Malware Analysis Report

2024-07-28 08:28

Sample ID 240610-mzw7kagh37
Target https://code.visualstudio.com/Download/
Tags
microsoft discovery execution phishing
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file https://code.visualstudio.com/Download/ was found to be: Likely malicious.

Malicious Activity Summary

microsoft discovery execution phishing

Downloads MZ/PE file

Loads dropped DLL

Checks computer location settings

Executes dropped EXE

Modifies file permissions

Checks installed software on the system

Legitimate hosting services abused for malware hosting/C2

Detected potential entity reuse from brand microsoft.

Drops file in Windows directory

Enumerates physical storage devices

Command and Scripting Interpreter: PowerShell

Checks processor information in registry

Modifies registry class

Suspicious behavior: MapViewOfSection

Suspicious behavior: EnumeratesProcesses

Modifies Internet Explorer settings

Suspicious use of WriteProcessMemory

Enumerates system info in registry

Suspicious use of FindShellTrayWindow

Modifies data under HKEY_USERS

Suspicious behavior: GetForegroundWindowSpam

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Suspicious use of SetWindowsHookEx

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

MITRE ATT&CK Matrix V13

Initial Access
TA0001
Execution
TA0002
Command and Scripting Interpreter
T1059
PowerShell
T1059.001
Persistence
TA0003
Privilege Escalation
TA0004
Defense Evasion
TA0005
File and Directory Permissions Modification
T1222
Modify Registry
T1112
Credential Access
TA0006
Discovery
TA0007
Query Registry
T1012
System Information Discovery
T1082
Lateral Movement
TA0008
Collection
TA0009
Exfiltration
TA0010
Command and Control
TA0011
Web Service
T1102
Impact
TA0040
Resource Development
TA0042
Reconnaissance
TA0043

Analysis: static1

Detonation Overview

Reported

2024-06-10 10:54

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-10 10:54

Reported

2024-06-10 11:04

Platform

win10-20240404-it

Max time kernel

392s

Max time network

393s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://code.visualstudio.com/Download/

Signatures

Downloads MZ/PE file

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A \??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A \??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A

Modifies file permissions

discovery
Description Indicator Process Target
N/A N/A C:\Windows\system32\icacls.exe N/A

Checks installed software on the system

discovery

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Detected potential entity reuse from brand microsoft.

phishing microsoft

Drops file in Windows directory

Description Indicator Process Target
File created C:\Windows\rescache\_merged\3720402701\1568373884.pri C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
File created C:\Windows\rescache\_merged\3720402701\1568373884.pri C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
File opened for modification C:\Windows\Debug\ESE.TXT C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
File created C:\Windows\rescache\_merged\3720402701\1568373884.pri C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
File created C:\Windows\rescache\_merged\3720402701\1568373884.pri C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
File created C:\Windows\rescache\_merged\3720402701\1568373884.pri C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
File opened for modification C:\Windows\Debug\ESE.TXT C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
File created C:\Windows\rescache\_merged\3720402701\1568373884.pri C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A

Command and Scripting Interpreter: PowerShell

execution
Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A

Enumerates physical storage devices

Checks processor information in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\ProcessorNameString C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2 C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1 C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\~MHz C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Software\Microsoft\Internet Explorer\Main C:\Windows\system32\browser_broker.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Software\Microsoft\Internet Explorer\Main C:\Windows\system32\browser_broker.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000\Software\Microsoft\Internet Explorer\Main C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133624906626561514" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.rb\ = "File di origine Ruby" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.wxs\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.gitattributes\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.java\shell\open\command C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.psd1\ = "File di origine PowerShell Module Manifest" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.jav\shell\open\command C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.lua\OpenWithProgids\VSCode.lua C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.py\AppUserModelID = "Microsoft.VisualStudioCode" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.ts\shell C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (int) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\NumberOfSubdomains = "0" C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.bash_login C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.config\shell\open C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.cs\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (data) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3\{AEBA21FA-782A-4A90-978D-B72164 = 1a3761592352350c7a5f20172f1e1a190e2b017313371312141a152a C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\microsoft.com\ = "0" C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.h\DefaultIcon C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.mdoc\shell\open C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (data) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3\{AEBA21FA-782A-4A90-978D-B72164 = 1a3761592352350c7a5f20172f1e1a190e2b017313371312141a152a C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.mdtxt\shell C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.pm6\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.aspx\shell\open C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.c\shell\open C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.dart\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.rprofile\shell C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.editorconfig\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.hxx\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.psd1\AppUserModelID = "Microsoft.VisualStudioCode" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.cs\shell\open\command C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.htm\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.svgz\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:" C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.c++\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.cfg\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.cs\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\csharp.ico" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.rs\shell C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (int) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FavOrder\TreeView = "1" C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.fsscript\shell C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.less\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.mdtext\OpenWithProgids\VSCode.mdtext C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.bash_profile\ = "File di origine Bash Profile" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.json\shell\open\Icon = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.java\OpenWithProgids\VSCode.java C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.json\AppUserModelID = "Microsoft.VisualStudioCode" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\marketplace.visualstudio.com C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\7 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.ctp\ = "File di origine CakePHP Template" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.dtd\shell\open\command C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.eyml\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.tex\shell\open\command C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (int) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus\CIPolicyState = "0" C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead\Meta\generator$vBulletin 4 C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.c\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\Code.exe\" \"%1\"" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.hbs\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.sql\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Programs\\Microsoft VS Code\\resources\\app\\resources\\win32\\sql.ico" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.csproj\AppUserModelID = "Microsoft.VisualStudioCode" C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\121\Internet Settings\Cache\Content\CachePrefix C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.c\OpenWithProgids C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.clojure C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.bash_logout\shell C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Key created \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\VSCode.mjs\shell\open C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-160447019-1232603106-4168707212-1000_Classes\.vb\OpenWithProgids\VSCode.vb C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: MapViewOfSection

Description Indicator Process Target
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Windows\System32\PickerHost.exe N/A
N/A N/A C:\Windows\System32\PickerHost.exe N/A
N/A N/A C:\Windows\System32\PickerHost.exe N/A
N/A N/A C:\Windows\System32\PickerHost.exe N/A
N/A N/A C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4756 wrote to memory of 4136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 4136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3836 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3692 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 3692 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4756 wrote to memory of 536 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://code.visualstudio.com/Download/

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffdb9ac9758,0x7ffdb9ac9768,0x7ffdb9ac9778

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1528 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1824 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2072 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2844 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2852 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4776 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4880 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4908 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5480 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5508 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4800 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5548 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5856 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5900 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5532 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6100 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6056 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6260 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4800 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5660 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5028 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6064 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=4964 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe

"C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5540 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp

"C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp" /SL5="$A007E,99556431,828416,C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.90.0.exe"

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command "Get-WmiObject Win32_Process | Where-Object { $_.ExecutablePath -eq 'C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe' } | Select @{Name='Id'; Expression={$_.ProcessId}} | Stop-Process -Force"

C:\Windows\system32\icacls.exe

"C:\Windows\system32\icacls.exe" "C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code" /inheritancelevel:r /grant:r "*S-1-5-18:(OI)(CI)F" /grant:r "*S-1-5-32-544:(OI)(CI)F" /grant:r "*S-1-5-11:(OI)(CI)RX" /grant:r "*S-1-5-32-545:(OI)(CI)RX" /grant:r "*S-1-3-0:(OI)(CI)F" /grant:r "Admin:(OI)(CI)F"

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe"

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1596 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=2144 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:3

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --mojo-platform-channel-handle=2912 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:26c76871-20db-416d-a249-071e9fc43cb1 /prefetch:1

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=node.mojom.NodeService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=3360 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=node.mojom.NodeService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=3356 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=node.mojom.NodeService --lang=en-US --service-sandbox-type=none --dns-result-order=ipv4first --inspect-port=0 --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=3664 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /d /s /c "wsl.exe -l -q"

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3596 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:26c76871-20db-416d-a249-071e9fc43cb1 /prefetch:1

\??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe

"c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe" tunnel status

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4020 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:26c76871-20db-416d-a249-071e9fc43cb1 /prefetch:1

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4140 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:26c76871-20db-416d-a249-071e9fc43cb1 /prefetch:1

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=3304 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:26c76871-20db-416d-a249-071e9fc43cb1 /prefetch:1

\??\c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe

"c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\vsce-sign\bin\vsce-sign.exe" verify --package c:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\darcula-theme.darcula-official-2.4.17 --signaturearchive c:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\.0c1467e8-3239-4397-baf8-b183eefe3e35

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /d /s /c "wsl.exe -l -q"

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --app-user-model-id=Microsoft.VisualStudioCode --app-path="C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app" --enable-sandbox --enable-blink-features=HighlightAPI --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4156 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version --vscode-window-config=vscode:26c76871-20db-416d-a249-071e9fc43cb1 /prefetch:1

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca

C:\Windows\system32\browser_broker.exe

C:\Windows\system32\browser_broker.exe -Embedding

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4520 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:2

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca

C:\Windows\system32\browser_broker.exe

C:\Windows\system32\browser_broker.exe -Embedding

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Windows\System32\PickerHost.exe

C:\Windows\System32\PickerHost.exe -Embedding

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" "--open-url" "--" "vscode:extension/darcula-theme.darcula-official"

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Roaming\Code /prefetch:4 --no-rate-limit --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Roaming\Code\Crashpad --url=appcenter://code?aid=a4e3233c-699c-46ec-b4f4-9c2a77254662&uid=e036875a-9cda-4220-94f1-0465fc83fb65&iid=e036875a-9cda-4220-94f1-0465fc83fb65&sid=e036875a-9cda-4220-94f1-0465fc83fb65 --annotation=_companyName=Microsoft --annotation=_productName=VSCode --annotation=_version=1.90.0 --annotation=plat=Win64 --annotation=prod=Electron --annotation=ver=29.4.0 --initial-client-data=0x3f4,0x3f8,0x3fc,0x3f0,0x404,0x7ff7ead37d40,0x7ff7ead37d4c,0x7ff7ead37d58

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1548 --field-trial-handle=1568,i,5882857402564749004,10615051097092845613,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=2356 --field-trial-handle=1568,i,5882857402564749004,10615051097092845613,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:3

C:\Windows\System32\PickerHost.exe

C:\Windows\System32\PickerHost.exe -Embedding

C:\Windows\System32\PickerHost.exe

C:\Windows\System32\PickerHost.exe -Embedding

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Windows\System32\PickerHost.exe

C:\Windows\System32\PickerHost.exe -Embedding

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=4128 --field-trial-handle=1600,i,11573512748431734050,8062127388669103618,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:8

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" "--open-url" "--" "vscode:extension/darcula-theme.darcula-official"

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Roaming\Code /prefetch:4 --no-rate-limit --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Roaming\Code\Crashpad --url=appcenter://code?aid=a4e3233c-699c-46ec-b4f4-9c2a77254662&uid=e036875a-9cda-4220-94f1-0465fc83fb65&iid=e036875a-9cda-4220-94f1-0465fc83fb65&sid=e036875a-9cda-4220-94f1-0465fc83fb65 --annotation=_companyName=Microsoft --annotation=_productName=VSCode --annotation=_version=1.90.0 --annotation=plat=Win64 --annotation=prod=Electron --annotation=ver=29.4.0 --initial-client-data=0x3f0,0x3f4,0x3f8,0x3ec,0x3fc,0x7ff7ead37d40,0x7ff7ead37d4c,0x7ff7ead37d58

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1580 --field-trial-handle=1584,i,1700012146481774986,10056171861231126219,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:2

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\Code" --standard-schemes=vscode-webview,vscode-file --enable-sandbox --secure-schemes=vscode-webview,vscode-file --cors-schemes=vscode-webview,vscode-file --fetch-schemes=vscode-webview,vscode-file --service-worker-schemes=vscode-webview --code-cache-schemes=vscode-webview,vscode-file --mojo-platform-channel-handle=2148 --field-trial-handle=1584,i,1700012146481774986,10056171861231126219,262144 --enable-features=kWebSQLAccess --disable-features=CalculateNativeWinOcclusion,SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand --variations-seed-version /prefetch:3

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe

"C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\Code.exe" "c:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json-language-features\server\dist\node\jsonServerMain" --node-ipc --clientProcessId=5620

