Analysis Overview
SHA256
dc0826657a005009f43bdc3a0933d08352f8b22b2b9b961697a2db6e9913e871
Threat Level: Known bad
The file VencordInstaller.exe was found to be: Known bad.
Malicious Activity Summary
Modifies WinLogon for persistence
Disables Task Manager via registry modification
Possible privilege escalation attempt
Modifies file permissions
Executes dropped EXE
Drops desktop.ini file(s)
Sets desktop wallpaper using registry
Drops file in System32 directory
Drops file in Program Files directory
Unsigned PE
Enumerates physical storage devices
Suspicious use of SetWindowsHookEx
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious behavior: EnumeratesProcesses
Modifies registry class
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of SendNotifyMessage
Suspicious use of FindShellTrayWindow
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious use of WriteProcessMemory
Checks processor information in registry
NTFS ADS
Suspicious behavior: AddClipboardFormatListener
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2024-06-22 12:03
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-22 12:03
Reported
2024-06-22 12:33
Platform
win11-20240611-en
Max time kernel
1800s
Max time network
1467s
Command Line
Signatures
Modifies WinLogon for persistence
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell = "empty" | C:\Users\Admin\Documents\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell = "empty" | C:\Users\Admin\Downloads\Ransomware_source_code-master\Ransomware_source_code-master\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell = "empty" | C:\Windows\System32\WormLocker2.0.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell = "empty" | C:\Windows\System32\WormLocker2.0.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell = "empty" | C:\Windows\System32\WormLocker2.0.exe | N/A |
Disables Task Manager via registry modification
Possible privilege escalation attempt
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\takeown.exe | N/A |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
| N/A | N/A | C:\Windows\system32\takeown.exe | N/A |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
| N/A | N/A | C:\Windows\system32\takeown.exe | N/A |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\WormLocker2.0.exe | N/A |
| N/A | N/A | C:\Windows\System32\WormLocker2.0.exe | N/A |
| N/A | N/A | C:\Windows\System32\WormLocker2.0.exe | N/A |
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
| N/A | N/A | C:\Windows\system32\takeown.exe | N/A |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
| N/A | N/A | C:\Windows\system32\takeown.exe | N/A |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
| N/A | N/A | C:\Windows\system32\takeown.exe | N/A |
Drops desktop.ini file(s)
| Description | Indicator | Process | Target |
| File created | C:\Users\Admin\Downloads\desktop.ini | C:\Users\Admin\Documents\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe | N/A |
Drops file in System32 directory
Sets desktop wallpaper using registry
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000\Control Panel\Desktop\Wallpaper | C:\Users\Admin\Documents\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000\Control Panel\Desktop\Wallpaper | C:\Users\Admin\Downloads\Ransomware_source_code-master\Ransomware_source_code-master\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe | N/A |
Drops file in Program Files directory
Enumerates physical storage devices
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\BIOS | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemFamily | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133635314172660519" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings | C:\Windows\System32\WormLocker2.0.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings | C:\Windows\System32\WormLocker2.0.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings\MuiCache | C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1560405787-796225086-678739705-1000_Classes\Local Settings | C:\Windows\System32\WormLocker2.0.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\Ransomware_source_code-master.zip:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\RANSOMWARE3.0-SOURCE-CODE-main.zip:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Ransomware2.0_by_clutter_tech-master.zip:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Worm-Locker2.0-main.zip:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: AddClipboardFormatListener
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\VideoLAN\VLC\vlc.exe | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| N/A | N/A | C:\Program Files\Microsoft Office\root\Office16\Winword.exe | N/A |
| N/A | N/A | C:\Program Files\VideoLAN\VLC\vlc.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Program Files\VideoLAN\VLC\vlc.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Program Files\VideoLAN\VLC\vlc.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Processes
C:\Users\Admin\AppData\Local\Temp\VencordInstaller.exe
"C:\Users\Admin\AppData\Local\Temp\VencordInstaller.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffece99ab58,0x7ffece99ab68,0x7ffece99ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1580 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2196 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3056 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3132 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3508 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4428 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4448 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4616 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4520 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4600 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --reenable-autoupdates --system-level
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x250,0x254,0x258,0x22c,0x25c,0x7ff7e537ae48,0x7ff7e537ae58,0x7ff7e537ae68
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4904 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4848 --field-trial-handle=1816,i,13985470890391247160,11314266759861017204,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffece99ab58,0x7ffece99ab68,0x7ffece99ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1516 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2204 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3048 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3140 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4348 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3888 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4104 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4652 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4648 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4524 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=1496 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x10c,0x110,0x114,0xdc,0xe0,0x7ffebb9b3cb8,0x7ffebb9b3cc8,0x7ffebb9b3cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1924 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2012 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2560 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3224 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4844 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4856 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1860 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3544 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3780 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5560 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5288 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5720 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4760 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5676 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5056 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5644 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3752 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4648 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1664 --field-trial-handle=1732,i,11450894602582437963,9590007853897511114,131072 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4812 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6248 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1920,17470376360356241896,18225091467377722068,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6220 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffece99ab58,0x7ffece99ab68,0x7ffece99ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1688 