Malware Analysis Report

2024-09-09 11:24

Sample ID 240616-dav4jazhmk
Target OptiFine_1.20.4_HD_U_I7.jar
SHA256 2470895443a4678d66bc39158fca6775343b6d1aa6e332bd8229892d1a2bfffd
Tags
discovery microsoft phishing
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

2470895443a4678d66bc39158fca6775343b6d1aa6e332bd8229892d1a2bfffd

Threat Level: Shows suspicious behavior

The file OptiFine_1.20.4_HD_U_I7.jar was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery microsoft phishing

Modifies file permissions

Legitimate hosting services abused for malware hosting/C2

Detected potential entity reuse from brand microsoft.

Drops file in System32 directory

Drops file in Windows directory

Suspicious behavior: GetForegroundWindowSpam

Modifies data under HKEY_USERS

Suspicious use of SetWindowsHookEx

Enumerates system info in registry

Suspicious use of WriteProcessMemory

Suspicious use of FindShellTrayWindow

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Modifies registry class

MITRE ATT&CK Matrix V13

Analysis: static1

Detonation Overview

Reported

2024-06-16 02:48

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-16 02:48

Reported

2024-06-16 02:52

Platform

win10v2004-20240508-en

Max time kernel

133s

Max time network

116s

Command Line

java -jar C:\Users\Admin\AppData\Local\Temp\OptiFine_1.20.4_HD_U_I7.jar

Signatures

Modifies file permissions

discovery
Description Indicator Process Target
N/A N/A C:\Windows\system32\icacls.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\Recovery\ReAgent.xml C:\Windows\system32\bootim.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\Panther\UnattendGC\setupact.log C:\Windows\system32\bootim.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\setuperr.log C:\Windows\system32\bootim.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagerr.xml C:\Windows\system32\bootim.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagwrn.xml C:\Windows\system32\bootim.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133629798340075752" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "137" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89" C:\Windows\system32\LogonUI.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\bootim.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1596 wrote to memory of 4368 N/A C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe C:\Windows\system32\icacls.exe
PID 1596 wrote to memory of 4368 N/A C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe C:\Windows\system32\icacls.exe
PID 4888 wrote to memory of 4820 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4820 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4364 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4464 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 4464 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4888 wrote to memory of 1472 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar C:\Users\Admin\AppData\Local\Temp\OptiFine_1.20.4_HD_U_I7.jar

C:\Windows\system32\icacls.exe

C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffcae15ab58,0x7ffcae15ab68,0x7ffcae15ab78

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=4080,i,15140928051103392835,1612840580898364401,262144 --variations-seed-version --mojo-platform-channel-handle=3736 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1712 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2288 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3180 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3252 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4368 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4744 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4892 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5088 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5024 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4156 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5148 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3472 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4956 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4608 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Windows\system32\cmd.exe

"C:\Windows\system32\cmd.exe"

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

powershell

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=876 --field-trial-handle=1824,i,4342118623225170696,11165697258882956445,131072 /prefetch:1

C:\Windows\system32\shutdown.exe

"C:\Windows\system32\shutdown.exe" s- t- 10

C:\Windows\system32\LogonUI.exe

"LogonUI.exe" /flags:0x4 /state0:0xa3968855 /state1:0x41c64e6d

C:\Windows\system32\bootim.exe

bootim.exe /startpage:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 clients2.google.com udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 clients2.google.com udp
US 8.8.8.8:53 minecraft.net udp
US 8.8.8.8:53 google.com udp
US 8.8.8.8:53 google.com udp
US 8.8.4.4:53 google.com udp
US 8.8.8.8:53 4.4.8.8.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
US 8.8.8.8:53 clients2.google.com udp
US 8.8.8.8:53 minecraft.net udp
US 8.8.8.8:53 clients2.google.com udp

Files

memory/1596-2-0x0000028C1C9D0000-0x0000028C1CC40000-memory.dmp

C:\ProgramData\Oracle\Java\.oracle_jre_usage\3903daac9bc4a3b7.timestamp

MD5 df438a46723817bc192149c3fee2178a
SHA1 99bf5e4f8dc17fd2d36c9cf5f4494b46d5e581ee
SHA256 d3120bcde2b08ac1e29e58194de0100f8465a442203b607fb700c88b40cdd9d4
SHA512 10659ae72a91bf8075158e12d21dceecec4923f3c61449adadc4c30d6c21e900450bc7ff332176b6853785e162a21b05bf5fad6efd71322609ea8931957ead62

memory/1596-18-0x0000028C1C9B0000-0x0000028C1C9B1000-memory.dmp

memory/1596-25-0x0000028C1CC40000-0x0000028C1CC50000-memory.dmp

\??\pipe\crashpad_4888_IHDSQATNTZMGPJXS

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b371175de6b712bb6b7d4e2a570af750
SHA1 67c87fa3b4634fe21ecdbc5e7a4d8fe0d8b14989
SHA256 41ebe93387871be3f54e46c02a00f241c9e74e94543b0432d3f294ee9e92fcfe
SHA512 0c8f1290bce358196eed3915b1a536ffd1d8ee05e3a039778c319534be12e72f4e6621a403ef92990d64f3e56864a083ccce12bf58ab7b854af164595b15528f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 117d4a9e6a22f00787a71e0b2bb7c9d6
SHA1 902a3b9384d1b0216af010013de6aafcd27ea924
SHA256 b12088c4b51734feb3f4c4033678d01a0aca777a3cfb35f09a13ef03fb653b85
SHA512 9d6ca8782beef3396b66d6c85dc0e8020d398834775fa7cbbbc49d6467225ecfde007e587ff2caba03af2f49893b55fe29232d9cfe07248ee8d90ab4d61188b1

memory/1596-68-0x0000028C1C9D0000-0x0000028C1CC40000-memory.dmp

memory/1596-81-0x0000028C1CC40000-0x0000028C1CC50000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b84dd3d68043733fdb2d1baa303f8582
SHA1 64a1316fa169b2acc4e99eb042c8eb664ae5e154
SHA256 25bb761dbcc1190d79990bf34ad04ef9171c113b140bd98829368385972bf3aa
SHA512 d9a04d2795c50c8578282bfc369f8d7bd6a15a0fb6956fd60edec3aebdcab401857f3eddcdcdf4cc51702a878700f72d58bdce8a738f603af2ac5b96ac467254

memory/5436-109-0x000001E1F3360000-0x000001E1F3382000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_abljpt4m.2wj.ps1

MD5 d17fe0a3f47be24a6453e9ef58c94641
SHA1 6ab83620379fc69f80c0242105ddffd7d98d5d9d
SHA256 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7
SHA512 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82

memory/5436-114-0x000001E1F3850000-0x000001E1F3894000-memory.dmp

memory/5436-115-0x000001E1F3920000-0x000001E1F3996000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 7ec5b79310cd7a9ede4c7639526a2540
SHA1 a43686de2244fb09b057a5fe1d0ccdaa6ce6f6fa
SHA256 d6e0721e7b14b85102e8ed8b06bbb6adf098cfee4991000c7dafec9d7b5003b3
SHA512 6245f17b536cbb08daa3964c58cb99eadd55c32e4e16665cac462d9daddd9491300a669b936b87ea90c22ea38896640aa7888809c9bee652e895c02d30e2373c

C:\Windows\System32\Recovery\ReAgent.xml

MD5 1c3d9dbc3773e76f2507074e03791014
SHA1 89eb66e704e2c16d9130949025bcb4145f0e7c56
SHA256 4c4ef6ea5137f1b668c38506d16ccdc60362c07b8a1732f47cbf6034bbc5e497
SHA512 6e57da2f2d5fe403d6df3305628c8f91825aa3a4f3980aa5ba519618c70016f426c3e66368b80a35810f6e3cb88f299a4e1a4fbc85eb791c54d5740ba2612082

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-16 02:48

Reported

2024-06-16 03:20

Platform

win11-20240611-en

Max time kernel

1800s

Max time network

1686s

Command Line

java -jar C:\Users\Admin\AppData\Local\Temp\OptiFine_1.20.4_HD_U_I7.jar

Signatures

Modifies file permissions

discovery
Description Indicator Process Target
N/A N/A C:\Windows\system32\icacls.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Detected potential entity reuse from brand microsoft.

phishing microsoft

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\Panther\UnattendGC\setupact.log C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\setuperr.log C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagerr.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagwrn.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133629799852806724" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-952492217-3293592999-1071733403-1000_Classes\Local Settings\MuiCache C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\OpenWith.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 5000 wrote to memory of 4704 N/A C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe C:\Windows\system32\icacls.exe
PID 5000 wrote to memory of 4704 N/A C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe C:\Windows\system32\icacls.exe
PID 4668 wrote to memory of 3656 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3656 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 3680 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2384 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2384 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4668 wrote to memory of 2828 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe

java -jar C:\Users\Admin\AppData\Local\Temp\OptiFine_1.20.4_HD_U_I7.jar

C:\Windows\system32\icacls.exe

C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7fffb4cfab58,0x7fffb4cfab68,0x7fffb4cfab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1636 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2128 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2188 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3084 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3096 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4224 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3516 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4576 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4432 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4740 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4740 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4904 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4760 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4816 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4796 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4296 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=3216 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=2712 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4972 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=3940 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=3152 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2880 --field-trial-handle=1796,i,10983882559455409360,4275388200758607056,131072 /prefetch:2

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\CheckpointWait.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\CheckpointWait.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\CheckpointWait.bat" "

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004EC 0x00000000000004D8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x10c,0x110,0x114,0xe8,0x118,0x7fffb4cfab58,0x7fffb4cfab68,0x7fffb4cfab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1700 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2060 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2216 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2940 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3032 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4248 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4256 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4384 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4444 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4800 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4440 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4792 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3424 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3052 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4288 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