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=4956 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=5732 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6356 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5852 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=4648 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=928 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6824 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=6968 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7104 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7448 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7348 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6924 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7316 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=7888 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7644 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=5616 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=8480 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=8364 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=8788 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=8816 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=8836 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=8844 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=9372 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=9408 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=9436 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=9452 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9468 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=9476 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=9500 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=9872 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=10044 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=10060 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=10084 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=10100 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=10112 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=10132 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=10532 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=11492 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=11588 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=9628 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=8648 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=12368 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=12544 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=12628 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=13232 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=7752 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=8088 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=13236 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=12792 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=12892 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=13888 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=14396 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=14548 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=14728 --field-trial-handle=1784,i,2745315625700311758,4140329573051130044,131072 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 code.visualstudio.com udp
US 13.107.253.64:443 code.visualstudio.com tcp
US 13.107.253.64:443 code.visualstudio.com tcp
US 8.8.8.8:53 js.monitor.azure.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.253.64:443 wcpstatic.microsoft.com tcp
US 13.107.253.64:443 wcpstatic.microsoft.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 8.8.8.8:53 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.0.8.0.8.0.8.0.ip6.arpa udp
US 8.8.8.8:53 64.253.107.13.in-addr.arpa udp
GB 142.250.179.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 browser.events.data.microsoft.com udp
US 20.42.73.28:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 20.42.73.28:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 28.73.42.20.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 www.microsoft.com udp
BE 104.90.25.175:443 www.microsoft.com tcp
US 8.8.8.8:53 marketplace.visualstudio.com udp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 8.8.8.8:53 assets.onestore.ms udp
US 8.8.8.8:53 web.vortex.data.microsoft.com udp
US 8.8.8.8:53 mem.gfx.ms udp
US 8.8.8.8:53 microsoftwindows.112.2o7.net udp
DE 23.212.214.62:443 assets.onestore.ms tcp
IE 66.235.152.225:443 microsoftwindows.112.2o7.net tcp
US 13.107.253.64:443 mem.gfx.ms tcp
US 8.8.8.8:53 175.25.90.104.in-addr.arpa udp
US 8.8.8.8:53 62.214.212.23.in-addr.arpa udp
US 8.8.8.8:53 vscode.download.prss.microsoft.com udp
US 8.8.8.8:53 ms-python.gallerycdn.vsassets.io udp
US 8.8.8.8:53 ms-vscode.gallerycdn.vsassets.io udp
US 8.8.8.8:53 vscjava.gallerycdn.vsassets.io udp
US 8.8.8.8:53 github.gallerycdn.vsassets.io udp
FR 68.232.34.200:443 github.gallerycdn.vsassets.io tcp
US 152.199.21.175:443 vscode.download.prss.microsoft.com tcp
FR 68.232.34.200:443 github.gallerycdn.vsassets.io tcp
FR 68.232.34.200:443 github.gallerycdn.vsassets.io tcp
FR 68.232.34.200:443 github.gallerycdn.vsassets.io tcp
US 8.8.8.8:53 225.152.235.66.in-addr.arpa udp
US 8.8.8.8:53 14.251.17.2.in-addr.arpa udp
US 8.8.8.8:53 200.34.232.68.in-addr.arpa udp
US 8.8.8.8:53 175.21.199.152.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
FR 172.217.20.196:443 www.google.com tcp
US 8.8.8.8:53 196.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 apis.google.com udp
FR 142.250.178.142:443 apis.google.com tcp
US 8.8.8.8:53 163.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
FR 172.217.20.174:443 play.google.com tcp
US 8.8.8.8:53 142.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 174.20.217.172.in-addr.arpa udp
FR 172.217.20.196:443 www.google.com udp
US 8.8.8.8:53 id.google.com udp
SG 142.251.10.94:443 id.google.com tcp
US 8.8.8.8:53 67.214.58.216.in-addr.arpa udp
SG 142.251.10.94:443 id.google.com tcp
US 8.8.8.8:53 94.10.251.142.in-addr.arpa udp
FR 172.217.20.174:443 play.google.com udp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 8.8.8.8:53 cdn.vsassets.io udp
US 8.8.8.8:53 onlyutkarsh.gallerycdn.vsassets.io udp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.108.133:443 raw.githubusercontent.com tcp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 8.8.8.8:53 133.108.199.185.in-addr.arpa udp
GB 20.26.156.210:443 api.github.com tcp
FR 68.232.34.200:443 onlyutkarsh.gallerycdn.vsassets.io tcp
US 8.8.8.8:53 filext.com udp
US 172.67.69.232:443 filext.com tcp
US 172.67.69.232:443 filext.com tcp
US 8.8.8.8:53 apps.identrust.com udp
BE 104.117.77.184:80 apps.identrust.com tcp
US 8.8.8.8:53 cdn.privacy-mgmt.com udp
US 18.245.199.31:443 cdn.privacy-mgmt.com tcp
US 8.8.8.8:53 cdns.symplr.de udp
US 34.120.221.78:443 cdns.symplr.de tcp
US 8.8.8.8:53 232.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 184.77.117.104.in-addr.arpa udp
US 8.8.8.8:53 78.221.120.34.in-addr.arpa udp
US 8.8.8.8:53 31.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 cp.filext.com udp
FR 143.244.56.49:443 cp.filext.com tcp
US 18.245.199.31:443 cdn.privacy-mgmt.com tcp
FR 143.244.56.49:443 cp.filext.com udp
US 172.67.69.232:443 filext.com tcp
FR 143.244.56.49:443 cp.filext.com tcp
US 8.8.8.8:53 17.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 49.56.244.143.in-addr.arpa udp
US 8.8.8.8:53 default.exp-tas.com udp
US 8.8.8.8:53 default.exp-tas.com udp
US 13.107.5.93:443 default.exp-tas.com tcp
US 8.8.8.8:53 93.5.107.13.in-addr.arpa udp
US 8.8.8.8:53 az764295.vo.msecnd.net udp
US 8.8.8.8:53 az764295.vo.msecnd.net udp
US 152.199.19.160:443 az764295.vo.msecnd.net tcp
US 152.199.19.160:443 az764295.vo.msecnd.net tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 mobile.events.data.microsoft.com udp
US 8.8.8.8:53 mobile.events.data.microsoft.com udp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp
US 20.189.173.26:443 mobile.events.data.microsoft.com tcp
US 8.8.8.8:53 mobile.events.data.microsoft.com udp
US 8.8.8.8:53 26.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 25.73.42.20.in-addr.arpa udp
US 8.8.8.8:443 dns.google udp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
FR 68.232.34.200:443 onlyutkarsh.gallerycdn.vsassets.io tcp
US 8.8.8.8:53 14.227.111.52.in-addr.arpa udp
FR 68.232.34.200:443 onlyutkarsh.gallerycdn.vsassets.io tcp
US 185.199.108.133:443 raw.githubusercontent.com tcp
US 185.199.108.133:443 raw.githubusercontent.com tcp
GB 20.26.156.215:443 github.com tcp
US 13.107.6.175:443 tcp
US 8.8.8.8:53 175.6.107.13.in-addr.arpa udp
US 8.8.8.8:53 240.197.17.2.in-addr.arpa udp
US 8.8.8.8:53 api.retool.com udp
US 35.92.202.168:443 api.retool.com tcp
US 35.92.202.168:443 api.retool.com tcp
US 8.8.8.8:53 168.202.92.35.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 darculatheme.com udp
US 8.8.8.8:53 195.49.178.192.in-addr.arpa udp
US 3.33.130.190:443 darculatheme.com tcp
US 3.33.130.190:443 darculatheme.com tcp
US 3.33.130.190:443 darculatheme.com tcp
US 3.33.130.190:443 darculatheme.com tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 btloader.com udp
US 8.8.8.8:53 img1.wsimg.com udp
FR 172.217.20.196:443 www.google.com tcp
FR 172.217.20.196:443 www.google.com tcp
SE 92.123.135.91:443 img1.wsimg.com tcp
SE 92.123.135.91:443 img1.wsimg.com tcp
US 104.22.75.216:443 btloader.com tcp
US 104.22.75.216:443 btloader.com tcp
US 8.8.8.8:53 190.130.33.3.in-addr.arpa udp
US 8.8.8.8:53 36.249.124.192.in-addr.arpa udp
US 8.8.8.8:53 ocsp.starfieldtech.com udp
US 192.124.249.24:80 ocsp.starfieldtech.com tcp
US 8.8.8.8:53 216.75.22.104.in-addr.arpa udp
US 8.8.8.8:53 91.135.123.92.in-addr.arpa udp
US 8.8.8.8:53 24.249.124.192.in-addr.arpa udp
US 8.8.8.8:53 marketplace.visualstudio.com udp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
US 8.8.8.8:53 cdn.vsassets.io udp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 152.199.19.160:443 cdn.vsassets.io tcp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 8.8.8.8:53 fpt.microsoft.com udp
US 52.167.30.171:443 fpt.microsoft.com tcp
US 52.167.30.171:443 fpt.microsoft.com tcp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 13.107.42.18:443 marketplace.visualstudio.com tcp
US 8.8.8.8:53 171.30.167.52.in-addr.arpa udp
US 8.8.8.8:53 darcula-theme.gallerycdn.vsassets.io udp
FR 68.232.34.200:443 darcula-theme.gallerycdn.vsassets.io tcp
FR 68.232.34.200:443 darcula-theme.gallerycdn.vsassets.io tcp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 8.8.8.8:53 avatars3.githubusercontent.com udp
US 8.8.8.8:53 github.com udp
US 185.199.110.133:443 avatars3.githubusercontent.com tcp
US 185.199.110.133:443 avatars3.githubusercontent.com tcp
US 185.199.108.133:443 avatars3.githubusercontent.com tcp
US 185.199.108.133:443 avatars3.githubusercontent.com tcp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 133.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 72.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 23.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 178.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 161.19.199.152.in-addr.arpa udp
US 8.8.8.8:443 dns.google udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 default.exp-tas.com udp
US 13.107.5.93:443 default.exp-tas.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 8.8.8.8:53 200.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 164.189.21.2.in-addr.arpa udp
BE 88.221.83.210:443 www.bing.com tcp
BE 88.221.83.210:443 www.bing.com tcp
US 8.8.8.8:53 210.83.221.88.in-addr.arpa udp
US 8.8.8.8:53 181.97.55.23.in-addr.arpa udp
BE 2.17.107.112:443 www.bing.com tcp
BE 2.17.107.112:443 www.bing.com tcp
BE 2.17.107.112:443 www.bing.com tcp
BE 2.17.107.112:443 www.bing.com tcp
US 8.8.8.8:53 cdn.privacy-mgmt.com udp
US 18.245.199.25:443 cdn.privacy-mgmt.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 cockpit.symplr.de udp
US 8.8.8.8:53 iab-category-finder-xddc4j3vva-ey.a.run.app udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 a.teads.tv udp
US 34.120.221.78:443 cdns.symplr.de udp
US 8.8.8.8:53 ups.xplosion.de udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
DE 116.202.77.6:443 cockpit.symplr.de tcp
US 216.239.36.53:443 iab-category-finder-xddc4j3vva-ey.a.run.app tcp
IE 52.17.203.122:443 ups.xplosion.de tcp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
FR 142.250.201.162:443 securepubads.g.doubleclick.net tcp
BE 23.55.97.75:443 a.teads.tv tcp
US 8.8.8.8:53 cdn.xplosion.de udp
US 3.164.163.53:443 cdn.xplosion.de tcp
US 8.8.8.8:53 at.teads.tv udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 2.21.189.110:443 at.teads.tv tcp
FR 172.217.20.194:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
FR 52.84.174.60:443 config.aps.amazon-adsystem.com tcp
US 8.8.8.8:53 cdn.jsdelivr.net udp
FR 142.250.201.162:443 securepubads.g.doubleclick.net udp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 cdn.id5-sync.com udp
FR 18.155.129.56:443 tags.crwdcntrl.net tcp
US 104.22.53.86:443 cdn.id5-sync.com tcp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
IE 54.220.158.112:443 bcp.crwdcntrl.net tcp
US 8.8.8.8:53 oa.openxcdn.net udp
US 8.8.8.8:53 static.criteo.net udp
US 8.8.8.8:53 invstatic101.creativecdn.com udp
US 8.8.8.8:53 59aa3e4ba0d6e9f7cb3c283e68015d9d.safeframe.googlesyndication.com udp
US 34.96.70.87:443 invstatic101.creativecdn.com tcp
US 34.102.146.192:443 oa.openxcdn.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
FR 216.58.214.161:443 59aa3e4ba0d6e9f7cb3c283e68015d9d.safeframe.googlesyndication.com tcp
US 8.8.8.8:53 25.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 53.36.239.216.in-addr.arpa udp
US 8.8.8.8:53 66.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 6.77.202.116.in-addr.arpa udp
US 8.8.8.8:53 122.194.245.18.in-addr.arpa udp
US 8.8.8.8:53 162.201.250.142.in-addr.arpa udp
US 8.8.8.8:53 122.203.17.52.in-addr.arpa udp
US 8.8.8.8:53 75.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 53.163.164.3.in-addr.arpa udp
US 8.8.8.8:53 194.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 110.189.21.2.in-addr.arpa udp
US 8.8.8.8:53 60.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 56.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 86.53.22.104.in-addr.arpa udp
US 8.8.8.8:53 226.20.18.104.in-addr.arpa udp
US 8.8.8.8:53 112.158.220.54.in-addr.arpa udp
US 8.8.8.8:53 87.70.96.34.in-addr.arpa udp
US 8.8.8.8:53 192.146.102.34.in-addr.arpa udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 script.4dex.io udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 tlx.3lift.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 8.8.8.8:53 i.connectad.io udp
US 8.8.8.8:53 prg.smartadserver.com udp
US 104.26.8.169:443 script.4dex.io tcp
US 8.8.8.8:53 rtb.openx.net udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 prebid.a-mo.net udp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 8.8.8.8:53 mp.4dex.io udp
US 8.8.8.8:53 ad.yieldlab.net udp
US 8.8.8.8:53 adx.adform.net udp
US 8.8.8.8:53 bidder.criteo.com udp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 orbidder.otto.de udp
DE 51.89.9.251:443 onetag-sys.com tcp
NL 185.89.210.90:443 ib.adnxs.com tcp
DE 18.157.230.4:443 tlx.3lift.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
IE 52.18.53.151:443 ap.lijit.com tcp
DE 18.157.230.4:443 tlx.3lift.com tcp
US 104.22.55.206:443 i.connectad.io tcp
GB 2.21.188.116:443 ad.yieldlab.net tcp
US 104.22.55.206:443 i.connectad.io tcp
DK 37.157.5.133:443 adx.adform.net tcp
DK 37.157.5.133:443 adx.adform.net tcp
IE 52.18.53.151:443 ap.lijit.com tcp
BE 35.210.58.154:443 orbidder.otto.de tcp
BE 35.210.58.154:443 orbidder.otto.de tcp
GB 2.21.188.116:443 ad.yieldlab.net tcp
NL 147.75.84.158:443 prebid.a-mo.net tcp
FR 185.86.138.121:443 prg.smartadserver.com tcp
FR 185.86.138.121:443 prg.smartadserver.com tcp
US 8.8.8.8:53 mweb-hb.presage.io udp
NL 185.89.210.90:443 ib.adnxs.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 51.89.9.251:443 onetag-sys.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
NL 147.75.84.158:443 prebid.a-mo.net tcp
US 35.186.253.211:443 rtb.openx.net tcp
US 172.64.153.78:443 mp.4dex.io tcp
US 172.64.153.78:443 mp.4dex.io tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
DE 51.89.9.251:443 onetag-sys.com tcp
NL 185.89.210.90:443 ib.adnxs.com tcp
NL 147.75.84.158:443 prebid.a-mo.net tcp
US 104.22.55.206:443 i.connectad.io tcp
IE 18.200.208.140:443 mweb-hb.presage.io tcp
IE 52.18.53.151:443 ap.lijit.com tcp
US 172.64.153.78:443 mp.4dex.io tcp
DK 37.157.5.133:443 adx.adform.net tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
FR 185.86.138.121:443 prg.smartadserver.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
DE 18.157.230.4:443 tlx.3lift.com tcp
BE 35.210.58.154:443 orbidder.otto.de tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 2.21.188.116:443 ad.yieldlab.net tcp
GB 2.21.188.116:443 ad.yieldlab.net tcp
FR 185.86.138.121:443 prg.smartadserver.com tcp
FR 172.217.20.194:443 googleads.g.doubleclick.net tcp
FR 172.217.20.194:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 esp.rtbhouse.com udp
US 8.8.8.8:53 oajs.openx.net udp
US 8.8.8.8:53 gum.criteo.com udp
US 34.120.135.53:443 oajs.openx.net tcp
US 104.26.8.169:443 script.4dex.io tcp
US 8.8.8.8:53 cadmus.script.ac udp
US 35.190.39.111:443 esp.rtbhouse.com tcp
IE 18.200.208.140:443 mweb-hb.presage.io tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 104.18.23.145:443 cadmus.script.ac tcp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
FR 142.250.179.97:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.google.com udp
IE 67.220.226.234:443 aax-eu.amazon-adsystem.com tcp
FR 172.217.20.196:443 www.google.com udp
US 8.8.8.8:53 ads.pubmatic.com udp
US 8.8.8.8:53 ice.360yield.com udp
US 34.120.135.53:443 oajs.openx.net udp
IE 54.155.95.204:443 ice.360yield.com tcp
GB 2.21.188.239:443 ads.pubmatic.com tcp
US 8.8.8.8:53 161.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 169.8.26.104.in-addr.arpa udp
US 8.8.8.8:53 191.36.162.3.in-addr.arpa udp
US 8.8.8.8:53 90.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 251.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 4.230.157.18.in-addr.arpa udp
US 8.8.8.8:53 206.55.22.104.in-addr.arpa udp
US 8.8.8.8:53 151.53.18.52.in-addr.arpa udp
US 8.8.8.8:53 211.253.186.35.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 133.5.157.37.in-addr.arpa udp
US 8.8.8.8:53 121.138.86.185.in-addr.arpa udp
US 8.8.8.8:53 116.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 158.84.75.147.in-addr.arpa udp
US 8.8.8.8:53 154.58.210.35.in-addr.arpa udp
US 8.8.8.8:53 8.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 139.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 78.153.64.172.in-addr.arpa udp
US 8.8.8.8:53 140.208.200.18.in-addr.arpa udp
US 8.8.8.8:53 97.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 53.135.120.34.in-addr.arpa udp
US 8.8.8.8:53 111.39.190.35.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 145.23.18.104.in-addr.arpa udp
US 8.8.8.8:53 234.226.220.67.in-addr.arpa udp
US 8.8.8.8:53 204.95.155.54.in-addr.arpa udp
US 8.8.8.8:53 239.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 google-bidout-d.openx.net udp
US 35.244.159.8:443 google-bidout-d.openx.net tcp
US 8.8.8.8:53 u.4dex.io udp
US 34.149.40.38:443 u.4dex.io tcp
DE 51.89.9.251:443 onetag-sys.com udp
US 104.22.55.206:443 i.connectad.io udp
US 35.186.253.211:443 rtb.openx.net udp
US 8.8.8.8:53 cdn.ampproject.org udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
FR 216.58.213.65:443 cdn.ampproject.org tcp
FR 216.58.213.65:443 cdn.ampproject.org tcp
FR 216.58.213.65:443 cdn.ampproject.org tcp
FR 216.58.213.65:443 cdn.ampproject.org tcp
FR 216.58.213.65:443 cdn.ampproject.org tcp
US 8.8.8.8:53 secure-assets.rubiconproject.com udp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
BE 104.68.78.171:443 secure-assets.rubiconproject.com tcp
IE 67.220.226.234:443 aax-eu.amazon-adsystem.com tcp
IE 67.220.226.234:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 m.media-amazon.com udp
US 8.8.8.8:53 eus.rubiconproject.com udp
US 3.165.120.40:443 m.media-amazon.com tcp
BE 23.55.98.169:443 eus.rubiconproject.com tcp
US 8.8.8.8:53 sync.1rx.io udp
NL 46.228.174.117:443 sync.1rx.io tcp
US 8.8.8.8:53 image6.pubmatic.com udp
US 34.149.40.38:443 u.4dex.io udp
GB 185.64.190.78:443 image6.pubmatic.com tcp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 8.159.244.35.in-addr.arpa udp
US 8.8.8.8:53 38.40.149.34.in-addr.arpa udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 65.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 120.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 171.78.68.104.in-addr.arpa udp
US 8.8.8.8:53 169.98.55.23.in-addr.arpa udp
US 8.8.8.8:53 40.120.165.3.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 sync.targeting.unrulymedia.com udp
US 8.8.8.8:53 token.rubiconproject.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 69.173.156.148:443 token.rubiconproject.com tcp
US 3.165.120.40:443 m.media-amazon.com udp
US 8.8.8.8:53 rtb.gumgum.com udp
IE 63.33.2.172:443 rtb.gumgum.com tcp
US 8.8.8.8:53 ts.amazon-adsystem.com udp
US 8.8.8.8:53 cs.media.net udp
IE 63.33.2.172:443 rtb.gumgum.com tcp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
US 8.8.8.8:53 eb2.3lift.com udp
GB 2.21.188.27:443 cs.media.net tcp
US 18.245.175.127:443 ts.amazon-adsystem.com tcp
NL 89.149.192.196:443 ssbsync.smartadserver.com tcp
US 8.8.8.8:53 ads.us.e-planning.net udp
US 8.8.8.8:53 pixel-eu.rubiconproject.com udp
US 76.223.111.18:443 eb2.3lift.com tcp
IE 52.19.220.51:443 ce.lijit.com tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
IE 52.19.220.51:443 ce.lijit.com tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
IE 52.19.220.51:443 ce.lijit.com tcp
US 8.8.8.8:53 check.analytics.rlcdn.com udp
FR 99.86.91.90:443 check.analytics.rlcdn.com tcp
US 8.8.8.8:53 images-eu.ssl-images-amazon.com udp
US 3.165.120.40:443 m.media-amazon.com udp
US 8.8.8.8:53 s2.paa-reporting-advertising.amazon udp
US 8.8.8.8:53 78.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
FR 52.222.194.94:443 images-eu.ssl-images-amazon.com tcp
US 8.8.8.8:53 172.2.33.63.in-addr.arpa udp
US 8.8.8.8:53 127.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 27.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 196.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 51.220.19.52.in-addr.arpa udp
US 8.8.8.8:53 149.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 4.178.3.193.in-addr.arpa udp
US 8.8.8.8:53 90.91.86.99.in-addr.arpa udp
FR 99.86.91.70:443 s2.paa-reporting-advertising.amazon tcp
FR 99.86.91.70:443 s2.paa-reporting-advertising.amazon tcp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
US 8.8.8.8:53 match.sharethrough.com udp
US 8.8.8.8:53 cs.admanmedia.com udp
US 8.8.8.8:53 dis.eu.criteo.com udp
NL 89.149.193.105:443 rtb-csync.smartadserver.com tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
DE 85.114.159.118:443 dsp.adfarm1.adition.com tcp
DE 18.194.142.248:443 match.sharethrough.com tcp
NL 178.250.1.9:443 dis.eu.criteo.com tcp
US 8.8.8.8:53 aes.eu-west.3px.axp.amazon-adsystem.com udp
IE 52.212.91.251:443 aes.eu-west.3px.axp.amazon-adsystem.com tcp
NL 89.149.193.105:443 rtb-csync.smartadserver.com tcp
US 8.8.8.8:53 dis.criteo.com udp
US 8.8.8.8:53 d.turn.com udp
NL 46.228.164.13:443 d.turn.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
US 8.8.8.8:53 ads.stickyadstv.com udp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
US 8.8.8.8:53 id.a-mx.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
GB 2.21.189.110:443 at.teads.tv tcp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
US 8.8.8.8:53 acdn.adnxs.com udp
DE 79.127.216.47:443 id.a-mx.com tcp
US 8.8.8.8:53 cdn.connectad.io udp
US 8.8.8.8:53 msodigital-d.openx.net udp
US 8.8.8.8:53 ms-cookie-sync.presage.io udp
US 151.101.1.108:443 acdn.adnxs.com tcp
US 8.8.8.8:53 cms.quantserve.com udp
NL 147.75.84.158:443 prebid.a-mo.net tcp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
DE 91.228.74.244:443 cms.quantserve.com tcp
US 8.8.8.8:53 t.adx.opera.com udp
US 8.8.8.8:53 ad.mrtnsvr.com udp
IE 34.253.77.234:443 ms-cookie-sync.presage.io tcp
US 8.8.8.8:53 sync-tm.everesttech.net udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 p.rfihub.com udp
US 8.8.8.8:53 csync.loopme.me udp
US 8.8.8.8:53 d5p.de17a.com udp
US 8.8.8.8:53 cm-supply-web.gammaplatform.com udp
US 8.8.8.8:53 ipac.ctnsnet.com udp
US 8.8.8.8:53 core.iprom.net udp
US 8.8.8.8:53 cm.adgrx.com udp
DE 91.228.74.244:443 cms.quantserve.com tcp
IE 34.253.77.234:443 ms-cookie-sync.presage.io tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
DE 91.228.74.244:443 cms.quantserve.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
SI 195.5.165.20:443 core.iprom.net tcp
NL 35.214.130.63:443 csync.loopme.me tcp
IE 54.217.19.5:443 cm.adgrx.com tcp
FR 172.217.20.162:443 cm.g.doubleclick.net tcp
FR 172.217.20.162:443 cm.g.doubleclick.net tcp
FR 172.217.20.162:443 cm.g.doubleclick.net tcp
FR 172.217.20.162:443 cm.g.doubleclick.net tcp
FR 172.217.20.162:443 cm.g.doubleclick.net tcp
FR 172.217.20.162:443 cm.g.doubleclick.net tcp
NL 193.0.160.131:443 p.rfihub.com tcp
US 151.101.2.49:443 sync-tm.everesttech.net tcp
SE 213.155.156.180:443 d5p.de17a.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
IE 34.246.206.6:443 match.prod.bidr.io tcp
IE 34.246.206.6:443 match.prod.bidr.io tcp
US 35.186.193.173:443 ipac.ctnsnet.com tcp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
US 54.167.137.47:443 sync.srv.stackadapt.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 54.167.137.47:443 sync.srv.stackadapt.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
US 8.8.8.8:53 um.simpli.fi udp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 8.8.8.8:53 cr.frontend.weborama.fr udp
NL 35.204.158.49:443 um.simpli.fi tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 35.204.158.49:443 um.simpli.fi tcp
US 8.8.8.8:53 mwzeom.zeotap.com udp
US 34.111.129.221:443 cr.frontend.weborama.fr tcp
FR 172.217.20.162:443 cm.g.doubleclick.net udp
US 54.167.137.47:443 sync.srv.stackadapt.com tcp
US 54.167.137.47:443 sync.srv.stackadapt.com tcp
US 54.167.137.47:443 sync.srv.stackadapt.com tcp
US 8.8.8.8:53 c1.adform.net udp
US 104.22.50.98:443 mwzeom.zeotap.com tcp
US 8.8.8.8:53 sync.crwdcntrl.net udp
NL 35.214.130.63:443 csync.loopme.me tcp
DK 37.157.6.254:443 c1.adform.net tcp
DK 37.157.6.254:443 c1.adform.net tcp
DK 37.157.6.254:443 c1.adform.net tcp
DK 37.157.6.254:443 c1.adform.net tcp
DK 37.157.6.254:443 c1.adform.net tcp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
US 8.8.8.8:53 u.openx.net udp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 pixel.rubiconproject.com udp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 image2.pubmatic.com udp
US 8.8.8.8:53 c3.a-mo.net udp
US 8.8.8.8:53 s.e-planning.net udp
US 8.8.8.8:53 cookies.nextmillmedia.com udp
US 8.8.8.8:53 ssum.casalemedia.com udp
US 8.8.8.8:53 spl.zeotap.com udp
US 8.8.8.8:53 94.194.222.52.in-addr.arpa udp
US 8.8.8.8:53 70.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 105.193.149.89.in-addr.arpa udp
US 8.8.8.8:53 118.159.114.85.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 248.142.194.18.in-addr.arpa udp
US 8.8.8.8:53 251.91.212.52.in-addr.arpa udp
US 8.8.8.8:53 161.87.77.80.in-addr.arpa udp
US 8.8.8.8:53 13.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 80.250.54.154.in-addr.arpa udp
US 8.8.8.8:53 210.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 47.216.127.79.in-addr.arpa udp
US 8.8.8.8:53 234.77.253.34.in-addr.arpa udp
US 8.8.8.8:53 108.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 244.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 sync.connectad.io udp
US 8.8.8.8:53 px.ads.linkedin.com udp
US 8.8.8.8:53 assets.a-mo.net udp
US 8.8.8.8:53 ssum-sec.casalemedia.com udp
US 8.8.8.8:53 sync-eu.connectad.io udp
US 8.8.8.8:53 u-ams03.e-planning.net udp
US 8.8.8.8:53 ad.turn.com udp
US 8.8.8.8:53 b1sync.zemanta.com udp
US 8.8.8.8:53 triplelift-match.dotomi.com udp
US 8.8.8.8:53 rtb.mfadsrvr.com udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 8.8.8.8:53 s.ad.smaato.net udp
US 52.46.130.91:443 s.amazon-adsystem.com tcp
US 52.46.130.91:443 s.amazon-adsystem.com tcp
US 54.91.119.203:443 cookies.nextmillmedia.com tcp
US 54.91.119.203:443 cookies.nextmillmedia.com tcp
US 8.8.8.8:53 bh.contextweb.com udp
DE 3.75.62.37:443 ups.analytics.yahoo.com tcp
IE 34.249.60.18:443 pr-bh.ybp.yahoo.com tcp
IE 34.249.60.18:443 pr-bh.ybp.yahoo.com tcp
IE 34.249.60.18:443 pr-bh.ybp.yahoo.com tcp
NL 193.3.178.1:443 s.e-planning.net tcp
US 8.8.8.8:53 creativecdn.com udp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
DE 79.127.216.47:443 c3.a-mo.net tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 64.202.112.127:443 b1sync.zemanta.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 104.19.159.19:443 assets.a-mo.net tcp
NL 89.207.16.201:443 triplelift-match.dotomi.com tcp
NL 193.3.178.4:443 u-ams03.e-planning.net tcp
NL 193.3.178.4:443 u-ams03.e-planning.net tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 18.239.94.92:443 s.ad.smaato.net tcp
US 52.46.130.91:443 s.amazon-adsystem.com tcp
NL 193.3.178.1:443 s.e-planning.net tcp
US 54.91.119.203:443 cookies.nextmillmedia.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
US 8.8.8.8:53 pubmatic-match.dotomi.com udp
DE 18.197.7.178:443 rtb.mfadsrvr.com tcp
DE 18.197.7.178:443 rtb.mfadsrvr.com tcp
US 8.8.8.8:53 dmp.adform.net udp
US 8.8.8.8:53 trc.taboola.com udp
US 8.8.8.8:53 dpm.demdex.net udp
US 8.8.8.8:53 dmp.v.fwmrm.net udp
US 8.8.8.8:53 sync.smartadserver.com udp
US 8.8.8.8:53 usermatch.krxd.net udp
US 8.8.8.8:53 beacon.krxd.net udp
US 8.8.8.8:53 aa.agkn.com udp
US 8.8.8.8:53 match.adsby.bidtheatre.com udp
NL 89.207.16.137:443 pubmatic-match.dotomi.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com udp
IE 54.216.119.150:443 dpm.demdex.net tcp
US 3.231.143.24:443 dmp.v.fwmrm.net tcp
NL 134.122.57.34:443 match.adsby.bidtheatre.com tcp
NL 81.17.55.117:443 sync.smartadserver.com tcp
IE 99.80.110.212:443 aa.agkn.com tcp
US 8.8.8.8:53 obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com udp
US 8.8.8.8:53 49.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 6.163.102.34.in-addr.arpa udp
US 151.101.1.44:443 trc.taboola.com tcp
US 8.8.8.8:53 173.193.186.35.in-addr.arpa udp
US 8.8.8.8:53 162.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 131.160.0.193.in-addr.arpa udp
US 8.8.8.8:53 8.213.145.82.in-addr.arpa udp
US 8.8.8.8:53 63.130.214.35.in-addr.arpa udp
US 8.8.8.8:53 6.206.246.34.in-addr.arpa udp
US 8.8.8.8:53 5.19.217.54.in-addr.arpa udp
US 8.8.8.8:53 180.156.155.213.in-addr.arpa udp
US 8.8.8.8:53 20.165.5.195.in-addr.arpa udp
US 8.8.8.8:53 47.137.167.54.in-addr.arpa udp
US 8.8.8.8:53 91.149.214.35.in-addr.arpa udp
US 8.8.8.8:53 49.158.204.35.in-addr.arpa udp
US 8.8.8.8:53 221.129.111.34.in-addr.arpa udp
US 8.8.8.8:53 98.50.22.104.in-addr.arpa udp
US 8.8.8.8:53 254.6.157.37.in-addr.arpa udp
US 8.8.8.8:53 18.60.249.34.in-addr.arpa udp
US 8.8.8.8:53 37.62.75.3.in-addr.arpa udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 14.42.107.13.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 1.178.3.193.in-addr.arpa udp
US 8.8.8.8:53 233.38.18.104.in-addr.arpa udp
US 8.8.8.8:53 201.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 92.94.239.18.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 131.169.93.208.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 91.130.46.52.in-addr.arpa udp
US 8.8.8.8:53 203.119.91.54.in-addr.arpa udp
US 8.8.8.8:53 127.112.202.64.in-addr.arpa udp
IE 54.74.132.10:443 obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com tcp
US 8.8.8.8:53 sync.ipredictive.com udp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 8.8.8.8:53 secure.adnxs.com udp
US 8.8.8.8:53 casale-match.dotomi.com udp
US 8.8.8.8:53 pm.w55c.net udp
US 8.8.8.8:53 i.liadm.com udp
US 8.8.8.8:53 rtb.adentifi.com udp
US 52.87.131.177:443 sync.ipredictive.com tcp
IE 18.203.142.104:443 pm.w55c.net tcp
US 34.235.77.249:443 i.liadm.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 54.159.150.243:443 rtb.adentifi.com tcp
NL 89.207.16.140:443 casale-match.dotomi.com tcp
US 8.8.8.8:53 data.adsrvr.org udp
US 34.98.64.218:443 us-u.openx.net udp
US 52.87.131.177:443 sync.ipredictive.com tcp
US 64.202.112.127:443 b1sync.zemanta.com tcp
US 8.8.8.8:53 match.deepintent.com udp
US 8.18.47.7:443 match.deepintent.com tcp
US 8.8.8.8:53 usersync.gumgum.com udp
IE 52.210.15.1:443 usersync.gumgum.com tcp
US 8.8.8.8:53 simage4.pubmatic.com udp
FR 172.217.20.194:443 googleads.g.doubleclick.net udp
GB 185.64.190.81:443 simage4.pubmatic.com tcp
US 8.8.8.8:53 137.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 150.119.216.54.in-addr.arpa udp
US 8.8.8.8:53 117.55.17.81.in-addr.arpa udp
US 8.8.8.8:53 34.57.122.134.in-addr.arpa udp
US 8.8.8.8:53 44.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 212.110.80.99.in-addr.arpa udp
US 8.8.8.8:53 10.132.74.54.in-addr.arpa udp
US 8.8.8.8:53 24.143.231.3.in-addr.arpa udp
US 8.8.8.8:53 104.142.203.18.in-addr.arpa udp
US 8.8.8.8:53 177.131.87.52.in-addr.arpa udp
US 8.8.8.8:53 249.77.235.34.in-addr.arpa udp
US 8.8.8.8:53 243.150.159.54.in-addr.arpa udp
US 8.8.8.8:53 218.64.98.34.in-addr.arpa udp
US 8.8.8.8:53 7.47.18.8.in-addr.arpa udp
US 8.8.8.8:53 1.15.210.52.in-addr.arpa udp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 openx2-match.dotomi.com udp
US 8.8.8.8:53 tg.socdm.com udp
JP 124.146.153.163:443 tg.socdm.com tcp
JP 124.146.153.163:443 tg.socdm.com tcp
US 8.8.8.8:53 81.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 163.153.146.124.in-addr.arpa udp
US 8.8.8.8:53 pixel.tapad.com udp
US 8.8.8.8:53 live.primis.tech udp
US 8.8.8.8:53 u.ipw.metadsp.co.uk udp
IE 52.210.15.1:443 usersync.gumgum.com tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
US 34.111.113.62:443 pixel.tapad.com tcp
FR 52.222.201.10:443 live.primis.tech tcp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
US 8.8.8.8:53 sq-tungsten-ts-eu.amazon-adsystem.com udp
FR 142.250.201.162:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev udp
IE 3.253.169.168:443 sq-tungsten-ts-eu.amazon-adsystem.com tcp
US 3.164.163.55:443 tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev tcp
US 8.8.8.8:53 62.113.111.34.in-addr.arpa udp
US 8.8.8.8:53 10.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 90.132.214.35.in-addr.arpa udp
IE 3.253.169.168:443 sq-tungsten-ts-eu.amazon-adsystem.com tcp
US 3.164.163.55:443 tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev tcp
GB 2.21.188.116:443 ad.yieldlab.net tcp
GB 2.21.188.116:443 ad.yieldlab.net tcp
DE 217.79.178.233:443 cm.adsafety.net tcp
US 8.8.8.8:53 cm.adform.net udp
DK 37.157.4.28:443 cm.adform.net tcp
US 8.8.8.8:53 aorta.clickagy.com udp
US 8.8.8.8:53 sync.serverbid.com udp
US 8.8.8.8:53 pixel-us-east.rubiconproject.com udp
US 8.8.8.8:53 image4.pubmatic.com udp
US 54.227.148.17:443 aorta.clickagy.com tcp
US 8.8.8.8:53 green.erne.co udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 uipglob.semasio.net udp
US 8.8.8.8:53 pixel.onaudience.com udp
US 69.173.151.100:443 pixel-us-east.rubiconproject.com tcp
US 8.8.8.8:53 matching.truffle.bid udp
FR 13.249.9.226:443 sync.serverbid.com tcp
NL 198.47.127.20:443 image4.pubmatic.com tcp
FR 141.95.171.139:443 green.erne.co tcp
DE 23.88.86.2:443 matching.truffle.bid tcp
FR 141.94.171.212:443 pixel.onaudience.com tcp
DK 77.243.51.121:443 uipglob.semasio.net tcp
US 104.18.24.173:443 a.tribalfusion.com tcp
US 8.8.8.8:53 168.169.253.3.in-addr.arpa udp
US 8.8.8.8:53 55.163.164.3.in-addr.arpa udp
US 8.8.8.8:53 233.178.79.217.in-addr.arpa udp
US 8.8.8.8:53 28.4.157.37.in-addr.arpa udp
DE 23.88.86.2:443 matching.truffle.bid tcp
US 8.8.8.8:53 17.148.227.54.in-addr.arpa udp
US 8.8.8.8:53 20.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 226.9.249.13.in-addr.arpa udp
US 8.8.8.8:53 pixel-eu.onaudience.com udp
FR 141.94.171.213:443 pixel-eu.onaudience.com tcp
US 104.18.24.173:443 a.tribalfusion.com udp
US 8.8.8.8:53 s.tribalfusion.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 134.122.57.34:443 match.adsby.bidtheatre.com tcp
US 8.8.8.8:53 d.adroll.com udp
US 8.8.8.8:53 139.171.95.141.in-addr.arpa udp
US 8.8.8.8:53 212.171.94.141.in-addr.arpa udp
US 8.8.8.8:53 100.151.173.69.in-addr.arpa udp
US 8.8.8.8:53 173.24.18.104.in-addr.arpa udp
US 8.8.8.8:53 121.51.243.77.in-addr.arpa udp
US 8.8.8.8:53 213.171.94.141.in-addr.arpa udp
IE 54.155.170.69:443 d.adroll.com tcp
US 8.8.8.8:53 dsum.casalemedia.com udp
US 8.8.8.8:53 ad4m.at udp
US 8.8.8.8:53 s.company-target.com udp
US 34.96.71.22:443 s.company-target.com tcp
US 104.26.11.209:443 ad4m.at tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 beacon.krxd.net udp
US 8.8.8.8:53 usermatch.krxd.net udp
US 8.8.8.8:53 image8.pubmatic.com udp
NL 198.47.127.18:443 image8.pubmatic.com tcp
US 8.8.8.8:53 69.170.155.54.in-addr.arpa udp
US 8.8.8.8:53 22.71.96.34.in-addr.arpa udp
US 8.8.8.8:53 209.11.26.104.in-addr.arpa udp
US 8.8.8.8:53 eu-u.openx.net udp
US 8.8.8.8:53 18.127.47.198.in-addr.arpa udp
NL 89.149.193.105:443 sync.smartadserver.com tcp
NL 89.149.193.105:443 sync.smartadserver.com tcp
US 8.8.8.8:53 a.sportradarserving.com udp
NL 89.149.193.105:443 sync.smartadserver.com tcp
NL 35.214.174.141:443 a.sportradarserving.com tcp
NL 89.149.193.105:443 sync.smartadserver.com tcp
DE 79.127.216.47:443 c3.a-mo.net tcp
US 8.8.8.8:53 ssbsync-global.smartadserver.com udp
FR 5.135.209.100:443 ssbsync-global.smartadserver.com tcp
US 8.8.8.8:53 ads.betweendigital.com udp
NL 188.42.34.65:443 ads.betweendigital.com tcp
US 34.111.113.62:443 pixel.tapad.com udp
US 8.8.8.8:53 id.rtb.mx udp
US 8.8.8.8:53 ow.pubmatic.com udp
NL 79.127.227.46:443 id.rtb.mx tcp
NL 185.64.189.116:443 ow.pubmatic.com tcp
US 8.8.8.8:53 141.174.214.35.in-addr.arpa udp
US 8.8.8.8:53 100.209.135.5.in-addr.arpa udp
US 8.8.8.8:53 65.34.42.188.in-addr.arpa udp
US 8.8.8.8:53 ads.avct.cloud udp
US 8.8.8.8:53 s0.2mdn.net udp
GB 216.58.204.70:443 s0.2mdn.net tcp
FR 18.155.129.56:443 tags.crwdcntrl.net tcp
US 8.8.8.8:53 46.227.127.79.in-addr.arpa udp
US 8.8.8.8:53 116.189.64.185.in-addr.arpa udp
US 8.8.8.8:53 70.204.58.216.in-addr.arpa udp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 tr.blismedia.com udp
NL 35.214.174.141:443 a.sportradarserving.com udp
US 34.96.105.8:443 tr.blismedia.com tcp
US 8.8.8.8:53 8.105.96.34.in-addr.arpa udp
DE 23.88.86.2:443 matching.truffle.bid tcp
DE 162.55.120.196:443 matching.truffle.bid tcp
DE 162.55.120.196:443 matching.truffle.bid tcp
FR 185.86.138.121:443 prg.smartadserver.com tcp
NL 185.89.210.90:443 secure.adnxs.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
FR 172.217.20.196:443 www.google.com udp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 1.80.190.35.in-addr.arpa udp
DE 162.55.120.196:443 matching.truffle.bid tcp