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2208 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3060 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3120 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4232 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4644 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4804 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4616 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4348 --field-trial-handle=1812,i,15789068009573309774,6722691809796350346,131072 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffebb9b3cb8,0x7ffebb9b3cc8,0x7ffebb9b3cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1900 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2384 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2580 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3324 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4376 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4400 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3468 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3468 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2240 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4068 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4408 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4068 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5596 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5420 /prefetch:1
C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1876,7725962076132304341,8420969886617476196,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4060 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffece99ab58,0x7ffece99ab68,0x7ffece99ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1652 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2220 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3084 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3188 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4296 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4700 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4708 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4136 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2908 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3304 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3180 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_Ransomware_source_code-master.zip\Ransomware_source_code-master\launcher.txt
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3808 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:2
C:\Users\Admin\Documents\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe
"C:\Users\Admin\Documents\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe"
C:\Users\Admin\Documents\Ransomware_visual_items\launcher2.0\launcher2.0\bin\Debug\DCQPKX.exe
"C:\Users\Admin\Documents\Ransomware_visual_items\launcher2.0\launcher2.0\bin\Debug\DCQPKX.exe"
C:\Users\Admin\Documents\Ransomware_visual_items\launcher2.0\launcher2.0\bin\Debug\DCQPKX.exe
"C:\Users\Admin\Documents\Ransomware_visual_items\launcher2.0\launcher2.0\bin\Debug\DCQPKX.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4656 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Temp1_RANSOMWARE3.0-SOURCE-CODE-main.zip\RANSOMWARE3.0-SOURCE-CODE-main\RANSOMWARE3.0+BSOD.rar"
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Microsoft Office\root\Office16\Winword.exe
"C:\Program Files\Microsoft Office\root\Office16\Winword.exe" /n "C:\Users\Admin\AppData\Local\Temp\Temp1_RANSOMWARE3.0-SOURCE-CODE-main.zip\RANSOMWARE3.0-SOURCE-CODE-main\README.md"
C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\Downloads\RANSOMWARE3.0-SOURCE-CODE-main\RANSOMWARE3.0-SOURCE-CODE-main\RANSOMWARE3.0+BSOD.rar"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3812 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Users\Admin\Downloads\Ransomware2.0_by_clutter_tech-master\Ransomware2.0_by_clutter_tech-master\Ransomware2.0\DCQPKX.exe
"C:\Users\Admin\Downloads\Ransomware2.0_by_clutter_tech-master\Ransomware2.0_by_clutter_tech-master\Ransomware2.0\DCQPKX.exe"
C:\Users\Admin\Downloads\Ransomware2.0_by_clutter_tech-master\Ransomware2.0_by_clutter_tech-master\Ransomware2.0\DCQPKX.exe
"C:\Users\Admin\Downloads\Ransomware2.0_by_clutter_tech-master\Ransomware2.0_by_clutter_tech-master\Ransomware2.0\DCQPKX.exe"
C:\Users\Admin\Downloads\Ransomware_source_code-master\Ransomware_source_code-master\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe
"C:\Users\Admin\Downloads\Ransomware_source_code-master\Ransomware_source_code-master\Ransomware_visual_items\Rasomware2.0\Rasomware2.0\bin\Debug\Rasomware2.0.exe"
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=1764 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=3436 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=2920 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5404 --field-trial-handle=1856,i,6526689470788168367,17833811712333094688,131072 /prefetch:8
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\README.txt
C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\Automatic_converter_rff_to_mp4.exe
"C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\Automatic_converter_rff_to_mp4.exe"
C:\Windows\System32\cmd.exe
"C:\Windows\System32\cmd.exe" /k takeown /f C:\Windows\System32 && icacls C:\Windows\System32 /grant "%username%:F"
C:\Windows\system32\takeown.exe
takeown /f C:\Windows\System32
C:\Windows\system32\icacls.exe
icacls C:\Windows\System32 /grant "Admin:F"
C:\Windows\System32\WormLocker2.0.exe
"C:\Windows\System32\WormLocker2.0.exe"
C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\Automatic_converter_rff_to_mp4.exe
"C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\Automatic_converter_rff_to_mp4.exe"
C:\Windows\System32\cmd.exe
"C:\Windows\System32\cmd.exe" /k takeown /f C:\Windows\System32 && icacls C:\Windows\System32 /grant "%username%:F"
C:\Windows\system32\takeown.exe
takeown /f C:\Windows\System32
C:\Windows\system32\icacls.exe
icacls C:\Windows\System32 /grant "Admin:F"
C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\Automatic_converter_rff_to_mp4.exe
"C:\Users\Admin\Documents\Worm Locker2.0(ransomware)\Automatic_converter_rff_to_mp4.exe"
C:\Windows\System32\cmd.exe
"C:\Windows\System32\cmd.exe" /k takeown /f C:\Windows\System32 && icacls C:\Windows\System32 /grant "%username%:F"
C:\Windows\system32\takeown.exe
takeown /f C:\Windows\System32
C:\Windows\system32\icacls.exe
icacls C:\Windows\System32 /grant "Admin:F"
C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\ransom_voice.vbs"
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004D4 0x00000000000004D0
C:\Windows\System32\WormLocker2.0.exe
"C:\Windows\System32\WormLocker2.0.exe"
C:\Windows\System32\WormLocker2.0.exe
"C:\Windows\System32\WormLocker2.0.exe"
C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\ransom_voice.vbs"
C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\ransom_voice.vbs"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.238:443 | clients2.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.187.238:443 | clients2.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.133:443 | user-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 133.109.199.185.in-addr.arpa | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.179.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 172.217.169.46:443 | tools.google.com | tcp |
| GB | 142.250.180.14:443 | s.ytimg.com | tcp |
| US | 8.8.8.8:53 | 14.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.169.217.172.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 2.19.252.134:443 | aefd.nelreports.net | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 2.19.252.134:443 | aefd.nelreports.net | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 20.190.160.20:443 | login.microsoftonline.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | 46.34.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| GB | 142.250.187.227:443 | recaptcha.net | tcp |
| US | 8.8.8.8:53 | 227.187.250.142.in-addr.arpa | udp |
| GB | 142.250.187.227:443 | recaptcha.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 2.19.252.134:443 | aefd.nelreports.net | tcp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| US | 2.19.252.146:443 | aefd.nelreports.net | tcp |
| US | 8.8.8.8:53 | 146.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.65.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 216.58.201.110:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | tools.google.com | udp |
