Malware Analysis Report

2024-10-10 12:00

Sample ID 240616-jvwhpazckp
Target MEMZ-Clean.exe
SHA256 4bbf7589615ebdb6c769d6d2e7bdcb26072bac0cda6e225a4133ba8819e688d5
Tags
risepro discovery persistence stealer
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

4bbf7589615ebdb6c769d6d2e7bdcb26072bac0cda6e225a4133ba8819e688d5

Threat Level: Known bad

The file MEMZ-Clean.exe was found to be: Known bad.

Malicious Activity Summary

risepro discovery persistence stealer

RisePro

Downloads MZ/PE file

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

Legitimate hosting services abused for malware hosting/C2

Enumerates connected drives

Adds Run key to start application

Checks system information in the registry

Drops file in System32 directory

Unsigned PE

Enumerates physical storage devices

Suspicious use of FindShellTrayWindow

Modifies registry class

Modifies data under HKEY_USERS

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of SetWindowsHookEx

Suspicious use of SendNotifyMessage

Enumerates system info in registry

NTFS ADS

Suspicious behavior: EnumeratesProcesses

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-16 07:59

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-16 07:59

Reported

2024-06-16 08:05

Platform

win10v2004-20240611-en

Max time kernel

300s

Max time network

297s

Command Line

"C:\Users\Admin\AppData\Local\Temp\MEMZ-Clean.exe"

Signatures

RisePro

stealer risepro

Downloads MZ/PE file

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\Setup.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\Control Panel\International\Geo\Nation C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\Control Panel\International\Geo\Nation C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\Control Panel\International\Geo\Nation C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\PCAppStore = "\"C:\\Users\\Admin\\PCAppStore\\PCAppStore.exe\" /init default" C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\PcAppStoreUpdater = "\"C:\\Users\\Admin\\PCAppStore\\AutoUpdater.exe\" /i" C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
Set value (str) \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\PcAppStoreWatchdog = "\"C:\\Users\\Admin\\PCAppStore\\PcAppStoreWatchdog.exe\" /guid=715F25E7-2A26-430A-B7ED-E78CC8643F38X /rid=20240616080214.617240703562 /ver=fa.1091o" C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A

Checks installed software on the system

discovery

Enumerates connected drives

Description Indicator Process Target
File opened (read-only) \??\F: C:\Users\Admin\PCAppStore\PcAppStore.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File created C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
File created \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Enumerates physical storage devices

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\NGC\SoftLockoutVolatileKey C:\Windows\system32\svchost.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE C:\Windows\system32\svchost.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\NGC C:\Windows\system32\svchost.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft C:\Windows\system32\svchost.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography C:\Windows\system32\svchost.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133629984468506421" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
Key created \REGISTRY\USER\S-1-5-19 C:\Windows\system32\svchost.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4204450073-1267028356-951339405-1000\{616AC061-8D7C-4373-AE8C-BC225DFC9F98} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4204450073-1267028356-951339405-1000_Classes\Local Settings C:\Windows\system32\OpenWith.exe N/A

NTFS ADS

Description Indicator Process Target
File created C:\Users\Admin\PCAppStore\assets\images\css2?family=Inter:wght@400;500;600;700&family=Open+Sans:wght@400;600;700&family=Roboto:wght@400;500;700&display=swap C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\nwjs\NW_store.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A
N/A N/A C:\Users\Admin\PCAppStore\PcAppStore.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3396 wrote to memory of 3244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 3244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2164 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 4328 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 4328 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3396 wrote to memory of 2980 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Users\Admin\AppData\Local\Temp\MEMZ-Clean.exe

"C:\Users\Admin\AppData\Local\Temp\MEMZ-Clean.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb82cfab58,0x7ffb82cfab68,0x7ffb82cfab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1692 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2176 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2232 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3064 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3048 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4372 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4476 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4500 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4740 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4688 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4704 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --reenable-autoupdates --system-level

C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x240,0x244,0x248,0x21c,0x24c,0x7ff7e2deae48,0x7ff7e2deae58,0x7ff7e2deae68

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3940 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4836 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3324 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3168 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4536 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5288 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3156 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5624 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5652 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5836 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6012 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5488 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=1932 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=3184 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5676 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5676 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Users\Admin\Downloads\Setup.exe

"C:\Users\Admin\Downloads\Setup.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=3108 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" https://pcapp.store/installing.php?guid=715F25E7-2A26-430A-B7ED-E78CC8643F38X&winver=19041&version=fa.1091o&nocache=20240616080147.336&_fcid=1718524874354935

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x10c,0x110,0x114,0xdc,0x118,0x7ffb82cfab58,0x7ffb82cfab68,0x7ffb82cfab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=4428 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=4456 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2748 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5904 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp

"C:\Users\Admin\AppData\Local\Temp\nsw6ED4.tmp" /internal 1718524874354935 /force

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=5112 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Users\Admin\PCAppStore\PcAppStore.exe

"C:\Users\Admin\PCAppStore\PcAppStore.exe" /init default

C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe

"C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe" /guid=715F25E7-2A26-430A-B7ED-E78CC8643F38X /rid=20240616080214.617240703562 /ver=fa.1091o

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

.\nwjs\NW_store.exe .\ui\.

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\pc_app_store\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\pc_app_store\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\pc_app_store\User Data" --annotation=plat=Win64 --annotation=prod=pc_app_store --annotation=ver=0.1.0 --initial-client-data=0x280,0x284,0x288,0x27c,0x28c,0x7ffb91f9a960,0x7ffb91f9a970,0x7ffb91f9a980

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=gpu-process --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=2028 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:2

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --mojo-platform-channel-handle=2072 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:3

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=2128 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:8

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --nwjs --extension-process --no-appcompat-clear --no-sandbox --file-url-path-alias="/gen=C:\Users\Admin\PCAppStore\nwjs\gen" --no-zygote --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2956 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:2

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=4280 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:8

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=4512 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x2f8 0x2ec

C:\Windows\system32\msiexec.exe

C:\Windows\system32\msiexec.exe /V

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=4616 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Users\Admin\PCAppStore\PcAppStore.exe

"C:\Users\Admin\PCAppStore\PcAppStore.exe" /init default showM

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4664 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:2

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=4868 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:8

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --mojo-platform-channel-handle=4872 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3292 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\PCAppStore\nwjs\NW_store.exe