C:\Windows\System32\oobe\UserOOBEBroker.exe

C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=2624 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=1436 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4572 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=1180 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3320 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=3388 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5296 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5632 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5624 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5792 --field-trial-handle=1824,i,14851461535254306641,2617701363869364102,131072 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com tcp
GB 172.217.169.46:443 play.google.com udp
GB 142.250.187.238:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
GB 142.250.187.238:443 ogs.google.com tcp
GB 216.58.213.3:443 ssl.gstatic.com tcp
US 13.107.246.64:443 js.monitor.azure.com tcp
US 13.107.246.64:443 js.monitor.azure.com tcp
BE 23.14.90.72:443 www.minecraft.net tcp
US 8.8.8.8:53 assets.adobedtm.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
BE 23.55.97.181:443 www.microsoft.com tcp
US 13.107.246.64:443 consentreceiverfd-prod.azurefd.net tcp
GB 2.21.189.25:443 assets.adobedtm.com tcp
US 13.107.246.64:443 consentreceiverfd-prod.azurefd.net tcp
US 13.107.246.64:443 consentreceiverfd-prod.azurefd.net tcp
BE 23.55.96.141:443 0217991c.akstat.io tcp
BE 23.14.90.91:443 minecraftprivacy.microsoft.com tcp
BE 23.55.96.141:443 0217991c.akstat.io tcp
BE 23.55.96.141:443 0217991c.akstat.io tcp
US 20.114.190.119:443 x.clarity.ms tcp
US 20.189.173.26:443 browser.events.data.microsoft.com tcp
US 20.189.173.26:443 browser.events.data.microsoft.com tcp
US 13.107.246.64:443 consentreceiverfd-prod.azurefd.net tcp
US 20.189.173.26:443 browser.events.data.microsoft.com tcp
BE 23.55.96.141:443 0217991c.akstat.io udp
ES 18.172.213.124:443 cdnssl.clicktale.net tcp
US 8.8.8.8:53 target.microsoft.com udp
US 8.8.8.8:53 microsoftmscompoc.tt.omtrdc.net udp
BE 23.55.96.141:443 0217991c.akstat.io udp
US 8.8.8.8:53 dpm.demdex.net udp
IE 52.214.218.223:443 dpm.demdex.net tcp
US 8.8.8.8:53 124.213.172.18.in-addr.arpa udp
US 8.8.8.8:53 msftenterprise.sc.omtrdc.net udp
US 8.8.8.8:53 cm.everesttech.net udp
IE 66.235.152.225:443 msftenterprise.sc.omtrdc.net tcp
BE 23.55.97.181:443 www.microsoft.com tcp
IE 66.235.152.221:443 msftenterprise.sc.omtrdc.net tcp
IE 34.249.24.243:443 cm.everesttech.net tcp
US 8.8.8.8:53 ib.adnxs.com udp
DE 37.252.171.21:443 ib.adnxs.com tcp
US 35.244.174.68:443 idsync.rlcdn.com tcp
US 8.8.8.8:53 cm.g.doubleclick.net udp
GB 142.250.179.226:443 cm.g.doubleclick.net tcp
DE 37.252.171.21:443 ib.adnxs.com tcp
US 8.8.8.8:53 rtd.tubemogul.com udp
US 151.101.194.49:443 rtd.tubemogul.com tcp
GB 142.250.179.226:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 idpix.media6degrees.com udp
US 8.8.8.8:53 rtd-tm.everesttech.net udp
US 172.64.151.238:443 idpix.media6degrees.com tcp
US 151.101.194.49:443 rtd-tm.everesttech.net tcp
US 8.8.8.8:53 analytics.twitter.com udp
US 8.8.8.8:53 c1.microsoft.com udp
US 8.8.8.8:53 x5s5cjyxbzneqztokowa-f-ba1cc1d41-clientnsv4-s.akamaihd.net udp
US 104.244.42.131:443 analytics.twitter.com tcp
US 8.8.8.8:53 223.218.214.52.in-addr.arpa udp
US 8.8.8.8:53 225.152.235.66.in-addr.arpa udp
US 8.8.8.8:53 221.152.235.66.in-addr.arpa udp
US 8.8.8.8:53 243.24.249.34.in-addr.arpa udp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 21.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 49.194.101.151.in-addr.arpa udp
IE 68.219.88.97:443 c1.microsoft.com tcp
US 35.71.131.137:443 match.adsrvr.org tcp
DE 91.228.74.244:443 cms.quantserve.com tcp
US 13.107.21.237:443 c.bing.com tcp
US 13.107.21.237:443 c.bing.com tcp
NL 23.218.49.158:443 servedby.flashtalking.com tcp
US 104.18.24.173:443 a.tribalfusion.com tcp
DE 3.71.149.231:443 cms.analytics.yahoo.com tcp
US 8.8.8.8:53 px.owneriq.net udp
NL 23.38.22.254:443 px.owneriq.net tcp
US 8.8.8.8:53 jadserve.postrelease.com udp
US 8.8.8.8:53 s.tribalfusion.com udp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
IE 52.50.65.213:443 jadserve.postrelease.com tcp
US 8.8.8.8:53 ds.reson8.com udp
NL 23.38.22.254:443 px.owneriq.net tcp
US 104.18.9.110:443 ds.reson8.com tcp
US 8.8.8.8:53 238.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 131.42.244.104.in-addr.arpa udp
US 8.8.8.8:53 137.131.71.35.in-addr.arpa udp
US 8.8.8.8:53 97.88.219.68.in-addr.arpa udp
US 8.8.8.8:53 244.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 237.21.107.13.in-addr.arpa udp
US 8.8.8.8:53 158.49.218.23.in-addr.arpa udp
US 8.8.8.8:53 173.24.18.104.in-addr.arpa udp
US 8.8.8.8:53 231.149.71.3.in-addr.arpa udp
US 8.8.8.8:53 254.22.38.23.in-addr.arpa udp
US 8.8.8.8:53 bttrack.com udp
US 192.132.33.67:443 bttrack.com tcp
US 76.223.111.18:443 dmpsync.3lift.com tcp
GB 35.176.211.157:443 ag.innovid.com tcp
US 54.210.201.126:443 rtb.adentifi.com tcp
IE 52.49.45.15:443 sync.crwdcntrl.net tcp
US 20.69.192.122:443 sisu.xboxlive.com tcp
US 20.69.192.122:443 sisu.xboxlive.com tcp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 157.211.176.35.in-addr.arpa udp
US 8.8.8.8:53 126.201.210.54.in-addr.arpa udp
US 8.8.8.8:53 122.192.69.20.in-addr.arpa udp
US 8.8.8.8:53 15.45.49.52.in-addr.arpa udp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
US 104.18.36.155:443 dsum-sec.casalemedia.com tcp
US 104.18.36.155:443 dsum-sec.casalemedia.com udp
US 34.98.64.218:443 us-u.openx.net tcp
GB 185.64.191.210:443 image2.pubmatic.com tcp
US 8.8.8.8:53 logincdn.msftauth.net udp
US 8.8.8.8:53 acctcdn.msftauth.net udp
US 8.8.8.8:53 acctcdn.msauth.net udp
US 20.114.190.119:443 x.clarity.ms tcp
US 152.199.21.175:443 acctcdn.msftauth.net tcp
US 13.107.246.64:443 acctcdn.msauth.net tcp
US 8.8.8.8:53 acctcdnmsftuswe2.azureedge.net udp
US 152.199.21.175:443 lgincdnvzeuno.azureedge.net tcp
US 8.8.8.8:53 acctcdnvzeuno.azureedge.net udp
US 8.8.8.8:53 lgincdnmsftuswe2.azureedge.net udp
US 152.199.21.175:443 acctcdnvzeuno.azureedge.net tcp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 8.8.8.8:53 218.64.98.34.in-addr.arpa udp
US 8.8.8.8:53 17.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 210.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 175.21.199.152.in-addr.arpa udp
US 13.107.42.22:443 account.live.com tcp
US 13.107.42.22:443 account.live.com tcp
GB 142.250.178.14:443 google.com tcp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 client.hip.live.com udp
IE 20.190.159.67:443 client.hip.live.com tcp
US 8.8.8.8:53 67.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 eus.client.hip.live.com udp
IE 20.190.159.20:443 eus.client.hip.live.com tcp
IE 20.190.159.20:443 eus.client.hip.live.com tcp
IE 20.190.159.20:443 eus.client.hip.live.com tcp
US 8.8.8.8:53 acctcdn.msauth.net udp
US 8.8.8.8:53 acctcdn.msauth.net udp
US 8.8.8.8:53 acctcdn.msftauth.net udp
US 8.8.8.8:53 acctcdnmsftuswe2.azureedge.net udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 20.189.173.10:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 10.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 104.193.132.51.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
GB 142.250.179.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 142.250.69.3:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 3.69.250.142.in-addr.arpa udp
US 8.8.8.8:53 116.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 consent.google.com udp
GB 142.250.187.238:443 consent.google.com tcp
US 142.250.69.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 github.githubassets.com udp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 185.199.108.133:443 avatars.githubusercontent.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 8.8.8.8:53 133.108.199.185.in-addr.arpa udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 154.109.199.185.in-addr.arpa udp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
US 185.199.109.154:443 github.githubassets.com tcp
US 140.82.113.21:443 collector.github.com tcp
US 140.82.113.21:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 21.113.82.140.in-addr.arpa udp
GB 95.101.129.216:443 tcp
NL 23.62.61.97:443 r.bing.com tcp
NL 23.62.61.97:443 r.bing.com tcp
NL 23.62.61.97:443 r.bing.com tcp
NL 23.62.61.97:443 r.bing.com tcp
NL 23.62.61.97:443 r.bing.com tcp
NL 23.62.61.97:443 r.bing.com tcp
US 52.182.143.208:443 browser.pipe.aria.microsoft.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 208.143.182.52.in-addr.arpa udp
US 8.8.8.8:53 222.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 88.156.103.20.in-addr.arpa udp
US 8.8.8.8:53 cxcs.microsoft.net udp
BE 104.68.66.114:443 cxcs.microsoft.net tcp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 114.66.68.104.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 142.250.69.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
US 8.8.8.8:53 encrypted-vtbn0.gstatic.com udp
GB 142.250.180.14:443 encrypted-vtbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com udp
GB 142.250.180.14:443 encrypted-vtbn0.gstatic.com udp
US 8.8.8.8:53 id.google.com udp
GB 172.217.16.227:443 id.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 172.217.169.86:443 i.ytimg.com tcp
GB 172.217.169.86:443 i.ytimg.com tcp
GB 172.217.169.86:443 i.ytimg.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 227.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 86.169.217.172.in-addr.arpa udp
GB 172.217.169.78:443 www.youtube.com udp
GB 172.217.169.86:443 i.ytimg.com udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.204.66:443 googleads.g.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.212.202:443 jnn-pa.googleapis.com tcp
GB 216.58.212.202:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 78.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 202.212.58.216.in-addr.arpa udp
US 142.250.69.3:443 beacons.gcp.gvt2.com udp
US 104.18.33.149:443 codesandbox.io tcp
US 104.18.33.149:443 codesandbox.io tcp
US 104.18.33.149:443 codesandbox.io udp
GB 216.58.201.106:443 ajax.googleapis.com tcp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 185.199.109.133:443 raw.githubusercontent.com tcp
US 185.199.109.133:443 raw.githubusercontent.com tcp
US 104.18.39.169:443 g2zx0i.csb.app tcp
US 104.18.39.169:443 g2zx0i.csb.app tcp
FR 37.187.147.161:443 ofcncog2cu-dsn.algolia.net tcp
US 104.18.33.149:443 codesandbox.io udp
US 8.8.8.8:53 133.109.199.185.in-addr.arpa udp
US 8.8.8.8:53 169.39.18.104.in-addr.arpa udp
US 151.101.129.229:443 cdn.jsdelivr.net tcp
US 151.101.129.229:443 cdn.jsdelivr.net tcp
US 151.101.129.229:443 cdn.jsdelivr.net tcp
US 151.101.129.229:443 cdn.jsdelivr.net tcp
US 104.18.33.149:443 sandpack-cdn-v2.codesandbox.io tcp
US 8.8.8.8:53 229.129.101.151.in-addr.arpa udp
US 8.8.8.8:53 e2c79.gcp.gvt2.com udp
US 8.8.8.8:53 beacons2.gvt2.com udp
IN 34.0.0.42:443 e2c79.gcp.gvt2.com tcp
BE 108.177.15.94:443 beacons2.gvt2.com tcp
BE 108.177.15.94:443 beacons2.gvt2.com udp
IN 34.0.0.42:443 e2c79.gcp.gvt2.com tcp
US 8.8.8.8:53 94.15.177.108.in-addr.arpa udp
US 34.120.195.249:443 o72233.ingest.sentry.io tcp
US 8.8.8.8:53 worker.codesandbox.io udp
US 172.64.154.107:443 worker.codesandbox.io tcp
US 8.8.8.8:53 nodebox-runtime.codesandbox.io udp
US 172.64.154.107:443 nodebox-runtime.codesandbox.io tcp
US 8.8.8.8:53 beacons.gvt2.com udp
US 108.177.122.94:443 beacons.gvt2.com tcp
US 172.64.154.107:443 nodebox-runtime.codesandbox.io udp
US 8.8.8.8:53 42.0.0.34.in-addr.arpa udp
US 8.8.8.8:53 249.195.120.34.in-addr.arpa udp
US 8.8.8.8:53 107.154.64.172.in-addr.arpa udp
US 8.8.8.8:53 94.122.177.108.in-addr.arpa udp
US 104.18.39.169:443 g2zx0i.csb.app udp
US 104.18.33.149:443 prod-packager-packages.codesandbox.io tcp
US 104.16.30.34:443 registry.npmjs.org tcp
US 104.16.30.34:443 registry.npmjs.org tcp
US 104.16.30.34:443 registry.npmjs.org tcp
US 104.16.30.34:443 registry.npmjs.org tcp
US 104.16.30.34:443 registry.npmjs.org tcp
US 104.16.30.34:443 registry.npmjs.org tcp
US 151.101.129.91:443 data.jsdelivr.com tcp
US 151.101.129.91:443 data.jsdelivr.com tcp
US 151.101.129.91:443 data.jsdelivr.com tcp
US 8.8.8.8:53 34.30.16.104.in-addr.arpa udp
US 8.8.8.8:53 91.129.101.151.in-addr.arpa udp
US 104.18.33.149:443 prod-packager-packages.codesandbox.io udp
US 8.8.8.8:53 col.csbops.io udp
DE 148.251.96.176:443 col.csbops.io tcp
US 8.8.8.8:53 176.96.251.148.in-addr.arpa udp
US 8.8.8.8:53 open-vsx.org udp
CA 198.41.30.195:443 open-vsx.org tcp
US 34.120.195.249:443 o72233.ingest.sentry.io udp
CA 198.41.30.195:443 open-vsx.org tcp
US 8.8.8.8:53 195.30.41.198.in-addr.arpa udp
US 8.8.8.8:53 nodei.co udp
AU 52.64.64.134:443 nodei.co tcp
AU 52.64.64.134:443 nodei.co tcp
US 8.8.8.8:53 134.64.64.52.in-addr.arpa udp
GB 95.101.129.216:443 tcp
GB 95.101.129.216:443 tcp
GB 95.101.129.216:443 tcp
GB 95.101.129.216:443 tcp
GB 95.101.129.216:443 tcp
US 52.182.143.208:443 browser.pipe.aria.microsoft.com tcp
US 172.64.154.107:443 prod-packager-packages.codesandbox.io udp
US 34.120.195.249:443 o72233.ingest.sentry.io udp
GB 142.250.187.196:443 www.google.com udp
US 142.250.69.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 142.250.69.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons2.gvt2.com udp
IN 172.217.163.195:443 beacons2.gvt2.com udp
US 8.8.8.8:53 195.163.217.172.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 108.177.122.94:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 4.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 26.35.223.20.in-addr.arpa udp
US 8.8.8.8:53 10.27.171.150.in-addr.arpa udp
US 8.8.8.8:53 57.169.31.20.in-addr.arpa udp