| US | 8.8.8.8:53 | s.ytimg.com | udp |
| GB | 172.217.169.46:443 | tools.google.com | udp |
| GB | 142.250.180.14:443 | s.ytimg.com | tcp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | tcp |
| GB | 172.217.169.46:443 | tools.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 8.8.8.8:53 | trojan.qukart | udp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| NL | 23.62.61.194:443 | th.bing.com | tcp |
| NL | 23.62.61.194:443 | th.bing.com | tcp |
| NL | 23.62.61.97:443 | th.bing.com | tcp |
| GB | 23.214.156.24:443 | s.bingparachute.com | tcp |
| NL | 23.62.61.97:443 | th.bing.com | tcp |
| NL | 23.62.61.97:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| NL | 23.62.61.97:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 24.156.214.23.in-addr.arpa | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | edge.microsoft.com | udp |
| US | 204.79.197.239:443 | edge.microsoft.com | tcp |
| US | 204.79.197.239:443 | edge.microsoft.com | tcp |
| US | 204.79.197.239:443 | edge.microsoft.com | tcp |
| US | 204.79.197.239:443 | edge.microsoft.com | tcp |
| US | 8.8.8.8:53 | 239.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| US | 2.17.251.5:443 | aefd.nelreports.net | tcp |
| US | 2.17.251.5:443 | aefd.nelreports.net | tcp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| US | 2.17.251.5:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| NL | 23.62.61.97:443 | r.bing.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | udp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 185.199.109.133:443 | user-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | 22.112.82.140.in-addr.arpa | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | codeload.github.com | udp |
| GB | 20.26.156.216:443 | codeload.github.com | tcp |
| US | 8.8.8.8:53 | 216.156.26.20.in-addr.arpa | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 35.215.58.216.in-addr.arpa | udp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.114.22:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 140.82.114.22:443 | collector.github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | codeload.github.com | udp |
| GB | 20.26.156.216:443 | codeload.github.com | tcp |
| US | 8.8.8.8:53 | 97.32.109.52.in-addr.arpa | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | roaming.officeapps.live.com | udp |
| GB | 52.109.28.47:443 | roaming.officeapps.live.com | tcp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 8.8.8.8:53 | 47.28.109.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | update.videolan.org | udp |
| FR | 213.36.253.119:80 | update.videolan.org | tcp |
| FR | 213.36.253.119:80 | update.videolan.org | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | codeload.github.com | udp |
| GB | 20.26.156.216:443 | codeload.github.com | tcp |
| US | 8.8.8.8:53 | 140.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | 45.19.74.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.120.234.20.in-addr.arpa | udp |
Files
memory/3444-0-0x00007FF7D0DF0000-0x00007FF7D2069000-memory.dmp
\??\pipe\crashpad_4692_GZADDYTZNGWAOGWR
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e55e2dc02ca3fd5cc1d0cca3beaf5811 |
| SHA1 | 29c6f824a2e8a8dcb5eb2fd6b9536f9b3bc2cc2a |
| SHA256 | ffe85b502aadaef6cd91c635cf0e6a3fa850844000907baeb59b24521de9118e |
| SHA512 | 5295b1f4a6bded4793cde8bdde4df05b03d311f04f7c21f00e11f15b4d9aa11b518b02f9a5eceab45ded5196b47804bf2547e2cefa81e1e5240707eb1251fa34 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6e22290e5d70e1b7f9c7b1ee9282fe39 |
| SHA1 | 3df928881318b4b96c34e18af0bc0307d8b9ce1e |
| SHA256 | 48cbfd01d5224ccfdb967a466f042a72f945eab9597c6cc7e2e535f526dfbaa9 |
| SHA512 | fd71599dfd9ece7a18c7525e9ae06af81f556f5d69f61f7cd5bc87022495286abd6272ca1fdbd24a5005d70f6f8b471fd46ddaa20434f1d6d976cc8ff936f82f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bdd1104ecc0e0471625565029af1e3a9 |
| SHA1 | 28947ad1476e4bfa67f1baac9730c69abeacbae4 |
| SHA256 | c3cd8cc19f1b006654163b3f9d048591575244e893d25cdd46e641b1bf41e689 |
| SHA512 | 43b30cf16bf37b11ef1bf07769ca6bdb780164532c7d480636fe8f1d0721d5baff81e7be0e5f58316f82281345486d176d2555a28218d0570151ef6a2d442ecf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 9ec0bb907c95f680887cff28ac86b632 |
| SHA1 | 31a93b4dc3b3190e705d92bacf31f53e46192a1e |
| SHA256 | 4ccaae8480d27ffe33c8d5efac5d0d1b2955a4b18f05c6968de6670e8987ab40 |
| SHA512 | 744084752430dffd02b71e3d2af5ad15aae6ed0fd85132031225f841da07d840c38ce7f9df193af16107b85439a9f69cff9fc87bbef8e6a26b556653822ae2a3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c9cfd6a319621b407ee3db231aa3abcc |
| SHA1 | 97645a4b52d97a7418f7068bd776995bb57f2dfa |
| SHA256 | f06da45496cdb314537041713c26f185b7d49ee02dc0a4f2911dc1312d198984 |
| SHA512 | 014f615d2c48838859641933c66ff19790ad95e1f6bf5b457d3a1621b554772740415d698b01da2a71b080fb064d8a3e7407fda423fdab787e6dd81f59a75af2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 60cfa030e59553633ef30afa27121189 |
| SHA1 | 5675644aaf23b1f748441a4447b8d934494dbcee |
| SHA256 | f1adef663e7344cc959a6c8ced6520aaca2ad56c327bec7f60ba20a52fd8f59c |
| SHA512 | dabe6b8898b1dde2401acca4c4e9e701e05af56726ff0e862f7785993adfc2c820de8a9bf8015b104b59db1100d9c890e1c22f673654831a8abe140f4d228e52 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f2523428e0f9338c5e685170c8e97f68 |
| SHA1 | e1947146caef041934a3c08853a41501718eaf21 |
| SHA256 | 8b6fd7a15fd849669e89daed95751dc5a2e097a029330177508de5a90171eec2 |
| SHA512 | ce5c91de9e9f60db8d67be0eb0e43cf6971548e797bdfbb30bbee63b22b75b2b33a54fe9c54641ac9386e5931bd3037caa29cb4ecc864b83d0639bcdce2f553b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | af957a84c821c7620170eddf5d1032b3 |
| SHA1 | 5647c5febd516d512404771320ebd9f07e184bca |
| SHA256 | cfbf786f5ca3a02a9ccd68e0fc21e0f4d17c4037b8aafb8a8bd36d00ad44ad16 |
| SHA512 | 0fd0cf85df4b06a12ba72f5439aedcf9f56f886209d2f3b24229f7ccd92c0e9a54a8783012fc367c92cb7d9948d269f97745c2368f628bad7a6076ea2a242ed5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0d0bd6b9e928e26640a9896d54f766ef |
| SHA1 | a527f95da442c764947459c60cd0a47db5876e85 |
| SHA256 | ca4129a9572d334f4fec85f03820fd0506393a07c80ca2e26a91cb1cb90f3ce9 |
| SHA512 | cd45a970b8e22beb0f3d1eaa2835425abcbf609860e2b594f4966467bc5d23ce06689f91a5edbffbb4477e96dea4825f1b2b55160390f42af6f8344453416032 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1716c035d65d5faec32f2c5c58c8f21f |
| SHA1 | b5a85f67290a3bed9bf6dac5b62921bb12ec1d61 |
| SHA256 | 532e87da4324d371e29791b4287876d2d34cdc8138f52a7d58d558f554edb8c2 |
| SHA512 | ba4128f817f5fa6c2b57d3dae98f641539bd0e402709fef3c761af23dbb8115ec3e188ce827757afc7280e4b16fa46d38b75b8a90b66cbfabcfc207d474b28b4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f02d3161b431a348e3f2e67ab62c9bfb |
| SHA1 | bd9f405d777c457b3a63f09c0adba2f86bb08ea9 |
| SHA256 | 09b4e316f44c68f349326e4d6d1be599bbec0d472aea82bd3f109594ac47001d |
| SHA512 | bd25218bf48cb1a86678e68eb4231786361973b0c19996d26c06dd66f6e7c9bbe773e8491331269413e541f3743bbb523b1f8bffb32e7c32ba0d3f838fe8c350 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 5d5883556b275cb906669ca34f071925 |
| SHA1 | e39cfef69d498154b1978b77b5b244e49e0579ae |
| SHA256 | ddc897e92bb3e162624520a9d9ef4d1bbb70705858b838899d3c0eff55d9019c |
| SHA512 | 364e959aaf8cc6acc1ebad189a202061980d3b8346368c0a3b31544b630c0c0fe773c64e788b0173580359b1d3156c7f14dc4ed8394e0749a7f37a982ec72251 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d8fd0b17065850b7d2d53080d162de6e |
| SHA1 | 5de78b751faac5832ffd41254d19f8208efbfff4 |
| SHA256 | ffc3f0fea277263c711b91cd35eb5f6adaddc45c34d4897c7316acf8d6367682 |
| SHA512 | 3f99edff0e0808ce75795b0a1bd74f0c1f1b06932ded7eb68e4c8a4a044174d095190bb55dfa95c8e4393d663f4c155ea8f1c725ae2f6d37e26a9a65adf6c9ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 317e5699227b6831a6fb2115740f54c8 |
| SHA1 | f98350b9fe7977a93ba98584e53bcff622c10a9b |
| SHA256 | 8fecc21d0442a48c69c91558e4289e83e64825c2a86c3be35549f3d886d15afb |
| SHA512 | 2f2bc88a42a2f38317784a0ec6e8d01da034f5099f1604baf92be6d14825a9dc414a24483c7b28ab9ccc7df8eb816da062e756a76481f87c83e2d74b59650fab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | 6e2ef022b3688c275877713c1f370175 |
| SHA1 | 424e16630c2dd904025932843b7dcb07c875b625 |
| SHA256 | b4c976ef4b922111456a397cc814df30f7e61b06de81e21220d892e6646ed7a9 |
| SHA512 | 5e0002f68619fa7a1715da814698d4c409be26a78d21774dba26b0170805e123b3b8160907b6c42a3f9668829a449b3e31d7ceb8040cd0dae889d08b78050f61 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 1353ffa9558600226ec90d1657b07e28 |