"C:\Users\Admin\PCAppStore\nwjs\NW_store.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-sandbox --user-data-dir="C:\Users\Admin\AppData\Local\pc_app_store\User Data" --nwapp-path=".\ui\." --no-appcompat-clear --start-stack-profiler --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=4792 --field-trial-handle=1940,i,10196381104272901835,3302239034580208170,262144 --variations-seed-version /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5076 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=3132 --field-trial-handle=1856,i,2501653226340092584,10723307660244506963,131072 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 g.bing.com udp
US 204.79.197.237:443 g.bing.com tcp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 17.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 172.214.232.199.in-addr.arpa udp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.206:443 clients2.google.com udp
GB 142.250.187.206:443 clients2.google.com tcp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 206.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 consent.google.com udp
GB 142.250.187.238:443 consent.google.com tcp
US 8.8.8.8:53 26.165.165.52.in-addr.arpa udp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 apis.google.com udp
GB 142.250.200.14:443 apis.google.com udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 198.187.3.20.in-addr.arpa udp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 free-robux-700.soft112.com udp
US 104.243.35.223:443 free-robux-700.soft112.com tcp
US 104.243.35.223:443 free-robux-700.soft112.com tcp
US 8.8.8.8:53 www.soft112.com udp
US 8.8.8.8:53 223.35.243.104.in-addr.arpa udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
US 45.58.113.196:443 www.soft112.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 45.58.113.196:443 www.soft112.com tcp
US 45.58.113.196:443 www.soft112.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.180.2:443 googleads.g.doubleclick.net tcp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 cdn.soft112.com udp
US 8.8.8.8:53 www.clarity.ms udp
GB 143.244.38.136:443 cdn.soft112.com tcp
US 13.107.246.64:443 www.clarity.ms tcp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 region1.analytics.google.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 www.google.co.uk udp
BE 108.177.15.157:443 stats.g.doubleclick.net tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.113.58.45.in-addr.arpa udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 136.38.244.143.in-addr.arpa udp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
IE 68.219.88.97:443 c.clarity.ms tcp
US 8.8.8.8:53 x.clarity.ms udp
US 20.114.190.119:443 x.clarity.ms tcp
US 8.8.8.8:53 c.bing.com udp
US 20.114.190.119:443 x.clarity.ms tcp
US 204.79.197.237:443 c.bing.com tcp
US 8.8.8.8:53 157.15.177.108.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 97.88.219.68.in-addr.arpa udp
US 8.8.8.8:53 119.190.114.20.in-addr.arpa udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 142.250.180.2:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 pcapp.store udp
US 45.32.1.23:443 pcapp.store tcp
US 45.32.1.23:443 pcapp.store tcp
US 8.8.8.8:53 23.1.32.45.in-addr.arpa udp
US 8.8.8.8:53 repository.pcapp.store udp
GB 89.187.167.9:443 repository.pcapp.store tcp
GB 89.187.167.9:443 repository.pcapp.store tcp
GB 89.187.167.9:443 repository.pcapp.store tcp
GB 89.187.167.9:443 repository.pcapp.store tcp
GB 89.187.167.9:443 repository.pcapp.store tcp
GB 89.187.167.9:443 repository.pcapp.store tcp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 google.com udp
BE 108.177.15.157:443 stats.g.doubleclick.net udp
GB 142.250.178.14:443 google.com tcp
US 8.8.8.8:53 9.167.187.89.in-addr.arpa udp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 repcdn.pcapp.store udp
GB 89.187.167.5:443 repcdn.pcapp.store tcp
US 8.8.8.8:53 5.167.187.89.in-addr.arpa udp
US 8.8.8.8:53 galad.ro udp
US 104.21.52.163:443 galad.ro tcp
US 104.21.52.163:443 galad.ro tcp
US 8.8.8.8:53 163.52.21.104.in-addr.arpa udp
US 8.8.8.8:53 ads.soft112.com udp
US 206.221.176.5:443 ads.soft112.com tcp
US 8.8.8.8:53 www.tanluxurious.com udp
US 206.221.176.5:443 ads.soft112.com tcp
US 192.243.61.225:443 www.tanluxurious.com tcp
US 8.8.8.8:53 5.176.221.206.in-addr.arpa udp
US 8.8.8.8:53 soft112.com udp
US 8.8.8.8:53 225.61.243.192.in-addr.arpa udp
US 8.8.8.8:53 pcapp.store udp
US 167.99.235.203:443 pcapp.store tcp
US 8.8.8.8:53 203.235.99.167.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 delivery.pcapp.store udp
GB 195.181.164.20:443 delivery.pcapp.store tcp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 20.164.181.195.in-addr.arpa udp
US 8.8.8.8:53 32.25.90.104.in-addr.arpa udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 108.177.122.94:443 beacons.gcp.gvt2.com tcp
US 108.177.122.94:443 beacons.gcp.gvt2.com tcp
US 108.177.122.94:443 beacons.gcp.gvt2.com tcp
US 216.239.32.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 94.122.177.108.in-addr.arpa udp
US 8.8.8.8:53 chromewebstore.google.com udp
GB 216.58.201.110:443 chromewebstore.google.com tcp
GB 216.58.201.110:443 chromewebstore.google.com tcp
US 8.8.8.8:53 110.201.58.216.in-addr.arpa udp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 ssl.gstatic.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
GB 142.250.178.14:443 google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 11.227.111.52.in-addr.arpa udp
US 8.8.8.8:53 region1.google-analytics.com udp
GB 142.250.200.14:443 apis.google.com udp
US 8.8.8.8:53 img.youtube.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 8.8.8.8:53 scone-pa.clients6.google.com udp
GB 142.250.178.10:443 scone-pa.clients6.google.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.178.10:443 scone-pa.clients6.google.com udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
US 167.99.235.203:443 pcapp.store tcp
GB 216.58.201.110:443 img.youtube.com udp
US 8.8.8.8:53 beacons.gvt2.com udp
US 192.178.49.195:443 beacons.gvt2.com tcp
US 192.178.49.195:443 beacons.gvt2.com udp
US 8.8.8.8:53 195.49.178.192.in-addr.arpa udp
US 108.177.122.94:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
US 8.8.8.8:53 d74queuslupub.cloudfront.net udp
US 167.99.235.203:443 pcapp.store tcp
FR 52.222.169.64:443 d74queuslupub.cloudfront.net tcp
US 8.8.8.8:53 154.200.245.18.in-addr.arpa udp
US 8.8.8.8:53 64.169.222.52.in-addr.arpa udp
US 8.8.8.8:53 90.193.84.52.in-addr.arpa udp
US 8.8.8.8:53 pcapp.store udp
US 8.8.8.8:53 pcapp.store udp
US 159.223.126.41:443 pcapp.store tcp
US 8.8.8.8:53 41.126.223.159.in-addr.arpa udp
US 167.99.235.203:80 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 8.8.8.8:53 repcdn.pcapp.store udp
US 8.8.8.8:53 repcdn.pcapp.store udp
US 8.8.8.8:53 repcdn.pcapp.store udp
US 8.8.8.8:53 repository.pcapp.store udp
US 8.8.8.8:53 repository.pcapp.store udp
GB 195.181.164.20:443 repcdn.pcapp.store tcp
GB 195.181.164.20:443 repcdn.pcapp.store tcp
GB 195.181.164.20:443 repcdn.pcapp.store tcp
GB 195.181.164.20:443 repcdn.pcapp.store tcp
GB 195.181.164.20:443 repcdn.pcapp.store tcp
GB 195.181.164.20:443 repcdn.pcapp.store tcp
GB 89.187.167.9:443 repcdn.pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
GB 89.187.167.9:443 repcdn.pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
US 8.8.8.8:53 repository.pcapp.store udp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
GB 195.181.164.18:443 repository.pcapp.store tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 lh5.googleusercontent.com udp
US 8.8.8.8:53 18.164.181.195.in-addr.arpa udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:53 ev.pcapp.store udp
US 147.182.211.77:443 ev.pcapp.store tcp
US 8.8.8.8:53 4.4.8.8.in-addr.arpa udp
US 8.8.8.8:53 77.211.182.147.in-addr.arpa udp
US 8.8.4.4:443 dns.google udp
GB 216.58.213.10:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 10.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 8.8.8.8:53 github.githubassets.com udp
US 185.199.110.133:443 avatars.githubusercontent.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 133.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 154.111.199.185.in-addr.arpa udp
US 147.182.211.77:443 ev.pcapp.store tcp
US 8.8.8.8:53 collector.github.com udp
US 140.82.113.21:443 collector.github.com tcp
US 185.199.111.154:443 github.githubassets.com tcp
US 8.8.8.8:53 api.github.com udp
US 140.82.113.21:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 21.113.82.140.in-addr.arpa udp
US 45.32.1.23:443 pcapp.store tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 147.182.211.77:443 ev.pcapp.store tcp
US 167.99.235.203:443 pcapp.store tcp
US 147.182.211.77:443 ev.pcapp.store tcp
US 147.182.211.77:443 ev.pcapp.store tcp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.109.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 133.109.199.185.in-addr.arpa udp
US 108.177.122.94:443 beacons.gcp.gvt2.com udp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com udp
US 8.8.8.8:53 e2c30.gcp.gvt2.com udp
US 34.125.80.210:443 e2c30.gcp.gvt2.com tcp
US 8.8.8.8:53 210.80.125.34.in-addr.arpa udp
US 192.178.49.195:443 beacons.gvt2.com udp
US 8.8.4.4:443 dns.google udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 github.githubassets.com udp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 108.177.122.94:443 beacons.gcp.gvt2.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 github.com udp
US 8.8.8.8:53 repository-images.githubusercontent.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:443 dns.google udp
GB 142.250.187.196:443 www.google.com udp

Files

\??\pipe\crashpad_3396_GWIUCQWIBWYLSNWC

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 3fbcd419298984287f97ca3f506cfd3e
SHA1 f79dc7696a160491c8af05a3e579d1934e023e27
SHA256 2b74792077eec0a7c7f1c837a67c5a5b7ec0069d06acd049cdfa9b723203917c
SHA512 71620f4693cfb9033b9839a0f5505d1611fee384d59b23b5f24b2d1ebcb67b0f7e954272b76aeeac4182692b0e3965627991dd60f825b41f9c7f0356391f8dbc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fb08b8aa1ce7a4128a67b26e2456e10c
SHA1 955343467e9873b4ca6e6575585e898367642811
SHA256 5c15ad2eae0ba25dc68a388ede46a29c9f2902fc91131a4db6b932253952c8e0
SHA512 633d04fdd4ef016356c74d3984d495ee3d49ca7d951872d4a521def169a0668b735063b5e709fbaaffbde8f098bcfe17d96f9be43f5ed3426c6351e6893be991

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b3c65eb09fb4faab179f04b58d8b6240
SHA1 6703abc1162b8371e3b213e26bb9661a9262980e
SHA256 150949c3d46de91528cacedab20f472beee537deb45ccccb2c68e39b64979bb7
SHA512 f98cb1f60e483b265cb0fbe5e8f531d53aece7b0f0d2b65270ab8a4fe3cbdf887b6fcf53de9a10d38827ef21370a57fb126be4c7732395e43f7da3e60952386a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 74ebd33c04776d0fbef92771d308c28e
SHA1 cc5772d7726e42c1cae14e5d2f22009be4f15613
SHA256 bdc39dd5cdb20046513067aa16e269dedf069d936d151344e4d8589a214840b3
SHA512 527633c5df576f5194cf38f1ec8ba256a5bf72b1fdec315c006346435eac9f3e9435a319f93c113179ca456268e17e753f37df4927a9197d73da7c56ad411017

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b32d6dd7e7881d4c079de04a9d4a5eb7
SHA1 d8f774eb0586fe2fdd72bb424e8263456db199ff
SHA256 7c244e8409082fa8cdd78a9d90e36c985ba943e138b3836e376c08b5bb7d4ef6
SHA512 5094d06a41c52f7ca1d9b62c78c94bf097b0622fe0589a51b33d7da3291a20ed38e73a99033cf1c0e973fe1acb9142ae6a25cd0fd8d2e4894a56d715a166c365