Files

\??\pipe\crashpad_4756_GNXJWTPOGVFTVLIS

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA512 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 61c7a98933da9103dea5ee6e155ac967
SHA1 fe3dd32f1464302d525c206ef90c069e54a22138
SHA256 e368bc2a5fee676caa6c97a89d3dd3b3ca7914f5d54ad72ef782fc578dbee5a2
SHA512 f3e63c2e68fccb4fd1ba1b6e7f058e2319750c9acd4d0d3e43f1aca8e2b31f90154971ea2bf3d734d755dff997339202bce06f6e966912aacc93d67594cb34cf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0c5f601dc3e5a914aa39ba5e8976470f
SHA1 c7b6ca11288274d4e7e12d84cdc5dc11952258eb
SHA256 599e3c81231b8535a9fd20e9164a7676e7050cc963326bb6b3578b2491d038c1
SHA512 ddf1cbfb80e2e89d9808733b9388b845887a69f4897cac24c8f3745a1cf342b1ee7834b1db5a3388ad2a7586bc4a97050157995bd1ea4aa26e2253ca66c31be3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e48d8c721a99368271c54a8cdbcff407
SHA1 bd01471af122e573c8b0e1ea1a475ce41ebaa70b
SHA256 488e02d49b372147d8a1eea1000cbad1d9a02e6553c818d7f6d57b7d3b40b04d
SHA512 dd3991987c51eeee6f096a3e75710f76cdc7fa4f36b9e97a37e9b1ba7c587c46dbd779ade41e6ca68706dc5ca0c7051544b383aee3e97f6c9b2fb63c8ca382c8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e104f91bffbbadf77e93247c67ef0a92
SHA1 1606540a177aca01361aa6f84679e2093ddd3ba7
SHA256 944288e76fcc81cd1d5e6a084a6d927c5a15926d49e6fb4c17d80e166eee3cd9
SHA512 a1ae104a387d2a6becb780657dfa6ba9a3e28b5ca0168f8fad25325206b68d8d1ac363eaead62d436625d0b039d3fec2a44d57f47b90ac26c82d44fc3be95fd7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 39f5f0c8369951dbb18a016af6f2acf7
SHA1 ec25a47ba33bf8a7b7db5bd5d02c7b171b17d5bd
SHA256 43260b411a035ce7cdfe7ce16d861649cb19469368f62f02f1a0fd953206c4c1
SHA512 002c56ce9286403a902fa2f77aa070461d8f0693f58b15042c15c387cc463949a99477d02d0582849cbdf64a94bfa03e49dc90c92f38a761d12152a51d905651