Files

memory/5000-2-0x000001AB57E10000-0x000001AB58080000-memory.dmp

C:\ProgramData\Oracle\Java\.oracle_jre_usage\3903daac9bc4a3b7.timestamp

MD5 780185daa7c6c0fe483c813d4c88312c
SHA1 eee2dbffbcd94a7ff767abd888681ae3b02f7035
SHA256 e690dbd47b174e4bae1e5343a9eca3a99db926ee120a744ca8a4a3c5f9927e0a
SHA512 2f0adf86c586946a0995cb3212d0838e890e1d8b5be4780dcd3081bb09934b7d27cfd2738819fc9f726499bba55e34f51a177f02161f63f8c0bbec3fedb96827

memory/5000-19-0x000001AB56510000-0x000001AB56511000-memory.dmp

memory/5000-25-0x000001AB58080000-0x000001AB58090000-memory.dmp

memory/5000-27-0x000001AB58090000-0x000001AB580A0000-memory.dmp

memory/5000-30-0x000001AB580A0000-0x000001AB580B0000-memory.dmp

memory/5000-32-0x000001AB580B0000-0x000001AB580C0000-memory.dmp

memory/5000-34-0x000001AB580C0000-0x000001AB580D0000-memory.dmp

memory/5000-36-0x000001AB580D0000-0x000001AB580E0000-memory.dmp

memory/5000-38-0x000001AB580E0000-0x000001AB580F0000-memory.dmp

memory/5000-42-0x000001AB580F0000-0x000001AB58100000-memory.dmp

memory/5000-44-0x000001AB57E10000-0x000001AB58080000-memory.dmp

memory/5000-45-0x000001AB58100000-0x000001AB58110000-memory.dmp

memory/5000-47-0x000001AB58110000-0x000001AB58120000-memory.dmp

memory/5000-51-0x000001AB58120000-0x000001AB58130000-memory.dmp

memory/5000-50-0x000001AB58080000-0x000001AB58090000-memory.dmp

memory/5000-55-0x000001AB58130000-0x000001AB58140000-memory.dmp

memory/5000-54-0x000001AB58090000-0x000001AB580A0000-memory.dmp

memory/5000-57-0x000001AB580A0000-0x000001AB580B0000-memory.dmp

memory/5000-58-0x000001AB58140000-0x000001AB58150000-memory.dmp

memory/5000-62-0x000001AB58150000-0x000001AB58160000-memory.dmp

memory/5000-61-0x000001AB580B0000-0x000001AB580C0000-memory.dmp

memory/5000-64-0x000001AB580C0000-0x000001AB580D0000-memory.dmp

memory/5000-65-0x000001AB58160000-0x000001AB58170000-memory.dmp

memory/5000-67-0x000001AB580D0000-0x000001AB580E0000-memory.dmp

memory/5000-68-0x000001AB58170000-0x000001AB58180000-memory.dmp

memory/5000-71-0x000001AB580E0000-0x000001AB580F0000-memory.dmp

memory/5000-75-0x000001AB58180000-0x000001AB58190000-memory.dmp

memory/5000-74-0x000001AB580F0000-0x000001AB58100000-memory.dmp

memory/5000-77-0x000001AB58100000-0x000001AB58110000-memory.dmp

memory/5000-78-0x000001AB58190000-0x000001AB581A0000-memory.dmp

memory/5000-81-0x000001AB581A0000-0x000001AB581B0000-memory.dmp

memory/5000-80-0x000001AB58110000-0x000001AB58120000-memory.dmp

memory/5000-83-0x000001AB58120000-0x000001AB58130000-memory.dmp

memory/5000-84-0x000001AB581B0000-0x000001AB581C0000-memory.dmp

memory/5000-86-0x000001AB58130000-0x000001AB58140000-memory.dmp

memory/5000-87-0x000001AB581C0000-0x000001AB581D0000-memory.dmp

memory/5000-89-0x000001AB58140000-0x000001AB58150000-memory.dmp

memory/5000-91-0x000001AB58150000-0x000001AB58160000-memory.dmp

memory/5000-95-0x000001AB581D0000-0x000001AB581E0000-memory.dmp

memory/5000-94-0x000001AB58160000-0x000001AB58170000-memory.dmp

memory/5000-97-0x000001AB58170000-0x000001AB58180000-memory.dmp

memory/5000-98-0x000001AB581E0000-0x000001AB581F0000-memory.dmp

memory/5000-101-0x000001AB581F0000-0x000001AB58200000-memory.dmp

memory/5000-103-0x000001AB58180000-0x000001AB58190000-memory.dmp

memory/5000-105-0x000001AB58190000-0x000001AB581A0000-memory.dmp

memory/5000-107-0x000001AB581A0000-0x000001AB581B0000-memory.dmp

memory/5000-108-0x000001AB581B0000-0x000001AB581C0000-memory.dmp

memory/5000-109-0x000001AB581C0000-0x000001AB581D0000-memory.dmp

memory/5000-113-0x000001AB581D0000-0x000001AB581E0000-memory.dmp

memory/5000-114-0x000001AB581E0000-0x000001AB581F0000-memory.dmp

memory/5000-116-0x000001AB58200000-0x000001AB58210000-memory.dmp

memory/5000-115-0x000001AB581F0000-0x000001AB58200000-memory.dmp

memory/5000-127-0x000001AB58200000-0x000001AB58210000-memory.dmp

memory/5000-132-0x000001AB58210000-0x000001AB58220000-memory.dmp

memory/5000-136-0x000001AB58220000-0x000001AB58230000-memory.dmp

memory/5000-137-0x000001AB58230000-0x000001AB58240000-memory.dmp

memory/5000-138-0x000001AB58210000-0x000001AB58220000-memory.dmp

memory/5000-143-0x000001AB58220000-0x000001AB58230000-memory.dmp

memory/5000-144-0x000001AB58230000-0x000001AB58240000-memory.dmp

memory/5000-146-0x000001AB58240000-0x000001AB58250000-memory.dmp

memory/5000-149-0x000001AB58250000-0x000001AB58260000-memory.dmp

memory/5000-152-0x000001AB58260000-0x000001AB58270000-memory.dmp

memory/5000-156-0x000001AB58270000-0x000001AB58280000-memory.dmp

memory/5000-159-0x000001AB58280000-0x000001AB58290000-memory.dmp

\??\pipe\crashpad_4668_OBYFHBUDNCGYKZCP

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

memory/5000-197-0x000001AB58240000-0x000001AB58250000-memory.dmp

memory/5000-198-0x000001AB58250000-0x000001AB58260000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 63e11581fe7e6ae443591a37bb2d4320
SHA1 af14a32536b25348a808d95e59a99a41f0459801
SHA256 9d9d84721389e02e9a79ab2cb9f814426571d9f8d7fa0e0720933d1befe2cce0
SHA512 7910c99abbdda92ec5bf11387fc728af302a3b5515bbdcd65e59ae70abc796e03ad5c3ebcce4a2e582dcfb0da3b23c277fb294303fe9157069f3b48bd88bea06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0846306412f369112657d923f5497cda
SHA1 d098dbac50eea30f257711b4a88a422549f0dd63
SHA256 70f6c90d0ab552488c5566ff66372a3f9438540ae13dc6f65e7d5ba64acbe549
SHA512 e37e306ffabdc13605bf91d7a2dba210c4078f5365a9afd3e6555d2937a270a72ed1e84c20b5f1a8d98a62f8ee8746194e106a69418557b7effa1449971d7f3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0a468bda9f953bf03287554453effd40
SHA1 e5aee5d347978c1087f78a2bcf57d082f37dd336
SHA256 c6e66e3148edaaa1f45347d4a9d7b2a8c29098e672d5efa5219c510b14e1f9d1
SHA512 66bf81c333849abd593e1a021abc3dc674e9d4bb5bcaa7b4acad267b4a1ad5829a1926f189c7a69efbe88c20002a399dd8811be2fdaa5d5d9703e6be6054fd73

memory/5000-218-0x000001AB58260000-0x000001AB58270000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 6b319563026305780fe496d1af48e254
SHA1 7c021abf4dc7081bae315d96c6cf3e548317ee73
SHA256 005e65f2025a2c6f9c69bd56c930a7a5f7a9cea55d1222f14ae3afa86a4fdd17
SHA512 786f9075f17b72a337ae1ec5cb602b8c1381a7dd845d0bd20d98aa90e8cb3baa20e36bb0e3191374502988196fcd4ebc364c2e8d7ebd02362739d645f2568f73

memory/5000-246-0x000001AB58270000-0x000001AB58280000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1024e5ceb0acb93559eeae9205b315fa
SHA1 19d797a3c6d6640c9fc8195c532eed2de631b3cb
SHA256 4368377f966f328b147af651e9e1559ff9ea1d86e0a4ea735f4b492a818bf3f6
SHA512 df8f8215ef51650d1bd5990b246542968d2fd8b4cab5bb62b7ad9cb8e438d88b9d10e174eadcfdfcf5b8a5a1d260fc62790132e7ac2a289d894f9dc4675df22f

memory/5000-392-0x000001AB58280000-0x000001AB58290000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004d

MD5 8991c3ec80ec8fbc41382a55679e3911
SHA1 8cc8cee91d671038acd9e3ae611517d6801b0909
SHA256 f55bacd4a20fef96f5c736a912d1947be85c268df18003395e511c1e860e8800
SHA512 4968a21d8cb9821282d10ba2d19f549a07f996b9fa2cdbcc677ac9901627c71578b1fc65db3ca78e56a47da382e89e52ac16fee8437caa879ece2cfba48c5a6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 75184c30c6cb67e026136058be444bec
SHA1 4e3091a0dbecc9ecdd7756ca8bc78ecc5abf77e4
SHA256 f2c5a58da32521da77fdd243aa84f01b5b1f3da44c10725e0ceb740d56339473
SHA512 93d66e627d89f54b4f9a649cc4bfd919b99626ff8677b12462dac72a6609a08f9d2d2290914b52e705a715f82f216d9dc52deaf71a4b94743e3e38b30f8855e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 68a49f7d70243c1f3fb669267e04782f
SHA1 71e6bdec5309f00eceac8e5b063daf5389e84f14
SHA256 badf2cdc49e1e9409f3f8ecbe9a139081d8ac5267b2c69ab7be4f8afca453479
SHA512 69cd3a04599444042ce934657d6a15efd8989c03abb66bda120773a7b407affd2ba9adff84db196eb00901f6a7a4ce4e93e1cb7e2ae612575dddb7de25e62d56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a443a2391395963614e5d8fa2f55d934
SHA1 a08975e8338c4cebcd877c64771ae83adc8b8173
SHA256 434345b7e1314891ba9105456aab08af21158d688a613d95aeb994943e06af80
SHA512 d3b4f3597980a03b3bf6367af1f4683769471b3ce3458c261453ce2026034b199059df73d8cb82317709d96a3a14180830f84f946e3ac3a63b0301577d148cce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 112e5ae5997955fbe5c1ef00e1f0f98e
SHA1 8d981de88106dd6b210e9c6bdcfd1d63498eca54
SHA256 3a07dfaea9be9264399c2ac3726bf49d6294a78a5afa21512a60b84fa69083a0
SHA512 42bd3b71c656fca558a24357420620e5e99090b053944666c944ae0af478c1a1f81ffe3dbe10ec3eebe484ca89e6465b1c4888d8b7ab4b3771405b6a6e0286ed