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d

MD5 e78f9f9e3c27e7c593b4355a84d7f65a
SHA1 562ce4ba516712d05ed293f34385d18f7138c904
SHA256 75488ac5677083f252c43009f026c2ec023ac4da3e65c5d7a084742e32abce3d
SHA512 05f9fbbd59c286024b3ad49961c4e0eaa1abcf36ed29a1d07ea73d2b057075d46fbfdda56f135145f942bd0c3d48246c73be1771c21861eec4ddf8bbc365a286

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f16101abee9d821924f22f26d8e1ad1c
SHA1 9fc36fc7e8db30745f0f29c59c9a8cbee993d26e
SHA256 4c092002c77a73214a49d26cec8cbd48a6b6e39cb972c7f4178f1886e9345a13
SHA512 159c1e2d1617d73f22d2335cca723799b6219aadf00352722e39929133a151b0e2c4df867a78aef8fb2154a23bc0ff814f1d6bc0ed05b218b7936a537d6d08b1

C:\Users\Admin\Downloads\Setup.exe

MD5 306ed2a63ae328a59eafbce586fce028
SHA1 5409a7f724d38ac2ffdb9abe0cace6fdbe6c89d9
SHA256 ee8975c17c023275172a07653af38431fbd7982bd820cc76ad68da88ad49c504
SHA512 65d98d1bb047b1422e086b98838d12d425ad3f1cad03df898322f4ba18ec1a52fc969aeb23ed416720dca7a3287b084417cfadadd7464076ea260f70db97ae43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a1ef37688602951cbfac018a48dacf5c
SHA1 d6942e59bbc99201529f3f1269e67113c97d9279
SHA256 5d8da12117ea9d42a20777431a11042e28b1eb4b8b2639a264d842eda53bb7cf
SHA512 fbc4309f15e2810c8446d1b2cb9a5e40173e49d96ab04d1d6b8decdd77e2d2c5e86bb9fc1873116b4bd1706c2aaabb482db281ae8f62816c848ae03cc8b6c1a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e8477d04051314791a7e4e1357da0f88
SHA1 3fc25401a020c317856e3aea229be4f03e91eb6f
SHA256 0674bef9faeddd063f790d450d521e3e4356172d5ab3a0cfd2c24ce2e2231520
SHA512 e2c632e67e000949db89ac5289811927d2a2e3932bbbe5e61ef908f2906350bd9275680027e08ccf7ddf3144f034b7138aa2ee7440a3cbde3d0eba30630f6d2e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 f829aad8892ca32cd826b6b69a450f1c
SHA1 cbce84795e82e4e3b75d5e8dbcd6dfae1840de67
SHA256 99a2b14284f4718f73e233cdbd4323830bfb9bc20155663df1c3d10f5c15576f
SHA512 c85de89eacaeda95b4d641164a5807ce11d1daf4582a26e8c3c16a4c6140db2c2f5c3c3e855db9cfa7244c5cca0bb267c71831bd8cfd9ff3b3a3f3d148214043

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe581a0b.TMP

MD5 0e6f47698b7f980317f949be8485a134
SHA1 19cb25b774e9e9b0587f298e3de4ad063892ae1e
SHA256 887c98bf62efc76f8e0197b26676d3f4702cb66e69afa703ddccef5bce93313a
SHA512 8f4f44cf89b4115400f8e047d1db41a5f9080b3b8f3d868766ac305fc0566da9d7af9dd4b68d7cecf5204afb7a9c8d22f1e7e3c94dea07258ec44737d89a2a6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 21828177e26b60a830487e8ba02a9b6c
SHA1 6100fb4ad34f6b4fbb82f96ff2fb347f507949ea
SHA256 f458199acd7b546388cc0d801ec020b0e8340294e9b739f7d1836a9e68e55fe9
SHA512 486aa87be28a9716d5054701e7fae4eafaf0935b57de2a3ba1267a9489801b8e661567d8686b9d7ed586738d05b0da23ba550b95273657d11b5e202d8d8224bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

MD5 8f02894ac7b93213b39b13bda74aa83c
SHA1 fbc8a8955bec2764bbb0df241992df7f4aafb2d7
SHA256 c09bc5677b8ca4da02372b5bcfa9acf50caaa3b8f7080151065958164e5e997d
SHA512 637d0ea0e6ef4f8004aa276cb76acef8d5b4a5ceb29265761efbca96e27a778498d11835d5fe2d7d1659553cbeb2c1b773ea0cceca110d0eeab19fd65009c583

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

MD5 99bd1a5ec5d58d647989f33f63c6fc12
SHA1 87d0ca7fccda23b5a6f19467eb55e88a2828d087
SHA256 afc723fb2f9a9f8d610f08ca02769d6ed9db4bda3a538a011a1e790a87edf502
SHA512 487b4aecb0c3766bcc155336e79723bbc1cf12bae48033e17a0a6751ecfc7ffd097d03d858fc6122d03facd94c81286da9688f703627b7c52c8f7a5dc14c9240

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023

MD5 1b7ac631e480d5308443e58ad1392c3d
SHA1 95f148383063ad9a5dff765373a78ce219d94cd7
SHA256 7fb66071ac6c7cfff583072c47bc255706222c2a4672c75400893f4993c31738
SHA512 15134314dfd36247db86f9b3d4dcb637e162f8fd87c0ce73492ffdb73a87492fc80330655617f165dd969812ed2ebcc42503f632d757bb89ba9116137882119d

C:\Users\Admin\Downloads\android-comKUADRAFreeRobuxLite-12.apk.crdownload

MD5 f226cbe47d7a8351861331e010620214
SHA1 b184f399e3cf4473018b530344c03dc10f454101
SHA256 885cb28ae72c37d707f47e8a6dc88faf6225b66e5338340855649a7a67f7a27a
SHA512 f071f7afaf2e99c2373f8044959060022d1365074ed9f4d16bd81bc3e3f1a59c781aa792939e0e178c9a68400cadcb9f29ad4b0f74cda3c24d0a38e2ced5fd45

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 594c5b8be78a5f3393998bc50ac7d1db
SHA1 3445b29f067f326c5468f60d6dce0dd300716fea
SHA256 8417f3e221b3a90315d51cda201b42eba787bdbd799b5409719802040519318a
SHA512 4b5bfcbe7db77a0c6037151bd3e9f4675965be5e7326881141d7a463f2b8685df8f6a0f2e6fe0c2c45c83d19c5fb2e01839c81a3ea5cdfd7ac02dc8273edd13d

C:\Users\Admin\AppData\Local\Temp\nst41B8.tmp\System.dll

MD5 cff85c549d536f651d4fb8387f1976f2
SHA1 d41ce3a5ff609df9cf5c7e207d3b59bf8a48530e
SHA256 8dc562cda7217a3a52db898243de3e2ed68b80e62ddcb8619545ed0b4e7f65a8
SHA512 531d6328daf3b86d85556016d299798fa06fefc81604185108a342d000e203094c8c12226a12bd6e1f89b0db501fb66f827b610d460b933bd4ab936ac2fd8a88

C:\Users\Admin\AppData\Local\Temp\nst41B8.tmp\nsJSON.dll

MD5 f4d89d9a2a3e2f164aea3e93864905c9
SHA1 4d4e05ee5e4e77a0631a3dd064c171ba2e227d4a
SHA256 64b3efdf3de54e338d4db96b549a7bdb7237bb88a82a0a63aef570327a78a6fb
SHA512 dbda3fe7ca22c23d2d0f2a5d9d415a96112e2965081582c7a42c139a55c5d861a27f0bd919504de4f82c59cf7d1b97f95ed5a55e87d574635afdb7eb2d8cadf2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 75b966bb2c0c941df02308228437479e
SHA1 2553de97a56831ea0ad1e6605cfd0d2a6e7bac18
SHA256 bb2ba628697c6d817d3f28a2804f4cba90bfc16519594fd8e09c3be8b5b9d858
SHA512 edc5a19e1bb444fad9c4a2f794c0c76e29bc04277c70a76f3e9121477e2d41d3725e636fad6116abf57cf71dce0209a1763b8d9fb5fc513430f1ef55fb94bc17

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cf267310a03494e1c2c029409d0506b4
SHA1 515e8f8d4cc91d681db7aa37609170ba692ccaec
SHA256 7594068d7689a27ddee41c7293ff75ed23ba64e4ace111b968972b1d9175a34f
SHA512 0028c2ddbaa9fa6b728fc33bcd6442de6bffbcfbdbf6728ab48962a3e35ad1fea19a88dfb6fd5fe886178041ca2a8c3dcad6fc81206afe7676225f3d2fa38e0d

C:\Users\Admin\AppData\Local\Temp\nst41B8.tmp\nsDialogs.dll

MD5 6c3f8c94d0727894d706940a8a980543
SHA1 0d1bcad901be377f38d579aafc0c41c0ef8dcefd
SHA256 56b96add1978b1abba286f7f8982b0efbe007d4a48b3ded6a4d408e01d753fe2
SHA512 2094f0e4bb7c806a5ff27f83a1d572a5512d979eefda3345baff27d2c89e828f68466d08c3ca250da11b01fc0407a21743037c25e94fbe688566dd7deaebd355