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 eb2b2da12d0fbc1ad77a4f110ae8dc2f
SHA1 50d69477e83f69de3a6afa9c96027dd8dc3375e2
SHA256 2ba57ae640daef328f242399280135b24baf119fcaa434ea21284d2e28dc19ef
SHA512 5a8a9508e26630821aebe7b4d1f10400f98fdc6465c6e5b3c331de76e54e560ebf8d04966c78200b78321648b3d814330f8481ec702ae42e872951c9dc789bde

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\9370cbb0-289a-4913-aa0c-05db197fbe8d.tmp

MD5 b6196a371d8f92f46b856cfd51f4ba7e
SHA1 4e4269ff1cfd6de8fcedfe4fd63332abed0f00e6
SHA256 a536dd922bdd1b803cae24c107588d7359f7d124deaf772eeff96812e8d6d63b
SHA512 2162af928fa770ecfe16be3f39e2d09b69f2422751230cd4d9062445d9cd5ec695832aad13c2003ec2dd20c6f26520085e5ef91d0c85c54451b6a641b6076277

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 41e2f4356b5f3b45c55159953968a800
SHA1 adaded39f82dd0087797bd7feca7a752642abc63
SHA256 80aaec70bc98bbaa1e2a94327af68fc89009f5f4272f423eab7b4f36eb59f658
SHA512 87b64bf5b3bc9b74ec8e539a547bf77fd209469c8006ad2c82144bc598f5451155fc1f1f895953f987338b1b0c73a6ec456dfad8c997f13dc26c30b21b22f7c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 f1961554f2f348092c033797ad3cad6c
SHA1 8dc09651c4330bc074e06d9c293093ab824f27c1
SHA256 4a011a168f1d1cbb1dcc0c12d7ad00fa551517dec4157d4c21453e29e1dff0de
SHA512 b66c94b71f2245c1286d825eeb65ddee5d66e5dd398f92fdfa329a1f217cac0561207177bd9c397203e0279afda05913857f5569ab2c23eead0663224e0d998a

memory/4984-349-0x0000000000400000-0x00000000004D8000-memory.dmp

memory/4984-352-0x0000000000401000-0x00000000004B7000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\is-HH9Q1.tmp\VSCodeUserSetup-x64-1.90.0.tmp

MD5 8ae52fc01f13e521c75276cf7af9625f
SHA1 94bb90bc0da93b9d548c91986c8b4b7c6168da2b
SHA256 935ff0d75f56f29ad95436813ea988dc1f679aaf225eafc44367b4fc8a4f2fa1
SHA512 cbb8d0e90db37d277c5bd92be2f2297599379f245044ae426cf9f5841b98f1cf0261c0fa90ec9b5e4a2f791d0e79e5b4f8bcbe8f04784708f2bd5a7498c768d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 226a547343e0153ed1e3092466f89dd0
SHA1 4e1faa6749e1a6936696d87c91a6259a218b28db
SHA256 cc217c2800a0632483628bbc6537137d8c9e44814ab6050863baa86cf5e067ab
SHA512 219d75cda1b78dcdd45dcad8d84e46f1af1542347a21c9914338805bb78a94509076c34949a49e82472495b4d9580fa98ebf43005a51a2669fb6dd7f151557a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 78075f38c6cbb5f796a852e2dd469b6b
SHA1 b1da728331ec85058fc3c8b0eeb193cbb5f3dd13
SHA256 6b8895cd3254f3106bba4cea870ef14190c2bd5a9f226ce035817c89f4326127
SHA512 8041c6f6db87fababb5fdb6d4d5f3b0b7833b151e3d6f4ef55c8c222b2fff04a33e0d63d4aafc4c1f51a50da31f11942f9e4e22116a592296ffe56a976e08a8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58213f.TMP

MD5 1e3caabac16e7adb63635b2ddf6a723d
SHA1 906b4d56ca9f310c6dc2aeea3b0aa9170c400586
SHA256 67e12db1dba6aa02b75602405b9966bc24462585e233319e6cabc59893270f09
SHA512 0421ae4334aae7b0fcf6fdca329483ff6f20d2209d038e7b9587171ec11c1c740b9307cc9a9eb6093fac5dce651389a2ef34a46f7147997a8b3fb2d5161963cf

memory/4984-386-0x0000000000400000-0x00000000004D8000-memory.dmp

memory/360-387-0x0000000000400000-0x000000000068E000-memory.dmp

memory/4276-390-0x0000000005150000-0x0000000005186000-memory.dmp

memory/4276-391-0x0000000007850000-0x0000000007E78000-memory.dmp

memory/4276-392-0x0000000007670000-0x00000000076F2000-memory.dmp

memory/4276-393-0x0000000007F30000-0x0000000007F52000-memory.dmp

memory/4276-394-0x00000000081B0000-0x0000000008216000-memory.dmp

memory/4276-395-0x0000000008220000-0x0000000008286000-memory.dmp

memory/4276-396-0x0000000008290000-0x00000000085E0000-memory.dmp

memory/4276-397-0x0000000007FA0000-0x0000000007FB0000-memory.dmp

memory/4276-398-0x00000000086E0000-0x00000000087E0000-memory.dmp

memory/4276-399-0x0000000008160000-0x000000000817C000-memory.dmp

memory/4276-400-0x00000000087F0000-0x000000000883B000-memory.dmp

memory/4276-401-0x0000000008A60000-0x0000000008AD6000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_3bn0dywj.hvg.ps1

MD5 c4ca4238a0b923820dcc509a6f75849b
SHA1 356a192b7913b04c54574d18c28d46e6395428ab
SHA256 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
SHA512 4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ad7fedda1fbbbed131514f53ffb1819c
SHA1 0504d98e74557a6b07b54956a5c5729d96b58721
SHA256 4ac334e57b8498c2fd03dfb2a09fb1cf71d2e894fd07e17f0c6f420cb04b866c
SHA512 29c71d6e624954a1ba3a27b30dec80858994f6808dca66d711c38e959f5137ef1e1dbff38ef6671f53ae0bc24184d1d2f7a82ee5def6cea3abab10be64b6655c

memory/4276-421-0x0000000009CC0000-0x0000000009D54000-memory.dmp

memory/4276-422-0x0000000009890000-0x00000000098AA000-memory.dmp

memory/4276-423-0x0000000009B20000-0x0000000009B42000-memory.dmp

memory/4276-424-0x000000000A260000-0x000000000A75E000-memory.dmp

memory/4276-429-0x000000000ADE0000-0x000000000B458000-memory.dmp

memory/360-471-0x0000000000400000-0x000000000068E000-memory.dmp

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\licenses\is-74PIE.tmp

MD5 575506a8774d119bc036fc34a0a3b08a
SHA1 87864ccab15ab97a8698c1bdaa7db88d7a8dbcdf
SHA256 a8e9fd8d817925e0457587f9252dfd977bf17a4155a7ea67bf230d3283036a79
SHA512 39f515f5f7da39fd6e026cc3f7bbb269a60c635a51338073cf752352635936834280a68c1deb46fdfb263293716bafdc31ef569663175b0bea6385acbc36e24c

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\ffmpeg.dll

MD5 c5fcffa31f4baeeae61fa502c170f10a
SHA1 a2e8234964baf9675fb46f57565f66778a7365e4
SHA256 863648f20ed0b260fde039bf39a4195ac67785696a4cb608760cdf09d6c0a5d5
SHA512 bfcaf35b6e694f8487d990ef76f840356fc70da0a3ec38f6eef4fb6b7039e458e8c407d790df313fcad3c37a05eafbca54edde7f00e8da9f999bcff0828db59e

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin

MD5 71a50af311e53e55c80ce4d8637e78ea
SHA1 d573e40be76a2f9a3ee87fa03f90d5eb6ada6b51
SHA256 ed6f20ce343485562fe6464d1dec1cd9745311947af9f158545e084bde2f3773
SHA512 710debddfad874d4c53e9f895522f4b11b1c969f1e12cf49153081c4071afe82bf1b1a6b9287c76d8167c412157c8dad2d6ab4f8b2d134b9e54a3d189220b0cc

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\icudtl.dat

MD5 74bded81ce10a426df54da39cfa132ff
SHA1 eb26bcc7d24be42bd8cfbded53bd62d605989bbf
SHA256 7bf96c193befbf23514401f8f6568076450ade52dd1595b85e4dfcf3de5f6fb9
SHA512 bd7b7b52d31803b2d4b1fd8cb76481931ed8abb98d779b893d3965231177bdd33386461e1a820b384712013904da094e3cd15ee24a679ddc766132677a8be54a

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\package.json

MD5 388c8a7bf9f62ca22065c5101f59335c
SHA1 a95bebda48fc2e58c6913588909b7b00b08423db
SHA256 ac677918b85ac96dd9cae3cba52e98e5d6e193b1590ed8dd297f8dcee3af6fd4
SHA512 b37c9b3d4f83d93f72ee871ad56be062b9d91423af325fba7b4a88c2850f85ec0a1c4899dafe782c5607d3f33532e00a7671fd03d786387f8925df84e68015fc

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\out\main.js

MD5 c215e504b41ab51e67d4a0ec044f3b10
SHA1 c25302c61af684acfa7c6533b8b28b495407633f
SHA256 02f2f23063a51ea8da28457b0972989a3967eead96b58526d8ae7bc05155df0f
SHA512 caf161c9030a673b2719fd21304f80482ecc5d2cb4b6b43aeb2d4b1b7898f084655c003ec26a38bcb42715366d117c894b9410cd91a2d6fd51313f53bd451163

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar

MD5 b3bd8aaa50d9c0a25088e7ca87e35bf1
SHA1 314be00e28f9c4013c7b9b619794841673309794
SHA256 270b93fb1d0864bc1ba01ea26c060b9594f08ba41ca86ca8be26ebedfc5d6527
SHA512 7a012cc60d06336a92a8661a278839bd77d6a96499447ea8c62fade8859c370bd29e06a40079e51fae48900961d57ccf5235d3759b959837f15b072dce0d53f1

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\product.json

MD5 e1588e5c4dcb7eda048fcc360e79ba73
SHA1 1aff00a6abd18d6d59739e2582a71d0b950d001b
SHA256 f6adb83325393c4499472eb07d34c54fb3e8314fa00bd5aba7daaba7f439e373
SHA512 e02e87752f7c43dad3c0a18f8b3d4b3fa69647b0f49348fe01b009cb26cea4402346ee217ba82c45e1a8870492642afee71bcefee9b7b41bc5a0d4d348302ece

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources.pak

MD5 03da07673fd4a330cb7a1a94ce85ab80
SHA1 83194fe30b11a3631e8a53c37d85a8c937826462
SHA256 486689de4ca1eddc42e2190bca10801fe91453d1e0410a8467096608b9850291
SHA512 55919994edef595bccf3317d9d7b6e4118b120f2c0e92b1baa78da5f68a85cc94bdd6f5c9c0fe38dbf19cd95ed462cce131d877027add931c8c9a5365bb9a67d

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak

MD5 e02160c24b8077b36ff06dc05a9df057
SHA1 fc722e071ce9caf52ad9a463c90fc2319aa6c790
SHA256 4d5b51f720f7d3146e131c54a6f75e4e826c61b2ff15c8955f6d6dd15bedf106
SHA512 1bf873b89b571974537b685cdb739f8ed148f710f6f24f0f362f8b6bb605996fcfec1501411f2cb2df374d5fdaf6e2daaada8cea68051e3c10a67030ea25929e

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak

MD5 b1bccf31fa5710207026d373edd96161
SHA1 ae7bb0c083aea838df1d78d61b54fb76c9a1182e
SHA256 49aff5690cb9b0f54f831351aa0f64416ba180a0c4891a859fa7294e81e9c8e3
SHA512 134a13ad86f8bd20a1d2350236269fd39c306389a600556a82025d5e0d5adaab0709d59e9b7ee96e8e2d25b6df49fefea27cdccefe5fba9687abf92a9a941d91

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak

MD5 6e8a153304acbd57aa430fedab373679
SHA1 3a2e43a3dab567983435f58d20ef17def93ee30d
SHA256 b72bc56b564ae09913047ae8048d505e461a468384a95ecc247e46aaf8f1eebe
SHA512 9db899dd854744b88bbca421dacb55cf7f654cfa613833517eefa0434c8ee5514f59995854f6c1aa3af8424015f312e8c6dcf9c373010e78547685e92b317bd5

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-main\main.js

MD5 a8d54dae43038926ff7d2c4e787fb7f2
SHA1 491000d2116c57cb0301039f218f43a2bff15d68
SHA256 2742b36d3bdcd7709900eab686deea39ab00ce52d15889612390227918c178a8
SHA512 bc844f485acd10b01a43238f198e69944c4dd1f6baa321c136fbe3b279d6a08786313793a96de4b50cbb2ddb8d6f7379f4aaf8fac0b793a7dc14a52bacabc221

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-main\main.nls.js

MD5 6e9e72077a9f4f1dbd3aa97842096264
SHA1 22137b4152505f07658f5ab1ee5e9cda61d3ada6
SHA256 224e277c143cdab35447e782b4d59e44d6a3a33ad2bb631c9aca33ac55679fd8
SHA512 149eebae3ebdb5ec445f411ce6aacc1cc41c3fa38d48e6e7687d26e2e712862e981135a21584083a172d96a77036c2e0fad3323aae7fcfb52b3a3bc21d856e74

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\policy-watcher\build\Release\vscode-policy-watcher.node

MD5 bc7c1f521efc501b4d205c809eecafe7
SHA1 98ad71b553dd3b0296ccd15a5050670946f0cba7
SHA256 483dac448629515dca284e7bb91d08029f530d8c6d687ba53634f33b7a833cad
SHA512 663225ad5883eb9aaa12dc09915b0b706c896d75302703ef34a228e3a651910a28421fcc8476caa0f1fb118a47c1a0c29156d9686dae5b9ac6fa3d6be7bb63b5

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\deviceid\build\Release\windows.node

MD5 11f2e223d028007ba6818c04d877f7a4
SHA1 4b1763040435a28cb4f6dbf1f6e9c42e8d39d8d7
SHA256 dce2f3da9115f589a33fbea9d1d5a4c6e81cb8a868cf2bc7719d7aa7fc63d6e2
SHA512 651929e3c9d3f6ca9614d1ffbb92f606bf76340606a162f4a1feddb448142537f9f726eebccea274e83c74a74df9dc9c7eadd04d5af1323b6e7eeac0b815bdf7

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\windows-registry\build\Release\winregistry.node

MD5 e82aa8e01455c637c4c3e05801fb5807
SHA1 3097683841486979afd5c1124a8d7d99333658cc
SHA256 23156875ee6ac2cd580b4ee1ba8a03777a2e104168be5d1e66341cd62ec01c07
SHA512 b9658101c72f538564d8a987fb3a88ec3d91c3119f889ec6ceccf0c00f0b4fed5b66cad53b895a4b692c5e67d8868efdace05a20da830308c0aca2480804781c

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\@vscode\spdlog\build\Release\spdlog.node

MD5 609f02a08f0d824ef055fbdde02f7416
SHA1 ec1563be6a66300f0d3fb2588e962f78d3399ec0
SHA256 29be19498ed68ba02c84c28c66e7e75fbdd6628bcc977e7b579a2981122ad0fa
SHA512 89ef2164f82af1ea4b39e5a9a2741d17a9670f26a90b37f26262a6fc1481330316880a7c0c3c91f5e6558f998962832a911cc135f9d5cb2fc03b03e481af2da2

C:\Users\Admin\AppData\Roaming\Code\Local Storage\leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\vk_swiftshader.dll

MD5 805f80ea9b15cfe408f78785e7b423e3
SHA1 a9f5a9ae831ca553234b42197d8b135811ebd005
SHA256 2bef019810356788ab3272548db31faf770131067fff5a7ff4dd8adf22142d96
SHA512 1b37f1db1556e3e7feaa3ad86361283269726ef741d041db825d18146a32850bcd9f49bab3f3b74002c0a20b005661e93ca143561f9947d3f177fe1ff283b662

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\libEGL.dll

MD5 22be81e45fc2c995805d686371e1875e
SHA1 6307f5bcf42bac6af43f310e15fa8277855a831f
SHA256 48ad803bc965fd2fdb5c16e76cb0fda34c1bf6ef0f8627a043eaa0a1f9d7dd13
SHA512 5d7f502d62e0bb4ec88bc4bd0e834078af873c10ae7f6aa3f7e9949929ae905eebff29f81c618647b1c1f6267b953467a5170cd0b55aad9a4a24aa676398cad0