| SHA1 | adbbfaa7daaeabd9784eeed00854b2942e2d6cc4 |
| SHA256 | 104647c0842abec621c73e4e8f1bdc387cec726150c816f631849f000edf8cdd |
| SHA512 | 228651a93b4a87da31bc40ef1699eacb9316f8b4a6cab8b546ef7c0b64e4ed7d62fe0e532684c44f99eaa056162cedb743c37c77254775988ef0ddfc3d743ef4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations
| MD5 | 961e3604f228b0d10541ebf921500c86 |
| SHA1 | 6e00570d9f78d9cfebe67d4da5efe546543949a7 |
| SHA256 | f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed |
| SHA512 | 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | 8b36b954e5a8947dedbc720664fbccb7 |
| SHA1 | 0310a60a8bbd7ac385b6e94aec8dee9aa05a6d24 |
| SHA256 | 069b3e224154172e3c385b5ebbdde887253d596776b74b9fb2a326b875fb718e |
| SHA512 | c2827251585fbb5e24bc38ef58822e8892d952c6e2a90743453502254550384cfcc9789858d66706c86f51c483fc28c23c796ba6285747689940460402b30f29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
| MD5 | da769d18f59c0f8678cc773c6da07b0f |
| SHA1 | a50f4b9399d02d0f4e30f197fd72da4749881698 |
| SHA256 | aae80afcaf43c6fb3996455cfb6d465097fe0493a8c48714e91e1dd2468ce271 |
| SHA512 | 3d1a70d7c0faba09130a57cf570ed7ac3635a56e21fbd49f5bd4e06fd36c6f1faf9a7d4e21d52542fca0aa374d5361ec8f66884f7ebaf66d5da3f5e047c12514 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
| MD5 | 1e0d05de79d2b3c6e4f3fc65b75f2caf |
| SHA1 | 2190867c5cc3bb96f4a945fef206ddc03c668754 |
| SHA256 | 66dda9c0149dd887a5a1de0b9edb01908b1cd56323e03d90997949229598b8fc |
| SHA512 | 5cb2acafcf80d0be553854f151c7a2419c0e29b2b6c5c891a500c76d9f2bb3a8478616f3572acb66b9aeaa5d041d27af732077531e99ff34931dc2fdd19bf125 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL
| MD5 | 8b3b32846a12d96c7bb5665a7a907edd |
| SHA1 | e124d3b2c4c8413b1abc633a6fcac31a39784fd3 |
| SHA256 | 7a07cf9dcfd721d979e20c56b8a7302312e3aa137c228b7a8006fce52a8300dc |
| SHA512 | 4953f421ae724f2d980d8e6745e0aec0759fb46385792d9d9384b4081f653c3486f9fa21902252c538c087bdfea541ea6c2e0bbe6ed10c4761f75de811743356 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies
| MD5 | a5e3406a62bdedd2fb1dfd3269a9dc25 |
| SHA1 | 885300930e546cc325b6b6e8edd0fb18a7b7bb65 |
| SHA256 | 42e913b0ba743ce5900d0c9167ac37c7781e2d86aacaa26432eb6e5717494aba |
| SHA512 | ba7621e24640ad9c16195c5f4e82d2c8f858c3e980437ce3785a5100754ca0a672cb4d82761370aed68520debeeb26c68dadc93acf249e31c533f32c11909dde |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f
| MD5 | 29a109b7d2ad86af9a63bc340272af57 |
| SHA1 | 4e5b617836521bd3e26ba48a29991260ab769da5 |
| SHA256 | 2f94ea7d42c00f06c1a7c61532aeb01b204134d703661b2710e732d0a7fe0812 |
| SHA512 | 371b52c5a46d982ef86e1328d0f496c44082df835ddb939228710ea1bcbc6be652768bdb40f961a7f97c1d2fae4df7da7b165c61da606a92ce502cc2895c1699 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e
| MD5 | 8f6a3d952045674d451740ce132c2558 |
| SHA1 | cc7531574f1c59ef27b11fd19ed0baff0e6320c9 |
| SHA256 | d07dd2afea2e2bf70effba848b647bc3e28a31a4a975b0d4b2306ec672869ade |
| SHA512 | b37409790147e7f2fdb964f88f250cf08ad150e28ec8820a4419a8fabfd75c54ecc7d8c5f153ae6406ea130ee8cd59150193a5ca1ccfc66fcfd186a0a6f6a16d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d
| MD5 | 836ee7e9f0cc42f97a31da8017850ee9 |
| SHA1 | 175ce52ea9e8068cbcbe034a502b0510b211259c |
| SHA256 | 4d777b311a3961aac246983aa3bef8a9c59aa18e3a89d5e81ee0d06afe752c17 |
| SHA512 | 934b3f4db8893f3dcf1e8340bef689c6e172ffd10f95e49c403033d551467841950bc97fc6de1857dc0082565aab0246932511313cff6462a5202f977d800777 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c
| MD5 | 4d49045933cb7fdf5e7fae8ebe1d6aed |
| SHA1 | a80b8d9d7a897ae1f0f0b2a3ba6b885a9eb8b2ec |
| SHA256 | 8cb4de5a334470730d2137483617e99fec4c0007a041c249cda5d09fa6614fe4 |
| SHA512 | 1e244a9461c6b7f9dec8b2941c5028d9aacc8e8fa20a6806008ac1d4e94cd841bc48b2d132c722525cdf7f74d57a879fba28349c9f583ccfadcdda0e15a0d05f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b
| MD5 | b9722652ad2caf73dc1daf0c93dd9f19 |
| SHA1 | 0ddd8e0e1797d5a1edee41d8b716c5ce5022fc4d |
| SHA256 | 3486c1edbbd23a3a1c34f0a5b7b74faf331144c214912f82fbf4e4721f61c3bb |
| SHA512 | 866264a1506e296f7cea34a6bb1f5ad2e875a110de88f15c311ec0cf5f4160a85dd352dabe1ccd257452e9aa4fd67a8710517144e24d51990e93fd64696feb3d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | 895c81fcee20eae8befa14b863101c03 |
| SHA1 | dc80ea934584f661398df7d6f40d9661c4232e95 |
| SHA256 | 17485b2e15cd5a5be961042f91580d51fa535bfd00ff6878eaa26ea8f72be641 |
| SHA512 | 4996114b98db110c2377f0c9f6578e66033a6832111d4b30ec774ff1ce5ca7076f0c91198e3c6d1214050a9c674ce1682117c62c9c49b575806c42a8aa644a2a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | 03b339297a72b56e9d15fced2ce84f7f |
| SHA1 | 02869843857c0d3d68343d75d15929412ed91b55 |
| SHA256 | 9bd3195eeb8bb52f61899a568eba3a848ec033e728ea62976ae5f5e70a1997bb |
| SHA512 | 263aecdce5c0e4c9383a406147a831a98c30c3367a58727a5e23154132b62620e5158cf94bd76c40487a91b7dfd6301eb3bc06198f93d92e78c0d31381a4e492 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018
| MD5 | 8d3329613f6ed3220e71ebde11c6a3e6 |
| SHA1 | d006d9086088c6c01d5765d22f99aeed07dd1f3c |
| SHA256 | bf1e966f51a46cd740aa2deafb77212e164cca379550cffa26562ceb04c087db |
| SHA512 | 2457bf554b666fc4de3b69476bf6c439f8fdcebf209872ade0accc3bf3c5ba82f53743b78be690111401521658009484fe764f385ab94f161cace2e1574a32e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017
| MD5 | a715c827d1397479b63d326a8874fd99 |
| SHA1 | 551c350947615027a91603f07dca0209e3607285 |
| SHA256 | c55c109444e26eadd1530162067de388b08dd7836c9df4c52cdec69d094d4c37 |
| SHA512 | 9ae9fc40e2bfbb2bc50f148ccee5e63079f82c7d7ab9ba1a01b8f4587fc5c357d3841fec0243d39d723585e28987058fb26fe4e601cc10ff011987433a2993bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016
| MD5 | 1ac27973084a93966f6a90d5b518e258 |
| SHA1 | 787986ea7a061e18e3d858c919a7692c6d100ed3 |
| SHA256 | f8a4c49273653af8dff6bc5e910bdc5a4ca5496c60f0221cfbf3da26df2388f8 |
| SHA512 | 3bbd2a13f7583890c4730aa4fbe49bd1d280950e28917389177b6eddfdfaee6b1969efa3e4741c6ab21e9f83154540ed80652f3c1c9145fd2fa6a0687b6aa461 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015
| MD5 | 5b930eab3067663e6a741af396cb830d |
| SHA1 | eccc5387f9bfe4670191fbf44e7a06ef9710755c |
| SHA256 | b8e04c5dbc18a4c58ffc243e7692fc23308328b1ce146063376609ef07d0c34c |
| SHA512 | caac24b58acb883c1bf0dca9063d01b0a54f059fb50442d38218156b73d21e8f6dd0e226a7aa013b43db91619fcd3d04faf22985f1ca5afee43213dbe8e13c65 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 3a3cf52f53f8577c78e66bfc15978158 |
| SHA1 | 324b5b2c607239df8cb04f0f44bf4e6656ff7840 |
| SHA256 | fc5baa051c20114c21a63f276e7eecb339e139dfc6096ea8acde15c60ad6fa3a |
| SHA512 | 27e461c76cbf8313ae24358658a5acdabb278470f7147e4423c5e268bcdff70d8eaed739d2d310fe0ddbfbdd5ccdd6e3c77735d87250fd4d6284fccf8f885438 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | 18cc2d7df048032243f5f60028471e32 |
| SHA1 | 0fa116b526c3cf9f6853c7f687e7e3776bf9d4a7 |
| SHA256 | d3bf4744666cc0b99f24f2769f0018027217fed7a2e18cf13e75c83c8fc569dc |
| SHA512 | 2c1944efc5afceb4bf652124e4a9050aafa322ac70435221b57cf7c2e2b2aa21053ba38eb57bbc78f87877bb5b8580c5aa4b22210aea92e9fafd65eb06c2574a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 6861908211ccd069d674c208aa8a49fc |
| SHA1 | 7be8f854cd633fd6cc299ac6e2246d79314e008c |
| SHA256 | f2541e1b3ce87f535b10372967cb4c2fd17aeaf5526925c3a0704e54a067c0cd |
| SHA512 | 0a53a59f16a4ea8ef53652b076cdc2cda9488a4df2f4c962c939a66fd20c46beac0a78661feb8de98c474f9c61938fd6dc53eb6e5a5dbfaad07d12311a87a821 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011
| MD5 | b46dec2825fa470b325d6548aef4d5c8 |
| SHA1 | 36a1e1481ab5743466c7157299c26fa5b192cb86 |
| SHA256 | 8e2a1cd3c24c2237d8665269a995198402eeb1efedfa3a0167ebc41a6c3847c5 |
| SHA512 | eddc13687fc156b034472540deecee2c4aabff0cff427d74793361e6a79d2da684dd3670911f26e8befd870c07d6f68171966138fe237b3d064949a753f891cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | b61b5eac4fb168036c99caf0190ec8d3 |
| SHA1 | 8440a8168362eb742ea3f700bb2b79f7b0b17719 |
| SHA256 | 3c495df6db16ed46f0f8a9aff100fa9b26e1434016c41b319f0c1009b7ab2e1f |
| SHA512 | cbccd3aa5a1bdfddba5cc38956b5523a422a1151cdd0680336ab94f07aabecd1695062a0953c32c8209949ea6a4859c625c6deffe5108e8d5e48290017e51874 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f
| MD5 | 4bc7fdb1eed64d29f27a427feea007b5 |
| SHA1 | 62b5f0e1731484517796e3d512c5529d0af2666b |
| SHA256 | 05282cd78e71a5d9d14cc9676e20900a1d802016b721a48febec7b64e63775f6 |
| SHA512 | 9900aecac98f2ca3d642a153dd5a53131b23ceec71dd9d3c59e83db24796a0db854f49629449a5c9fe4b7ca3afcdd294086f6b1ba724955551b622bc50e3ba1e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links