C:\Users\Admin\AppData\Local\Temp\nst41B8.tmp\inetc.dll

MD5 a35cdc9cf1d17216c0ab8c5282488ead
SHA1 ed8e8091a924343ad8791d85e2733c14839f0d36
SHA256 a793929232afb78b1c5b2f45d82094098bcf01523159fad1032147d8d5f9c4df
SHA512 0f15b00d0bf2aabd194302e599d69962147b4b3ef99e5a5f8d5797a7a56fd75dd9db0a667cfba9c758e6f0dab9ced126a9b43948935fe37fc31d96278a842bdf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 a9fd89f026c427431bd82278006b76d5
SHA1 4d2252223aa5b164b498722632c31a05b595d040
SHA256 472d2a5aa81eebf86f65e395ad8cd895749cbdd209e5d3ca03db112da45f6b6a
SHA512 bcc6c68e82c460ced832f9b147dfe8d250af7ac6c7431c98c7147038f36a07eaf33b2b048b30528958ea844c8534b5406c39f7cd2cb22e529b8922c63d754b45

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 59b33393f79d6b2739962ecede5d2600
SHA1 6964782036fef08504dcc7d213f21bad71c4957b
SHA256 c208be034f14889af4bf6163de9930af6b4fbd75a25cf0937b8af9022f2f1ee3
SHA512 d9245fd00afedd2a4618b5a7b069d4ed97642a81b090280a4a08ebd43352fc897af635102b74913dae63dd7af52be720e24d02b524b5825c40c27dd52f6f0708

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3c186c3ec2f3be02946679b312f8ead8
SHA1 2dc4d1f17137fcde3688f0f8d224ba00217ddefe
SHA256 e4909dcbddd47962577816dd05e5f3473c4637fc2c3c646368266cd596a2a53d
SHA512 5255364b84cfb361dfd70ecd9333a4a4801c23367bbbfc5c9f2d6c047074b738382bfee98f579fe57b55727e90f59ce6a6f82888f207381f0303af6afff1fbaf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8e552a0ece49c6a49ed9feda02173b1d
SHA1 a938a120c451d7970051e7d68d4ae6de552417a0
SHA256 2a2d86c64c111e4736024c19639f1d0000b62c1e3726edc07e071dd747d132d5
SHA512 7e80017ac0da85f0d445729dba518f513e2f691de26f96ca85ff4e49717aa163ac855322e4f86aed5a491773fe40784c935c64f54f22f9f6073dd4adfc6bf6a8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 47751848ffc89269a51663690b1ddfd2
SHA1 abe897d97341d4c130379a5fdc80bc06965d737e
SHA256 5c1e20f398fe4a56a5397e19f640e82c8c76a626427fa1f97b86dfd5ee52e908
SHA512 94c90d485896b4468a0b6fe0c23d58ecd65f421236bb2304aa2303deddb9f24e08a83f7be832d9da6b5818340d6296081b33ddcf5f8b3a503ac347513e09d293

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8ef23d982927e2b782049e718d2c31b1
SHA1 350a4253396af488a73f73b3c5dab106739115b6
SHA256 f69d2da730823446f56b50b992a57b6759f875ef89a4f2b3a275bf7be30e8c57
SHA512 644f4bfdeb814733c6de2fc0f39561dd014fa6fa3b7eecf2b4282e84fbfcba4c1f53823097a528cbf52abc212b7eb1904d1dd3f44d1e9c4829286ee44a6fb197

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 688105bc247983d3158ad6358f93e835
SHA1 1dc76708a314d671e08fed42f03a4f6466bf671d
SHA256 810f3d9f269549e50585d8426b60e7f28bbe8ad593bf71714dcfc64a3f597d6e
SHA512 ff4958967ef6f79cec3ff9b8bb1fc5cd92e188ddafebf94a7a7894f54b3cd6cabd34df26c40dfda2ca4cc1018efac1b3e69e66ed4ecce1a9c5781066fd6a6d9d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

MD5 aa12ea792026e66caab5841d4d0b9bab
SHA1 47beeba1239050999e8c98ded40f02ce82a78d3f
SHA256 65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1
SHA512 0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E2C6CBAF0AF08CF203BA74BF0D0AB6D5_C39E9DBC666D19C07EEE7CD1E11AF8BE

MD5 d90a97ee1a93179e42061d25da1a5f30
SHA1 cbd6a7fae9c962b63e5b58f2b3708daa9251c9df
SHA256 1d824d33795a77f43164adfc29e041112b03740d2e1bc7bec425e85b04938156
SHA512 cc134585b5d29f8b173b724d6ee7185b7d9f3cb0d0540a73d8dc7f896d58d7cabe025c3dd5ab579e20aaf095ad377bd5aaeab39c7b8f6e842467b926dff252c2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E2C6CBAF0AF08CF203BA74BF0D0AB6D5_C39E9DBC666D19C07EEE7CD1E11AF8BE

MD5 4b4df60baa631679ef2517c0f29569c1
SHA1 a16faf8d81d698603c2294e91495cc5df3419b86
SHA256 46c199b801e3ab4376bb236089095ebc34989f220dbb6e893098341fae8391bf
SHA512 42a6dbf0372b51df4ab8522948b571ade390ebad0bbbfe90e9eef5ecd3eb198ec13654d2f5441a9c2e8ba2d7059565375eda7670446f0ad73a81995df2f7d15c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\773CFF2C7835D48C4E76FE153DBA9F81_15174A80589B8DAF9768E9131F4845C0

MD5 428091bfaba378d0abe8661bc06f9833
SHA1 182a80a2906c23e10a78f3217dc9beaf05343ec0
SHA256 79ede0b239109fe23e2d8cb78bdcea833fddcba6168017c081bc639bc276d2cb
SHA512 5cbbbc15f518dc2500d7d4aa327744ebd9467f30ea3516fd3cb45e6d20ab582bc04e8394630b891d18a3dbc7fd6b00a2c271fba20e5094e0ee330e0629789b27

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\773CFF2C7835D48C4E76FE153DBA9F81_15174A80589B8DAF9768E9131F4845C0

MD5 5deaf382d1175a3a273cc65e16959fca
SHA1 22c6d249dbbb8e41a5eaef003bfeb5f61f0e2c4a
SHA256 13b118f7962dd1681fe3140c8afb4fa7912c8c8db7f35fa32a3fa6d0202ee2f8
SHA512 ed864887777628aaddcd0e5ee63850b47340ae5909db7487a5f0ef1c081cd08ecc5f9bfbee8e6ae6dc64e1f48d2c6f4ab79f6a777f13056161dea71aeccff660

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fa0cf6d4fa94d26ac4776a03d094af96
SHA1 58b3c3193a6d707a6104fb20e1c3ef27b12991b4
SHA256 5267f4e64534befe0a8de2472de23597629f3d24afdae91f53c2cec454b316f3
SHA512 6df3aa88dfcd08ffd2b51ec960077144d6450721492747dffc30637b519592421e8fea218f0ae4270aa67d19f6843a5515eaaa436696ed4a7f36ff64a91b9480

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cd6e3d367ef4e2c2cc042174f3d714a6
SHA1 db1620a71515b1817f7b968371a5d240951d2649
SHA256 b3b1992c39bed212d7d7afda2bc009dd536cbb604829b163320679729d78cfba
SHA512 e34b390071ae138edda1830b1a54aa912d3a3ea0d152d8461b83c6202ab82b4106e5076deb165dc4d242c62584f49f70931b25df760d6eb2c19e365b584207f7

C:\Users\Admin\PCAppStore\nwjs\locales\bg.pak.info

MD5 82d7ab0ff6c34db264fd6778818f42b1
SHA1 eb508bd01721ba67f7daad55ba8e7acdb0a096eb
SHA256 e84331e84cd61d8bdacc574d5186fb259c00467513aa3f2090406330f68a45db
SHA512 176458b03cc2b2d3711965cd277531e002ae55d284b6c9178d2353e268f882430235468e5a1e9e45c8427864d109cf30a024a993b4763a75fa2744f6e0a6ae2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 87c2b09a983584b04a63f3ff44064d64
SHA1 8796d5ef1ad1196309ef582cecef3ab95db27043
SHA256 d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0
SHA512 df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 dd242f4737b2737ecad98bc2028b544a
SHA1 065a4e6f50f16e5986df7f582d4839e59c4338a4
SHA256 cc8950f8d690094464d97041d919cab9ec3af790437c6e3febb754e245171cd6
SHA512 b393c7f0da53d9ae875743cb564b223b2031767844db1de296b6e652492bc29f8e19bae002b66e987c00b11009ac7df0bff7a36d661f7846e8bd8c9a0957a272

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 bb82f6b975721f7516c470271507feb1
SHA1 992a23f0dbd86734402fd9a29706436bc76fba1d
SHA256 495e8e7f53579ef9db3cde689bd31c4665ef84d900eed9f4a58887637eb26e69
SHA512 371f71a1b5376e5befc6fbb3d4cd1c2530aea5a87be2da08c8d0efad4b4aab338c2aee40880ece4442f284fc26ee94a8bd11cbd3cf2cc9f80c44a4e0ba9db036

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000049

MD5 13c6e456c9246421253c707f3df40c03
SHA1 929e6546f6b22ec209a7bb8fa31a61cc2b62dce9
SHA256 0ef48cf39591e168c7158d1a1021d002b3f2ff8deb24697ef1ac16ed6a19be6b
SHA512 b96f960b88ef5199ebc59696603178de509b7fd794523db3062361f5ca4d0d2fc7a579aa5387a046e07327e00d080490f6f0d45b53c468628e4b1eb3e413fc92