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 00cc4f32a425a268ef97ac23f4d9d713
SHA1 75a36027aa2f765a0fe6fc4897acab26d174f150
SHA256 5567bba70eb66c6121f80ea4db3985ac8f39ab5a09ddafd9744774c6292d3c65
SHA512 0d3e9116a25b6c971bcd0d801d7d2354629b1afa00d7cbdbbe941bf954d977c875041a4c08b390d8d546a215db3f3d7110fa11a1be085d2003bf45cddd4b5d9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5a1406.TMP

MD5 5d6c665b296f82c42b989291552f813c
SHA1 da4022143463639ab6bc6d6ceea5b91fb352c1f1
SHA256 b83760e35abae7c911350120874bf185223be37db76942e720e289bc24fa1c94
SHA512 39a460793fa6c950cc1b8be63cda37e5eea905ca34ad91dba7d0e392054b278bfdcba1277a0007ea81d68f0763abb04a33ce28ba8b8d07698180fdf7404333d7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2a23468d6731916d315278a9a147beac
SHA1 73eea05cd4eb06eaea57cd2621e56ffc84ea5e58
SHA256 268b2c334e817eb18ba366425ac6efb001e1a72afea049ccf54cd4d0562bc935
SHA512 903098e0e133895a60d5609193cdff8b3bc98fa88786e5df0bc9da5b27c1de923854e9dc082c6b9f272d416ee9946c514b7d6e6cb7d464caf5de58f9fe6029e2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cbd084bb54c08be0ccd01a72e66688bd
SHA1 f2078716897a842fa37ec85b2f95ade007e57e36
SHA256 d419751ae9d0dc8ff8a0e584e95b79d5c8fd07530b7bf1ca23d081bd930868c8
SHA512 40e0200c09991cbc943577e6e730675c8146ab551f822284a5848914d2ec11f985cf82f857ded91c924e0564daae6f0cd4587c6bfa18a9300e63fa945907e181

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005c

MD5 12e3dac858061d088023b2bd48e2fa96
SHA1 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
SHA256 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
SHA512 c5030c55a855e7a9e20e22f4c70bf1e0f3c558a9b7d501cfab6992ac2656ae5e41b050ccac541efa55f9603e0d349b247eb4912ee169d44044271789c719cd01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005e

MD5 b46031e02b69c55b43053aedc00e59af
SHA1 3b4f355a7ea1d6f0da5f117335499489868087d7
SHA256 296d5be0236dcc1d7ff8d3d17a47a698c0d51968c9e4907123f88e21c14e0840
SHA512 a4fd995debf4369f826dd4320c169394a6c76e65036410261bd00e025682195847f9e26f6b498e90fccc7b054f52af277cd17944f14e050bc930e3d47c8a87bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dddaef9fa1ef537bda2225e11740d9b3
SHA1 914a5dff6be9d9fca9154327e4a37a66781a9bfa
SHA256 a41d67390d86c3b66953f4fea18c343c0b74fe6293c61be49e7239a46d3cf298
SHA512 cf37b3a72aba6eeb4a34575d1c407cd4d6fb358e78740661790e5a2e72e0e1f05752fc2302520c9721286cd72b04a7b2caed5e364916952b070498de80721119

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 65759b9f633456a2bffe5097c5cee718
SHA1 a7b0409e1233c0a1ce845e267b87fda4a9b11ec0
SHA256 3489ac54ae69951ea928aa97375cb76fe61667570aee75f97e0eddeabf2aca97
SHA512 c596e3be3254d9676cf41cd9cccb6fca2dc805387773c8927ef95d26b97aac6c1484f0006ef4a27109fb377eda33310243d0757d96549b962b4e944e39448dfb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f5b57260740a8e59fc459d2dc6c84a10
SHA1 814c77326fa9d8bb93cc8300f669f4585fff76c8
SHA256 e4347d40b9eb358ff46bdd34016be51038ddd7e2488222e469d77b054fc910b0
SHA512 25864484fe8f9c62f88b2b4e988bf2ae0ef30cdd9a0868c133fe7e155116a179de165083662650301f5d032349545a43e8aef402fbd0c91fa85090e4045cda69

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e64be7445375959c5da0345f647be25a
SHA1 37e5a5356ff386f694667c3252e01cadfc12aa28
SHA256 fd097568f1f9d17a6f75d40a17c8d025e68438733e8de2f7cec59a86e7e0a3f5
SHA512 430257d6dbda8d1e04b8817348bc5aa83c7b82c5dd40dc1abe4e21b595d187b76039687ffa919a2f98075616ddb5036e10cecaafc3cc55c510f698aa7b00f5f9

memory/5000-664-0x000001AB58290000-0x000001AB582A0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bd93ec04b6cc67759aecf8c794d4add8
SHA1 70dbf4384a9096dc129161cc6dbcbe4313507518
SHA256 173b80ddf1d62b94c28936f25d70fcd20b6c593bcaa684940f40ed77875ab84d
SHA512 0c2c3688e890b555fc4fa85b9d51ad703c061631472f5e160e9d479e4f5ef4e40128a716b13ae8ccaa9e8ff756364a2c96fd9eb82d289f60734484e71f38fac8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3049fa39d4f77f07bd3a4610189d6452
SHA1 40a0353fbe9ae8b0da301f9f3ee0b61afd735562
SHA256 e6064325124f0cc28b96f8cd6005e25b7d09373a968ffae227d38c2e84d59cad
SHA512 e1912c5af7114d06ac7c41abc5a7510745e6209e92f77068af3aabd59db8913b1f845de3dcbb533128a22009431fd8f6131f4f6985602e11a9139f248269fe3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 995878dee01121a71b6bc9162a466d93
SHA1 95a2773b99e122b0bef39f00ecb6e722b138821c
SHA256 25470964e8d4d579fc149abb2b9fd0002ac51207eac63ea3d7c326616232e5cf
SHA512 ab2c7922376277341bc44e9e511a7f6ef16e2ac708c3682740102c035800ad1694c9dfcceb25f898f23091795d2317e7f215950ab32a77ec12b5ae7096264bb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005a

MD5 68b3385a6dffc8d64e019832acc918ed
SHA1 7d29dda429ced1040ee8959b5688387d4dd1b4e0
SHA256 17190922204c288b25c7db6b10eb4130b147c53171e442b25bc1f2d56bb74aec
SHA512 3c90deebed1c066b1629adda526ada2821ba66dc523910c71d84bac4d88bfb830965af355c132ba9d7aa84acb58bf602ed9b4c70f6e2f42a1b4cae203ae85426

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 efc27efb160d3bada4e783df673e29b8
SHA1 30dfbc812fe0ccc6aa115bc1f355ed0618615c97
SHA256 d17f9e92d684a8521fa12bb1640f0ca552f4654342a917efd4be33f085a34ec0
SHA512 dd1f9ebe2f71372050082366d5de5583c790bb76637d82e727a3d6d7ef371f7a80a0a44e5086f5ffc795dcd7bcdccae1c86c01476b9366068b53f29c9a3804ee

memory/5000-758-0x000001AB58290000-0x000001AB582A0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 d15abf7078ae799df3541c9ee3eaae98
SHA1 f7c9576fe72c6a90bccf885ec8f062e7548f6477
SHA256 f80feefb1b280facd68d646c16b26a384e7cf3a37dc5e324670a61efa9204bd0
SHA512 2c2ca4fec935ad9980059a0c82cc5e1b6ef0b0b347372ef6f923a11814657336fbbbe62e44b26ec0f29e462d65370f2372ecd6c209f38a50d046406854ac549b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b01c696ec40d516721fc997c4f147d1f
SHA1 4dbc355fe41f0560ef7f7a55da424f8c85dfd4ac
SHA256 8b76e184e72813f0eb8cf0c126ab89c7f86ff5821cd758509bf9821ca3ea8d07
SHA512 cd48fc281aa6fa66fc6aff4407cf876079ad4290073fe666d7b496ef800b264fefe3419428590da950220b57efc7e0347a7c1e256f5348c1d240161d60bf0b2f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0d79dbdbad67897b0a892e1340b7a001
SHA1 00cadc268f2047cb10300cc6820e9a619c91256b
SHA256 aad8c57d9f88258b330e94fd806529af1fff8fa08e85131702640df06197246c
SHA512 e8878a1077ae08329d41fc3ef05b3679d5376f6f2e027dfe6d09a71f865da23104fa306ed55403cd205996f7599eaab0fb369abbf26226f7dd80e4ce1f03b151

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a5772ea2ce02902801f2554385f3f3e5
SHA1 031db7e5c9715c1df8a321eca229f6ac5d516c8f
SHA256 7c13bd6814198cc515b96c593a050282423307cf5be34967418f8c694c6b8611
SHA512 e7b332bc81e1f44aa70ecb8fcd4b633490c2169d8d90e365a28d43a65bcff6836171f225d4804ccdcdc4a4d5f37ce96cbed8c511195974d18ead0097b397c728

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 2ed0fb50ec4f14f0c78eb79f25b02910
SHA1 c0de4b139276bcbb025833a8b2db64a014266d71
SHA256 8d2fa40a6dc8646b052273d02a901a91202611f718a36a89763c8b976ecd79d2
SHA512 90b3075cb070d52b36017c007337633c123ff24789c4b9c1d04bfa852666fadf0a8d2fd3fef695a81a01820ec7b20d8604145257e382077a14ba7a1db484050b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f4db23c0ec2524460efc87b7dafc3575
SHA1 4e1adbc31ce8ab7a926b54d00c082806fe8a8b15
SHA256 2234268741b17f9d9cc9b9862297ba8c9f6c800dcec1af845e7f960202224411
SHA512 c40d33b63627522122c33e1beac8a5258bf7681a88d4361f3fdae218294f30d5fb119da5c9c6870fe5682262b7289bf4f141fc9f4fe056d9630ae8f92b614faa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 d2b0dcc8411813c6cc50beedbf932090
SHA1 1a94af40e99dcda1332ac89b72709b6570a6fa89
SHA256 978376d155f52d3acbca7612201799c50d0b4e975db716fd87f04e56bc0f83d0
SHA512 6aa1d280b373c36206895e944b9b52758e364828bb0b67332343d1a34656b855a5747b485b0fad5cd02e0e99c6e9286ebae00d6a340a25b81b0ce4542643b374