\Users\Admin\AppData\Local\Programs\Microsoft VS Code\libGLESv2.dll

MD5 67971dc41ae68b8bf4596af671cc4937
SHA1 6beb665309f414c039c4ed5f4561675d410b681b
SHA256 d3a4152251340bd9e32a81c128edd9885c3d1dfa21f4cff32f8869739e77d194
SHA512 53d2678c6d7af43d2b9e57b6c26e937bec0dde4fca77e6b6fd34f03dc7f4b0530d1778ed49025d491f00f03c462b70362b328a99fe175a6da7becafdd6108a89

memory/360-2592-0x0000000000400000-0x000000000068E000-memory.dmp

C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\D3DCompiler_47.dll

MD5 af605c4d138f44deb3d5ef3e39a05b30
SHA1 8360312e95a53a838646663ddd35cc3a75071a7c
SHA256 f0a8b7fc8d27901ac2f6201bc6926cb3020bbad9e011a04ca97de3f240ea6e75
SHA512 303b4377711a85078e92ed92577627ce7afa9ac84071600167cc7468d5f9f92d39a43b45f2fc6f4a74e980649e22f3780467ff5b5fa8778f84e8a4a7b952fa0b

memory/4984-2607-0x0000000000400000-0x00000000004D8000-memory.dmp

C:\Users\Admin\.vscode\argv.json

MD5 1591135f4c39447b76e32d2939ccb279
SHA1 c73d76c7691410f8a42d71c270463c779d4145ba
SHA256 3570f8d21e0a5a768e37e326e27d280ebcfd8eac8859df57c470f470aaffea1d
SHA512 b6722f88be35b22abd28ad8efe15094fd9768b91152abe18a432e9d741ae45671823868ab5ee6e77f016f68a9765a4a1ba1a5d79e78b0779012c201dec5d2322

memory/1132-2645-0x00007FFDC04A0000-0x00007FFDC04A1000-memory.dmp

memory/1132-2644-0x00007FFDC0200000-0x00007FFDC0201000-memory.dmp

C:\Users\Admin\AppData\Roaming\Code\Shared Dictionary\cache\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\.vscode\extensions\extensions.json

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json.vsctmp

MD5 55282a1aa969b54f1e83dda761fcd948
SHA1 de032487bc8ef9f7a0d3b03eface17d89a66d5c0
SHA256 6ce3c4f9d2b39ab7750d85323892eeb8c5799eda0faeceff98103b275b280232
SHA512 2594fc8a71743a0e30617e535fc2e13b8f20279dc89c801584ae11f5788e8674df8c2dbcef587fb7d36bd1c19108849bf0d75acdec3360a068dd62870a17b83c

C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json

MD5 b538a82fe2989f4c64956440542bc755
SHA1 e369f29efdb136c0246a1e078cf4ed1fc22b4715
SHA256 8835a12e20ef2f24b7c308bb883faa18bea0b1736faf4777568fb6a8e039e51e
SHA512 c7efde348cc510c27644da67b584aa1c56927d5152c17c5b100e8bdc47f4bf8d4dd74d4d7691224d14afa6cc9522232fb55f84f7b514f8e6bd238c3d59c8d690

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 d7dbc943035a5ecd2327b06c900c70fa
SHA1 bda1f714e9dcaad503c11c4787eb609251fd4af8
SHA256 1a63ae81cb34ab3ee97b1d5f63c4dead19a2678ba96dfb27571eefa8516f4db3
SHA512 d75f2d8fb3c30a0527bb1341d191eee9ad994694a4370fbb31057928fcbe2e90ac5c526ca820706ae218ea38a88e852d9b4cc4129b71282519f08618c90c9241

C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json.vsctmp

MD5 238570d6c93828068b0404cf3ab1e29d
SHA1 88ecdb2cd3833c39360bdadf36f4c9145f553de4
SHA256 a26c3645de9a04eada7e79a87aea6cf30d1247e6c3a2991519b301a88cf9d0d6
SHA512 a742f739a7a74ee0e3dffda8b38c6fbc28170441ed9f21fdccc0fd72af3f43ee34c4ac3de083e2a444cc82e6264e0d6edd86d166b0684ccf8dad9edca05295e0

C:\Users\Admin\AppData\Roaming\Code\Cache\Cache_Data\f_000006

MD5 faf759efd780c5f06bdedc38aa902b04
SHA1 a77b1078ef3837fd5620288f1c7ed9457ecc4939
SHA256 5e0039e303461709f5b50501cb40591e7d6ac977f34abb967b653141de90ddfe
SHA512 52d1011f1c24f258cd3f55ef31fd3ec15e2129057cc29c7295e65857831283ddfaaa62d6b11741a516f5f1bfcf9bd4bd94d8a51e9d55fd01918016208a7a9360

memory/1132-3148-0x000002BB6A670000-0x000002BB6A71A000-memory.dmp

memory/4208-3201-0x000001FC9AA60000-0x000001FC9AB0A000-memory.dmp

C:\Users\Admin\AppData\Roaming\Code\CachedExtensionVSIXs\darcula-theme.darcula-official-2.4.17

MD5 1b4a693962a10b1f8e3762c31a4b0e91
SHA1 674b33e0fe75be6fed351aaabe56c68bb0bd6830
SHA256 2912291a1d8168f07d5098eb4b0843af6f126b86ea36c276ec8b0169862d56b9
SHA512 250918b69603a7911be8255eaf2dac6e5588c4c629eecd4adcdb1e88bfe9a59c4c65971496861e9f8839f584179ab24538b5460fbe4266409890ea5780f1bacc

C:\Users\Admin\.vscode\extensions\.053e2a6d-7804-40a5-a3c5-7508415d63b2\screenshot.png

MD5 e1d5f0c0464941be427a9a96464b6da7
SHA1 9c13aaf2ac9c0bafb83b4b5bd284c87699a50410
SHA256 54245c66cf46a4d117edb350775d73c63dbe735c89e8c3503c07127c1b3042da
SHA512 c73d2dd2853a7a913c99927ff62eb16faefbad49a1baf2e00bbe279ebbd8a2c5ec86897724e945e149cd59c945eb5a473ed8f898c872ae2bb9d9538853783cff

C:\Users\Admin\.vscode\extensions\.053e2a6d-7804-40a5-a3c5-7508415d63b2\package.json

MD5 7f17fcf45f57664d18ff3ac2c4856e0e
SHA1 059fcae42eb298ded110993c58e25db4a108aa80
SHA256 97d6cc9b6b16f932291ceaafe69255c7442342fde857e2b4383c053de1b4d01b
SHA512 af346911c73e617b5ac8191edc5e9ab50ce5c47ed2802eecdd6b4a43139098b7bd6a3564ea0e12e7f9274fffb25208cf99421f226261c4de96a5dc5c33a313e4

C:\Users\Admin\AppData\Roaming\Code\Cache\Cache_Data\f_00000d

MD5 ea89a755a405579a1c06f384b730ac13
SHA1 0714498974909e3cbb3bf03eddaa5a09cb1780e6
SHA256 2195facb43ae0b0a55d423aad3f61b375c97138c6916431e56f5fa0bde08e736
SHA512 cef38b8cd6ca27bdcbcea83a58607e7cba0aa495f0b8e424377b323907b980b3ad477761d57c10255374af167dd1f59ad02ceaef393b4d1cecfdabc49342ee17

memory/6040-3355-0x0000011441580000-0x000001144162A000-memory.dmp

memory/5204-3367-0x00000193FDC70000-0x00000193FDD1A000-memory.dmp

C:\Users\Admin\AppData\Roaming\Code\CachedData\89de5a8d4d6205e5b11647eb6a74844ca23d2573\chrome\js\index-dir\the-real-index

MD5 0316c9bb458eb77d47e5bc7b81003966
SHA1 3a973280edcce4c5e230e78838e928835f78ae64
SHA256 dada157ad4fdd8f488ff292208c945acb93fc28de5988512299cd7cee63d0530
SHA512 4bfa063f7116f1ef98ae52ae56ffddb3a0a059bec3c8bb0244ac290c1a02fa6516668833d26a6e191e7ccce93973361f5e58966543da668727b14587f221ace7

C:\Users\Admin\AppData\Roaming\Code\CachedData\89de5a8d4d6205e5b11647eb6a74844ca23d2573\chrome\js\index-dir\the-real-index~RFe58c61a.TMP

MD5 ba4064b2bfe8df7af49b56898889cad9
SHA1 577ce736418f0d265c5c7820d6d813379896da3e
SHA256 81170e6178821977863f36ee3bb0ba1707daf776674edeffba099ca87014a032
SHA512 58a55bebb86d67fabd7b15fe4e7763b99c6282a430d3d926707083e5d8847d4996fff67d7997abc0864bf5fbcadb6cc60bc7cffbbfef107238f28ec05c9ea63c

C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity

MD5 58e23b23cce7c8783f87292cf28d5428
SHA1 33fbb4ffe8b15d55beda65b1f0f5ef3aa3eda568
SHA256 c14a48c4403cfd3ad1fa91cc2a2b89d4806b41efe2317aaf4e2233dd8427443c
SHA512 327d44a742af938895f395bf68b98b108638bb79f2c49d9d19a642d3685bbaff0bf4526d95e4a062c1adf8d8974d8fd8d6fd435a77d2976622639f452da0cc30

C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity~RFe58cbe6.TMP

MD5 f018ab7caedb7b9857b4602986af67b0
SHA1 c49c496ee63c0f46a5ff2aee172b1ddc319eaba6
SHA256 4049934830ed30d2660d9c6d93202fbcc45cb57c7fd353fd00e0ff4f83fc2e91
SHA512 62bf02096f7dae4d744517fab19e0f1f16ef2ce655ef122e5933acc707ac547e297de8b8c5f1368e68b89dfbfda7511aa341944fdf51b871f82372b39771a33e

C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\4d9c86b8-4fc6-4aa9-860a-0fcee42cb155\index-dir\the-real-index~RFe58ccc1.TMP

MD5 1e41f6b289ca06e17ea2fb98d2308dea
SHA1 1e976d0437946c1aa22b090267c9650182feb6be
SHA256 f6ceec1b5c3a5305d8695a8059e2a3bdd006e02d5c6bf6c6ba20203da6fc3d89
SHA512 882d85695c3e0e455eac01b149898a18fec4388d0d210792c0bbf8dc469794b806d228ed9cd8ea6d3bcfa05fcaa770a26373c77a08c41b96438708170894fd1f

C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\4d9c86b8-4fc6-4aa9-860a-0fcee42cb155\index-dir\the-real-index

MD5 f483b47b8e0c86f09db82332a541b804
SHA1 9b43377db3237053355526d3e366cfacf416243e
SHA256 8263927cf09b201a4ed292c0dfa29a1de68cf3f6626ab9bf07d1b23e3b706c94
SHA512 18b13872e4c447f0b002f5dd51460926c027d077fbda5f01209ddcc44c505dc4a076284cd2e6216669cdb9412b4b2b96fe47e3706414abef28d663c8213f16f2

C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\index.txt

MD5 360cba3bf551f39632d7c14447756bbd
SHA1 7fef297f53e3261e8a88ed124ab6ff527bc681d6
SHA256 43be8bdd818e83e0654b501418325f9ad4bca1948a42ef3ea658ae31e190dfd0
SHA512 80517d7bb47cc629591075b53197eaf56883a84aea5374e96a1cd3342953eb9935f23d754f1ec7497ee83169302bbed50bec276213dd3975586ea8752f7bc1c0

C:\Users\Admin\AppData\Roaming\Code\WebStorage\1\CacheStorage\index.txt~RFe58cce0.TMP

MD5 0a3139c87c3b638b2ecfd1238e968329
SHA1 e734fa28eb06be89eecdfb992f3d7fadf29b4cf1
SHA256 35ef8538792d2218938f3d3b8188e23ae6652edf5baec190e5e6905328750786
SHA512 e04b5d211a3fb4ffbee99d193f166502953ac8d50c435950ed69a7fb1f8ce249940c23148d6afd028410b5b61e7796c0fbf701c82b4d97c2d1a2f84c5127cfb6

memory/5716-3417-0x0000025E00790000-0x0000025E0083A000-memory.dmp

C:\Users\Admin\AppData\Roaming\Code\Service Worker\ScriptCache\index-dir\the-real-index

MD5 752e646fb8073c9c8cd28747fa158372
SHA1 b55fb1c2d2a9978e1cafce229d91637a51207bff
SHA256 162246bbffb8384e6fee46b58530750ea7393b08396a8ec60145615e1f5f9a0e
SHA512 eeea6c46a14ccc6917521c2735f1d8e4b940adb6932175a072d562461e7db4cd3f86e9545b30aa31e13636b6b6a1b238693d2220103827086f46a4fc39c96f87

C:\Users\Admin\AppData\Roaming\Code\Service Worker\ScriptCache\index-dir\the-real-index~RFe58dbe4.TMP

MD5 404b248b4e26a551e2d08e7f73145b96
SHA1 2077a2aa072b5250373af6bdc1710a4bf21fe532
SHA256 990d10aba200c6e9d3e405a9fc8e7c9742bb42a22c233893763ab27c5e61cf98
SHA512 2f4173bc2ed122a7823ccf25ebeab8439d6992c64ec27a1e690bf4e62ef2abdb889858b8d501e4ec4efaca647b8c1f542a811476077d5663c96c8edbab04641e

C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\5570ec5f-06fd-443d-98d7-111279f2aed2\index-dir\the-real-index

MD5 dd835e2ab2691a77dbad894560083271
SHA1 27d762f24854bc1edadee65a836553d8555feeb5
SHA256 a816a58a4a8ebaa2b23c7ce6e27e49ffd8dfde4229e6eb7e87fd612f262e8ba4
SHA512 7ffee0a0d6902bbdd6d896114fd52e93c6e656fa6d1c2a755d39987e4410ad0c3cab3cdca38af275c03b9d6634b648eeca685249cc94f0ff09c8c6abada974f9

C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\5570ec5f-06fd-443d-98d7-111279f2aed2\index-dir\the-real-index~RFe58dc13.TMP

MD5 8d868b4499e3f40eab8f89cf5e9296ee
SHA1 9e6f92b6e0b82919ee8ae63100e6b6440acc5fa8
SHA256 69b62f1ddfb6ae5f0a8ae163b73021f991ae5784688edb27494bcff9ef036b57
SHA512 8b1931c6c9c8411b1dd5fd8d1749d5d6c996e2782b97b16eaff025ebfa13219a36c491d8b5c7d95a6747270fea02720b5daa57fda7cd722e79ff7464869d2e53

C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\index.txt

MD5 7c9c4bef1b67b1590906dfe92d005afd
SHA1 7b5f2e867fdc483344e24e0fa12b2ad9cadf8e06
SHA256 bc013cd424c6b700bc8358fc7e3272d2c90b567c7b0cdad9f358b574ee577db1
SHA512 f62913aaf73d5a04995ee2d96a4b725bb29169cf67b5ded8e369dbdb7f761c81221ab7a59bf6d8fde5406367521fb67ca235da0ec51308388e7f05831a7a4244

C:\Users\Admin\AppData\Roaming\Code\WebStorage\2\CacheStorage\index.txt~RFe58dc42.TMP

MD5 35f0147d6d4f80ac58b66927cafba69d
SHA1 d7f2a7adb8fad8e8d3eb284321fbb777c4e6eb31
SHA256 d1008c935901461d1b43d39e94c331e6209c56f6b887cb7a9e9d915895e1422a
SHA512 05e107496fea85464d0ecec9283c695b601fd5e3e7e0473733a48ca0613af29f4e976f1632797adee8dcac51c382896f566015ac6864505190f9222808e22f5d

C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity

MD5 8b9b6dde6f69638f0821741039f7bf11
SHA1 b4b698d53960e69941e370af28fdb4cb35f44a74
SHA256 1eaac7bad3e681ac516872e1ec3e2d31ae3d2b01ff5ee134f5838e52190ab721
SHA512 f61fcf96619a40545e773e70841e2b3d5648a1eed502e5404a42d9032becd53480e649f6265e5030469068089f670cb1350757cdaa5a261d320d878d947fbb33

memory/6080-3485-0x000001AA3C380000-0x000001AA3C42A000-memory.dmp

C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json

MD5 b2b5fbea92010e59052e2e947545aaa0
SHA1 6c29baa03334eeb7b2a3a2573259c883033de61e
SHA256 042194333bab760f0b2753ad3a295fbc0e2a4ac3987da8552e61eccb14e668ef
SHA512 9d7163a0e6f0088f28dd17faf4bb467086d37fc0c54e7320c9d0f6045fb3a92acdf78ddd4b8d2c3f265363bc9694c329c08bbf60170362b9ecabc340f668b7e7

memory/5432-3514-0x0000022FBAE20000-0x0000022FBAE30000-memory.dmp

memory/5432-3498-0x0000022FBAD20000-0x0000022FBAD30000-memory.dmp

C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity

MD5 84326d036445cfb152104c61757cbcb7
SHA1 f82dde0ac90cfcf3b859f33596d734c26496375b
SHA256 ea547b82df754f684caeb7c4b0649c0025ea0b6a7f4af8f0c4323da352eb4a05
SHA512 1c88ddbcded06eda9956576e885f27355dbd37ea94b64c4683fea37ba0bcd0cb192fb25895ea4512d9271b1244fea26882cfceadc2f08448590a9d34f7403679

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DF93B973D15D2BADBA.TMP

MD5 064faa0206d2000da8059c22636e5acf
SHA1 44b15111646085079275b3ab09eacedca7e946e9
SHA256 6ca2affc56ec0b8683198008942e564eba96a930c4e1f0eb81bd6cef123178d3
SHA512 edc9e36d930c625083a29f7b844b4f9cb2bf5e00017cff10e8c7e9a4b55cb6fdb07f48fabffe9ae725384db634a6706dee25ace6cc7bfd1df4a9e55e0af5cbda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 a85a19ac985ccb758eeb9670282a3ef4
SHA1 ec01298952b9b7668d84ab795309989b6512025f
SHA256 013f71c33596052b00f871aefc51803a3ea8dc4f4fd6e2bfd36ac6b266465722
SHA512 41507d00111ef6c572e2e13912c3aa3287e9aa3155b79c33ea5952f3bdede36b59ee0608c1637ffe2ad7412a225ba8949ba724ef44d9cb246c347056cbd0fe6b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a4badeb9c683dea433e667af85a9cb92
SHA1 160fa95c6e9ee3a178c381e23778572ee1506cad
SHA256 381269f6d3980e706e13d4d4ec2f3b11165fcab141229d7f79162890889e27a2
SHA512 9e83424a5a32f67ad88c596cfc1497be747ebee8345b3f38ad5d41b0d5353f3325195020702afa75a3792d74d677e9603afdf6c1a1817ca4831a7538c3ebb7a1

C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State

MD5 c03171f1bd462b0876b668efed86c6f6
SHA1 8e7b05c2a069fd705948abe456691b19266fc00e
SHA256 17c88418a5890b5d4d863ba7bc7f9ac1d0ba60c1a5dc8f2863bac96f51857ec5
SHA512 0bac54f4c5a1bd2260a20eb6b47b321f4343d4dd90df02d282736ffbdcb83eb4181e7933644eb4de7d7ce7d5546d7cc092b410f7c2c530c2ba7a2d87800cd1fc

C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State~RFe598d42.TMP

MD5 2800881c775077e1c4b6e06bf4676de4
SHA1 2873631068c8b3b9495638c865915be822442c8b
SHA256 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974
SHA512 e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\bowtie[1].woff

MD5 f520135a08b02cddc6cc32781a669483
SHA1 c41bbbb8073ce3bc6d0ce62263d80c2f126a409c
SHA256 2021f2851f8cd438c62cbff41aacf8d7723cf91c535a0aa4c1d8c1c39610ec88
SHA512 5df2bc0432869dd2e1178baedb79ee2e066e920e61b22598f34a470b16c58204314937e6f869ccc2e3e8dfe5aaa4215a21b84dce840dfcc9a88fdb83227de1a8