C:\Users\Admin\AppData\Local\Temp\nsqAB22.tmp\Math.dll

MD5 85428cf1f140e5023f4c9d179b704702
SHA1 1b51213ddbaedfffb7e7f098f172f1d4e5c9efba
SHA256 8d9a23dd2004b68c0d2e64e6c6ad330d0c648bffe2b9f619a1e9760ef978207a
SHA512 dfe7f9f3030485caf30ec631424120030c3985df778993342a371bf1724fa84aa885b4e466c6f6b356d99cc24e564b9c702c7bcdd33052172e0794c2fdecce59

C:\Users\Admin\PCAppStore\PcAppStore.exe

MD5 fcefc6099c1265e7f7b703c7a0154c5a
SHA1 84f13c7724e24a4416f3d65c143f013d9e9dfcfc
SHA256 4a223cf0623913c903cfc2c0a1a8450405244d8b86c1020e970cbdf8e7a30184
SHA512 d4d1a0d781ca851c9738c5981f13eb023092ce71e0cd04b3ed8dcc942a8ece54b9a031230e300bbdaa4486792f75af768fdbb882b430f5915bec85bcc66cf3f5

C:\Users\Admin\PCAppStore\PcAppStoreWatchdog.exe

MD5 5e28dd3006a64174ff0f82469540712e
SHA1 803b328a407aa6799a86b3555c55b5b29c0b01f1
SHA256 d3ed2cd4c44b76cfef67934280f5952cca28a66e096f87f05b6ea1a64ee3f7ac
SHA512 fcc3b6a708fb0acf083da0ca853b3560d62ee2f23238b1d1d7bb9b93e4ee5dcdba29d41b9043af55c8168c3ac865b4a747b79c1fd5ea573169ec155e376a0aa9

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\8bbd8e0f-fce8-43a0-88a8-d367e855f558.tmp

MD5 728fe78292f104659fea5fc90570cc75
SHA1 11b623f76f31ec773b79cdb74869acb08c4052cb
SHA256 d98e226bea7a9c56bfdfab3c484a8e6a0fb173519c43216d3a1115415b166d20
SHA512 91e81b91b29d613fdde24b010b1724be74f3bae1d2fb4faa2c015178248ed6a0405e2b222f4a557a6b895663c159f0bf0dc6d64d21259299e36f53d95d7067aa

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Crashpad\reports\ab3bc3e0-8a40-493e-a720-acdc62dd9d40.dmp

MD5 9f5c4f6b389a27e5fd1a8b80eb6a9382
SHA1 e993dfd00f758f9bdba31d82ed4206a65a0f0c3b
SHA256 8ed18a99fcc46e928f685ce580a28b0d4690ffc2d1e531ea42b51295527ceeae
SHA512 7f18e01bdb839f59e1e8063b7af4dba66528cd34163b3e4c0f517eb12b49514d5fefcf8c85114970f24d552391f0f8f373fb97ee746ba6890cc2caa296dd4072

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Local Storage\leveldb\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Extension Rules\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\DawnCache\data_3

MD5 41876349cb12d6db992f1309f22df3f0
SHA1 5cf26b3420fc0302cd0a71e8d029739b8765be27
SHA256 e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c
SHA512 e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\DawnCache\data_2

MD5 0962291d6d367570bee5454721c17e11
SHA1 59d10a893ef321a706a9255176761366115bedcb
SHA256 ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7
SHA512 f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\DawnCache\data_0

MD5 cf89d16bb9107c631daabf0c0ee58efb
SHA1 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b
SHA256 d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e
SHA512 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Web Applications\_nwjs_pcapp.store\pc_app_store.ico.md5

MD5 03e9f614a008075733c76883156b568b
SHA1 5f9cb1b06928487c4b836e9dedc688e8a9650b0b
SHA256 b1a6a6fb45ad1e13054c40dc7c09e3098ee830bcf1ebaec27f640ae4c64b8416
SHA512 7e6969c8908a6bf57bd2cb4457a7c78360468383acee589278e49829617e2f3b872dd8213e57a2ed8f512d444c67a2e619deabdc1394d1c39c7759ed3c744f94

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Cache\Cache_Data\f_000018

MD5 7865a1c38dde09e31e1cd10f5b558d35
SHA1 49189cc2138273b5f0f005290f64a063492bbbb1
SHA256 cbab6433b4bdd202d6d10eb8925b4f742bb4c8f3bd05bdd587993d9fd9a0de7b
SHA512 9adefa0bc8a650a8b85477a2492cb640c7d7baf503520aa42ea34c575ab9ceb906bdbcb4407dfa8489c5e35a245589ab81188984a1ec76b9ead80ac12b8f8bd4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 519ccd433eb6e04d5cb35f10a52b2a0e
SHA1 159b9ed781eadcb0b060bf2ea1c871ffcb3f5080
SHA256 b74e5960794e7af2308d0b1390791ee74761cdbd021ca32ac0613993422b1ba9
SHA512 4b720299982e849599de4bc142465cabfc270459b85379b20903bf382b575d99fe35600e793f762dc74e2fea8af98f2b80dee8e55a16926c6c8f94ae9d7dca7e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e345e5f19bcf19bd40cad580d913ae43
SHA1 366e1f19645b016324f8132c7db1af2134116570
SHA256 a18721d9dcf7ef241c524a1722a97fa5f10316c103bde03cd28a21217a96355b
SHA512 df470073894fbf4a9d76ebf1323b0296926b8c01cf910f1f2bd7112a285a0d0d6ccb96dd6439979cab7743e0368efc0313a8a41d3b28755d9675ca15bac4930f

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Local State

MD5 33f84e77fb8279b10dba01efb5a9ba87
SHA1 34d49a0caaef6dee62e1c0413d6890be24fe94f1
SHA256 08b84f4b6977dcceba1f5bc09b3c93551ad96e7c25385e593072a37567c43112
SHA512 507c18856afb2e9b8512154d07a47ababd032f51c361c140d078b395d28802481da01a9635982132a8a052597fe4e64861cfd1681ddf6b80e0fe78861ab0f469

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Local State

MD5 61161bd85517d117b96fe98c5f10e7e3
SHA1 19fa5e1feea0e5e58e5078a276553fd851503686
SHA256 b40d8b80151edfa01ffe0bd65361c36438767a06282574f074a20c1e6eac4b52
SHA512 aa81c2fd0ed74319667b6dc525a17a05bc75e471fbee73e2058fc9d1abe5d123548358a6175e3ad498df75074ada97ae74694c93edf431b14f36f93d457c2dda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 57e740d0667a70d019453266452ec6b8
SHA1 4aa33fe333dc4ef0721f24a9d4a130be7db00555
SHA256 8d98837006117b100094724cc75180824fde3d6a8298a12a2c2143ee3688040b
SHA512 eedfafd5cb208f6b8f71290b8d6338f27d7ebe7635ae31fc6202929cdd6dd44996a8f75b2390335532fb91754bbd3532891c8efe18fd256688d28481064eeddf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 78afe63c8eef246993a7bab0d80e95fa
SHA1 a1f6a41e24941f3a689723115a01b55dda406059
SHA256 499d2ab6c675e53f453810e9839575ff951622780ea39dea69ef0da22dadee2a
SHA512 74b80f9d79c996e5911dbab92e0b2c43d1675973cc0e897a983d0be9aa181382ca99b8342d3701d7dd96649e87a5ac6561a93edcaf6bb14edb8005953fd65703

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences~RFe592ca4.TMP

MD5 14d4d1b5f0f5eff8e9c72b025ee56120
SHA1 19a6be7c26ffe574ce5fac12d3c7dd37199b6d26
SHA256 5ebd29e4a18e3b5f1f44dfc147c719ac65b45bb5b75021f765fb85daf841212f
SHA512 bcc81ed29d924759ec1e41a987c1709c198039da95808e1104920ea6eecaa38241b9ef5b28456df89545fc664814ae5a35b53d2b851a7793c8ed9ef749dfe076

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 3003ef3bf203b6a4c0aaf98907fc1ada
SHA1 7d058e6be9d7b35e67d2da6799b12f5678512089
SHA256 534e12419c2ba14fc66154fc1a2492aecefe97fc6c3816330002e7c1b13a9b35
SHA512 a8baa05c8977fd9e90366082be33d89a12a220b2e371fc72572ca526fbae821d05794168277468cdaac2786f0ad0b7a88fbad6ce7069bfc8cae48f26753a4bfc

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Cache\Cache_Data\f_00001a

MD5 015c126a3520c9a8f6a27979d0266e96
SHA1 2acf956561d44434a6d84204670cf849d3215d5f
SHA256 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
SHA512 02a20f2788bb1c3b2c7d3142c664cdec306b6ba5366e57e33c008edb3eb78638b98dc03cdf932a9dc440ded7827956f99117e7a3a4d55acadd29b006032d9c5c

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Code Cache\js\index-dir\the-real-index~RFe5937fe.TMP