memory/5000-923-0x000001AB56510000-0x000001AB56511000-memory.dmp

memory/5000-937-0x000001AB58140000-0x000001AB58150000-memory.dmp

memory/5000-940-0x000001AB58170000-0x000001AB58180000-memory.dmp

memory/5000-941-0x000001AB58180000-0x000001AB58190000-memory.dmp

memory/5000-939-0x000001AB58160000-0x000001AB58170000-memory.dmp

memory/5000-938-0x000001AB58150000-0x000001AB58160000-memory.dmp

memory/5000-936-0x000001AB58130000-0x000001AB58140000-memory.dmp

memory/5000-935-0x000001AB58120000-0x000001AB58130000-memory.dmp

memory/5000-934-0x000001AB58110000-0x000001AB58120000-memory.dmp

memory/5000-933-0x000001AB58100000-0x000001AB58110000-memory.dmp

memory/5000-942-0x000001AB58190000-0x000001AB581A0000-memory.dmp

memory/5000-949-0x000001AB58200000-0x000001AB58210000-memory.dmp

memory/5000-948-0x000001AB581F0000-0x000001AB58200000-memory.dmp

memory/5000-947-0x000001AB581E0000-0x000001AB581F0000-memory.dmp

memory/5000-946-0x000001AB581D0000-0x000001AB581E0000-memory.dmp

memory/5000-945-0x000001AB581C0000-0x000001AB581D0000-memory.dmp

memory/5000-944-0x000001AB581B0000-0x000001AB581C0000-memory.dmp

memory/5000-932-0x000001AB580F0000-0x000001AB58100000-memory.dmp

memory/5000-931-0x000001AB580E0000-0x000001AB580F0000-memory.dmp

memory/5000-930-0x000001AB580D0000-0x000001AB580E0000-memory.dmp

memory/5000-929-0x000001AB580C0000-0x000001AB580D0000-memory.dmp

memory/5000-928-0x000001AB580B0000-0x000001AB580C0000-memory.dmp

memory/5000-943-0x000001AB581A0000-0x000001AB581B0000-memory.dmp

memory/5000-927-0x000001AB580A0000-0x000001AB580B0000-memory.dmp

memory/5000-926-0x000001AB58090000-0x000001AB580A0000-memory.dmp

memory/5000-925-0x000001AB58080000-0x000001AB58090000-memory.dmp

memory/5000-924-0x000001AB57E10000-0x000001AB58080000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 397dd11e890d7497b9112daf7eff63c4
SHA1 a61d6030608f7f364cec47cbca1543bc94c1c455
SHA256 95e044cd7aeef81c23be3a7e8e82a2070f3f2c4c53223276d92fbd5f881acc92
SHA512 e5f42079cbb883b3f670b536631506e12352f5b2034f7ee5f85ea2190d0732dd913675d7623352a731e3ffd927a90a03089acfb27e1b47a9e520504281c3aba7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

MD5 961e3604f228b0d10541ebf921500c86
SHA1 6e00570d9f78d9cfebe67d4da5efe546543949a7
SHA256 f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed
SHA512 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

MD5 8824f03360e6f9443f33be2ee5d5ccf5
SHA1 55013bc1564a88324e095c0a9e55b28fd9404723
SHA256 15c20e3d4166350880eb9bf4cdd647375bc1578b92c12057e662138a20f2b59b
SHA512 f878cfd5a4c13cf5414e813374a983306f9740d75499e319949ff340da65aa11e27a26c99ddad3a5d537795809f5a952881240a5a35a1c44bfc7ff5e1ebd7056

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13362980234428774

MD5 9075bc62e02af684950cc372b5f59d5b
SHA1 295cd3ca34ad0aaf9ed378baf1a4378a1be2174c
SHA256 f384592eee6dccfa110a87362a5ce255e68e48f492bdb2baf5c2a46c4747c703
SHA512 8e5288c72f49e678abf0f2d0ce55579840f0e21fdf0663e78511a230c721c61bcd942647c4036d0aa3f661c9f93775acf07b20322ac82a3eb99275ce690a9931

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 11a2f497fad7425c8cc11b460e59a77d
SHA1 8da934cd4a5062a93c5b87392a312d8f2623a66b
SHA256 2bad1848c7aeb25a173df779cc78c00bd7a7bc89834a905b8367893ffa109753
SHA512 612d3305d9f9d293b64efed07a3726274f316fa85658248c21c68adaee8a013a9df395b94b8b5a520257ea2bf8753aa587e78af01b0a3e575b4decb800c869a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

MD5 75594046744295f73fa7c40b421959c0
SHA1 18326248699458044b035a75ce39a6526788a8d3
SHA256 15fd697438e66703ab6a90559f37c5a636c71e6579fc52a2efcfb559cecd2c95
SHA512 0eb54440094c00f82142ab8c4450f3e4b46dc276eef70e21de8f698a889fa981b7615caf3355fcfa17f19f5de44ee9f2eb48e34ec491156c61850c815a80734e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

MD5 6c6f760204bb900175f27436ed68be0a
SHA1 aca53a66879a1a04f8e85c1b6cfb4d9fb3195ee0
SHA256 0b1270361fbbce9e08d094975eb55e7ee5623bf5dcdb2b0f263f6a5d90e94ac2
SHA512 c08bd417dd9f0248a707286933489fa5c2ce3fba87212cb5c4236f2095a6c6b80a997e24da232bcb8df58b1188d6372b2dfd9e1c6d5f3180fd6601add4d717f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

MD5 24b75200272d6ca20ec4c99c2cd4c83c
SHA1 0680f4347d5db496f0bd4adde7ba809f529d6659
SHA256 f6ce91640d74076e8a7f9b6e5314c3dccf4084fd2725316d1f41fbeb1b23c714
SHA512 ab30e9cc595b4269ba2a1201358f6feb59b9364ae4ee7bdddb00541bc457366a12444e85f53ed28c61d7691390769e3ed3c6b5548a2e0a639ef083fc4407b7e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Login Data

MD5 11ef5545a36a87d4c63328f75190c75c
SHA1 bbb041f1c32f21feb390ba68cca935304a158a25
SHA256 4560b1cd15539de75928a82f57ee707a89c909978ef1c7eaee567d6ca9d8c535
SHA512 81fdc9f3321e6e9dbc8888738d17327c0ca49e3e792732dc81654d1bc837e5ea596a860f5f4e9917b96ae2a117e02abf9624a5c33c39c775169208a515e2fa90

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

MD5 35d87df966e140c873baace6cd2f6ca5
SHA1 e61737cc42519181a0694dbdc0b810b25569398e
SHA256 3546d77981a75a47219695bf8260327cceb5a2a9561b72316e2ac99b2f14aef9
SHA512 7551fdea3b2cdc3926f56fa2d28c79bd58c938b7e240580bb15dc9dc1bd218aaef7b1cbf35f328c12e649b6b6c9e0492be52327c9d4cdc97fef1a8f4b4e61ea2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

MD5 387b4554338078b33c7d5303a10f7cb5
SHA1 24076866991422bd3a9f0eba076ff99e67071514
SHA256 2c23487e4ffcbf90c765a504976d0380939cf5fe19c04ee5ae78b25a74c7beb5
SHA512 08327138dadc086218bce7f3e41d1fa43047bc2ed0a0cb54e1be323cd7b9b93869088ba1ecb7ceba9b7cd01449be4785aaf90553a8aff973a6e25875205dd311

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

MD5 79e17d2a709ad15dd72088ce652ceab4
SHA1 aa6b80c9615999f817bd232ce198e06351b16cbd
SHA256 9769f5cb626a0d8262f2f581e406cb3cf3c0d5767fa53efe48e4f63c4e4f79d2
SHA512 e5f3c020c0af5acaafbad1f009c210fb6fa2c26625e6b07ae2660ba115bcdfaadaf00662e10e5ab3ff83490b8afdca9c146ef4e09b7bf2b9525054f52e49638b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

MD5 08f56ea71fd999997dda7d8de786a99d
SHA1 6c93324e85c9a8cc95a59cfc6f573b1515486cea
SHA256 1ccb24189a8cf00e263c0a2e7fc76f5d4fc28f5edf41972f67406c1100280276
SHA512 493feefd24eb6a3f89c353133dab2050e258101a3dc244edb53b800f5f1ae0312bcaa5e84ce8c08f6456aea986ec3eb9f3a96e641d0a5807b2b76d88af03554b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

MD5 01435dd323677d3c8c4fb132cf5bfd4a
SHA1 8f61a26f6497ea332a16a44263af05ebabf8e22f
SHA256 ec27bcd0ce0420dbb1b2d96a0c18059aa03f374e261ec406039ee02dd65292a0
SHA512 8f3c287d4db640c263ecf1ce48c9f5dedcfff66ada696fcf5e5504091034f501019de0abb51920c144cd972c4e732803288af9363de2d6f8f3348a6675943e44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

MD5 b7e48732ed32e0bac8de59bd27fd0fc9
SHA1 d46e62ae67e1853530fc8561fc4597b6168b5cf4
SHA256 052b4995d8c02f1d6063368dda414e701e12786fb66c25db8d9ebe9eeb4e05c5
SHA512 10edbcf93a78f9608e87c1afa41ae9f340221eda3ad2e60e81a454cd304d580b05d9d7e9b98b3c83e645f372c1fb6f90cff310e45c9ce3c3fae4bd9d5460cb3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

MD5 2078c2e327cc2f34fed6f2d36f846a3c
SHA1 57b8291b5002ff448bf97e30c325c6c226cf05fc
SHA256 fe53924d5a1cfc556f3edc6cdf417fa2e203658229573725bfe6e58b9a1746ec
SHA512 fe81fe890f6690611719cdcb0c0c07d8413f1ff8f3666c49ed359e94a22decc676c03ae482155d3d014144c7e78b84feaeceabb044fe6ff85deefcbd769149de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

MD5 b75a56f12da212d6a2203d05250be649
SHA1 9aaa32516ff2943b6a986ad55728d0eb2116a202
SHA256 cf753f9ac7ed5ab27b67bb988b0d6f1364db441f2f51d9e0984c64cdf13fa8e0
SHA512 23846a502df9e14a75b55dcd6e84b2bc6165dccae754a52c1534a049c8d2c215d0ae927af14c8a20be4789f6f0974aae85292cac8b46a2e2a1c7e56fc158ecdb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 b8a23e0dab360d945330153a7a3d492f
SHA1 5def360c92e333db174f6dc27a28a4330fccc0bf
SHA256 1b1e71b40d8e6efff7f051770c9df6bc279fff7958c0b90facca71205d530a16
SHA512 ad123b2738db1556da2f3e066b4cd19ef0737e2f82486042437927eab9ba454a6211c064320c7ee3028da40045201ef7cc7b9d5bee330a8fc74e0c1cdef70aeb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 21038d564ede780307214b8f23cfbd74
SHA1 fd663b4fd71d6e0abe19f422e5e4ea6696c23699
SHA256 347cd91f624a9e7cc3e1d145577398bf2a855f25b29c87e68794bdb04c6fa3b4
SHA512 dfda651e92b33be25eddee9eee017bde3248d2d9e2253e1a80818bb8a7ae33d0f35db1a4f5b9f170c7f8fb4bd15fe2347ca714aa87a81f6140b9139a39169694

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

MD5 24d35fb74427475091704898953bc6c6
SHA1 f8b41e25bfd334ce4c261e7eeb907a127bc45918
SHA256 e995df737818d2f78efa772b2650f41cc855d6be247a8cdd6a23691f8dab8cc4
SHA512 29be35fde8e0414a4e65ebb643e8ea230c351197a86602f80a9f452acff3b13a527437e16e32aee8fb70d152de9a43bd053f9a2f0f9557c6e395ae3938072133

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

MD5 51a2e8d65d92b4e840d5047aadaf05df
SHA1 88944bdfc7c4e0b8c1e45b93616ca3289748ccd4
SHA256 113abf9e2e016ea6abae66acbe23fa0d66474026d3fcc3af441a231309c0a80f
SHA512 9f729b9c1f3db75bb28a8f0e97fcccd02958fe8d68491dfe05a00eba0156b4ca2e9c570938bd38503f6070f884085f1f05fd6b88a5dcea8a6f72864faa9909de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

MD5 37151a9ce06cca6df558e0148d26542c
SHA1 37c214bf0e3087f661620498ca46670858f98d4d
SHA256 e8208a15749d508323005c0ba124a9147b3693f6e2fb62f0c71517df04bc1e26
SHA512 30a958af976048e849c7870af2c7e3b0defe07cc24ca2f417152e3c65dfcfb3d2b24cf64adf41f062d50eea18dc06f5dff787604d30f76e70ab086d1416b7e46

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

MD5 336bc47cb9665405186f388aa9fa8f7c
SHA1 9ddcd40e50067278480672fc28fef2ec4654e9e8
SHA256 1f641f6bf1756ca5b776cfd384dcc122e9d4a756d27a69b890ee4c303a83b7cf
SHA512 3ff8807aa6ca1f50e4edfbeb2ffe4e4c063d84f9347902c7f8aa915fdac516a378c5c77aacb37e12df352d608af386d988e45d7c4aba75b606068b7332871685