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\Y66959F1\favicon[1].ico

MD5 12e3dac858061d088023b2bd48e2fa96
SHA1 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
SHA256 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
SHA512 c5030c55a855e7a9e20e22f4c70bf1e0f3c558a9b7d501cfab6992ac2656ae5e41b050ccac541efa55f9603e0d349b247eb4912ee169d44044271789c719cd01

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\ImageStore\rebd18q\imagestore.dat

MD5 ae0c6c46581fba05364705c5f867892f
SHA1 b9b67076ff7d465d6635b19b6b0e617deff672a2
SHA256 ba430c0eddb0422aa04792c46d20a4abe01a53e88947e0b3bfa876cb5ea01074
SHA512 03eff35802aa190daa78cc965982f2cc83970c27c9950d5d8fae828d9fc3166f29282032893346bb6eaf125d23e438c9f2bff83c9f08f1ec3005f862133d3499

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\AzDevMDL2[1].woff

MD5 a6c73d473f2d65ee2e527bfc9fdb8713
SHA1 600220e76be27a0bc5c8e324860efb38f5553f28
SHA256 a7c7ed4e07275bee5282978fba7ad3624060f36470dbb73acd067c5416f20671
SHA512 01f73f49d95db367f1196221fb5a06f0dc4244fb634340bc89e5584cefe07f974301dee676e1c9a25234985b162ed1c8b48624fe3d48bff4a4f0b22fd1469f79

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\wcp-consent[1].js

MD5 5f524e20ce61f542125454baf867c47b
SHA1 7e9834fd30dcfd27532ce79165344a438c31d78b
SHA256 c688d3f2135b6b51617a306a0b1a665324402a00a6bceba475881af281503ad9
SHA512 224a6e2961c75be0236140fed3606507bca49eb10cb13f7df2bcfbb3b12ebeced7107de7aa8b2b2bb3fc2aa07cd4f057739735c040ef908381be5bc86e0479b2

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\Content[1].js

MD5 932232fd247048680455a33fc0fab3bd
SHA1 97feeba390a4f5920e29666c21e690914f033c7a
SHA256 debdd1293d416a2cf6409867dc450b80c4af9100ee1d72694569fc7e751941bf
SHA512 31552c07516e633b6432ea5d9341ea131ee22b079bf8e18dd0228492f29867a2ce449942573f81b8586665882a82bcaec3a0e4397823af28ac232d97f91ad4b0

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\ManageCookieDrop[1].js

MD5 5aaa20581b832eb92158ddfa650be14e
SHA1 29e5b8b137ed6bcb88f1aad046c06c8e31d94846
SHA256 12b6783be920f72ba03a4e5fe8e5189569e1d0d859992ba0643aae4b7276d407
SHA512 940dde23342b1613d9bf1b6452aeba34a6624b5a762e2d55a98035f4a4b83a4b1b24ed363fb91139bd1d1472a2dc0dab4fa388d9f6ad010f31716a102546c070

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Selection[1].js

MD5 636c00e287d192fd5a6e52829a4e03af
SHA1 9d86a0b38378b2d815cda9a1b5332c0930fc0d0e
SHA256 4bd026bb389a61272d84206b85c0a8a0cc5b019afd8801d5021f8ec6f52a921c
SHA512 b34d918ce077f39f734c890c7a83a3143aea59052baf4414540c4fdaf11d9e2d311f0cef6724289f5e258dc0df287ccbf816c61ac1200b69116fe6b82044eb8e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\version[1].js

MD5 cfb1560d91ab3ad3df11039a3ec487ce
SHA1 c55812f59151d00a0da0e7907ddc1c563fdcc3b5
SHA256 08f9bca58d5eea8a1254b48360e431975d0befc8bd44989d5c91f0bae456c032
SHA512 76b3b4f0118f86ad96584d9ad90f464ee7752cc021afecef6c2b4623343a9ffe642cf930e919abc6b9f1dbe6f3a14d76a5cca38e0d143d34b4127bfc808659dc

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\focusable[1].js

MD5 2b9dbb287dc74c65e2c6aa077746753e
SHA1 73cd7d6ed9a5e5e6892562e88c85ace10537e2be
SHA256 d63b78852f4f0aee484e31573454e6215600a98a855b69db8cea37f4f7401644
SHA512 40da1c060611b1b1dc399635f5e87435d91adfc3bf2a065c6024ed1a74df064993e46749b52f1b96c065642281f71f6d68a892b774da27556b9a93603c5b8a07

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DetailsList[1].js

MD5 b5c83a4f86775c2a9e6efd60b0650068
SHA1 462db8a56f9e186d964ea9f34a9fbbe40a01ce64
SHA256 33d911a628341d333d74715737c5227ed108beb2c095c19f4ba7ecc1868c4a08
SHA512 22063f373d30317149a91ba30f3d04faa86e9edce4179d865dfab0156c5003d8dcdf8519e3f14c26dd6bdcf987cd6ccffbe77848a811e549da73201d244b1800

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Toggle[1].js

MD5 3d61ccabbf3513e0e5565187505172a3
SHA1 b0a95d10e2d1afbb4cf1ea93e120ce24d943e90c
SHA256 980a2b83df330a2e6e46a320263199fbd1a048651394e6fd8ea473525f5476e4
SHA512 42eaad51ff139849236e57c1a68e7cbc8fec5c2827262234659a8d54f765db41dac8465dd1fa1b02dcf90c12e17c6559a8dca8b88a894341b2b9d3237a4e6810

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Slider[1].js

MD5 291772af95e2eb3cb919e552b793cdfd
SHA1 ffadd232439f09b5f0061c79eeefa1c7ded6bced
SHA256 f034adaacb35a311fd678331f23676de1800d37f3990080d93b27cf818fd348c
SHA512 29834f07f652438113c82547afc4919ddca714e144e9ae5aed9642f66049a3df0095cdcabb9f0b07f62faeacf290f33781517fd347a488d5c737c029b6892e95

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\CommandBar[1].js

MD5 7141f677031be9e4645a43fa1a2c5fec
SHA1 eb1e62fcaed3112dd0879efeaa1ebb0cf9d0e8d3
SHA256 c71a6c3039996da3caf6800156cb0eb09e256f8cc8e5662f380eb64dc59bfd77
SHA512 2c7a679231561a306b56a718c0a758baafe9610207386c95de98c898a41acf39a26d255debec18454eda45ff42fb808c8ae1512fc1f3f647eb6718a9ee379b6c

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\ChoiceGroup[1].js

MD5 892c5e6038e6919657072aa995369a64
SHA1 d29da6ffc6c2402200be2b9e22fdff9f3a8c3553
SHA256 b5bc157c6fe03ce2db58eb464ff837c978704fd9219b3b1affdc062c92acfe17
SHA512 b019650bddb560c81bc472dd9c075835450bbd8eb32d238661ae6105a81851687e15949d70442dba191f35f235cc1aad84b1073025453fcf429981083ae45e0e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\vss-ui[1].css

MD5 11c235293ae3d136ea15f5712a496c9c
SHA1 d9f819a7c404b481b83cbcb81d25db7c3ee0528c
SHA256 08ee39bcd307eb43db8447706509c872044dbe2ece168d13d847d809d61fe493
SHA512 01f04cfca01049db4096942427d7df238fe6827f5a8c1c98350ef21c3693e59bee1e2cf4ba3ba7488d18600bdb7ec55f90d3cebe59deabf16f3ef375d85fe24f

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DatePicker[1].js

MD5 244a86e7049aac04d79237605f36ce54
SHA1 57be1f3fd072faa427c61bfac02339018bfdb987
SHA256 66e2304b25f8ca757301dfa4124e8317465e13418fe039a3e1338aa73a428945
SHA512 a37916ae680f7dc9a8b9a06530b14cb799fe71d508e31956561869d062e46d451070f9743d1b1a9e0df0959224456746a5af2e2f20dfbcb4f06464e681a453db

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Nav[1].js

MD5 d1cd36fcbeea73b807b838c96e13091c
SHA1 54043186823172e46b6404f613bddf577dac9a16
SHA256 21f128fe5bd807b4ffc4966e8b2a95ffd8ae14271f5c62859c8b8bc1010aeec4
SHA512 3a5a3e1f8d88a8d0923a83c6a25bef0d630f087adb246c6345002cedfc18818d6e45e7e6e05d82f367fba9119d5132729e7eb8c698e17e46e7ada875724db523

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\Breadcrumb[1].js

MD5 6dfced3c919e47f1de46bf7be132b3d1
SHA1 ba158812de1fcafa53850a0750ea62525b28d458
SHA256 9ae28a1070c82d0aef72b5e81083eb73208b245ac545d121f2809a312b46d10c
SHA512 297f7477b988e48b1509a5320b57dee45f5e02f0cb31b77414a6a046afb394e17241b29adc07088fe2159bbec57bc77bbacf8f4266f17837b21572a433c36093

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\index[2].js

MD5 7c2b646ccc1f007b9569506020c42c83
SHA1 f843b8cda7f8d04d0ccad69ad75fd5ca796623e8
SHA256 6a8d29511f8ff846c63bd42f643464b5ea0c8091e5f33cbd20fb17b124dbecaf
SHA512 3221f9a3a679cd28f8117775012e9f584fbdd2c19af5f0d8cadf64e6d3d9e18355af590a3074ef3e617a42ad4189fde2eda203e006e92ec46e164ae20e702a30

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\index[3].js

MD5 c3c4523020d3e50a0b9e36019c70a96d
SHA1 3ffb8e75ae262b38baacfe84c3d5f3f0c9e1eafa
SHA256 cabeb037a46680da31e43c544786fe9fe34152cd7fe28952c7cf2f8fff8a1b10
SHA512 3958253af9bb329e78e319f26e493d295a83f489d601d70ea2cff1865b2a60b2624147291f6b1d7f903a7de8e8a8764c6cf0d46ccf142c94dbbab59d8971a817

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\index[2].js

MD5 762a7da38e4f16de221b4c0e98948bd3
SHA1 616afda8d7dc50466a2c0aae96ce4393e16226d7
SHA256 290daaac75aecd2cae93381406e506e3d443c5b0d1df97981c0e59aa19abb67b
SHA512 07052a2a3a22efa92cf2507c2f7fa3f24e1a12f1d40b91065469a1a197764e4ec75311018a166ac09b75dc2117d7b853184f18fb88156b6d9ce75aa7c7858d64

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\index[5].js

MD5 ce8985f65a8a90597b0b65f54e667c22
SHA1 7004a63f16068f887b59ea0fee79b763562e796d
SHA256 26c2b0f3364735341dee78a8e58379611715a698a68573dc6229a9b05e0f4216
SHA512 5fe0312aa785da88f683b80e71ab96d69bc4f83ec94779f14d38fe0bf5290da807bcee901b0ad42284a34a858135d2bb86642389a85d67613ff564ec0590ce78

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\index[4].js

MD5 8b09cf6433eb04aa04966224516a2896
SHA1 85db9dc0cb5b71194db899b96fb2e171c80d1942
SHA256 dd2678a5b365f62a3dc24d065fb4c7657520d222eb88aad9b1dcc19b8e50235b
SHA512 3c7d66d011c944ab249df104780669d94b929c16b11794db7c9c2200dccaf7d4b0becc5ae769aa7e5950643a6e0ac0049f246e6439623e822a85bd3bab145e7e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\index[2].js

MD5 3e08940291457daefd74f66793744a57
SHA1 d6dd68779549e7e12bcc9d9e81d1e28bd20d3440
SHA256 22c0ac71a2e15391478372e0c9dc4c686efebca350191ba41b8409a124ff187c
SHA512 0777fc34ee12bb73348b3ac415fad90591d2d56ce99edb76ec0980e9294ea3a1edf8c63b636d27e77806d73ec768d32cb05002112271c89a8a5c02bf3a047fb4

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\index[1].js

MD5 ff46b4f2641580a3ae20651e4ee89b60
SHA1 cf712826f7578866e1d1cc123e4c108a03d2be06
SHA256 8c1a6ab915b140ac59be4ecca98b8770f6775871ab30cd3dfa634d3e9738d739
SHA512 373c072b4c7ecaa7b6f9e3730a5dc087576be90b7058c75afccc4722a062f24aa130c85fdc211b81602db1c6838c0a9359be17e49fb0b7e11f92de32f089c156

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\index[4].js

MD5 14aca7fd58dc7c213ce3b09b0fab63e8
SHA1 c01cfb353a8fc7a7cb6aead75c057e28c1a2e9df
SHA256 12c211cf1d24d22b128d3d6bed2ab23b5ace7ae48530e3f3d51de8f4d61a3d94
SHA512 77ab15e99f6071ea77b0689c7f16e299afa2e1541652fe9db1b3ea681350176dfc0b49061d7e26ee8dc473e7c1cee8a8d24f675b8fd36263e75ee0133cfe6b16

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\index[1].js

MD5 45670ea898b08289843325ad585fc1c6
SHA1 2d8fb03703c9e1486497694b2c742310e651864d
SHA256 65b158b0d5c31445113d7dda4593431ce73ea901df888637a89496299d23a0f9
SHA512 97cec4a99238240edf6490afbb4f4fe52e34a233fa14806a2bce60c82a1b32f3e55d8160146c7056cbfac4d5447e2e8a70aec5dbe5aa837d10b5ef6e55ffdf7b

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\DetailsList[1].js

MD5 13ecf85daab0997cb395aa0a1d017bf3
SHA1 4c4cb8a2fb30aafe3fce1aa4eef61d8c553db46e
SHA256 a7c2b5e09de093d44374e932b2c204851207704607205c63b833644a8fdafdbd
SHA512 cbf81b76e7f81386a9bb4f0fccc1d28387446cc5f428e6af83c7af1eb093b478fb4c3c17b3a53cbfd29cc883fa571e52006268184ec66d6ab730d67d9eb00890

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\GroupedList.types[1].js

MD5 19ba8090300ded2fe0a55598cee1a07f
SHA1 003bb26e8c3976c068a475fc9df0a0713a645a6d
SHA256 141a023e752574d262a737ecd34f203e8faa1995ca76beb8e6cf50b63d9f4ca9
SHA512 323cfb07c59136334671acd02b1d5ab8aa0fa58d1a7d291a7bbb98651bc9113c1c98ae1db39d6556750f42e38cc6786324e60cc2803895f76af692f69434bf68

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DetailsRow[1].js

MD5 0e133283c66f750730b311abac30bda5
SHA1 8ad4b1f16792cdebafc8616d45d0803cef9b0c4e
SHA256 1f8fe8a0f3ef8bbcd9b8f3a7bcd13e5be95b67c57eef1c70c88c1cad6410f775
SHA512 74e4fa28e762c6598b1e7ff8b9914ee2ff4288333afd33141132ce5fa83a03d71c0f96e6201eede3dd6a03a80a876134c8ba239feae193eefc22286514d435d1

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DetailsList.types[1].js

MD5 a58f3e78354df626805028412a4a5564
SHA1 e2def7f442195bac2865e0ef9a6cead76cc49563
SHA256 8e89bbd42570bd6efdfbe90ca2e013c4a6e782adf742422933ace45d8f81c46c
SHA512 74a4beb24774b620a9d908d543892b5b3df6d7fdc671d9251651e6bd57970597ef3c3f8c016a4c0e62fb3d2f7213a797c30b8315af5754858a2ffa3d50e1bb82

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupSpacer[1].js

MD5 8ff4bf6d2150f0c315e52c2810c55734
SHA1 50c8918a043088e6ffa7436c923beaaa25a88210
SHA256 492156e947f5a3d470a6fc1e5c023bcd50943b814bc2fe8872613b62762f2d06
SHA512 9bb0523561646b6c756f51d7f4581373ba410253cb08ec0b5765827ddce8d4c33b1fc8b4e9239640560449d6cce297b944adec7fd25b9f1440c9cdfbf101b72c

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DetailsRow.scss[1].js

MD5 4af8c96302bedd37c38bbefeb913a635
SHA1 228389b24dc7810c189af69ca6905c5ee816b45a
SHA256 2a3d591eee2c2563a9d7ace438437e70c77c72bccb774853a82aedc97fad9a1b
SHA512 3123570dbf388783178d5f1dc38be94c87ff54e8c1d91448a4afba24b3403f4e406134f387c5010b13d7f94279362c3ca11239f488684e81d34ae464e9eb2d00

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DetailsRowCheck[1].js

MD5 5061085150a276681db772cdeece57d7
SHA1 69f51597e8608486bdb1b7a9c5c4d3031aeeb0ad
SHA256 471b0828fd68cd6c10f5b9dc971026767587e8297c57abca3db0c573b9016308
SHA512 f641a2dc83081228c08a67050ad3f7f0c067963c4f6e7512d93413f5d39ab98318451863e1a0854f8d5036554310f8a2bdc3ba3a970a7abec4d972696d6062de

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Check[1].js

MD5 23a9925f96592b3c7bbb3bced00d5d9c
SHA1 d72aeaf5dadbcedc725866866e88e707eb65d607
SHA256 4798c7223f80f071bdd0dff583506aef180305f50b0465c8f2c8aa904ebd210b
SHA512 0d13be1884116b059ca0e510be716a072569f4aedb2041ee5ef17efd7d3285bcf462c9c3965f685ad5389d464c9dbf739db49f182001d244a13e98cf300d9df3

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Slider.base[1].js

MD5 139387c7c46ba7ca2eb8321e21e4015c
SHA1 aaf0d11285116a85115faa625865199ce85b062c
SHA256 401dfd9c1ded67e67ff0e00da950d8a27a258c34f8bc580e644bfd9066b51573
SHA512 7d669229aea963ea38f3f07f25bd3596c86a6dc78aaeb08def6bb6576af7bcc563ac50e87588ad1c51f8656305d37e7d6611224f0354f53f48f0261a2aff53eb

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\CommandBar[1].js

MD5 2f9599c95289560d4ebd28cab72bcd0a
SHA1 c3a947be1caca27ba124cc8dcb11b86a594d3ec1
SHA256 7917e7be69a53b4de88728014edd17e95c51250711f5d18bfb9d656dd755366a
SHA512 a0f44f2ecc5a2b6ca68a221efef067ea865bbdbb155497472becbc5b337c634a68e3cb20fe1ac5cfde77d023294a0134e61d1980a79c43a55ae667e9c3e6e86e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Slider[2].js

MD5 83a4deb171195783535c081249ac5ca5
SHA1 2026ec98105e586de7fc2f474c3b8dfc4a2043d8
SHA256 04843caf49e29e947089642d63b3f0543059341220755f13afbf041957afe5a6
SHA512 bec5b0c71e3da4289693f1c858b3513621ebfdbfc37de09bd856f0348687600318731051129a6615be5ee1c6a238bc9e56c025161d7140ee3ca3102af1e4382d