| MD5 | 06dcf37d98b9da9b373495618739156b |
| SHA1 | 5055436a9ff19f6b697f6ed44e365ca1acd5eeb5 |
| SHA256 | 63d9c46d7825ca9aceb0def0a579c9f51a2a89a5ecb4858a0e0e33b0c9a96d80 |
| SHA512 | b07b565cacd68358d3bd778c60dcd651bbac314cfec9d03c604ba8190df43695cbc7a7fbac60084d6b0d6412d740baa81a7309ef3014cdeee263c8efe1f291ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 15deb2f227868e22e62aad743443fdd3 |
| SHA1 | db87dcd259fad33146bd95dfb7edd39e64e14159 |
| SHA256 | 13ba113a7d1dbf634b226d5d27c91a86bd8edd5cde9607e95cb173fd38e1b88b |
| SHA512 | fea6d0d7e67435be1a06c7a4af844ee7e1fa6aff96f1fab21a1d1c3ae1cbbed28dbef42af3ce63beebe8342e8acc1eba55e5814cd171651dce53634a5ef07123 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 0f3de113dc536643a187f641efae47f4 |
| SHA1 | 729e48891d13fb7581697f5fee8175f60519615e |
| SHA256 | 9bef33945e76bc0012cdbd9941eab34f9472aca8e0ddbbaea52658423dc579f8 |
| SHA512 | 8332bf7bd97ec1ebfc8e7fcf75132ca3f6dfd820863f2559ab22ac867aa882921f2b208ab76a6deb2e6fa2907bb0244851023af6c9960a77d3ad4101b314797f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 082ea42c1aae3b695989f4b6f6eb0dc7 |
| SHA1 | 1918fc9585b161ce79c29ff6d2fec39e526a3aa2 |
| SHA256 | d87bcc1cb0e666b8812da126e6e308529997c88176123920942b43efade7bc77 |
| SHA512 | e6c7b496139c95c43e9af3fbd3b6b4a90a206506a3f823c7003fc42585a404e0323ef85ed6233ac208c066ec528857a8609c36ec6c749cec0702149de2c6f69b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons
| MD5 | 0adcdfbf911e62636939f17201ee3bee |
| SHA1 | 1e22e64387631061e43f3125b934578b54e1dd01 |
| SHA256 | 124ea8c96814a90ca57315c99f18b7004c49c3703d6901a4512f2be93a06fa01 |
| SHA512 | c8a00b7c962c2f4d70f55c60200302e10d2b09b4717b95644b1d29c2f5a8d1a0fc232ad507946c91e04a97fc70918886df9634cd1d045025c60c2a960be6f313 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | 0e045ce9afca2d76d92e1d18344834be |
| SHA1 | f1ebee178f8b20945fde60e392c53c7deeb5d3f9 |
| SHA256 | c5c5edb2479ae74b76265ce50f3288286418225c04a6f35148d3d2238a4fad8c |
| SHA512 | d82c38a003956344659b0b095d6639e081e5a87a7ac822efd2366a39109862bd90661bd448e097deb23a26efa042703fa378f5d7c6701fda9651f2525b942821 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | 90c7c3cd9f1bda2460a4ce30711d11b7 |
| SHA1 | 5d62c16f1237f8429a215873602579743cb25aa3 |
| SHA256 | f25d0e3f8652167d6a56adb7c8e0441e364dcbc2bb847ad176dc3709d3272450 |
| SHA512 | 55ee7a7956ddcf57e0e47d83a317ae663a26c5c32d549d2bd3ec4a54f30720ad353ab67b522310f86e1822c628ec5ed654a199d329752d5b8a4eb0c07f78399a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | ccce292069f008e903087116ee7f6ea2 |
| SHA1 | 1aa905cea5d553ceadaa523b8a86928191bd7d60 |
| SHA256 | 1c613839a9b5db9c63d589f328335f8df43b399727306178bfe88a46f8836aa5 |
| SHA512 | 82b350596444b5684df3a5a9749c71fe7c70a91ea40d28eacf4438d297a8b4b84444f721e37de9dbe3158d19cba0fbf6f5dcf2ebdc8849d6f574c12ecd2a74d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | caaa5222d179a24ca5540080c7018b99 |
| SHA1 | 1f415a7a73a12a4c16f25709504f4e4e4beae9dd |
| SHA256 | b729255f2e984a20fa0f0eb07e08368cf468fd17ff27a7d1dbb4042ec261d8cf |
| SHA512 | 71b4f878aa154ba4a8523c2e36faa8dbe3cfafa082b18796d8b69539dee9506253b9e55fc9b71cc2c9027d22ae08587b0e2ddadbc8d3395dbb73584d1ca1ebcc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005
| MD5 | b4e28ac6f448af8f470d6c9c24c20701 |
| SHA1 | 4f40dc84d2ad0c41911fa901ba5a9462c54e5f04 |
| SHA256 | 381a3bb0bfb96a84f33b26c558ba82d9699e436f153916b98f91816bbe1967d2 |
| SHA512 | 5d2a80e6555dd8c796d79a6ae7bab1f5a31ffa58e8f920950346ab27c151d1316ba99babd1da6d4292a5869e679c4734d17108ad7c1fa100c6d78eab20233291 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3
| MD5 | 0ebc366df607e98a573d07cacfe3f650 |
| SHA1 | 459599c376fd04a58f76b752694a628569c29719 |
| SHA256 | b73b81cc999b462596e6d1e5952cc4e3a2748efd47aa6a744f564ecc0ebebfc2 |
| SHA512 | daf810e7e30a04ef57f8dd3362de071771eee93e3821718666e872f50bbf8af81b1ef0762fa825cf7d020d29de4d3ec9c06e5dd99662b9d72d3de5b441cdf033 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2
| MD5 | bede408e6313e2ae0addbbb2606428e2 |
| SHA1 | e9bef2c90ea767471686f87f4387e0bf16b4998d |
| SHA256 | 718dc5d914ceadf02b963047e2dd3107ceea16faa5dd7ab0f695b2c05cc97281 |
| SHA512 | 3e9f835238757108b4646d6aca87fdb6fc9949560042a7b09ab4715ced0ef59418596079836c296c96fc24501a55e88b4df26a0104c4500e4f1a79615e644115 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1
| MD5 | 5f2d632697fb0fa479a1b956f8ce94ce |
| SHA1 | a7c5e26849084e30bd8bd9447f2a36b09e582c79 |
| SHA256 | 52372e0e9708a9a046594b362321697655af48fbe43745bb17d2b45ed02b6454 |
| SHA512 | 707fb5bfbe2052e4052fffeaf58a3166b259c03e260302a8eba824049f227d2a10726fcb3e92dcf79fe4c9cec886f9fe2d5a7e178131d2196d168a83937186a6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version
| MD5 | 009b9a2ee7afbf6dd0b9617fc8f8ecba |
| SHA1 | c97ed0652e731fc412e3b7bdfca2994b7cc206a7 |
| SHA256 | de607a2c68f52e15a104ead9ecbaa3e6862fdb11eac080e408ba4d69f1f7a915 |
| SHA512 | 6161dd952ae140a8fb8aa5e33f06bc65fdc15ce3fbfe4c576dc2668c86bce4a1d5c1112caee014e5efa3698547faad3bc80ec253eedb43148e36e1a02ce89910 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | 47b6e3b9a667b9dbc766575634849645 |
| SHA1 | 54c7e7189111bf33c933817d0a97cefe61fe9a6d |
| SHA256 | 302ed4f6c8ac4312d71205603c4c28dd2976fafe4c05533c0a08ab3bdb531aa3 |
| SHA512 | a12b74ff45f6f9e6abf459863c299e1fafe61dcf2bea8a7331ed9547de14ed29e2deba69b104c6960db93b458f83ba6a4ba454c5514105e7ffb96da96e26e612 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0
| MD5 | b80b14e30ffd27466847f8ab285070a8 |
| SHA1 | 034460342ada6dc1b3ea78fe95fdbe857e72521f |
| SHA256 | 7e035d3e69a63a071a89015c788ea4734e48853b80480856a6d409e3f9efd534 |
| SHA512 | bc3d6c8ec20aed4afcc179701729456c6d8118663a3c6b7c258c15cbe0a2987fd306f878b1d75cee80187e9c2c1d358b2ed9ecb140faef82253a45711c469741 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History
| MD5 | 7ecfa442a384b6de455ae0c03ebbe4cf |
| SHA1 | 70773b26eedcb522e146ccc7d95c6161b45f31c5 |
| SHA256 | 7d4f6153936ddd49cdaf11bdd2db8de3d3109ee92499b1420c9d1323499f3931 |
| SHA512 | 7801b30f5b2b754b4fa68461c7ef31f90341806ccae5f74484a03f0ced7f19e7c6fe577d64060a1f5e688f48efdd1654269daf8b7a5ac0c33a36bde1066913a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1
| MD5 | 030659aabd760d77d537307249622bad |
| SHA1 | 3fe32c92f9ecde3e3b496a3efe57f5a611ef8cfe |
| SHA256 | 1f99b474e61466e31306efcf04686447fefa409bd75427262c0326c35cae9327 |
| SHA512 | a543ff3047c945e0864808f2cd7c399495bdf1eb5ad6fbf45b41d9c02606d1e1bd645c8e6017977ae43ecdfb6bffbd37aa53fa764a2cb12727acd2d6d7206687 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\491b6cdf-ff49-48af-a05a-9957a6b9b4eb.tmp
| MD5 | ef8f16aeca1a7dded9d45daacd881a0d |
| SHA1 | b34e3de498ea3ec79416efc0dea7920ba1480601 |
| SHA256 | c465fd14710d0e02f1ed2b1aacf426dbb449c8f4d93b7d71317f00970d08ffd5 |
| SHA512 | 6a9415787dc13ec2743186970c0b309b5801b1562b26da5ddff0801a152f4b126df870d2fc2af9cbffae465ff2fcb85d223cec6832378cf122137b003fa4acf6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 646fea04b6ff5bec084c00ae18444cd1 |
| SHA1 | 12fb71fded218623ea6772de71c2f449875d7b69 |
| SHA256 | cef70c893a2bf7c977106bc3a6f22d8b29df2cb34f3b3de404c4c04a70bad56b |
| SHA512 | 2b6fb6298979377862dbeac1953874760c2d1bc94ef7f1dd9ae893969c6c1a1f83c52b0f51e67f7f3507e28e2982792ddd4716586711df2d41e12d40964c2e09 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 254b63f40096a3b31df6445cba2745b0 |
| SHA1 | 899572727328ea8203cd451bc71fd2660366cdb4 |
| SHA256 | 81bb7924fd868356b47773c73bbbdea56f244786b755e82720d6bfa9694a4f5a |
| SHA512 | dadcc230a91e3ea6fef9749959c29e361ef941428fe95f6e4ad03088f496ae17b089b427d0355f316ea535dbd21f2c227cf79806dc2f94ff0d8506216bf52e83 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9c46bf5d0645fd7f4215f47e8352140b |
| SHA1 | f7551fd2d27b090c634db9d1d511f1114aa95708 |
| SHA256 | 91c7e3accb8af924e4cff1d3c87a839e763e199148dc56d60d689e59b15b40b8 |
| SHA512 | eabfc988c3707f3fec8e73e96771ed468187000ef639e921a2ff0515e7fb9d1935eef8293252bfbaba1c3144a3c721dea749fcecdae0cf089a7559b872cd1f3b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | e49022487ac4e686ca988f517ab747b7 |
| SHA1 | dba58a6efabf5230144208e7843ae232fd6fc2e1 |
| SHA256 | 437f610571dda09d5b5e3bec5a71551078c37da58637bca6bc4486a33bdd25d2 |
| SHA512 | 40a4c0b51d82d9c78eeeb02f2375c2340f585e3a4dc1a6ca202ee52dda763e3bb98b874b23f870888a68262f98b87c4df9c62d3d18a5ef3105354d235bb78d8f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 196eaa9f7a574c29bd419f9d8c2d9349 |
| SHA1 | 19982d15d1e2688903b0a3e53a8517ab537b68ed |
| SHA256 | df1e96677bcfffe5044826aa14a11e85ef2ebb014ee9e890e723a14dc5f31412 |