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 defba877302067db120cbdca59edcfd7
SHA1 42028289fe931e58d43db4f4aa5753034ba5462f
SHA256 7c14fc85a3d42465b8f9b1208c4feaba65174b6964f7053b9eefae854f28180d
SHA512 2d1f1ba61f1fec3793c91d441b6dcc6d0842e96ac7c5b54ac640f5de218a52716585fa1b185df3a8f4bee5656b18381b84950968fa11cdf8681b49374bfb8047

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

MD5 e51f388b62281af5b4a9193cce419941
SHA1 364f3d737462b7fd063107fe2c580fdb9781a45a
SHA256 348404a68791474349e35bd7d1980abcbf06db85132286e45ad4f204d10b5f2c
SHA512 1755816c26d013d7b610bab515200b0f1f2bd2be0c4a8a099c3f8aff2d898882fd3bcf1163d0378916f4c5c24222df5dd7b18df0c8e5bf2a0ebef891215f148e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

MD5 5e478ab2d7d80a044d5aa8b00361648d
SHA1 b581e569a837f7ff2718607f3d978f44013a9543
SHA256 9708eb984aedff899fdc5c1683a9274db3d74a227dcc512847b834e12cca5b9e
SHA512 b371a777b7fa597f6751af4d0d09926a3563c2318042a4513e4225e274738dc6411997b67dc1c1dfe19a746e6d3fc89080295b02962c28287e2271821886fbb7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a

MD5 125f1ad203a53a9a62566d4a39cba5ab
SHA1 2e4d9cd60bce5368f7a5117dbd3e5125cdfb29e5
SHA256 efc053a6850aa037be19e78ac5b9126b1000cf70433a3b18203c71461e9c679c
SHA512 dc90b124f6241105063182fbd805811ba5da1f4995238ec68346ed4c5667ed34d4843bb3035cfd25d283d38eaefb60ad2042487fb81e2e6e885a9b272537105e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 24167112e131e7bc10a827cdbba9fdd9
SHA1 26e92eb3135174202b42f0b0f3b59414b776435c
SHA256 6aa84b69bb173f327b6e36af0f6bbb026f628edc9452575cf43078bcfdbeab3f
SHA512 77fbaf19239fe84be9d184be7fd5e295f3cd8358333e975097f068cf522e968b221209179d1b7f6e4e78ba81d48cd802cf8591bc2272076d7e31e03dc1109a95

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 bb738ce85941bd77a72cdba423f8a240
SHA1 2005093fe8c394d9e18d954e0c9dddb974991378
SHA256 7ecaa1b1ee68a78e8ec1d0fad57cf18d2edf4b9b149aa6fc8272585a8364c69c
SHA512 9ee323cd3b91e197a26dde4e40f1f9b8df91af8ae3b38e749bc58277e23bd5f0bf4119297febddb7e829d6cfc6f936afdc680c43ed50b5f018dbf633beb68eb5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 387ed93f42803b1ec6697e3b57fbcef0
SHA1 2ea8a5bfbf99144bd0ebaebe60ac35406a8b613e
SHA256 982aac952e2c938bd55550d0409ece5f4430d38f370161d8318678fa25316587
SHA512 7c90f69a53e49bad03c4cefd9868b4c4ba145e5738218e8c445ff6ae5347153e3a2f2b918cbe184b0366afd53b984634d2894fea6f31a4603e58ccb6bfa5c625

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 a52fc2e39001aa4ae74c3f8e6501ad51
SHA1 68c5cc872b5c873b85b472ee81f61812d5adaa0b
SHA256 8ff6f8494a64f2af01e5c03460d13c3fd50318acc003282f994d43fc17d6052b
SHA512 dfbe8646a6db853a68a7e1ecb13c603d246c5086f4b2ab15c052ec081a38e2c0265f1cb113b3329f4ae42771c3300db39f60484f651b472d809fa96a24b1046b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

MD5 27c4ba838ec6cb7cee045f13ea656aa3
SHA1 42ceaf5078446693f9f0602326b91e288a6a6a94
SHA256 98d3b42aec594ee6c995fc80bf25a4403ee0007ad8e413431c6c406e571f73a5
SHA512 98254602debed9dff013b6986dc2208583c99dc46edfccf8861170ba0f2c933cda2f4b00a963c027cb9635410899b38265d36a8760d34c735f9f11ce1765f86f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

MD5 5e7574f6dde2a742692659a46a04470e
SHA1 07fea12ebaa374f9a5754e6e0ea9c7a6a9b70713
SHA256 e4f0d07a5456c2807220b2bf670b54988ea7fa7e07e5be30ba508df5d13af11d
SHA512 1d6a4b41a5a1de7a1ae43a15190c95bce777b48e9841d2f624af9f6f46d2405390e43c075a8cc4d98318b7d77e64ad7d3a335fc00c902d9df04859196a094bd8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

MD5 0cbb73cb2ce23fd3317f10e79ebc5676
SHA1 62ab46d676421fa6b8c8618afa5771bd92ceae9c
SHA256 31348781f2034e89018b93442341f3c14297bcaf34dd21fb67ea23b6202238a2
SHA512 7e16f802d103f5639344fae242331ad099187f0e9d1bdc6532fbf78bdf3b92440b261f21d92ce292999a326271aaafd684f05ff420196fa70c8fda66cddaeeb1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

MD5 92d4ba47f6660b9692b50cbf27a37f34
SHA1 c34570374e7959885f733701268cc3973bed3f7a
SHA256 a8cda4ebf4c50f5d7c612474f2de3fc0c2b02d1ff8975d0688856479686849c5
SHA512 c06de871a0101a57b7980d6fd0b2e5f504e540481468b01a7b4c55cf5d0156106dd3ade28dc3acdc884bbd235be9e36ababb5711dde891e18faf2955e0217247

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

MD5 c477f52e61b7fcfaf1cb875e952dfc49
SHA1 d7279eefb2beb43397a701f5665736dbbde783b4
SHA256 5331943c3f2ac88eebb05bab93e96ebf84204178bcc65a2c0a22f5642c373087
SHA512 6383a862e46664c1beb94e40dc5e87e9452196613db37b38e4c810da154728fc0c6d825deb5768c4bfd2613018cc241815b376fa67bef342e3796b66aab0f4af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

MD5 009b9a2ee7afbf6dd0b9617fc8f8ecba
SHA1 c97ed0652e731fc412e3b7bdfca2994b7cc206a7
SHA256 de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915
SHA512 6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 f2410ee7ff2197922310847de2b71209
SHA1 846f6eb4a4837018744420bdf978f3cd769f0cac
SHA256 e909a0ee59e1232fb7b42f3034f598710fc9a6541a02309ebb5ee95d58b8f132
SHA512 e365aed46b708adcf944bae40777edcf043cad402abc52a8afc45d4ae730255b0fb36bf5b626d5799decd08128d19b68aa9d2907f8c79a358ac7e9f55544eac0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 689dc22641db158be857f9e9b81b432b
SHA1 cd0f9014094a1ad16311c6961402d1907f4c406e
SHA256 0619adeecfe8a491befa509f9bfa93426a761543abb06920dd9a5d519e9bdb61
SHA512 88b1dbc6c642bdbab49b4e2d6b2d13f16ed3bab147f5fd20de1c33d28d9c825265f39d48aebbfedeefa74a059ee64b3c9fbb81affa32c1b6ebd0e9377fa70d0f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d7c9bee76f582ca4f343007a62755d1e
SHA1 10fe539fcf76e1df329d8dbe4443f2827adbbbc7
SHA256 892acfb6d4215c3eddca4fa146fa070f3fbbf9c7bca372416c51a7bfb7390e7c
SHA512 c2bcaf4aa5c1cc7c532d9c614c3c1bf033e191c04cf1c67649506b542a682bd36fc8999ccdefc03bc0dd3e602fd9ae9c043ff3ac2705298c009f182f722b0096

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 248951b3523c1af1905e5d970e11ae87
SHA1 a0039f0801aee50f42de951af9e391c77ba770f7
SHA256 d9dc5c1058cbf4244492075b9625aa0a7a299314ff0860f8419b1b02c1eaf257
SHA512 2672781ca3bc3c4becfd324e1fe25758e8e80e0344e6bf71741c8a9e6a6279354b59616f38972fa5ce3ea83a7b09ccebd68bab434ffae32400b3688a38e27ba4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000064

MD5 99916ce0720ed460e59d3fbd24d55be2
SHA1 d6bb9106eb65e3b84bfe03d872c931fb27f5a3db
SHA256 07118bf4bbc3ba87d75cbc11ddf427219a14d518436d7f3886d75301f897edaf
SHA512 8d3d52e57806d1850b57bffee12c1a8d9e1a1edcf871b2395df5c889991a183a8d652a0636d5452068f5ef78d37e08ce10b2b2f4e05c3e3c0f2f2230310418a8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\efe71fed-99f1-4065-b7f1-787e68623d7c.tmp

MD5 a78da1cbc0f645d3b488258483b1558e
SHA1 d18e8067dce46b6d73291ab6609664cc84f7481d
SHA256 d270b96c39f61d6fbb00ac8acabf4765a294ee6dc91ce131c502fff52bba765d
SHA512 1fd942dfe75a343b259965f2bca740e6979a13ca81e3df83c904c660be5f1f5fc79afa813a4ce6397d80d3a6bbc43d9539f99732090bf5b0104a2c24c44ab577

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 1d93da67c2d56af0e2e62bd073be7b4e
SHA1 1d4d1468867d979427744ff7edeb7a7c7682e132
SHA256 74cbf1d372f8c7296cf2267a7a36b6240daf277067a3232191a0d2083a999093
SHA512 4b1f5ced02e546e2d03ba87ae18399f8a80f7e24f8ec15bfb18de3e7c3b98c13d45626d7d919441c8dc39bcb655afec57bfe906b6dbcd24edfd0d28c700a1dee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 ad49aac7c9251e47b8e2b4c0402237d9
SHA1 6406a28bead9d8502d9478b2601c1be27a6e5ce2
SHA256 6031b33634148e708659ed5d3e74530f38e22e79d823597a754f4ffa9685e583
SHA512 ef9f2276430713c968e36ec94647c950eb35f9fa9d5068808700b64618367080352724a591a3b3a57437a63acecd0d00eee67dbc89e6f6fe277ed906936cda44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fe27844cd1ae23f4492f1f435fadddbb
SHA1 9c6735bad52dd68c2ad4b6c09b1a3271832b2ba4
SHA256 753598abc824187c617535209db754c3e5a7a2cfc4c389e23b87cce44659c433
SHA512 5c21a0af03c383c9856ae98b2fadbc3e89a98680f68ac20e78e8d23929d202f5103b40979d7da377ce6ec587375b339e55b9467818ec125113129e7ae6496454

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 55765a78d38339a780e12094a852d2b2
SHA1 9774b3d2d8d9759bf414982dc6ad356b88469829
SHA256 003b5494951248fa4254d604d2c2c558c827c1417e3f769f4e0afbd930e66964
SHA512 a3341a389984b0c9661c77ef4524610c2b72d119cf27d08eea1f063a6f5826333ccd4a843b0551accee817fbca3f9a6750c858a14f31351931758026b21d66ed

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5ab2b9b9ab7bc8d9cba03702a8400b75
SHA1 0dc83790ef8f2e73ae68ef4c1c4629e4e16d0435
SHA256 1a7b67b931432b5d520f63797af3b637aa7d106374ea8ea480e4939dec85df66
SHA512 b9a46373764dc9f03844451a5818c9152f0f01df6ddbf02eac7d444ec1c6e3773fd3d5ea5a1ffba104148335d86779b273365af580f8d6c40c1b92d3b1e71493

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d40d4ba7f9ceba31fefcff59d8c9de86
SHA1 52e8b7149dc1d3b2174318561c1bdcedca661e9d
SHA256 faeada160d98bfe4ac4d8765a4da3a1d4330c98103d69e29f53fe692b7c0d52f
SHA512 e45a20778b38e70cbcadf7b9352704655d23300aecd86153204fa6070fd26a47143da339a60f1bba9056f96a5ebca27346d8692a50adb4ba14dea0238c335818