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Toggle[2].js

MD5 f39c8855cd825a11c3d33f592a1f4b9e
SHA1 31806f029be72adb5214e786050f2711f483e6f5
SHA256 2192360bd5dfc28ba453248032c3bb04ff4bb0635cbda65a26c83cee628301b1
SHA512 7406dc8f18610c6f1e79d0077928082449f886b5c822926e69b880b0b28a7f7d796b584580e4dc151976f3f98595169a7c763257cfdf67679c5c759c81326172

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Calendar.types[1].js

MD5 cd4aefa1b87162b2845ff28d9f0f7517
SHA1 8d2e08cd8a2ba8cd862d272f1ce5924aa9634002
SHA256 a206c9a389cc4778c6e7d18737c923decfedaa2e572f3614b50c5d5abd44568d
SHA512 4f367d88787c6fc6c7d594b2e7d456a4ae202db14253ae5e91f9f02520e508795360a21c214e6f527753fc33d167512892d56ac686d47536462ad4094b5cf1af

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DatePicker[2].js

MD5 6072cf55814c84a3c3260f884cbcbafc
SHA1 8fa536b816f71363881661bf7430d063ce3ab376
SHA256 636102e5a0651d9b99596f1f277ab163866de1c76fa3e4f8a51245ce5f39c7c2
SHA512 a52f71c63cb7d0a2fd69fd277f3248a66f3dadc5f17c6fea439cc832bd572041e1cf5eab45247cf6a62694b1d921aefceff5175d4ec2e4c7426485b8a173f758

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Nav.base[1].js

MD5 9e1286b52fb7792d98ce3cb3924b3edc
SHA1 e203a7066dc4bcccc00a2a8a033eb06fa33a2bef
SHA256 d58e993964a0979e98c7f1b65b3ffbdba9de78c9d4de078ece69b5062fdcaedb
SHA512 59264064ac0fb0dd6532ce5a9a06c2b2768ee105c93ba5225f8fc4451d72eb649db079050dd6f5c7327ef96eae09caa3e758b79c37953fabc8f53add545f8bed

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\Nav[1].js

MD5 68648147349295f231595decb0be62ae
SHA1 bc035e14b5a7c87cb443d080468c4539a1f47fd6
SHA256 83ec400b3d6e2db15f0fa365501fa279021258b31233be3baa36d88af605640c
SHA512 406c3baf83289cbd6e7a73be7120c619b2b1781095d0eed8c0b542aa89e0d7c1614fb97aaa382879cc6be119de860d9927e966ec7525d1a5f0fe47835305fbad

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\Breadcrumb.base[1].js

MD5 34ca2ee102e4b599da7598615ab40a5b
SHA1 f0a780be9bb14fc1bbcac16eb483fcc0c107b777
SHA256 5e2a1b34b9ddb412f9a8a7aa0476f2dad4826d0b2eb0f33f163f94edc3adace9
SHA512 6635959354daa504606ad1506e7271b91b7186805b8516d841f76f04383ca31d357ed538134e69f9ea48a933425c1a67313f2c5b9020952f3947e7fecaba13e1

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\Breadcrumb[1].js

MD5 470500583467764a3bc4df98d866e634
SHA1 5d68351741496e61a06826f532b6cdd216204d21
SHA256 b3e0d656db566100e7ba6844d98a98915460338fec9309e6a9a417968b7d6228
SHA512 650b3441829be22b9de73c869876cdeed7bf978b7478bfa35d6ba8c03052edb9f61b282c6ef4113e2cd22eedd0cf954d090fd6e815d346d59ef42f446b056ff0

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\ChoiceGroup[1].js

MD5 2941f0a16b24d7c1b681350ef91859e6
SHA1 c89e368e9d338a20b41ef3189cddd622882c2f1c
SHA256 fe1f9480dc94b70eb153c484af16c78b4a60572ebe3f748a33ce724d84b684ac
SHA512 ccc33c24a6877205bc863f2810fe807105a2a0d1005199bf91f796b9a987a414633e2631b443fb9aac1d40184a71d8c05b5cd9c8c8775f2b3fe85f448e5252ab

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\SelectionZone[1].js

MD5 c8ac836724db8592ac2ab0f3b0fbbf1f
SHA1 1475239f2238050f1a8e893dc9fdf819e5dd712e
SHA256 0e1ed99e08f299d627c1e9add5b6994768f0a9d6d98b36253fbbc4de98508005
SHA512 042b0fb7d6f9e2237d7fed8e5516634772b73e8162939c8ad325484b08a5b9887a4480fa322145e6c6f6174a6c298a845c3eb96df9e9dce5858c422b9b30a4f8

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DetailsHeader[1].js

MD5 87497210939c004bde0aeeb5028219ef
SHA1 7a75a1cf080686fa69b3f020df90aa202cf98bbb
SHA256 9375ba87418cffa52241e307a4e90b8a57fb65326ca1daf128f47c1f14ec6eaa
SHA512 f627bf66c451bb22cba1014b62a243e4a8f22be19181f0d5580c2fe56474b26140c67e5319a69ad46ed0c08910850918450e64fa28f9827934cd812bbd916514

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DragDropHelper[1].js

MD5 5a198da189aae38cefe8413c089b176d
SHA1 7ce601823893b29bb38b4242dd46325f390425a7
SHA256 eb62807428d5b7858370312221eb87052ff5abbb84a5bdb9e98834ea363a6aa5
SHA512 9c85764403d63dc8df9de052519da43391cc36125c789710ede4c9c641d32b7d51391fc3d16b3338f43f5c87522728504da2c0c8950b7e6ee82f4bbf60e52edf

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DetailsList.scss[1].js

MD5 538607fb9a97555176ab1ed9c150cb80
SHA1 2b8dd7b47ebac1763e9f2423f8cd301705ae2c20
SHA256 874bc699b54eb405d25dcd1df15e27bc84e107489d091f9f72f0e8bf7494a03b
SHA512 c71ef53908ea8578eeb8ff6f203ecce1570a315ca29eff518cb7a928dcef509fbf3a8b23e734fcad445d66e0c0e8ae810e0d42fdfd2db080e7e5f1efa431aa34

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\interfaces[1].js

MD5 8297f74e7880bdeea9426ffd54ec2d48
SHA1 963706defd4725f3138f532b4268e8170fcb2281
SHA256 02759480bdd63937a8d1a5306c39dcd8da17a6e1223719945d8ce4a3e02cf0b5
SHA512 26df75ebf97df33f9ab3a5fb9ddfa3d566394a7520c1f9a249d69677ae82c3e49c265472e2dddd8be2b378380e431988bbeb43d0f1835506428796758e45a9b6

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Selection[1].js

MD5 8fca84eb6ab51f0de926c9beb64792bf
SHA1 068e75dbb6b7ffe9911149a92b85f2d2856b0190
SHA256 42152cfcf67fea70c8f9fce4f1c764dbcc582bfbb048367ea4cffd71e18505c2
SHA512 980c6fea440cda600ec22910fc3bff1401237c9a6b7dd250d961dc1e98c528c2e8ca49f2eeffbc4bba54477732c109727d87089d2e13b80f65dd0e5d2f86b6c9

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\index[5].js

MD5 77fb1ec1268bfbd604eb2306e6f9492e
SHA1 3c59aa467cac595ae321a80915bc8bd0e95f9acb
SHA256 79b84acfaaccc88399190dc0e26c183ca8d6b722b7c74e1840f78c8316c9f20a
SHA512 883c02d630b59b0ed7e89d02476e99ac000260dbb71c86b019c19475c9e9cc79a6e2b3f1597b093174703f4d86665ea36277428283e5f6766dbc8ce613e79cd7

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupedList[1].js

MD5 16efb9cd7661b99dbc2c59d776e4f5c5
SHA1 7599b19e4ab4ff860eb26ef704667ac0cbbbbe48
SHA256 3103446582804d06dd623e16aafd93d4ae14d96fa014e6656524ac1b1c970293
SHA512 01d40153cb0d397d74618d9c34ada54e35f00139137fefba1f7a9cd730f541626ad14527a8838f0ea9e2396510a8386f4c26928407e10ab1ca1cda697c0c80f5

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\Toggle.classNames[1].js

MD5 a4c6faa3ee141be58d907444733068dc
SHA1 fef43b0e1657d2ef043c9c4ee01bb82610dc547e
SHA256 845e5b2c662eff0a867b646e67ac297aa63225ec0e343583fd7445bb25d58c63
SHA512 52e16f437a11d97dd77dff9aab4ff1d10e0ec8745fac2ecca5dfb7066feefb5def02ba5c954fd809cf328f4a39740289a79e032d03ac19f4a13472686915a782

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Check.scss[1].js

MD5 f647a912298bba9ccccd58df42398240
SHA1 d2b2cebf454c898d920de9fd9ea53b3592b3a0b1
SHA256 76605061496a4d24814662ad1ea7c370283a4455b096506bb36a285ee4b3d971
SHA512 ef5b6d3417758a7347c91bdf2e18cdac137ef38ce8ae1384854b0a458e8b2977fd2002f042eb34f805a0f70befe6b50274173668e3c6405eef1fbcbf26952f35

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DetailsRowCheck.scss[1].js

MD5 d6eced4c91e54578b87d8f66a94006b2
SHA1 32325ad774ccdeaa2a2cf69c23cec085aef5c462
SHA256 ee0e59eb3e357d3b303d474e65d47bb845cc5caf8ef8d9578a3c2aed52f6698a
SHA512 3bfe6f8bc7af20607903073fd4a997d15887a5b294db68de1dc74b441c2b7dc2e992b97d6fc736ef630789d985778a62bdc76618d63ae216b81f5983aa93c068

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\DetailsRowFields[1].js

MD5 6dbf3f19cb3360cdcebe1611e678a7f5
SHA1 fe02621bd0be27db87450cea9033ee01b8f16fdd
SHA256 025c63d2cf0560237c3ec472e787ddb46eadb375f2a7099509c4c4867a34c0ba
SHA512 4cba4938ee508073d50ef3adc546c6e754a771444e82f598bd8ad9ecd29d3567b134b7930ff43c22402947399f9cb879f1e80c9999024c674367153ad7c00d1f

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\GroupedListUtility[1].js

MD5 2e00f7861e331f454b0a340e117e282d
SHA1 3c6110aa1da39d3462e54e15cabdb6b47b14c89a
SHA256 b77d21a87a131e7a76bb52cd92cf226ce98fa396610becca451c9986406be1e2
SHA512 87889bd723ec9e33fdd8dc61f9c64e04725797e43a75e4fd9279ec1c19f87ca691a803e2874599042dc3c79217fa3bab3222c748d141ab67f11d47f918eb4b61

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\withViewport[1].js

MD5 a6496cd43f7b66cf1adeb8966ab72e1d
SHA1 7d21da1fa2977cc6757000f8f8d349f8fe38fc94
SHA256 07edd33173ff27f3378e7f2087b9f15837579fb76b5baa50fa69448fb879c2c2
SHA512 bc3fa21030b085599d3d659b2ef468bc2ba33efdd03c07c5422eb2661fcaf83252406968023ef4b25495a0d82abed87951f7b1d7be6496418ef53e0b0b9bbcc5

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\CommandBar.scss[1].js

MD5 2f72deac72e66539370849c925ee49e3
SHA1 9c56a5d67e0c8a71ca658c9c8b7189852791a5d8
SHA256 13014d260a0f49b45de256d331e6ad4033f4805f5671921a0a72982e63203045
SHA512 567e54fd9a5fa69d854f666887d2c35df36bdab707b1f7bdfab84730a7e2aebfc5cfd0f7a55159361c3386b485e5da5df396fa053dd6dc19bb3eebef83036117

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\Slider.styles[1].js

MD5 ea023310c30b6af496f890addcbc809e
SHA1 10f86162b0dd8f512c8d3d2f5fcf409699c3d6a6
SHA256 a73cd7ec8fcf23739878907b7fc079170a3b749e47647be56907cec68a1d3e06
SHA512 f9c6a9812efc7a2e9103ea3a6e2c0ca50aa15f5780ebf636111be223e2d7d85b478474769ec2cc309521d34e2e18a0a931f67800c463be9f7e27a23235a8d353

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\Nav.styles[1].js

MD5 ee961857bcdaaef3bb1341cd2f4065c9
SHA1 3967cdb4c71959947130e40b3d910178f1549451
SHA256 4d7c09cd770a3ea95b76869c6711ac771584c7e3002c3a20ea324b52dea1ef67
SHA512 6195bd2755e60107739630b29c804f618e6086b2a01f1899bad6f2f0deee797a86ff2d196d4bc6a655472a0a8a5ed8b31dc6bfb4d053880cae5b0720d3f58b48

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\FocusTrapZone[1].js

MD5 a9e97732f40b23bace7bc1a02620c9aa
SHA1 a583562802987997b8acbdfd1e22a28ba107d462
SHA256 0eeecc1c2e69318125ef0ecff5f019dbc4c93f15f8b52a38b1c141e05733d711
SHA512 4ca7c6e595e539543cfa825674aa9f96e5497ba10394a6cc78119c7530430ee7f9807d09037ffb7ea504bd3db803371dd1b481723917b83819a76e36fdaa64aa

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DateMath[1].js

MD5 9ab08f6aec225967df8d18adf4e7a89e
SHA1 d5fbd5e01894fa66eff652b08b5ceaaaf2321837
SHA256 3e12cbddd82f66ae7a6c54673a02dabe486e20dfb93bec0626def4c4b849dc49
SHA512 d8684af5a58ce0468abf95a35d4d926477efd93663d7a0f583126ae35c929dc59c468ad7cc1e8af2e9c3d226fbe305654e6c3010d4700f2049e365be512ab38e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\DatePicker.scss[1].js

MD5 87300ac0a6b8dc3f86dafb9b8ea32093
SHA1 7616f643e27c3e09ff9007a200b0796a3db72347
SHA256 46a9e6911fc23e3ac2ca624c8b906ff6b49e05327bc1a292456b76ca20cc2f07
SHA512 e817eea6e75047255d6b5ed79c1a1b5f131abb766e178f344c9fa22abf7573114e03da59ced90dd237d0e9b68aff4ff88cf3cdf39d7a79004f56d5e744e06444

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\DateValues[1].js

MD5 f2693d5701a97cf82cd6b2bdeafcf563
SHA1 1e90a3eab408a11165499d33b656836b9c658af1
SHA256 14323dafd10b27fee2f5f770e0ccfcebc15d4da9e28dbb17ced49e4ce8d11092
SHA512 adc41b22d9e1186aa5d09f576eb653902f1a8eddbb20341bae67be1613051303120f4f47ec1cf5e25e1d7e84b86481d1028ee4c2ec43b87d2bcad1d493f43a99

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Calendar[1].js

MD5 bcfbb74cb7db5e39dc373d80d5b49fba
SHA1 4d6f4a3a001dbff0d8617055b316efc78fcb9e75
SHA256 95bcd2ac98bf75f91aac45ed110c43197eeb4624b4e5f4befa3b642954a71c98
SHA512 f7414917a03d2f659839dc332307ef0a144643b091162aebcb4688ffbf0bc1170aa224df353068c6229f3513b25b0549bc9f1e18cef62e539ff3e03d17095272

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\ResizeGroup[1].js

MD5 5d4e350fcc8496ad5cc60a1046993554
SHA1 b104075ee54fa4b7b9f51ebf3a01a38bb1acc652
SHA256 a9745d628a5184a7c434ebcf225b7dbd9cf0ba177e0b5a66d2c848a056c0f2ec
SHA512 854ef4952ac19e5d38951d1d4ccb0b7e90cc6f2fa63c626eee4a73eded5e58c40845c9a447f3798a911ad43c8c440d866997368978c43f5fc1cec84f379dbd11

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\Breadcrumb.styles[1].js

MD5 4075cf52a31fe8008862076ce8150a80
SHA1 ced120068a73cb016f2d7ac0298f623dbe7d6eac
SHA256 f062995a8cda0b3cdb7c49119f2fc972c81087c2a305f518a38e9186bcbf9887
SHA512 e23e4c360335a4b26160683e978d89d707fdc9f210371310159b2a74504c3c5e1b2358bd126b6678f6a020c1b6c1e5bb97ee4cc69ed83099ef002b8cf3626cca

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\ChoiceGroup.scss[1].js

MD5 f9a23e86fab88cb210e901128774ffb9
SHA1 664e778eb7e28d487b7a92ef5e2e44042c34d1e7
SHA256 48d2977de356020d850cb2f9b8adb55f8561ef84af3f30d36a18ef1355337092
SHA512 af80223e9846b41cdaecd0aa18fe818c4e7ecf6acf670295e249732819583743970725b856fb38c20cf213d8ce0677859158577cc7ac13658343b8d90d63cbea

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Slider.scss[1].js

MD5 dc271ea3c7926248a60419f4fafb9ccb
SHA1 6580c420feb28e5404718fa1a7f68e0788551b24
SHA256 8372e86a084e310bb9dbe86787fc93834bda5704ea4cc226840ee7dc24ce6f5b
SHA512 ae79f15b9d2ddec6dbbfe9fffe76bfe877d88312e4b4964ac6cbd32ccd4bd15d573b61eed5eb987089eae32c325e43ac39153d69d17eb81d021fbf7561fa2aa2

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\TimeConstants[1].js

MD5 ceff6fb144d83955ab3d6e7b5564d077
SHA1 886ab685dc43b90764953ef699476bd2ddb0175f
SHA256 19c37550c6f2ac6f847bbb48ee5c4e6869874c1742906e1b0930cb1867a08983
SHA512 f7126e1ad8e396cfbbafa390a5c06d12926ecb47d72e5b8d3c187d92f92d7a6d08c84399aa05f8351af48aeacef5f5be7b6c8dcfaa9d65f83ef9149fa985f67b

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\index[6].js

MD5 a9c817231bbd5b7338aa7ca6c3908384
SHA1 1d7d24f6209df3ec0f4941fba673cbdac07e2ee0
SHA256 d992001e1750dca436b288821402fe3a12a07f84d8bef7f68ffcf97b7f428c17
SHA512 d00f8023b3e92be36ec2c9e76d103eb9fa70e6f61d67ec799f3f6045038d4a4d331447cbd40b085cea716737f6eb35600e92985a31a99e2fa8d5dd3cfbab71e2

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\DetailsHeader.scss[1].js

MD5 3eab26694d191cf733a88ea3e107c791
SHA1 f792f8fc66b1589bb29137d6d8c1a6f094c39fc1
SHA256 a4aabd29177e1cd5a13fcd2a19c2b4ff9603366d980df861a2c68bd86dc32f2e
SHA512 3c9711d6fe7a4863b331edf048ee1537b0bd9f1aaf515a308bf812f7a017ac037d3e650e4af00c6228fb1192d6b42441997d606cdd82e835d209c4cf8e7fa032