MD5 90e554987971ed828415354756b0fdd6
SHA1 9de68963aa24ecae99426600d9d967911362166b
SHA256 5f4da63f00206fdc872a7630cf7e14f17bc8e6a5bc37f8905e8cf24d3be24a11
SHA512 3f3647a90646a1d13326c465e4fff29599136f355e944aade56b101fb43cef3d06fba757256d9826e5c43e94d7e3d2cdc3448136adedab9d83e61e7f5e1a1db8

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8985f8efde6bd0c26f54f7a5a6c23d5e
SHA1 cf7ef02e5946b93e383454d682509aa160db6fae
SHA256 8235995e354d01b0c3557df87fe248e28ef2ccacbe79367e582388a9d213808b
SHA512 e0364a5c62b3a55369a5f524d80dc3d73e2dc386367f5f00ba6b49adf4505a9927655b61782f9e58df5c0808b8592bd684562e2752b199835d64e68368ed2a13

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2e799a4340ae1a5562cec0c94d3bbb89
SHA1 3ac4a1fec318271750c4f5ca9096468df221772f
SHA256 6c8c4d181511e7430e8b034be529bbca48c6af797beec0b6d24482fa9981d139
SHA512 fa9e290d49e9bb1cde1b5ae48538db1dea5f91d0b30dfc4f86f68823379ff0c4daeed2f402f4845d920a18a1c0b04301ff33cc36d49439d86e9c8bd147b8e721

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 958dd50fa7570723483ece2fb5f75d9c
SHA1 625fafaa5a0fb7af42e4fb43913b0c462a067907
SHA256 18863af461762ab166f73c2efca2b9f884e38733415a147c579c253af5cb94c7
SHA512 6d0bfaee63bddcf75e79bd1c20e9ebdff9f07e168661d1407fc9a09569c7450bb86676b6ba1bb17a12cc20359d3d4ffdc8df78ea9d52c2df6513d4c11d745164

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\TransportSecurity

MD5 a32a403426da55f8ab80332512fc8c62
SHA1 3dd2f6990fef31fb7dc4f20414c5dbbb3c7d5677
SHA256 33b12b8d33c6895271250cf2dbc9d353ce3ff76ae64199a2db6438f5ae273e07
SHA512 0a194c50e7a8bfabac6e7d397be5c79cacc37dd54736d77599bdcf8a1d94ad4caec716afe0f582032dfc5a7733bdf493c9b01bf9366b8aa9ea85465b4d9e0762

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\TransportSecurity~RFe5956c1.TMP

MD5 f46d0470a63c457263e5642b0df31782
SHA1 20ef2a3b9ffe591a97ea86c1a29ba8f356c81d81
SHA256 2a9eaee1e5faa32c7b012048cc51c0c8d606567779cff3bf842dcf3a7e53f8cd
SHA512 844f8a389542a42c8a736b8887ba005fee34bd56698972173f0293b3565971c7a4261f19a46abf10131a07de5af00545cdee2c76002509ecb7e39bd968da19d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8568d1efba7f7efcc7fcd84f228e3bb3
SHA1 42e0bb24c92e40a47ad6ea6c0850a55b459b72a2
SHA256 d161b19ff3bc1a551adb1370b529f0cafe1c434395b4d46aa26a36d3c38f9c33
SHA512 927f865b09587ac42fe244ffbc110f0e5cdecb239de98ad5bbb0d1e5f1d55670dbc3b10bac0729ccef66b20005c4b0a25cb588b3c280697ade678f0b4a525660

C:\Users\Admin\Downloads\Ransomware.WannaCry.zip.crdownload

MD5 efe76bf09daba2c594d2bc173d9b5cf0
SHA1 ba5de52939cb809eae10fdbb7fac47095a9599a7
SHA256 707a9f323556179571bc832e34fa592066b1d5f2cac4a7426fe163597e3e618a
SHA512 4a1df71925cf2eb49c38f07c6a95bea17752b025f0114c6fd81bc0841c1d1f2965b5dda1469e454b9e8207c2e0dfd3df0959e57166620ccff86eeeb5cf855029

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8d98ef046b59a4318fa6608b05e043f2
SHA1 a3e71adf5dc8db27427315ef2f46599fb72bb4a1
SHA256 c5dd6f24a99feabfc60a64efde13826c729c1016dc10e1d6aefcb6786f0ab382
SHA512 f0dabc7451191177024a010e5ecd77954e732d086539deae9752416831960410125b0724c9c659acf01fa6a38e4583122c10e20e696e137beaa50bcd2de4760e

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 5d19c209f7eca8270fbcba0cd466dd54
SHA1 91ba8dec81618f2ea185e0ff95527fe85f8b88b5
SHA256 4b2d8327003e5e3913287d1f4802556f590fd4e63d17062092fb436547511b40
SHA512 d3d53211dff9b6f4a006503a458d2c4790d88b62632b820b9328c1da06ccc1a0fe822ddcf005e2dbdb5d46d21392c407daa47180526e1b39697ab38f7ddddf84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 344495fae0c2c9ba6156258ba84ffc1a
SHA1 fce8238d4fc7f55a97fcd599ebaa812dba0e762a
SHA256 a22e5914e265e120bea8d827b109fd307770043b7e8e48e2e8c67b0ddfe60e70
SHA512 59408c7bcd3c41981fccf9720bbd2a533fb65a875da3164f35f65cdddcfd9b85b983a92dabc11f405d033dd1526b6e46af9d17fd42252864158655176d1a622b

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 a1c67f0988c58803445d1f861313e2dc
SHA1 46b6c9cd6946312175fa63e989fe5996f1ed7d56
SHA256 4a496504eb36396de8c7b2e2253365095e53707b35baf9c0f41fd518ddfea479
SHA512 39bbbbd936e7d585c47ef5833438e4fc46516f388d1123913d665b579f7b7fa7666d4b63d904c26655afe5c6bd278e89221a7cacdf6a2b0f652f9413060c80d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b0fee02f70d9b0462e85b681fe10f219
SHA1 6edb214b20d5acf8347bd2f6f50298ba08bb4b28
SHA256 d5210513cf823f3d52d49f7e7028ddd55da57b4ffa5eb9e3f516615fbde22523
SHA512 3a209dcdc077b44f62e1dbcd927206d972e9bcf7a7cbc54b6f3b5ae746fdf0e41f5c2fe536c80a6bc3db1df76b612b9b0800b49e34ee43af095656596af0105c

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 e788ca83deb67748fa9c8350d445314c
SHA1 c8db35487dc968ee298cb65afba798763fbda2e2
SHA256 6f0f8af78c0c8e815b8d4df741bc7b930d861bf3382eb5c623d4c498b07b1398
SHA512 22f7bcd449f53e25c0c0028bdf95c9a4d5b109d742a548866bef53b0fd27b9602abce7d988c9c4ee01946e601f04c8f2a17b76e20a206cd9459e15bcfbe2ee76

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 1051dc0219ed77b7c3b942c4686d94ae
SHA1 f933435298202b40e14134f15e7a2df0658f615a
SHA256 f13c77e0b942b93e831e136f65d052a5e582eec45bce1bf6c71e4c471505048a
SHA512 a6d5410116730eda0863335cc671f31c711ffe5824c807868912abb22a530d020b1a17cb2db5fdb9239eb76a61c7d3118ad94610e5fb2d0f321d0634c4d337d9

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\Network Persistent State~RFe59f0a0.TMP

MD5 2800881c775077e1c4b6e06bf4676de4
SHA1 2873631068c8b3b9495638c865915be822442c8b
SHA256 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974
SHA512 e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\Network Persistent State

MD5 ad8fbc8c32d3ed5b6898ef850d352f6f
SHA1 d1ee638d88cbcd0e5c78fa326de32eada38d173f
SHA256 5eed6f19bf805e64e3ab77557cc1d342c4b00cc1dfa02d9d18d93753f875632f
SHA512 d6c891ffdbe26f032da9331e8c8a165695269acbd993482245aacf2095da17476fc1e394f4ec1858421848178fb738ef1928ade31f4b1ce34690a7f7ef6fd082

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 c88bc2bb1708573cb772a3c6a9d1429e
SHA1 a550a2339a8fc675dd71fb1b66385c20b08a866c
SHA256 ab1b39aa0a9613536a203bdc95b426e081c97f074e283452c35182f6ef95a7ad
SHA512 ca33a8a4ac059b1351de856886501ee5db69cc8a36fc58c5ae0200be0118a40d0fa6ff49354e158523d92d37a69e584251938e071e5f72aa883cff75924c982d

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\TransportSecurity

MD5 e46c00ec889b622fdbbd306672e78d69
SHA1 8a5838a086ca13bb2b36de9d15015af34390980c
SHA256 825bc23512fc6f790ab2f395f655b64d836fb34e14e8cd0fedad6b2efd5cfbb4
SHA512 ed1d13a91003fc4957a9fc6fde895534d9884c70f9c05c051e3b5d8927aa8aee34a96f1b6505d904d88f83ca8f92cef304a3d4d25fcb7003ffe6454ce3f7ec1a