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

MD5 61a6c3dc4937c41295afb4e5ca47e2c8
SHA1 2b54601ff67115b1ae54a28c87e0516cd674b5ff
SHA256 523d0ba0de562ae6413d214b396b6d572a8daf9a01ad2315e3bf3e590fa94387
SHA512 9a23378d2f38a5d347fd7842efcce30e6abf8995e01d3ad993a4b5d21196d5c326403b427a3d544a0485a86f9fb1b50b9c65138ee21b87ded6436a7c46a0ec60

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 67d08cff020c65240ae08098817973b9
SHA1 c83a698f6fa550599634c23824fa97a9681d5989
SHA256 50ca977a13cbeda613a68c5894fa04f99a305bc5d6b70e48fe5977343efa9107
SHA512 1ce2224ea0e5a4de2038942e7b9aaf2df5dc31e48c6552181a14b7b148c1429dda8c430ab8abbc841a000c1032a7d92680697318e0aa8af90f8d56da211144de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3d6361d7cf4d1c6b0eb09e71b14bac5e
SHA1 8617fe30866ee682c060893c4ceef19a93a13bfc
SHA256 ced142fcf2414905afc94927a9b8f208ab42ac73b76d6672430f81104b604af2
SHA512 a6332c690ac0ed97e207266d2717228d7e4acf005401b465afec476182c4158ed38a0261309bf70ee4a9928927d8c45d73b22e3e2e26b2bd6aed58aa4990e509

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3c8922fadbd93dc5c90b47b32999616d
SHA1 2dc39355c7da66426cfafcd45bd6b14df7bb3874
SHA256 1a75e074dab3dbdd9cbb5fa65a88b904ff158e203bf5076164666e225b2b2942
SHA512 c7147dde6ce65fb643126ba9dda754196839a21d4b391c7341bf6e2a486ba20af6e5082d48d646b852ce1f0b7f55de59120723b7a7d5224ea9f51af20713eacd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0327f8f9376a389525f8fe464a9c15dc
SHA1 e0717193e8002d96fe78851cdc617fa23990b860
SHA256 cfcddb549aad0c93148431d891709b5715c37b7909069776ae57a5cde40105f9
SHA512 e925fdb7e7a027c3d48050021e0ae9bb975570d021a221d8e9a28ebd3f55af3e149b146369998a069340396372d6771f9425ee501fd3f29f43dd21426e786f8e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5efe1cd452415c2a31409ee9500e5c93
SHA1 46af730502752dc1a219cb841bcbdda6a28deec6
SHA256 544015c94d78153d7a708b80c0296f1af5566931f236ebd6bb52b53e857e7664
SHA512 2d1eaeb7e06e9250c00f669efe05656b963d322de803ded013c0c20b70d7133de0aa37ca0fe9446db9634ed313f000efcf72661d905105366260af8cf22f8ce7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 52d9cb7af4313a2ec4d1d39af5d85543
SHA1 a19477615169ef93a36be2f41bfb8dd2a29bb73d
SHA256 123755ad838391a3dcf7351160b65a91196b503b8d05aedc3c087b3f118204b6
SHA512 78c2672df6922e575e360407c073e4efaa4db4472dab40b1e33d937c8f347d8c0abf7e07efd2032d68066488e92fbb828ae22dbca63505c37cce2d07302e0b78

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e97254dfd517eaa6f8fdab2e09704450
SHA1 1fe30032b4a1eac00bdb1eb62c22d0ba7b731733
SHA256 835d81e44ddf8ea988f1eb32c5986ddb1a649c3b8ce83f9fcdd7a5924122ab92
SHA512 0c3c7f8095a91859a8a5b6cc05c6ceac9652f02c2d29224a911d5723adfa45e3a4b4b1be4e7dcf90658eb707e43ecbced0372af83a23ce05a3d6723b67b289bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 94275bde03760c160b707ba8806ef545
SHA1 aad8d87b0796de7baca00ab000b2b12a26427859
SHA256 c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968
SHA512 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe628f5a.TMP

MD5 090066cfc0a2f45e2b028dcfbbdefc23
SHA1 da2ceafb0d0cf0aded19d3e366460982a6ec091e
SHA256 5372be4c1efcf0759c679d6d001e61b5b040b64fe97dbc31a1aad8c76d03f029
SHA512 fd282baa2e005e689bafd9b5d1e30b7d0a060db5bb507f3cc21c5f5668078d0f5c71619a905fdee5ae8570bf2a27189ff71c0511a62291c05fe954cb671d8e4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5434607c30be05a921b9c02d35237b74
SHA1 d25aea4b0a41ffe6ca9b094f4383dcff4f8778b6
SHA256 33ea73a1a58bc7eda1bf390456f038f7b45092c4e44d08c43bb0a0a3b483d553
SHA512 8c24e42b0bca838333af52e50c126865df9f98ef49ff34ff4373e2b72a911ba1aca11de4a200837614a039efe081a761b1c000e704b225677e8130161bf19f1b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f9285ffc439eae1ba72b1c52ae49e58f
SHA1 7c7d8afec9559f43c362b5bfb62365eabea1cbca
SHA256 80ebd069c570f5a1db6d00f6820dfbd59c9904fcbb8a7b073764275773a2ceaa
SHA512 2748b197cead4e2088caee63f2cc4b37b51622905f2f2266b934bb38cd8e0949fa7e13b8110037c8dc830fdb33792834c301f8998f4d0f702ff7569cca18ea5d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 d6ea05bf69caa933447268c09abd543f
SHA1 c8d6b5be8827493c9ca592ea39af2fba46112486
SHA256 ae570333244a65debef5ebfe90ef16319f47e7289e49e4ac2df004f7f9882844
SHA512 cff2f96e8916f37d29451b389a8d074a73dfdf8b03d05dcbcb6038e88da91781fd4933e7ec86d4c340da6a160273ff098868b29aa12101a447a8d89bdfa50ddd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt

MD5 9e655d4cd692e9dd446cf6ea9942c7b5
SHA1 07eb98cc9935050c1ebeb3faf6d2939f93b3e662
SHA256 acfafca1ce3b572b88f02d29230b4c3fd29c5a0a3b29ccaaca0a92b40db03486
SHA512 abf739caf09e7a12394fde433472c2a76aefe83ab70630edd2dfe4dc60984a74b36d3f34757a57c2fdfa5ce94a430ddf1e5c8e7cbbcc6b3d5eae0c8043865a87

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt~RFe62ef3c.TMP

MD5 84b97e537b80accb61de6b079ff1a022
SHA1 ad173bb855580ff7e6de08e152b070530646f944
SHA256 34852bf9b4def965fce512e3c7d68bea8607168982144963e6c41e8061f2bb4c
SHA512 805fc93a690215a7440e518764e018672875bab3f96d653b8e1e7784feab866f5de31d535cb13ba90c01272800efef8f145d51df3194517cf48e3a410a96e6c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_codesandbox.io_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_codesandbox.io_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00009f

MD5 0f4682ad18856774eea8eca636f6cbe4
SHA1 475195b19c668ec7cd3ad11eb6f0ac99d0d7bcd9
SHA256 e963146cd686c0391793592a193623a8fe80f793a8c1aed35aa5963d61eabf69
SHA512 58d5ac9c2eb0de670c8ec99e94ad9f5271c205c1c83609515246936d50a14ea59ed4916a8e526aed8f20f8c008f4ff7171996145e8d239c883d2bf0ee274b0bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt

MD5 da38b9e7c26379e00cc79045dc1206ef
SHA1 3fbae2a072617a8dee9440ac09e3e9e05c44bc1c
SHA256 6ebd7e5784f30f1bb156fa3af97bf16ecc0236d829188db68d41b9ce5bd4034e
SHA512 bada4c4299bc2d846129fc0c4f8293ede31bccb6a022c196ced467fead4b0f24d660c37ed5e68811cf73003a3fb2bf2f631e49028d5c3c424e9b20d7d911b490

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt

MD5 baa26acc29c5ed3beef1ba50b4a275d2
SHA1 0b9888f99bdd948f7359469deb40ba579a64f061
SHA256 4f1f8f1bfb4a36e505538c272f352c8358215e144e037e745df62ef755290432
SHA512 1552c5e4c4711d4d3a177881b78e71779f555e22e838ba7bef82d3004a654965a61701faae1ebec62b22b00fb6d0434d8ffb602d98e237ea65dfeb2e19357855

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt~RFe6309d9.TMP

MD5 840e6d64ecdeaa45ab73938f1e64b1e0
SHA1 2043bd5ef4bca3d529975b11400063f8049b66bc
SHA256 943a3dc3cafbcf81889ee6f943ef989f017ead3dbfbe5908023551bd59d67371
SHA512 370ac97aee3cfc52a2ff066d7a58e9bd34b088f05188c05b9d19ec9c6a89e8df2162e7c65bc9ac063e6be745427e955fe477d994542161991afda16b9b477c5e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\767d9804-14a3-4792-9918-66b4d7a4cf8e\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt

MD5 cb7f6758f8f05e98fd45cac39ec09e3c
SHA1 dab6cf872f56fa9b78205e37b22d5e25e42073c9
SHA256 2e87d4e782776cc0b463a11b5433f7d8c5cfb525f53bf9503d443ef73cca243e
SHA512 c23f9dc2ddcbf78b5632fe3c6c553888a4050050d270d64c2ff4b223a2fb51e45af8898e9807314837837c5f2c8888e55a8ad93773bc555e7de34da5feebda9b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt

MD5 012e2ccbaf0c9a0bc4ce9a2eae7e4aff
SHA1 142f6d14f76909ca319cf3a0287133971d994a91
SHA256 bcb3a0f03b48c75ac61f82dabbce9adbc52c0e55b7953cbe242390fd28dc02f6
SHA512 c1fa14a0ab0368cf2b24579f6e181f669cdc1eb8b05db521935877d8023017dca09a7a197442e6750902508f822ffad266a54b449df0daa903c41729da7e0e2b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt

MD5 0c498508bc7ea5bb32a9eb3c2b998b80
SHA1 62428d2ad719073b43342217b1c56c1c19a36961
SHA256 b434b1666e1ed486d3d431806c02dc02ba4b28746877eff3c41e5e9144e8484d
SHA512 bd9f91397e345d934c63f34998244aae1cf945d4cf3be8a55f6b1c21cd9162a6fae0e3cfe93250d91a615418428011be16e80b0910a3948a27843da22f934eeb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt

MD5 5d4e2c413bef77d97b07debaf1c0c877
SHA1 672de173b993bf39e5ea2b790d63752fde60b247
SHA256 24ef88c6f66c8311c3b8a2ce02cdf75bb8cdaa5fc2b92b9337bfe4cf74b028a2
SHA512 b75fb953e23b75f9a7e640a1600be4ffefddce62d5a2cc3b20ebc49ac865c3258cb238173e840079f5ea54538513c00a2a26fab4c394cb3ca33fe6b0979bb96c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e2

MD5 7945e3f5aa351804fdc7e7ee0b4c4c28
SHA1 75c98a9ee530d15a9c934937b0a84a1f609c9930
SHA256 8f39e1e0ad15ffc4296d0a5dcc92acef01fa698d05df7ee4395898212ae56356
SHA512 e701297d1fbecc7770197999ccbfed0a60c0174d3381783c2790a6c7603ee2ad44d3f6938c95cc3e59059a28db2c4dc5e4468949aebcd54915cd9dc0fe1004bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7cd5ed529c97c45f6b115ffcec9a05cf
SHA1 346705a14451029cdf4ed7ce17eb9c6f2a77909c
SHA256 1af6c386d465d065c8388744b9eac3dbe633deaa5f73d4825b41157b797ef0cb
SHA512 102f1fcb8f7c4332bc480abdb7fa8666cf5a773762c2301e64a08c16f444f29f82809f9afcf8637c8ea0c82ce6d3a6dc175a36725e5f620c39f30e44399cf08b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 cd944f5c14674aa56959a9fe3f77c24f
SHA1 8b98ae294838094bb8642d16413bca0582d58d38
SHA256 dd9ae0f12c7e5e6dce4ea04b49ec8dfd9f710cff95640532b9724cb4195111bc
SHA512 b8220c5ec74b30e7f82806ad4d0ce85167f377e751e5234e605f40a4071e6ed771f7bb5a24b9a97fb3a109bbc152de7fbb91be6faf37f6e8fe4600d6ecb26415