| SHA512 | e066d74da36a459c19db30e68b703ec9f92019f2d5f24fd476a5fd3653c0b453871e2c08cdc47f2b4d4c4be19ff99e6ef3956d93b2d7d0a69645577d44125ac7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | f717f56b5d8e2e057c440a5a81043662 |
| SHA1 | 0ad6c9bbd28dab5c9664bad04db95fd50db36b3f |
| SHA256 | 4286cd3f23251d0a607e47eccb5e0f4af8542d38b32879d2db2ab7f4e6031945 |
| SHA512 | 61e263935d51028ec0aab51b938b880945a950cec9635a0dafddf795658ea0a2dfcf9cfc0cab5459b659bb7204347b047a5c6b924fabea44ce389b1cbb9867d6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\ee5aa5ee-7d8a-45b4-a114-98bd9ab74dfd.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b28bd8dede3545ddb75f9b77545128dd |
| SHA1 | 073614dd045d719653620ed1a6133923fb71d6a1 |
| SHA256 | 5d7d85d07b425fdb66e264b9217a1a5612e81547f5efa65e4ff3d31ed2b12019 |
| SHA512 | 13ca4a61ea0b6295cdca77e1d872d572431daa052aef22ad0770b2998ecb037c71e8768ef39d61cae33cc5f5407af40b1ee9685e232bc8f6ed5ebbddf2206623 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 789494d8ed43dcee113e137dc9280142 |
| SHA1 | 1d35101f3f03bcc31464e4985f9b8f23c44ca15d |
| SHA256 | c155a153a4f1cc0fb8bb267992995156d3cd49c5f5b1e016fa66460e62ad96ff |
| SHA512 | b1267e9b2ad26554ed69d66144e9381d93fb9684989f8562d7234f0fb438b7329c7b2c3fff0eba987da8448b009c701f30231402587d3a2b8340cb0d1acff034 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 94d57202bd3b31819dc175c26a233371 |
| SHA1 | 795080bfa672dee4af4db5b8e3adf708dfacb91b |
| SHA256 | 656cb64a8f2f1e6269dcaf93bb5df23128c60c23b248b0314fed29f1e0503ae2 |
| SHA512 | c46cf053af4663eee11ac280340c1e947451e52a6d829f27ac4f5b76e9d4d444cbd1b4b560be4161c01552225d1bfba6d30ffc7ccc7b0d8cdefdf01dd359749b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9891665a03a56f6e0524ef28c3c0496e |
| SHA1 | 33625cb1d70a40c0209883534a6c0c9aee37b389 |
| SHA256 | 79128c939f1a201c07703383cc26ccbf8338d194de777500e062e46b4142565c |
| SHA512 | 0d182a925b858e845791bb022b54730280f54d0aecf1d704472f8e68a37ccee3e48606fce2d74e90b55abc8fc22c225b71856a2ea241deec7d4786e43850a118 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 09ce8e92f94a48fed8c7cf3ea8f24573 |
| SHA1 | 7a3879397e0ec4e26207f6389105d68f5482f016 |
| SHA256 | da8103f2d6507c73e1862d20934fa9db8ac1fd5b6b52b58a43c9fab679423d5a |
| SHA512 | 6d79abc9ee9db6417a1589b55eab722ffa05defd8895ca04a17c7643d478071ba7afc72363469c12f899f542e027d840c4b4cbf56d5f9b0381e9ccd7e90d71ad |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 7436e3833460780b4eb52f904276dc25 |
| SHA1 | 52f2188278878a8a2226b39c930c8c388be78e79 |
| SHA256 | 49ce7690a58c696c8ec4b26f9f447427d98bc9aef2a8afeb78aeeae560ac6ecc |
| SHA512 | 393f5d1e20ce940f9b44e004240ecb9f21bc8ce8b305d629646eb9ebee7cae91259e4081d638e7cdf2361e1a8388b129b8b9ccb8a986b11563088ecdb13a99a9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0393a3bf86bede9ed093234f7c2d18ef |
| SHA1 | c5a5459f77ef63b55fde634386569b6b24d337e7 |
| SHA256 | a914375fb5a04854b0ae3a6be21cbf10a9b5b7380ae53cc67bf89ad4bc0d0ac3 |
| SHA512 | 65a9ee3f45346a1b375f16320c857e86e2e71798cf81a3641c07ad908e9e0ba6202992cf1dbfe26cbd6962d0f30704318fc0dedfccc0d3b9d7cbc9f81fdb2e4a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 285252a2f6327d41eab203dc2f402c67 |
| SHA1 | acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6 |
| SHA256 | 5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026 |
| SHA512 | 11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 8468a368154f6ee608f453c7545c24e4 |
| SHA1 | 67a07000f74e5f37170263e46b1548062536c111 |
| SHA256 | ceb397e04a917a283d20ccb9c4465bc8cae7a68d4af7f6efc4a821ae833d1454 |
| SHA512 | 5cb35e55c128d21fdfdcafd93ab79e7bdce238dfdbacf02f31992d3c338e8f92218a29a89fa55cae96c5759a31aa5dda67e83de95e225b22116b318585cdd1a0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e1253c33c9f8c76819dbd8a393ddc1cb |
| SHA1 | 58d05bea01506dce5fb4e6d5a586f3add16f573a |
| SHA256 | 61b335c465d7858eb1a92fa77d1f2b46941d73bb1bb382e057f0662855e2f7ec |
| SHA512 | 75682944949ed67ef3c33dd87b0561005cecee85e40bad5ced2b52da6b210264d425beb6d60f98bb4a1fa78b99c4b8029c006a8c4026a3c2224c23cff3c347bf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 7f393439fa503d71223b5746efc60b50 |
| SHA1 | e8fd78b8484ce350c92191f0efa05f1e9a24e51e |
| SHA256 | 4fcab204e120f20386317cb4677f10235a891bcbeaeb5031123eb9cddcd03eb7 |
| SHA512 | d00ae68be44f19e5cb6f25cdb5643332a8e59518d5bd27bb970a7bf4e3b0cb191a7d82b7c1c93adc6b264e5447913ef3d18a07fe76ff81efb94bed3df1718f21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e80c2fecf4f621f214a2708fb89b5b02 |
| SHA1 | a5bcf46a5ec56b9449a9ad9f94ad3509ab65f976 |
| SHA256 | a51ba2c6bf416973ff130bd2916d87ab3beece7ae180d8fa4ac0e86d1646b862 |
| SHA512 | 564b05bf7992d6c9660ad62b3a90718a1422c256c1b8c1ca76ba01d8709990cb1329d7bb3634b68cf939c0010b820da1d8d858b41bd5b563a7d3317e8f66f876 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe59fc58.TMP
| MD5 | 983f0911fa40326d37bf26625bd3f655 |
| SHA1 | 55aff0e4966916f1b39ca9ff479e8efebfe9161f |
| SHA256 | 271d716346d63de8546ac2d689b39483ba0e256f7dd6fd56c70f9d68a55043a2 |
| SHA512 | fc6dafb144f8b2c9c51ca495cc025c567c8e758df3091e671bae5da9602782c528df73d9e4ee936fa1b209d3568a75b04755184469ad8c5d1924f648c89b16c2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002
| MD5 | f99f2d6a05b0c0ead4b862985c5c1816 |
| SHA1 | b8ba39585bcc49c925f4d7e9f2eb1e0be2bc870a |
| SHA256 | adb2077ab140042786d0e8d599dc7480fde2d2452f8c5e28ffdecd1a044faeb1 |
| SHA512 | b6360cfa3ad0f9982348eed1e7a5d3e941e7de17e899f3c70c33cb1330e44a7ab8e1111aa7dd3f06f69f33e518157f65e17c6b1cec363082cdc8855770de3e47 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 85f6e731c1d26cbda8440068518dea5e |
| SHA1 | 3baafb1ff96b7a732fdcf1d10d19e0abe7efe757 |
| SHA256 | 6bcf58e99e427e5c4d1d17ab81831143c46e7529e8eb2eaff679d15fea31b238 |
| SHA512 | 79bac7a31e67c3c5d17c4e967eaddedf42750758591b17180cb78a55bf5129f087636388b177cfbb1d2c449981f1ee99682fae15859d29aac8c513a51b70a080 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 839ee953dfb963e7935d432ac30c8c1b |
| SHA1 | 3b6644408fcb411fad8b1d7c05e4f232e9824e55 |
| SHA256 | 25dfe91500600087bbfda81561a1b6f5f793a555bc947f4475920e06921dc32f |
| SHA512 | 17eac84c59392cfa64d4a09b003cb26c7e64302f2c178c61fe847ee27e51f9bbf43939f96757bd73df5d4fb83fc58530fcdd7a590192e10f6363c5fb4b5a2f82 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012
| MD5 | 081c4aa5292d279891a28a6520fdc047 |
| SHA1 | c3dbb6c15f3555487c7b327f4f62235ddb568b84 |
| SHA256 | 12cc87773068d1cd7105463287447561740be1cf4caefd563d0664da1f5f995f |
| SHA512 | 9a78ec4c2709c9f1b7e12fd9105552b1b5a2b033507de0c876d9a55d31678e6b81cec20e01cf0a9e536b013cdb862816601a79ce0a2bb92cb860d267501c0b69 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c66a16f3cdca4b6484d3b279aed0ec14 |
| SHA1 | 59f6874a43f8012f26447de4820915a9cb5fb489 |
| SHA256 | e8152ae435be5ee33ffae6bcdd1524bc5d25b4f81d364d93ace49528f15a80dc |
| SHA512 | 11278b99cf763e26b7b8c126b528ffa182f76b9fedf713914b4a999fc2c6121355d99a38d1b9569e7ee82ded1767bb094c8b048242da39fd9d77316436a2c8cb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d74ceac6124f98f0cefada901b51f3ef |
| SHA1 | f99ba6ed1a7934b04980a656334f2c70f2b0a9f4 |
| SHA256 | 368a7a093c2050cfb209200383b49d1e0f002ecd219e85cae6cdc1d9324cac04 |
| SHA512 | 33ff2abbd00180c52b66ffbd671016c4f23800ec96e879ba04197594acdbc3627608c9613e57fd767312f0fd1376ca956da0e2cfc9e6cb6abb859eb8a22cfcbc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 39f752f814a9aaa3e2b1d45ca9559587 |
| SHA1 | 691a36680589d83ff435c84c11d38ea10a971944 |
| SHA256 | 87219051e5369a79a7761166cbdab0ef6ff75a1e5438eccbab330ce13c479f20 |
| SHA512 | e4fa56f97d45bd32c1a462809c2a10b200f97165cea7786924acabf18c9bd70f40a6f74daae1e39e4ae4a04f2db9faa13cd1d540bc714fdd599e83220dfa355c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ff1f97d98f4a644ebb1f8f19f511f42f |
| SHA1 | 63b174f725889683e225de271a443e1313c47077 |
| SHA256 | 7a7568c6f512ca812db46ec7b8179976024ad974ee4a7a30be38d933853c9311 |
| SHA512 | 3fad76169e10fe648e62e1bc7028e14f99d46c223b62f7a4a87df1f29be0f95edd114cbf2935fe3788fc8bcc538f889fa1b53d3f285e59fa859f5c92d2876783 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 41a17e860a2085016ca6215e94783197 |
| SHA1 | a046240e87b9534b9bc15a7f1d6e07798922e9d4 |
| SHA256 | 04d5945fdb9367ffee3c29ec72573a04fc01a042f8889add563d7682870442ab |
| SHA512 | 978d6e0788fa9a64dac5e3b8d45c6a4d05c286646d425c4adac8b8c97ad29e9a5611903a7a168b479e6c817e6c8e760a42c174f2a29f7d72bf2ae67a0e79aa1b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5ab3a2.TMP
| MD5 | d6cef3a6d337f1f88e57d5be524bf78b |
| SHA1 | 862779f72b895435f7b95b3c6f98aafb41c56415 |