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 39a6e7c1dd1da071e5bdd4c58b0353d8
SHA1 245d65ef1c89976b852861fe30cb28f66ae93aa5
SHA256 75398bca1f7ab6649948f907efffc8f03622fd2b5c8b7f5fd9e0d37afd3bd98d
SHA512 35c4d4870e8f02e2e8bec7a2f561e2bd7fce456d63a283c2831e22b3f1e8b7bfe0fdc09d222c36f7ac3452c338ddbaa644fe5f8c7fa1d2a09c31d52f64736fcf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e9b41cd204bae969e13344a31ef67322
SHA1 371a2d6f43dca5cce505fab1dce8eb9c84ba0bbd
SHA256 9951539bcb89942acf0deaeb00e4cb690541e06f1d65d3b1849b5c32a90a8cad
SHA512 876d4f3a6f1a6c22f52512173dd613dfa8bb6b11cd2f8a696c83b26c4cb9bd4efe944d910c0be5a5f25561399c021283185078e9d9a9b930e466e26e30adbed6

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\TransportSecurity

MD5 65e215190e5fb91428837ae27cd9d7fc
SHA1 6fb67d20521ecae4bef8bddddcaab4a6ed968769
SHA256 ac0bb63f16b3efae8a8f04bacf9bafb4773b46f31c23ad878bb2f90b417fd6cb
SHA512 dd7535cbb603138db7a6c903a596d126727236ae3d0bece71ea2476bfae0a624c0e5dcc59df608032def92d1934e2bf7108d58e4bb92a5e9e8cb4a88461de8ec

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 912da59b67fa626672c726ad4e0e9b7f
SHA1 6f75f620a479aa60dad49d3e830ff7d619542da5
SHA256 893ff0cdfb75d15dfa17502bf88a718b2beb244c6a3cf1a600cfe3e21f867d85
SHA512 4f669889cc6c11211f4b69caca953588c72cb1c133393ee89e71a3ed10e89d054f8a2ddfba608afa508e56824832f1cfdad1cb892fcf2c9abce10b7699c07898

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 158f37d0a4890ced3a944dea9e8eb6d2
SHA1 3b0be19a14ca6870a904b1882824c042476aafd8
SHA256 a2339d221296ca146466eccf1b90533e13d16cfac641e23a5540ccf97f3dcac6
SHA512 63d485bb3fb80a2af142fbd0aa76296d67cd24f10dfdfcb247ca03272f3657fa1606326d610570bf21fa68d27bd222db6629468c270df3c58561550db16d18dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5d6fcf1c428aa84c27581df4a782ba56
SHA1 109d27654e1e90b966b43a9597308f13a564eba0
SHA256 4f990e7172edb951281a2c6bd855fa0d6523cc2d78c4822e00d53385de335a4d
SHA512 9e02ab3fcd56d8e1514a68b922639e375cee96f18759718919a459579c82c689f699a6931b64ba8d79b14702552e1e14e844dfb44648b11a207cd4dd791843d3

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\7c1634d6-3bec-42f3-8560-4a3840b992d9.tmp

MD5 6971ea45c5b0c66018b8fb3f108e08ca
SHA1 5073346839fda5e2bc270fc867a25f4de7294664
SHA256 10c1441e21ce2a837f4a768a7024a5498c928adef9457da22ab257bd61acdefb
SHA512 2cc3129e26db63e7fe2c8f6736d6f12ab6007c858cc94e937aac7c526c6d4fdecdba062ed635d0941db3b230b2bffe9911e42e48e2676feee409f7e7a488f953

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4ecf0412851b134e6d3ea35237de7fc6
SHA1 18dcd45066d1b9120a41dd478c0e599fa044a686
SHA256 c9b572f6cd47392df0dc38fd7d3e3385b0c8ba948f5938fadc4e22e631ac0b15
SHA512 59d75b0e22e9c791e2f7895fe0b654fe61ffc0703a5c7b563ef5374fd42baa74f48b001150f549e3a2c18c8a31828d664066d0049bfd6cbcc6d31733cf025959

memory/2548-1917-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1919-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1918-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1929-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1928-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1927-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1926-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1925-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1924-0x000001AED1540000-0x000001AED1541000-memory.dmp

memory/2548-1923-0x000001AED1540000-0x000001AED1541000-memory.dmp

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 24105dfb60d669df95c5a4ce19ee39e1
SHA1 28ba8a10c378e3cd33be8f11dd7875aa6ffae0da
SHA256 7d0aff08fef7ed9d451be2d521bc9c339f6b2b21acdbec771c58aa09b87dfde7
SHA512 1d01725b363ad0b1c1fc0e94baf1afb23f9959e4da436198614c08b5fc3bd660e219ee934c392b46a6fb4dc47b609935ea9012dd43679f23b18efade5aead9eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e2c50ddce630669a_0

MD5 c9267879cf892de98678cb27c18b666b
SHA1 2aea02899bd9e41e16d8600b756f2304de19d9ba
SHA256 2b2d13b13eb848e0bd853e4b4bd0ca6d9da9e6aa27750fb97aa64bea4ff96083
SHA512 ebe7ce014d33acf14f2e8da9abbc12ac9920222efbefe0846c41ae1b3501e5443904f0d79ddf5e9b6945a9ae85d3c13e9209e21aa27dbf960a67af995df66482

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\80cead60731093cb_0

MD5 fd87e2b3aabc4675d4e890e049bd3442
SHA1 8a03ed05e0be488f43f5c3a97770bf69027678c6
SHA256 eeab1a8749d7d53ddab98c97f29d61959facc336584919a16c032657d807f884
SHA512 ceaeaad66ebecf4283d6abe1004c07dcf003d958e4821a5421f0b44c0bf5c531d7a00285e6e91c9bd68c4257b2679a695aad92a515c6a86d3df154b82eebd972

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9dd4fa7339798a20_0

MD5 a5fbbd3c98e5c2ab1af21efa06ca78f2
SHA1 6869d233c21dfbe8d6e4ceb972c951169cd749a0
SHA256 1b78ebb71060a27647eca25eca9e7c262c1eae48ce30c392f7587ad059c30e96
SHA512 d96790e3745a6d38c61962a9677e388e84a27cfc2eaf882b1a0e70f02587d2ca69758b738c3e4b3ae9015fc961accc716301d201649b45dfc2cc4e8f7e0ca3e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\053bb0d85f1884f6_0

MD5 70607c4b495498bc74080f0262debef4
SHA1 019ca1e8f1de98cf96c251fc7274e0322155edc1
SHA256 78fb2454b2859c4c86326707ae14c3dd0599e02898f67668127f9c96387faa46
SHA512 38824876615cdd609e50afcd6e2c53ab0fa74b0101b4bc9b8857fd5bc0ceca02b3eeed84e6172cbecf987d224c95ecf79fc2f93263e2f45bc6e1e4080788e2b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000057

MD5 249b0de3d74b3884972b196617b574c0
SHA1 cdd95b4e9ab1ae8f29c9ecbaf0ed1989d09b86af
SHA256 38af6a677b432df7570d0811c1ab8f2bca749438ed89f51f301913434e5058cc
SHA512 c9f084f686b0a618b7447c98f9f0162fb2d0e553652aa0cee324cf9b250d2d538d168d57c3617b84cc0cca042a648bb8a18cc242d1cde151e3749bd0d2e7e3ac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000058

MD5 f9b7dab2d07f4678677894ed2d68ec4d
SHA1 10940e81d5d854085d5fe80268a003b053f85951
SHA256 82f6c59d8670e981aa16bee012a742588b590a9b4ed87cbbb301179f06d17da8
SHA512 1c3c35136d61084e97fa4e136ac4213adf62366f38237ce165bb9a69610cb51f470fc1b2de86085fa3cd1646a15b0971ee65174feaa2ad43516e8aa412797590

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000059

MD5 e83d2cc3ae5aa608538432695f2812ec
SHA1 76284674c3a38a313fa0234df4872e1120a3bce5
SHA256 87ddab4115f08954e1037a7d4a6b94c5c8528122eed7b90d007b91f057030e55
SHA512 994340836cbfc52b4244ee1196adaf0bf19f987e3ea064f1faad3aef0ba7dbadc77a3d4d08c70fd73dbfa03140ffce15ad5f8bd67179bf492ed4127aceafa6bd

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 5ee9ded5f6b54bcd4eaad7e7913af53c
SHA1 c4eca7f88fc54670e3aa0ef15a335613c36034a9
SHA256 4849eb3e6e77fffc6900b3250212379bfe6bc13e35dce704d455554c9a581cc3
SHA512 7da2126735d241876fe9383a1aa6dba398593e9779030721fa0341a3eafb61ceb918cd14a0756926881b70c507c7cfbdaa0d1e89dd25d1fe01298e3a382e43e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 39983944f165ea3df6c0362dcec26a44
SHA1 284a32bccaf834daecc82a48cdd0bbc6ef1b4890
SHA256 f913b9fa15e46ff65d23700b1d16721be244389168110ca17cdfbdc9a2308302
SHA512 9e7b28e323855c62a31d6a2740f4378c257455265091f70f2d3765f996039dd7200861a94093d1043d997ea35cbb1ef79c977931da02324347ffd5dee8093992

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d781dc4ec44e4d62db8a3b2dbaa2aa67
SHA1 8ca71fe11a21f6ce4d454d8de72c5c2d03748170
SHA256 284907cc3cc5cb571e880c518173367a311c4fc515d0f1ba9c49b98a87c96b8d
SHA512 28f363381f02a714d19d8dd4288a1a5fa347d3f95d13fa610680fd1e1396078d417ef0455a0758015f3d81f7324b08fbd2d58f13878b77de0ac64496c78dfdcd