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00012d

MD5 106ea59171a067d9fa6899a5a13cd3c6
SHA1 a265f3ce76c59a9dddba99d820c922e08e762fd6
SHA256 49eec2af8852ffd737a8d85e5fba5d5e9ab86cbd554a321fea5fc10956c867cf
SHA512 ad80d96ed7970618b4dda7e910f5114c35d410cbecd021645502e1b30307ada85b58056e683ff25f87e0bd4bca8894f675743685984dfe46e1c1fab9a441c395

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\e89c53df-41d6-4486-a3e2-225d14b96f4a\9ac12806994a00b6_0

MD5 70ae9758a8c12b47cc227344c63c4888
SHA1 718964a48e5f4180ba177a7df732e107a13bf6b8
SHA256 87bc664994bde0e0296dd69781ff28a76467d1c8f57137601ad29ccfdd6bf719
SHA512 103a82d5771adf84841d672a72166a64e8eeec7eff2a01656abfc5548326f3b2d4d33a1aec37177f51bc43aa8aadca8991da57d8bece993830ad4885a2964ea0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000135

MD5 6e2ba26349f378b1ec2340ad10eb1ee4
SHA1 1c10c4395aa16fd1238c38ac09ca2d52e8109b5b
SHA256 cb589a20d0a8376e4f8f17da18f65a2a19279f3a4badb11e5936b2bad8a8676f
SHA512 2c7d799b06d70615f22f2394c30b7973256e96607d5ced372adea89499e5dbefd217caecc81bd6e9b71d8197ac8f0937e64027caa8328e176748a17adb805943

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt

MD5 c196a3eeb62faeb5c791035da2585431
SHA1 c02773c1f28cd6bbd88e30ad4f9bc250debbd7fc
SHA256 7df6422b7065efb2b307baa8fcca68ed919a8511367502ca06b4af215360b4da
SHA512 f7619eb3e2be9d0a6b93d0b029b6c8519f95ab344b38fe4aa8210d6f725013b704fc521bee249a03f7b8352d17506362d2246f57c681440706c4c6ef25cd076b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt

MD5 8ce089ddc735d7560e419fbbaa694af0
SHA1 783a4488649eed6aec07fea04ec0288d5de5c237
SHA256 7d5eba4fb22423cd2fbac283ffb8ef86641c93304d98f121430e3dbae7b7ea6a
SHA512 d7d94a0b2d207db3616d985d1b4d28e646d3455861256c92d103eb794702a24eb993b4d1d05a01ecb21e36dc7a26e249635544abbbca86e509215e2c77503d71

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fff178ba1dd1bde0aa64172f2baf540e
SHA1 ce8736e67e2257db628c27d746b52ef131dddc3e
SHA256 d0710ce3a1ee1b08f34d4d7dd405ff43a892d97a60652d563723def5574e4a21
SHA512 11b241a6ae07a65f35fe0fb52be268d84121eeebc282c2a40f18d8f8368644482ba208eaab2642785dbccd0b13afcc15f233f829be3751d8b5e84f3923c9c0aa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 4fb027f1c539f82164515882ddc3012c
SHA1 4a39af8b67212e3e4a72c2bb38658045433ee7ab
SHA256 1aab142d2bc71054fb16ec1111c9db1b487fa9d9372a6ab41e760515bea62823
SHA512 f6467d779a0525aede10cc739cb46722f0da5220146f0760c084fa2f403a44969328fcb46339b8d3f55e3d31fe8d83878ff23218da7e144996846e3d21f72f26

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\767d9804-14a3-4792-9918-66b4d7a4cf8e\index-dir\the-real-index~RFe635b45.TMP

MD5 a0b6cde644ac6ceaeae058bb9c414d4f
SHA1 547bdcc9f8b9f25d629785e440ccd7a6441c1193
SHA256 ef4891bc5b48d657ecf0571590199bb439f5009d1eee0f058f6e9c18687c06e3
SHA512 5da0d14e2dd20d8233281073f4a1ddd4dceda7aec99e10ac5cacc9a9acc0107b17354e8d14af3d2d722f90286cbbb5ca303150854fa0306b5c41438e0d1bae12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\767d9804-14a3-4792-9918-66b4d7a4cf8e\index-dir\the-real-index

MD5 d98e87c35c9085ca08685717ce5a4e30
SHA1 71268e5085abbe38c79e8ee06e8aa7b6e6f905e7
SHA256 6c8f7a7764237e99ff4a0b23af046eb2c481b8b046a1f10d76a8431a1c3736cd
SHA512 aeb14a1f1260e8878ba79db88d5da28676dfd11ea143dcd57e04dc691ef438cb95684a02471632a09886378ca9ae1512a5ac92e681c1a6e78a1f3f20304f5aef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\da1cc861-87c8-4102-86c8-a4afa76708ff\index-dir\the-real-index~RFe636150.TMP

MD5 0cef6ab825558f6142988275130cdcce
SHA1 de469f2781467ad768f689a04d21ba3ab0819cd6
SHA256 f3b4669455343bc99b4ad4d12b289b350609726587ef640866362406aea9abdf
SHA512 b76232110eabfb8a579378a05ec4abcf09564f8ef09b906bd270f3720392e56fedb12e8726f3f1f57864f6618df6d8994b00508609f35c870a17159c40471dbd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\da1cc861-87c8-4102-86c8-a4afa76708ff\index-dir\the-real-index

MD5 5ac2fce5ee6507ba0f0712e046554d83
SHA1 ebf6ab8202c91ccbc7f38f409b8fc0c87ae56fc4
SHA256 429a9d8edd8216f86ec4305ad86031c1763627ebfe1cf8cb5201edee8ddc4cd0
SHA512 f41539e10d6df803a1f3270a6dfd4ecaa61ba0a6180f90f4fcfee7b0368d80cd465c807f8bdc66fba92912487b113606f9cbb0855ff09719e591548cff0ad593

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\e89c53df-41d6-4486-a3e2-225d14b96f4a\index-dir\the-real-index~RFe637545.TMP

MD5 05dce9768d525bb00daeb816140bd67b
SHA1 91b0d4f12a55d2680890dabbc5b428c9196afda6
SHA256 0a499b33ff41e3e324ecc5573f62b5f605e30451f423c6d52e7327731463f44a
SHA512 cd3fd10c6c5c0cbc50d73f6a2af997534fa9a03477b7b28bc468abebdf781ca19e364043b3508130952bcf38a9db9a460bb93d0164a332140f10e099151e878d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\e89c53df-41d6-4486-a3e2-225d14b96f4a\index-dir\the-real-index

MD5 852ed89c02cee1c6b90021f3578b590a
SHA1 784d0a3a3e4f782ed13c17c55d2bf4215e10b386
SHA256 1b743d879f63eb42306334314411ed785f10ab10076c28969c1b3aaef3ab40b2
SHA512 6f036f4ed84e08e2c1a063a9b0319cd01a8d0dd94034722b9c9578410a0acabb58d9042413596049dbb108bd85ebda3574ddde2ed89df05e3d830d0eee96a38e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a2c7b405884fa731c671d1fc7edadc76f66d4e92\index.txt

MD5 e12088fc5a6fcb65cb385ae0d2f0c8d1
SHA1 26bfe1e00753de7da3887ca7df31cb67da6c68c3
SHA256 f9097ad38d36c0d20d2e0f46b7e15084efcc61368fdd3042b9ce99e295c6c15f
SHA512 a5554cbe2a15e4b820867d4b09c9ff35748ba3e648d77e4522f3f9ac4378a907e886143357d0937d76c8c9fff2d2070ad57ddfa80a243030950c56ea966cf640

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8c20aa81e15c37c710385efb500aa0f1
SHA1 e6ac5b620b19c06f1633f127b019487997e1c907
SHA256 cab5b0c2206d2403bb34e15dd173a734746459b51ed72ec73c8d8d4ee07f8743
SHA512 cb4fc2d79f0e95b056daf1740fb02106d401c73c1a900943765eb1082d7bdfb90ed5a0b97d38fb0ed7d27d56433ac1f58c6b7f97e1bc1757a77fb60a242f24b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\76b5eda1-0c7f-407c-bdf9-2ede840d3f56\index-dir\the-real-index~RFe637cf6.TMP

MD5 2dbef596e07c466a23476dff965cbe42
SHA1 ad7ba690b1bf187676217efa00f8a0d9c9e4a4cc
SHA256 790993f1bd9de775a134e6c17f08237abcd454621ab960b09ad343f88d4a8dfc
SHA512 0e7996b2c9183efea37bd56571c973236ff2a1e2269ac5e7da4dc3a1fa165d0a3453037866d39621f8b517e0ef80f5f4e49879002575c111495729a52df3073e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\76b5eda1-0c7f-407c-bdf9-2ede840d3f56\index-dir\the-real-index

MD5 3839312e9f9ff9c5382946221e2d168d
SHA1 80478c1f02ef1aac194c007a950990d4c925cf9a
SHA256 38fb7367ed732d34e65d5c7ef7e05fbb2dddc1f942b2468901e981f8c0a7f1e4
SHA512 1f869e01ece5676b4aa10dc2e1a120e70ff0611d0f9f23ca8ab436d2a8e05c4370ff3e745277f334f2683228a67e4c7e9793937f018b193f4d6c1bc1c45722a8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\e20594e8-d428-4760-82de-8edc58ed19f6\index-dir\the-real-index~RFe6385c0.TMP

MD5 2a0b37d4fc557c4f663fd6634514974d
SHA1 8d42c16ae1d2b0f52d59a77f94da27309004c33a
SHA256 a2662909aff90a21c561e511d9a2abe5187bae61a9b797ac5f4211c0a2893231
SHA512 88acdf459a2626130d1b907b508f7590ada2a5c7f4b4a3da7df2111c6d7d3e522d759ff6cb0e3b0b63c095d2a621241812dfa5ff560f1fdea0026c757151c18d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\e20594e8-d428-4760-82de-8edc58ed19f6\index-dir\the-real-index

MD5 6e2b7ab2079c3d1131f9a685c9124891
SHA1 5e35affb45200e719998b378b7600f55d825faee
SHA256 9d8b137ec6f627e730d838c7db2a33b429fd8fcc5a7c45680d679cb34c7ee825
SHA512 7a2f495483ed86a8bf68e472e2e56ce391714c9bd18e84eae349430eb8428de23ada9e56ceb9970aa78b33c1af92794a614a4a7b5efb311728c7a8f1421035bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2a817e6eee8fb852e36bb6bcdd9c13b5
SHA1 3e37ef4620316d64d3b686bb8a2b1793b3b1823d
SHA256 b7cd8dbfa18167c35bba15a3a268970d7953600f4244acc273fab4e64431e6fe
SHA512 57d033e95fc42eff608f1fa7c19a8053a01ec7c7054dc76075ad0e0b699c8b884413c1312ed2df294a124e9a6f9b6ec0d2e9376479a909a6d023dda217514cc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 606f356a692cb1a95090cb7353cc82ca
SHA1 adfdb5720b317b851e3a35dfd89e70319b4abcd3
SHA256 f09f3ee7af5ae8b14a79bc146d4cf13d1caacd5a715a9ae4a54609d75d7643a7
SHA512 87e78fa28697be18ff2bcfa5beddd536ab4ed3a29836a796d9afc620c1600d5bcadf490703598ec77b394dd252768402541e409ca59f4c44e223550ddb75dba1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e2211411c612ed0ee8a0ea92493d05dc
SHA1 db301282bb4cd941fab69877a1d1c47f4e1d6bd3
SHA256 93cb1e8283d1241bf997365b92f3e188df05dca6f265472c67fca2c63d28833b
SHA512 c2b7206e62f72210abffa05dc9b8deb34b485e23acdec9660d4a9b086d7745e86067f0b42071b8cbd687b4f6633f0170cc93ed0f22f0ceaaf1f13ae60f85da26