| SHA256 | 1336b8e1ecd11bcd7816c006a055649d7fc64f563d578c5873ae23f8b053dc73 |
| SHA512 | c62daf4f0c2f5799815b26b5b22cca673aa994193b079c8d91d045640c1496307bf937bd891fdad80caf70501d8085da2abf0792f987327b4bce7dad084dbe26 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | cce054e9a0745d7c8dacee53499b03f3 |
| SHA1 | 9a88918a39206f49f82c95c461ea794d4230b2d4 |
| SHA256 | 202959896f823a9d63accbe8a2e1ae2d084f7a9d47a75e9ce45ea8b9c91975bc |
| SHA512 | ffb85192737a9f8446da47c8c24a8b66a7551bb9c37feab5c54e79c7b1da180921a0a5879ec3d4eae4b72ada69dc4eed36a2029bfa6ae9c3e7c20a6252904f67 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5c88767884eb5fb99cd5577fe48f3dd7 |
| SHA1 | bdc6904b2d546fe347b54e9833be48912dcd474f |
| SHA256 | bc00471d9a4386245ddfcb13ae96b141b5f959533640020207915ad341f290ed |
| SHA512 | 8dcbbc63e2004ff005a8bc42e3cd120514142f2bf14b64080c3ce870d73dfb6b97aff0d14182e731e06cd3bc066d6e118a0a96a61841051ca0c72810b17f55dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 5dc32eebb1147d57f9589c5e9cfa4c70 |
| SHA1 | cecbb75f587359d5877f6b631c6340690ebb147f |
| SHA256 | 00796d29d90ce69f8b76a70d8315e4bbabca00f59543f7ecfb6bcd73a3f6e95c |
| SHA512 | 09a22de62e4c4c5644bf59b9d7662e13d5cb363662ce443d88902c02afa70a0a07d456baad2d703fe8339048b273b078c5b64c115c4f080f36c3c0e72285af07 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | dcae78c6511408c9d49d6ae315643b26 |
| SHA1 | d08720e63395a516ab26f450573e9d3635a0d6f7 |
| SHA256 | b5e9fa0948a5cc8a65a6374951ff365e2602dfc3e898c41acf1c238724a87c16 |
| SHA512 | d00ad2c60c7348282c6fde89896329f4c884fab216a160940fcb7535ba5e35fa43715419ae1cf583daad7fe0bb3b2167aee8a0edf187c0a5c951ab1c47b9c318 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fc51895e89019159624777537fe458dc |
| SHA1 | d66fbb048e831d672f32913816fd78f81b6d5b70 |
| SHA256 | 3e252c4e788179bccc3dc8e5d7c74a5648b1ca571c92880464f1fb6210db8613 |
| SHA512 | e5623791f28ea284b691675260c4764d3d3dbbebf99740a44f9fe519354841eb6d1614902b270dd6058ec39929600eacf9e860df2b888b0aa3c079c41b7c179a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 3685cd23b5079ff2fadad3e7fd6c0c45 |
| SHA1 | 03113fc633a2d5dbc23524e5d275282cc8f800e2 |
| SHA256 | 8e6035e578fd1c1bbdadfab1a68e6afcfe428ec09089a0ceefc037f696913fa1 |
| SHA512 | 14172dd7c684b02461d993a142b5fecb296586c501ef37d6e4e9a075a362f84f94907ada1fa68758053aff78a61030b0722c1e8412f395f6ad95e3324342dc62 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6a3822c5c51cd1c836357fbab05b8d70 |
| SHA1 | 6df44281259aaf660fe099972f7b5ef005be2f29 |
| SHA256 | 00525188bc29508dd1b807cfcd4a18751fb4b41a28fde976bad2ededb6068059 |
| SHA512 | 9880c16f09c685d40d4edb689259a3bffc079d2449fc40e495e5daf927e5e428c6586280dd68dcc03bd655309fb90050cd8182555332f7dbdb174114c774bac4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 99a60502b70ef753a4b7fc435f414967 |
| SHA1 | 224fc327eea4370706752edaec39c5f3f0e0e7b4 |
| SHA256 | 6dd93febf549ebfc1606f3155c12e19bd4c850bc0ee315ed0adaafa97267c638 |
| SHA512 | 1da1d4e985025051826353349f8ea29480d43075f969defd4c2e876471e9007e218e1f399abf049d0394beec8557032c209b66289391fc059ca34876b85246ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e11c5bc9ca564fdbcdeae681fc3b9614 |
| SHA1 | fbf0fe99586af2cfecab32f5d0e8a302e5c78a71 |
| SHA256 | 76a552d69da004126af6a0dd3e4d7a6256a85e2d161d3cdb715d5eb8bdaa1063 |
| SHA512 | a7e6a1d0d7a581ea361a658280c19c662b0d347e0730c19965e14077cb01d102ff8e5b460e6d1aad73a8aabefe3fc36078a5a2db2bd561c4f79224e4c6b46611 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 903a89a43ea00eefef8238eb75c94f08 |
| SHA1 | 66ffca88c1cd11c67c8e3e30801873c5571c0a0e |
| SHA256 | 6c3b628b5e01fddb8410adc0b40caeeadb53b1a4aa109d7609ff68772446b6e8 |
| SHA512 | 11793c8783c060195acbc3777e5488cc014664c837d4ac13e4f17130e5ba3287a0496532c7406090f35346521c51e8e777eb13732ec3b98dea3c2eb207ad84ee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ff759b9b97db90059981a21dc8bee9f1 |
| SHA1 | 287f847c991321d7b38ffb8a6518f3556832cdcf |
| SHA256 | b86341f8f9b5018a804afe427382f8fc014667a28a160e1aedba75732a72b71f |
| SHA512 | a4504fb4abbdf0415f8f236a0e77e01f642a556b1a8ca3614cbd973b04fd042b55624e8a8ec04f74242c8372ff0f515dd51f1c10953d85e1648255d3d3d9b966 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | fdf77152f1a713b2e40003094e6d7162 |
| SHA1 | 3af0edcf97d67ad3004793e0485502c2c4469d0f |
| SHA256 | 4a78f5a5a0d512f33664718f550487f7154e273c4c44b5288e25238e05d3cf3f |
| SHA512 | a9f6856f471e908593b88771200c88f5383808c8be72d472911f6c2ea0a4fe415a57e5248c64cfcbb752d2dcfbcf361be8a2327056699712ea38d782194e0efe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 226f83d90a2b6c5fc020e4ea3dadccc2 |
| SHA1 | 808aa2296f533edc7003a8c5dcfb2329394af153 |
| SHA256 | 1e85a8f96ed224b015a6d6c22c48c60039090614f2935413756733ad920ffc33 |
| SHA512 | c62dc8f22652520aa5168131192c40a409a8cdf1ea42251cc293f10ae45002fae0cd876bd899c20ff6b244cd70140471fc363e3e52786634e3f164f98ff25835 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d0ca7cfa854876b2634da41454cd459c |
| SHA1 | d7ba406770a92c170b779e75ea4b9d5d48b3197c |
| SHA256 | 4aef860fe1e28742947c8573c562cacc4b5bb260fb4f5a0787c1f04c47ee3b84 |
| SHA512 | 2928a97e274cee51974d8c30668e362d7288e2ba84f233eaf4cb63e8b55d52e645d5df51811314410bb7d2a96764882129c84356d653cfb7236869bc21e5940f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8119dfedee53488f59f0203284fa20a5 |
| SHA1 | b5dfa12b357ae72a19e4ee7f8f45702f0a985def |
| SHA256 | 2b19404e01107bb74c7471454176ae1f50e67d97e647098e1ebe3eff1d9b2af8 |
| SHA512 | d3ab00e455bc298ddef029c4683518ecfef43a0f6c181e58e600c4dd04d3e9fb801188f7a2c9d68ebe421c43db676da2b768f909a0b618e70870bce0a8958664 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7026a9f19b20d9a579ae0eed9433e1d4 |
| SHA1 | 750ead36b4301b213adf1ae2563425bdaa24406f |
| SHA256 | f8d376534c2fe431d8f62448fc9321c1180356d5ccaffdd08cd67558ca46f53d |
| SHA512 | ec74801599d1a8dbc7323071a482377b417d1636b72550728cfdea896ad0404e514239701c22c16e006f1e89717869d4b6d200fabb8337d9d25324e2528b0bce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a2bde1c4bf83ec60461386518ec61ce2 |
| SHA1 | ca37985efd144aa2129af97951112baeea145875 |
| SHA256 | 6102b36fd9db23df2fdb35655c63c945712392af0eee15861f29f80a7ef89e66 |
| SHA512 | ac4dec7f0dbb652d33cb625bff3d769d6f093cb535638e4333e7a8911ead462ec325e96f11402e9c85b87e59b3c0dedbbf41bf768f90c0cd5fb19bbfd7a3b579 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 0c27c1f1ff7be0a47ab97c8d67cf0795 |
| SHA1 | 6b9cb12c961660bd06c1d8ec49e9fc1ff968bbaf |
| SHA256 | 6ba7e3543ad4f6b8464c67bf471c21cafccd3d0b774b60dcde890a8cd2d75b0a |
| SHA512 | 6b14219d16d235724e2b173a61f01cf1c3005f43b63e18f7a1329301b9585a1f60a7dece81ab481f2136252c474383a00ec5d978d6301af66cef318aa5770dbd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 86afc08bde3125bcd44d8a639c90469e |
| SHA1 | 22a123fd04fba42a6a80d9dc93b19f91156f83b8 |
| SHA256 | 446ed59398a8a97580a203c70abb4dca8bc78e6bb198fb9e37a160d6854cc846 |
| SHA512 | af5c5def57e663197804c871e8bef947fe398c9595893ca681efe63df8e706ea2a3bf92dc601068bb12bc13b4a0322cf1896876861ff997283b18ece9b07c6a8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ea012e3c5c691de707e94cb8c67604c9 |
| SHA1 | cc46bba06f96dc6d931d9dd840fc6d273b5a15a2 |
| SHA256 | 534d260efb4117894ac82a9838e793eb86a5144c8e45c2fd27e728e4fc855793 |
| SHA512 | 660fa1d2631225b3cdac16e87471a192a2477f24843459330b5bd1de8da30b750572117a2cb870a852469f45b77b2ca56e7803e66ecf1f4d5e587e8959b83eb6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9064c8f51c8e19637c54b8952560ccea |
| SHA1 | f876e2f038039f9ffe30c46d4f1c15e58df3297a |
| SHA256 | 4686d02516661362390824dac87b644dd7a67a05f95886eda1324055ae2b5129 |
| SHA512 | 2035552853548ecdc704eec432e167591199cb699bbeb3a334e6912db2bda546f0eb4c3c8f339e578ffd7f7e740a738362253590a62c92271382405b52b714c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4299e780310986adb329197c7003eb7f |
| SHA1 | 8f65eb257ca616886c036155cda66350de6ca5b5 |
| SHA256 | 9a434e2e77bf0fef3e9a5dde6ddc286d21081f03c57b3e37d4c0d52a800911bd |
| SHA512 | f264a60e258303890de64158843e65db6b380c9b0dd4026d982db3583170cadaf6a6dba198f304ab9e9f874e428c759b1c80ab3d1bcda07c7759d8f56d07f366 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | a928a31b6e4d5cf00cbe88e45b6614d5 |
| SHA1 | 0705ac864dd560da7ca2b582f69b821098193cbc |
| SHA256 | d498f02ec6f56f1810b2d15bdbf0f90eddf6d122b72603f700eec4f6bceff076 |
| SHA512 | b57e9b94f3c184d1c9645622bb4e03e46b3b7b9ef9894e6bc94d769359a4602f02f1db9239906f45fc969e33ab6ada5ae10d3a5a778dae0202b4236207689e81 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 62c55aebfe44d7ef23ae2178a7832d77 |
| SHA1 | 58424fbdf815a70356979cdcce39d9768a465f80 |