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 65f334144b91d7955750098b881dcbf4
SHA1 efda55cac536ba461ba544b7e43a13520d5dd5bc
SHA256 e6c76ab3eebeb4b53538a3b804c4267569b6e7d1da1192fe15fb8124206f83eb
SHA512 bc791b6dff67f2d4270ac1aad3c31686b85afec81efe0df9f73a5af171bb32d5ac11305de33c60780aae96d1f759d58c964c5af1ac08a3450053f1abfff85dc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000066

MD5 47b6e3b9a667b9dbc766575634849645
SHA1 54c7e7189111bf33c933817d0a97cefe61fe9a6d
SHA256 302ed4f6c8ac4312d71205603c4c28dd2976fafe4c05533c0a08ab3bdb531aa3
SHA512 a12b74ff45f6f9e6abf459863c299e1fafe61dcf2bea8a7331ed9547de14ed29e2deba69b104c6960db93b458f83ba6a4ba454c5514105e7ffb96da96e26e612

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000067

MD5 357b4145c3264fe69f8c412e823adeed
SHA1 5fcaf1043bb72dbc719ce56a173b3da59db7ebc9
SHA256 4bf695f9d9be4d4e815594d2b7443042ec14e4dcbaa6d35031cc0420b8009410
SHA512 974c8b0220e6490324f5eda5590d4a895d7d67b87414ca1124dd01ac92e3bec033623bec67b4441fd6b69bb9034d4ee8210ee0f92fdf0a8efb6546e62ef8f7fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000065

MD5 b23078951d91c38ad508e190a81517a4
SHA1 8dec45198f7dde8f6f30155817b7b03ef6eb570c
SHA256 8f951f1e047ce385bb4a999785def042031f72f3039ea096c677393bfa918749
SHA512 18da7c34c40298ebaefc6ced9b0b4769181addc85f192f258c70ac98b0275119a4e6f1aa938ed779fb73c9037036224a8b07dea403b9a5071996f2e3fa759e0c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000070

MD5 4f462ea90211a0170c0fac3187824858
SHA1 f90cc1b6f82e5f07739bd91b2b363e83716c826a
SHA256 c61a598483428c78349280e539bab7ae8c19ffdbe31b1c7cbd98c3a4e4a129b7
SHA512 f02a268d985f856d97df4eec61e9e16bcaa53a3bb068499723c996813afb6c93e7e980489126b21f720b580a69356001fc0c20e1337ad1f53c91071de0211776

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8dd0978ac987f2120c90721480195b6e
SHA1 68b709c2fbc7c0e08113c5c52219b1b599e274dd
SHA256 6459139b884139ede5b7e4cd71a9ea52026de6c4d0e74c48f2950a71eb8164fe
SHA512 29e904aecfc0551967c948c6a3d5ca9e45bec749c776c452d8c988710d228102499b8208f7c4b490a40f1f1319955c703b36ea463315edb59e4188e95f27a54f

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 413583b69b4be8bbefa9688f2052f935
SHA1 f8b24f14d9820f1b1ca7b6b0355976402b0149a6
SHA256 4372de35c60716b4a0605dd8b09fd088788b968a38f667d926008d1beb72136c
SHA512 1f5cfa9e02d97005d44b3dee0ca2d30cf7b9bb5c68082fc6863ee63f29cd0051fba38f277a6ee0f19931f25f49bcacdaccf2656629d26cf99fc70257347ceb1d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 931f1c4316ef09d4fe0c8968413e5944
SHA1 c9ad8ff7b033e0f400760094b5509ba7e4259c91
SHA256 e2e2d93c5d26db6034ea08cf8ff57cb99addab401f5fc3c0a19cf6a1e9191918
SHA512 f5b34611be181892d95b20700692e99dfbda4794be15183d3cf27a89774a8fb81f8da22172e50f38e9483b15592abb8626fe01533804cb5aede4938413b8ff68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 80d2321fd836d7d76cd362e52eaf445b
SHA1 9d3b83b3cacae4e237b94d075a6564de540842f1
SHA256 1449545f08e048c4182e2ac0cf9954e2b76e7846697bb0be5a3faa81a0896f73
SHA512 98362b0eb6e971b73237791cac2c97629fb2aeebae4132a78eff0555b45cb21fe44ebd1bba0f56fbf723a55cbc7caa58c078de448d7a6b64dd74e9d9b0e51fe2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 16c37630fda2949bbb459a200753191c
SHA1 4ca4a5e1106f92681ea46808f475fd3f3887837d
SHA256 a8bc970404482e074d9392ad309f4ec28cbbfc06850370695dff94edf0b0c1de
SHA512 664558b605a2ac3705a9669ba34e50cae1ad1b73eec53caf716baeb629610c3a3663b84bb4b1a161c1dba7e39303881115373fc1d3e2ad656798439f91fb52c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 557276de8b60066a5fc7afed3f19cb57
SHA1 f1f1431a4fe5ffe3f7b143c061adf8f9cf3e09d5
SHA256 0e4366b19c1c1b075a351acf4794b98cf50db5f289c46c0f8b40c9fc8a32451a
SHA512 2012a51a752a0a351a26949268a3c80c198e13cd1b09506c5e7867f9a7949204300ebfe24023bbc1fae476ec4d2bac515f76a5b6a2913b4b0e5932a9f4d74271

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8c96ba2d46b7b615889ba456f61d2c34
SHA1 fa99a2c7e8b0c347868443cbf8a13549a8628baa
SHA256 35118a4de7b23b0f02a969e66f77e23b0cefaa2197774e10940fa825de0ac8c8
SHA512 5d2b21fdf48516de1124a3114d2302d8e1e167cab7b21e1229f64158e53c8f686ea9185ddb29ff4255a5cd64fe6fb1678bc084c6c42d9c00f9a07c1314a6a0cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 b38f64592206b94935349c48ec15323d
SHA1 698aa769e9e14271c8dcd32063cf53dfb42e40f7
SHA256 3e9eb29a293926dc2b07a64b2e643645f802c244fcfa6e6abd582341231c94a2
SHA512 ea7a1a4ec07771149bf28e78379e81c21f90ed5ab79ab7958df60c0bf373496eda97e785b2e29c72fdc3bfc9bf7d055d6861c6fd4480929bba1132fbb3f7ccd0

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 3bcd769566ce879c6de410726f02f2d3
SHA1 9eed1fcf87f7dc8226be5236416a668159190363
SHA256 d3a502ba44eff1884daa6dbe588c38a32abea07a5aaf76a616f5e2fa4de01b98
SHA512 4b170fc58fffc8a6f24cb1f4d0262f0f52097e234b04109d6e5af80f6097cae64fd5705bb4dca2100309139a5f0c88ac469d9b15518736e9aca3b0307cb3dae1

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\Network Persistent State

MD5 964daba05c529eabc3d4cdafc49d5829
SHA1 6a5e9a7a8d0f7107b44350fe8be34f99a60ead94
SHA256 0472efe99e8609eff22617617656d156c2375e9786130edf190d1f7a8407ebd6
SHA512 41efe99247fd1da47cfca14605c28c8c0d681fa9af6fc498dafc63c1716ac86b9674b8b98bd09e8b718c2ea9b75d984a6ad95180d69f65e78cb7fcca41f65ff1

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 0c7dc52d75511a228a1ac33145bcbcc5
SHA1 a255b4ea2e93ee570eb7288316235c1b0524ba4f
SHA256 9204e2a531f1478faf7ea445417dc6201f9f69e710b0765da176c6f020fc07aa
SHA512 8833e14b6044af63a5643fed091941edb77b20abb87875fdd8956480fe1c97c685862562169d6b649797dc299222543fd22afe71c46629e4d8a50b7eaa040017

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Network\TransportSecurity

MD5 05953f5e8a0ca76297f1fcadf7fbf385
SHA1 d750764f857b8c67de7d2f8f488785b91860f8a8
SHA256 76ce54d9a0794dce82a9508f93336cbca1b51ea146fbcb7651d286a9135dc5c3
SHA512 017758ecbdddbf0093f0f27c54261e58036a54ef1af58ca120aad1fef4a11595cee0c2fc533b40c5f9cf241e798470a1e305cb5e5c92cd67137f6daf2f118d7a

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 10ec7d82221b848573ef41c8a78a4f0c
SHA1 58de9ac7319b69d18c3dcb163ab819e57e028d32
SHA256 fdfbf9435ab3f4947f087418e3118b8a369886a62b6a1fe95cc3493fa2e42895
SHA512 e1abf8ff0dabb6c1e5848312b364b54c1d5414e94a962bc019a525f00021ee5ba834e02a09dd641d25460d423af74e6aa1a63f88dc7d41e21ba571cd3c4c32c3

C:\Users\Admin\AppData\Local\pc_app_store\User Data\Default\Preferences

MD5 cdd649a5b8eb315e2d60239a64f2e1a7
SHA1 05e3d683f9a8c247228bb4b33768c55a21a3d049
SHA256 8830552d0fcb16142d3a75bb3d6a3ed865e7e1ad37bc58cb44072e91ea2c180c
SHA512 584a4c0449002921d0a00bae43a889743fa95ce3f349249f8f5c933cffbbdd82f287f4109ae5e963b43df467103d4e6876d913e3d1f1324ed0e67108faa04d14