec1ca8c0c6c |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs.js
| MD5 | 4dcbbf29c343aacc5f3be77aa7017828 |
| SHA1 | 16b0b7294633251e05b14fcb959b1a6642983714 |
| SHA256 | 2e7274195ba7db18899fdf5dd578e0d0cbc1ec56d2bd20fff22fc234c207a802 |
| SHA512 | 07c40ab057d666839c2c794a44083bea47ec4b0987319976c62e3443a3f1baca84e12fddd19375f2af21e91c498f1415032a2a730ae62d36dcba0f00fc926ad9 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\prefs-1.js
| MD5 | 43bf496b553b1538f7a7a616e88565c1 |
| SHA1 | ad0ffe6a7e34dc243f9f3954b7bc8c60dfa7b82a |
| SHA256 | 05893237395516c651d891be885e36c10c45b91a9daa75d098cdbe40d2a42de7 |
| SHA512 | 7f6e20817210b3d86a9e096e8bc6672cc733366d88d640293ef54908f5651ec31e49dd23f27791ee8f8d376797d378cb03d7424c7574d03d62c82581316b3827 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 609ff7a9cdda2e43b49c41140cd3f45f |
| SHA1 | 1cf63ad9ef74e1b417cb6a6e8c2594e37efee4b9 |
| SHA256 | 6fec2b80a028f77d2cc1a11297d6228234f6792dc163c7a552d599f282fff987 |
| SHA512 | 57038717cf5c29e375e981c7e1a995766211ef9d5edd9a951cbec6ae71e02d87d210a5baeb8590388f3098f95815b60157c5aec8af4988fe6d8c4d7d02eee1bf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 74bf28e4bc14a8aadfe2163d07cbafab |
| SHA1 | f538598f3ad707b9d12759aec50d4519acbcacd6 |
| SHA256 | 7f5b5e14f28bcf97c23fd0a66d0878364d4d90923478d77f9fd9a179b46affdc |
| SHA512 | e7604868983296a62f6807f10db25132de96852e4381480205892cc5736f0e7497cf715b39c2871866f592c8baae490752167e8272d3fd19c52463bce1275a11 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\n9vxbo99.default-release\cache2\entries\975D17B7980F8C71387EE82775BE848F4C4C4364
| MD5 | f0ddf280955f7176c3151499c6224d48 |
| SHA1 | dca5b9608fd84ef4140d79ce6e9c762c62a9fbc4 |
| SHA256 | 34e34144f9dd73ae0bd65300b3e94a0da8d663c6815c6a8fc608e099e76081f4 |
| SHA512 | e5e7257be1be0ff146243524949d6fd19f4f790d060b59b5b3ee87e4d5e4743673dff7ed7c94b388a65eaa05a06999d81f6eda00770bf53b3bedaf27d8febba0 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | a30086a18a66428bd4a83d68afd998fc |
| SHA1 | 1274589826202e0081d88a2e9d2796a1529b8046 |
| SHA256 | ec59f9ada6ae1e73cd712e325601137b45b890b920fc931db5c73f2258916c2f |
| SHA512 | 06cc66313db4176e7720b24e13fd739c32a4b6201b22d3e32a465eb31f4b3db90feb7b023d3e0321f85cd9293bba6a6e6dffb49ab593a191419ec8aa53df7635 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\n9vxbo99.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 314da136f18ebcc49f03152c6c207c69 |
| SHA1 | f7a13697a451ff688c913e002e0c339f4676d267 |
| SHA256 | 0d3e41087a085770f4f31864ca6e121e9f62ac56d8489e250f6e083c10641d3c |
| SHA512 | 523f1cfbf8aa1d1d5a51eb617dda9b120f86cbad4ef6a7b0a02e14deee703440bc8dce0829a82f0a27a3800abb061b9eaf3600f70f9fc5665cbc80229a7c0062 |