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\index[7].js

MD5 927a95a0229b3984288cd7216eb0b54e
SHA1 6343fea29e418fe063880e3865dbc06d587aeef2
SHA256 45389bcaff1e9b5953dbb050a89f7a5bceb1866f664a38d35fe32374e01e17f6
SHA512 45a114d09373f66c578a020aff3c673d1d8606ca0df97ce6fd1d8612d4502fb409fdb85816fdddd41d3aecd4a01090b1bd9f36c636cd1bfdf64dfaa193dbf380

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\Calendar[1].js

MD5 8ff88cd70d8f64911ef7bd3eadb7a8e1
SHA1 de95238724efa7fe8991ca524296d9a7470eabd0
SHA256 3f5d943273340cc827b1836b28c2d241c4d2a1ab02fd5a08ab51af8b2118760c
SHA512 597296f725633a0bb387af1cf47363832d10dd8c3d0c61ee8d740eab8ba1a7c6411ef2b2e1f8a3e8ba60e7e51ea611cfecc33a0a93872f6275c41d14f18b4985

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\ResizeGroup[1].js

MD5 b02c56dc5f3f7dc2715cde3f6f0e3ef5
SHA1 1be2e1c8b7237d249e5164886dd54eee7154be93
SHA256 47cf3474e4cee64c0367d5491f70cd5ac1cd974a4048161ef07433b3fbfab494
SHA512 28dfa1ab17e25a3e7156d8e0ab7b63560d00043107d611c11a9b4f8ca836da5b20d667a6254300d575213a27a9d0e3464358e5a7822a9ee336c92760330ae741

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\ResizeGroup.base[1].js

MD5 a6339c3b26e10e28880679f632b3fd8c
SHA1 5775e2424a468781b201af4d8ff8f959ff759dda
SHA256 d95d3c08d7f1a58a254139222bb8365ccd5c272aaedf60c2f15bdb158045bd7d
SHA512 255e78ffd06aa95910c796e9e6899571b636e85ebc2eab10bfda7fec9d7ea98150c56f88a834f3d9230511b6fc68173431068926896d0f560f2e226f25ada5e3

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\CalendarDay[1].js

MD5 e6f1db3dea7c2f118d711a0a4b3a6f6c
SHA1 52b49105b1e70fb9023c82f75c2c7a74c75f85eb
SHA256 e62ab1c0e434fe7adfb7192d9a7cbaf44682feca1abb57c92e92e7463171c5a6
SHA512 a800f6d67c229763dcff44a30631cdd7f4a30197d5044bd06e06ac6e44b5ebcd29c8a00f1c74d488c46a5db7bcb58a7454968381247dcdddd9f832e1ba8acfe4

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\CalendarMonth[1].js

MD5 7b3309f22ce33420b852da87d3daf671
SHA1 f0bee5ae5becd45691e152dfb5716db44011775d
SHA256 a760f2262b528459bf447bef6e4868deef81d70aa2589bd60d3c628de55d96e3
SHA512 7d7f6e0fdea9a420159ea9fe68d072ebfbc2afbe0969cbc8733e3517b90719937a094e816b15d38e7bdf171c54e78d03da87512b4a128c210e2cab38be989a0e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\ResizeGroup.styles[1].js

MD5 b89ef4759be244be61a64c575f5ee336
SHA1 6073dcbd87b18b2500de42d92de09b1086711967
SHA256 990ffe85e2a531e8bc91975a499300d0773f9398cd219894ee6d8c9421a51c3c
SHA512 d52dfe9de3a92f071e26d7cd0e1a5bc9a681af7b23b42c3f9efa1b722510ef2f7f660f7834629d1066b4ff017cc71e1793aeb24801192f1f4674677280b9b60a

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Calendar.scss[1].js

MD5 f8ddb4114e20a97d68d1e949d908288c
SHA1 2dd38bb1f883847131e7f449fd6f575be7845528
SHA256 c931b8454e38dd64b0241071080e08be1ade74f5668aacbf066a7aef9ab61407
SHA512 e8baeba6b5ffac42cc052e0edad5211c98f624164df15264dadfe4669b5a35da262033b359aae22c845293cececd1579d27e262a968bc7292aa777f8bf076a23

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\GroupedList[1].js

MD5 8b4f90c787bda4ccdfa97b8a94d65725
SHA1 16881fd041c662596b179c6305aab7aaf3cccdd8
SHA256 ade90464159466605d187bc7368d99969180aedd3e374a238911962460fa354b
SHA512 e88b59334825282490d0828f7f88379e9c69cc5a4b8f88f9e9413e20acd7bd59c1861b89a362ad480aad27db743873bbb3574b0bba3ae09253f5567e3f18dd55

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\index[6].js

MD5 cbdfad30da4906322cf29fbda8297e28
SHA1 9912f24e65125027f42c635e6cf8ee998007269b
SHA256 1363ddcae2b8d85730badfbd865aed7987f19a28de0c3b34c86e7d6961bb638c
SHA512 ad3a93d7d8c805d5687d51cbb63affe4cfe41b3dadd44aef5f9f3ac0b9c4802d71878498d4f2a5ae3c86eb73e410293d6153d838021c6cdc22f1651ad0371f84

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupSpacer.scss[1].js

MD5 75443b7271e0b2069e2f1c62ba3692fb
SHA1 b79331c8da2dbffe0db86a2ed5a65b45941ffa2c
SHA256 f7a678a875b350c9baf94b0bad83625475069eb0dad70c894eff03f3f7563517
SHA512 b43d92f4434e134c0139d1cacdff6f003d2b4f8d73995d32d19ac044828a7774d3de13415299f51a2fd09ffe2b36772599487efc106613b9387c5e153e736756

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\GroupedListSection[1].js

MD5 bae6cfa99a36f28ca626ed9ef10a4ade
SHA1 3c492cb43ee13b69822cda0078b435391f68588b
SHA256 168abfaea6b2190a7f6b0045abeca7357b3a6eddd86d7a4d1830bdd5d8c4418c
SHA512 38a4a2e4ab35bd6f9367470b1b762fd23558330138294530ebabcbe271613b303a19bd2df3086f0e608eea7efcecb3bf7e80a4952a6acff484aa4b4ad5d12309

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\Check.base[1].js

MD5 2d265181401e6a0dc50706ef25bf0ca8
SHA1 bfa446343cb1316be140b1e8a1780e28005f0cf9
SHA256 4fc405e33481160b712b809fc594b2eaff7d792d7d481ba4f5f043aa4d80bfb1
SHA512 119ff9428cd288931945ac2973527ec174f5d87861ce6c2568d6f84ee54e13f0341bc385edb4f3a2d0dbf93644329cfaa932592d847b9a9caa171ec9fd027b13

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Check[1].js

MD5 473f42a63b8dcbc90b7fca88056de517
SHA1 16df1da2f7bfacc9ea6258d993516950c4c150d8
SHA256 91d9c7592c24d625aee5ddce5371bb907ce8d2ba2c218b7443a7d39d9609cdab
SHA512 f19995870dc4826e8c47d590692fca47cb268557cdefa900facd0a8e5653e25ebaa67bf74bfc5a234b16a739a061c3097084213352c0f9ba9aaad52b0c0c9e84

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupHeader[1].js

MD5 2afce78a3d2df6fe7a21455faeb7f577
SHA1 f0ead90278f0ac6ec8a8d5dda1bd8bc4ade87cd1
SHA256 f3855573267bb322dd3e8a32ba50d072c93a8a70520b0bdc96d38652432f88a0
SHA512 8c9e0720857eb4b529460f389566be6811a54e8bdbeb0cc35e53d49e3255627735a218b1ef5368ac1d94661a841839270bcd6828b3f04e665f40554d24d8f9d7

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupShowAll[1].js

MD5 485e703e6c843872dbe0bfbd559a1f84
SHA1 6515b4126e88e6be497ecb3637516e4d461471f3
SHA256 4d25a4e54cf16c44f8e9faddd83a4281aeb8a953277064b5273c68039c8066bc
SHA512 b27f0c0bfea129a76b77358ab27a9c07d36ace02cfe7295dcd46cfd40f1c5d3e0cebd530b7af8f892ac29b0e79230fea1ba35d516be740250e6b0a5898498be0

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2P6LBKFC\GroupHeader.scss[1].js

MD5 5bd21d054a09be88b724187ab46298e3
SHA1 ad4ddda95952d0c795ecf6a04dc7d2b50cd8c6b7
SHA256 1ee3f7f4b9b87dc21d45ea2d69ad3a0a69dc90136d1865d2bc490544b49c1739
SHA512 dad159f91e23d7736ba955ef95cbe89cba5f624b83fbd6253cd9e8eeaee5b37ad281e7aa9872af4614a4784b50b5db0f7f5fc44044010df331c68c0c7f38faeb

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\Check.styles[1].js

MD5 7e17302da88d7d1161ae9a8c445032cf
SHA1 14283b3e0058874623df4d6884e61309712c0d08
SHA256 cc15cbae69370e4bddd4778ffa10405f15c9a4733a5182631938cfde19cda7a7
SHA512 85b8ddf1984938754ff9d25f188e79405b15af129bd51f0d563aa9cccdcd605647de85e5018e43ef23994d0dbd04d3753e4160326e22161caa07535e97d9c0b8

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupFooter[1].js

MD5 ac609aab3145683419b118ac9395c015
SHA1 d935bec505365fac31bb0f3e3aa770d258c28546
SHA256 e71fde625c049758a86448e813e49b6d7b18511d2cd16319f5bb5ced54bb5db7
SHA512 b63216ed6b5fe46eae982f17356c4fd4facbe665b0dab2066ec885dcbd8edfbcb8a660d2b24855e9a29ec0f8d7fc184569024e39f6e6da40e83baca0e4ca8fcf

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\J3T0TS4E\GroupedList.scss[1].js

MD5 6213ff8406ad330ada598fdd0c5a825a
SHA1 5385ba1580cc82a762039add14cf4adc3e7cc3ac
SHA256 8c8307a02bc3898f8a53de2d0fa9c29cd853cdeffc52229e2cda2d60b758cedb
SHA512 a4b7961ada7e7674832a15df4a1b183a6a77ca3d62a84a7673c798b9a043340a6cf290fcb0fcc56a365ebe3bca999cb4a77e32f5c5b7afb2e1075419d6439f29

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupShowAll.scss[1].js

MD5 2b0b3726e68f6d9826a80002c690db50
SHA1 a68baabeec9701452329aff45f4b44eafe286e2c
SHA256 0ad20ae4fcb0a745233036f5022e5beba61593634edd2a02368921119e6945a6
SHA512 d9e2acbdc06c601662591bbeda350e44017d03186fad66bb60166b2ecc9b280114c369431af5529bed0d52121baae3c80b19d0ae7100eb8a6913447d0398e35f

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\T562DHQU\GroupFooter.scss[1].js

MD5 1f44a81513c50b2542b83bd22d2dfb77
SHA1 5405436fa131bfa065eb7fabd1b36f95619a41df
SHA256 e5942cc40014169181c92caf93d2065cb9b3bcf5b6a2c0e541e6223ec4b2c8f1
SHA512 a305b1d05500987ba7127b167e92503131d72d53c8ec4b99223214159129863cf245fb1677ccaa52f7e5870226e4353774662d7cc8c79fa54ad70cfa265f48d3

C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\XCFODRP5\edgecompatviewlist[1].xml

MD5 d4fc49dc14f63895d997fa4940f24378
SHA1 3efb1437a7c5e46034147cbbc8db017c69d02c31
SHA256 853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1
SHA512 cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json

MD5 b75212ef714356cfc8d0067e9a91b71c
SHA1 78a7d927fc4214ee390e48c059a4428f085fac17
SHA256 1db2723220e6f50c244bbf26730943e200582375d838300472de50645b6f22c6
SHA512 57a2d7723a2fc56635becb90593e6e5b6aa2526a3b852d901e068da1a5b37bc2cc5701b7e175094c5c461abef4ada2e19c824599eff58b6dffcf57b62ad38f88

C:\Users\Admin\AppData\Roaming\Code\User\globalStorage\storage.json.vsctmp

MD5 9ae1878c3cc965a1f75b59daaaa3fbae
SHA1 b9bff9094cd795d858b68f392908cc1b72ad24da
SHA256 5037464898e4258a0acf4e0c84a383a4637e5f71a06f183b1fb089564b1b0e42
SHA512 cffd8d39919a048b5560ec39ee19c895253af8e89496667bdd4c537eada51920f02734cda637d97731cdfd0e01ebcd73c7defa0d92da90ea5ddd7a1c96197b23

C:\Users\Admin\AppData\Roaming\Code\User\settings.json.vsctmp

MD5 b500d2492fed0441c4b744ffef602b8f
SHA1 13dc1aeeead12eb49b18ab3eb3e0afaca0cffee3
SHA256 7213808f075eb11160a7450c8e6f6542cf8fd14485a099292d5b8967d910c6ad
SHA512 9acb7990f3b87bcaf4e7b19314ae5a9a9e6a93023ccd5db0f6a6448937b3c56eb272c04d3ea1ca6ea1a0982f345fbf047e06a71616097d6ae69584695bd67e43

C:\Users\Admin\AppData\Roaming\Code\Network\TransportSecurity

MD5 4b8b73ccf45f3ee7c08fdc9d16bed879
SHA1 2e67c32898637a33af19ba34ad75bbfde6314c67
SHA256 4c92cfcafff93d23f684504399fbb272cae198c93c013f7cd2ce5c70c71448e2
SHA512 d14fb8303e1afa0d25a1e153bdd81953f6e3bb6e032113d9202bff084a689282d01d52ec074000a4481b7847e24fbd673a96964bc2d4f28a0c09c5892adef03e

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\704DG1GH\suggestions[1].it-IT

MD5 5a34cb996293fde2cb7a4ac89587393a
SHA1 3c96c993500690d1a77873cd62bc639b3a10653f
SHA256 c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad
SHA512 e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

C:\Users\Admin\AppData\Roaming\Code\CachedData\89de5a8d4d6205e5b11647eb6a74844ca23d2573\chrome\js\index-dir\the-real-index

MD5 4ced45030766e7cde94490fb108a6a83
SHA1 2ed746bdd03cb39948bd8195b42d4346e454b2b2
SHA256 31f6772c5e58f4465c6de63afd42759bfef0cdc3922dd67c02818b1e8214f6fd
SHA512 9fbbe87cdf884b6b96a09e7deedb431aaa0333c704596295c19e5f1b6c01fca86b96e4744e252ad8d2bc4ec067c572a79f0a380064a0116a55caa096f77186dd

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\9R45QU9X\www.bing[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\Roaming\Code\Network\Network Persistent State

MD5 7ed38ff9c06de1db2cf4ac5a08f1516b
SHA1 4f9dd176789511a2193f7830c14f09a8585090cb
SHA256 966f140beb8117f773365fdca91028ed67c14ab699ec7177dc2f3029b177d313
SHA512 580ebea365926c8b242beeeee3d6396fc93ff50de3d0194cd70774a134f5c1bfda1327a9a082b5748b72cc010d25c7c18f05ff105b702c23eba3c015b9f7410c

C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\LMODX4AF\warmup[2].gif

MD5 325472601571f31e1bf00674c368d335
SHA1 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
SHA256 b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
SHA512 717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a3e56f5bcfbae93ddcc4abe55b73518e
SHA1 e36c301866e761b7020341dc35c2048245b7076a
SHA256 5cde4dae0fd51384a247f6e73c9867e333d4ff6f476d4d95aa1989532b62da2d
SHA512 581202fe6e9d2feeb10a5f0cbbdc61fe340172c887725e7c19bc117efcddb6d4d9599ae0bcc446b59ce90f191dcab65bf5ee080bb8d0b5265e38b0d05fc0adef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e48d3da957d5e209dfae723cdc1a20d9
SHA1 1ad81d58412025328c946c4591395767435c2e1a
SHA256 cff6fc5f12e843cf46bffb8be1eb4c87697dfa5f4f28ec152d0eb7a992d14cfd
SHA512 a7a697a25583dadeab0726ca044d9594be0b1a9b6193f15a94d1c1275f561dac3afcb53fd8f73fef6ae97e11cb93df4c31cde5b95445ecbb803f77f96206ef71

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 787b99d4c5c9eaa2179f627bb9023b71
SHA1 ab4d48203174137f49666f27374eaeeda5c4f180
SHA256 0c80654410f6e07df8eea0dfa1c7c007f4e74be59c130e11ba6f1e0672f4164d
SHA512 d769ac5538b5c0afe37cf4f280c105b0e98e614a5934d52af6f1a08d888a057c3f1c08ab6cc18373a12b50d78b9b6503cb5be4f313788b594b0311fde6a100bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a0790cd35ae33118cf9d334f7a56e175
SHA1 275c9a817f08c3c6d2afa8f401050659f605dca0
SHA256 61cf7b54440327b4f12398d545e0292cb442eb696038d3c1f7c6008e1b27e665
SHA512 6c5d4c7b1b43666a3ac625b1b7de15609d7b4764527661540c52a2847bca570cdede71774dd3e52c1049d998e3f4a5c4f3df07185a66dc96011b9b4fbd0f003f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 bc891ef251b99bcb2996ab9f6e94a949
SHA1 a91cde2f0a2f296bdb3d0a579105f789cd496be5
SHA256 087305da66da55376e748e7c18cff40af9ed889d45aaf8b207f4d7c73319c870
SHA512 a864595a0825379ea31ede1266f5971d8c16c837f305e45cdd79d2898962d90a5add1dbe770329c9463221659a99e669b3160069e4b567151f5a7479e13cc41a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 89e4bec331ea7934a24787d794ac81c7
SHA1 bf2fe2ac3fbe4ac390d348d93bfed1a08f154738
SHA256 e0aaa135abdfc26db0ada2f23347ae85f4ca162f62c28585bd756b9a55243d3b
SHA512 af9dafae2e9fb306b0af2241ee56382ce4dcbc64e6ead9f5e6cb2144a441934db1bf8eb4dfa170a2de75bff3d0fc7b0ea1a5e51a15bd2f59dce26aa0ed918e5c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 87bf69ae7746b377223d6c9a3c0191b9
SHA1 39a38d37f201a186327c576a3237891ce823beea
SHA256 488b22468ac1bb0fb4edd5d21256837ac3bcd82d4badd56680a6b8ac61c9e055
SHA512 54f6f847043d9ee0472cf0f0d92c0a63b4178c107713c1e4b970cfa65fac06880ecc0c893e33f8d7810fb6504baf5819caed103bfa9fa763a9442960e0ddec2b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f6775bbd56737b6c8ed49e49cc119394
SHA1 799ee2c0b03fa4eb704924791e1d5bf8ce0e8563
SHA256 ed74b5833786170e251e04731cd5bce762a39335da853fbb5954129663685365
SHA512 d096a88da09bbd2b9e48d3f14c5581fd040ef9364cf9749ed7e707358ec8d1660fc86f266eba9b9d0a3da9410739bcea1a5ccc3567512d7cf6647b8222b7f2cb