| SHA256 | 2c95f3e6d4110a93dfefd49e7c3facff5b86525f1cae89b5d3610d33d76592d7 |
| SHA512 | 8fbd0453ff3ff6d979d664a35d8fc904b766fdc40925b6cbeb0db013b736b38110d4b6f69f41b887d00cbf4ad50f48f68a40f4fa3f1309bafb64060bd6694802 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 329e72511e952c444f89ef50cbaa52f0 |
| SHA1 | 62696e42db48fc3ad6a6db2440d48c5f5dadedb9 |
| SHA256 | 9110e647f16e0df7869599b56eb6a726fbbde83704d1a487b7f9ec39012bb17e |
| SHA512 | a220527ba5de73521602378f24c8570b90e935eb8dfa6cd0519a2f9fb7f2c9985aa338706fc5ed79842301bb7e14afb51b398888597b2ab7ad057273469d57b2 |
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
| MD5 | 9a7af7f1f08f7de9da3ba647286ee5a6 |
| SHA1 | d7a23961ba5f8c4242a03f20686ff516c2ae432c |
| SHA256 | dddc3d322b46ec53927c26326a4f4d573dec131fbe668450f984c91c3104a08b |
| SHA512 | 64b0d94e68aa2d0ee9d02f170de6989f5255c5c57d05dffbf4dbbe012dae43a6f4dbd59c6a85fd2621fb84ae7f4cdf486a089b90e3e6c4fce1b152ba5aa6ba58 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b9efee0e483950dddf828ba60bdabc3f |
| SHA1 | f4d2cb6ec952f8be63c80dd31af1caa3ed392b8b |
| SHA256 | 75bd3c318cfb9479351b122d930e73b728eb2b7f8090ec2d4e83a19c8bc2e86a |
| SHA512 | 7034dae4271e2cbf2743e894ed1fd346dd817b3ad8da149257a18b8822521409436d44feb3b6e42ed20bb51c256f4c4684e9e8b322a38169310ce4fd62630009 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e7aee3ae8e6dd1aacbf202fca6108b8d |
| SHA1 | 1d18216f71716edb71adcf34e6e79635b7a58c78 |
| SHA256 | d587be718283a9b3d43238301ab42f075388db13d9d13800bd370ee174551f7f |
| SHA512 | 9e38b82f93263f69d4b1d0ecbdc47bc772ac812ff4dd42e96d937ca9691c1a5cc917ddc351741db12b0d016197c7a8d16fc8ca3d88871984b3c6034e4ac58805 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\3bc115ed-a03e-4bdb-9d8c-4176caf25150.tmp
| MD5 | 06261ad9ed7711c88e922057d5f8ea07 |
| SHA1 | 73338e5aad3c1509e2c54e77cb663574de2be06d |
| SHA256 | 7341080c71ee4b2a2e1c13cc04e1638a0df35fe0ae0b2a299ec883e4f4010b2a |
| SHA512 | b1da702ebf409204d343423f0ebd7941eb29faccd4c58a105c1d4b6cec2d8129d96666757374bee0cb41a60627ecbefc0366af94ce8758eaa4033f8cfc2d7b1d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | bdf93b23a3e2d8dffc7445d1fbec39c7 |
| SHA1 | 9961c7bb931a919a1b6cf639e4f4041bb64d5e07 |
| SHA256 | 71f8c9a281e739c948fed0890b5dc635893f3092b37ccf825567e0865ae30d61 |
| SHA512 | b92757511dc460244d372545146c86e1ced89b66762e6c46c265eba372f265f935adf30d8267e38abda1b5d3b557b5659c7a6c4249cebca85fc57cb507e63e5b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3538692edf00b5160cbaf6545f4cf76a |
| SHA1 | 63c480d8e72a7b04c59f9e54462cc6827185f127 |
| SHA256 | c779940f133651e7939ae2561b14b39c059015ff14b88dc92e3b032fd423baf4 |
| SHA512 | bfbcf34c46a214a523c692457d78a0f8f087f5381a4fd19ab9b868e96e12068fe4e82e22e60e947d1f75f77dea93f92fa0f57279f0102bd29afe94e769b3ca03 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | c4f8156e5fa4ef724b0ef21ca4b4c3c8 |
| SHA1 | 43fc406cfd4404687d0574dc2e6b5aa0f85f6391 |
| SHA256 | 39db13f156087398a9ae8d94fb0f7fd9c001728de290dbd683a5e45d1f4713d3 |
| SHA512 | df44d6618960e97dd460c1cb329ae114cbe10685f46c48baab5049f4ef82ea92b217ddd4fe04ff932620baec66cc758e138c5428f309a9b21bb1eeef48c8aa46 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | dde7d640a34e449b65c6bc8324a7b497 |
| SHA1 | 8c83788593003f20283406a54d0f9b484e4693d8 |
| SHA256 | b331f7ce0a4c7bbad0a6a63a176f71bbfb555412cb06c82caff0ff9f5f94b692 |
| SHA512 | 5be1b3a1a2223e11c1b0d3f8ad915a32f0766897b47014059fbf4385fab61d5aa8ce0a418d50f08b1614e11a5b5a9b47426a5e23a915d2af6c52e772377da994 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | f6b23be53fdde1189358001b4505b548 |
| SHA1 | 64109ff57c323aaa452c2bd2f6d1c5dcba6c3f52 |
| SHA256 | 67ddd6ef5e981e5d9b299047af9b187aadb81c29e157fb2d4a415442c42bcb20 |
| SHA512 | 3d070c6bd9ddf8b7ec60423d4d852ddee86076a2147ce2b534e04ddc596d2d557714e9f2b6b2b94e3ea32c2c57e968a8f092d0ea79d265381c6bcaef01725026 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e4724d822e1c92495f56064d6d8b7ce4 |
| SHA1 | 257832de362d178ed0c8b412be7eb98dccb182e5 |
| SHA256 | a75cdf8be93d509f48eb51aeffd0243f17f4e03eeeed86281d6d027d8e18f128 |
| SHA512 | 40e2e1a879eb3ad4274552bbd445bfde23f87a4351e1497f7c3d73885b96e7fc374627d02afa7b5c62d06dabf5b2bf000eb97f669f3cbd84d1bef7a6cc912727 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e8881905c9c17c9e60ea05fdb28098ec |
| SHA1 | 2267debaf3304ad7f01f3ad3685c8959fd020545 |
| SHA256 | 25f95d9723c5178a94e0801d86595245d2559a4e1fe2f16477c11e680525252f |
| SHA512 | 2453b74978c3a7a81a1d30d0fb2e1ccfa1b02881766e6c99045a8835fdb1d222cec304af1a4aaa8a26cc9fd1813aa0d8f9e6f415a3a5b3894e90c753b0ade653 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1a5813b2161b14e0e3edf7ee9bec00c6 |
| SHA1 | ff2f9f85a624ead3dcde171efe202fd11f9ee534 |
| SHA256 | e97daf707148c4aebe1d008471728f9e29ac91b074d4065107d00195f10eb5ef |
| SHA512 | 0c8d606813b58bd021111d2f2c7ea089aca417941f1abe496ef72ce586b22a7ae42ac21d3f147b16ddf00f405ca6c81fca92c217a303eefa88f3f570ca76041b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 19092f24339e5a2a0ae1f0590b21c564 |
| SHA1 | 68af4d18d30de2889fc3be46dcd03f8beb630ade |
| SHA256 | 4634bd8dc01b767081059877c51acf27c7e118b2bc32b83e2380916764f8082e |
| SHA512 | d8148f7f8ed0e55063e6129d027251b3792f45a22f1cbac481bb5b6d9bd4c29bf8c8af9d5c8f6c7eec41c6b43c60fd9e15e5779eca78b6e9bf564862e90b500a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 547a868e0abbb80c0ba81d2171038c6b |
| SHA1 | 466f30c51e4d948db42fbd09215d129ce283aff0 |
| SHA256 | b6a11a94bbdddcc477e328f93c4acd37ac0ed6bb7805894832d9d7f553bb432d |
| SHA512 | 6305d9c9b70830e754afebcf7fe3df3b20f80bf7b1de1d24f7f661f0a86803c7d8065a2dd3dcc9f2b2c3342e65d1ceb7eb18bafeb9a8786dc3cbc6d704598ebb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2d909783f12ef3907a32f2ef118788c7 |
| SHA1 | 65e30b78d6e79e57ef838f3a9c03eb4440cffee1 |
| SHA256 | 66be12e0c7377966d73fe90f3187f6f92ec32ca89cddb9094b70779d4c8e216f |
| SHA512 | 7b36524ee51f94a7b42d20adf758631b7f69ae2d44a5cc98ecd859c3ed16b19a99371bab90292169d3327be7252dfa71509e74180ed4e5c999acccca651587a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 9e6af37d9b859f87b38bbe06b4698837 |
| SHA1 | b19c911ff426468d58fde7d03857704c6e53f0eb |
| SHA256 | 8baa56f8e92e1c1c79b772e6760677f63ab19a9b0a18edbdca1f035782a6d536 |
| SHA512 | 8172400b58cf54198ed358b2d62a9eb1e15a37de27d638423a4a5d88760a31ce0a0f1d970864f277c66815fc14bf6e920b7220bc8af8e44b1812c4e3652f757d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | fea4abd07b494228e4ae52b5bde13f23 |
| SHA1 | 70195188e9145a41d53e269bcc988eec3a3fe13f |
| SHA256 | 3aed5b4457e1fe14fd7fabd1067e5826408ebae071a83999f0a1f496a239f22e |
| SHA512 | 8afebc43850dde46f3638daed05c3d1225a9abe3545e77db90888376904e342dc083aef4f9cd228dc7cba9a196a97024b68950e0295a37b2e1bcac05dd09c3a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f7d6b65ada18b73863eb1fd2e430f02e |
| SHA1 | a4e366e37175f3e9a4f82f5991ed53fba8d540c9 |
| SHA256 | b952ce9b686d5018f754d7156f6a44051ea34c84fe6a776c0516bc6ef41d91e0 |
| SHA512 | 732e850d9ab8f40ff4a9c0f87a2697ef38cddf36a82f65411cd4dc78f374ac0a5ea51f53bfd0fd539d5f39787b93cb85abbb5acc77f6fdee4f0120a71accd314 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1536bf506a7fbebd258cefeff53dfb63 |
| SHA1 | c9beb01b2e141d9ae31008dfe83fd1b2e540ea6b |
| SHA256 | 1f516816cd17d7b6fe0ed909b5ebf4764ec1af0606fc66e19c8660fae77438d3 |
| SHA512 | 8e27fde5457b8e4ccd1c303c1c0daae4e2e7428e15eaf60cd29b26d4b067f47b04140be8d88ba1046360b7a1ee3cca2740bd04acc3e7a145ee9fecedecd3ae47 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | b6c4a80248ac9295a5db5d04c92323f1 |
| SHA1 | 7e64e982cbfcc101df7e39f7e78ea5c4534b6ee5 |
| SHA256 | 0077d50448d2d8e66008030b26bc6ec9e505f2215222737e3d07d691917d1808 |
| SHA512 | f4e904b19ae9487aa9f1e6e1153784ad922596e488a646749712fa79ca852488a8e86b5ba9d2f8d402f86efa39d93bd49851500b4fec79ed90710a908811809d |
memory/1340-2401-0x0000000000E90000-0x0000000000EB8000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 4f076e288af7b5b74abf1e7d7cf180f9 |
| SHA1 | 1cfdd8874ebddc83bbe00a3c54f627875e0b8854 |
| SHA256 | d843abb19b4f7764a19d331e9686361042e37718b86a719f5858698f225ad319 |
| SHA512 | ee7b0a30c75c4fe76f53addea8969072299f77223a77e447fa172187984d488cdc50d83c9937f73cc7b2b582f9dd09a9f820e054ae0cc8a28b13975e2a2f0920 |
memory/760-2442-0x00000000007A0000-0x00000000007C2000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 17d1d9e670c007696a600b8447cce043 |
| SHA1 | 6e775745015e550a1bd525d9b1af8a903e0cf6de |
| SHA256 | 8e75fb3f41ac6a1f483f57e4a7d824518fce1b9410e6895c31016c2fd262cd76 |
| SHA512 | d46954bc276e14465f7dd54225bfeb57a2cf99b4d7adce697dbf23d869e1e7d368bb4fa0bb52df3c3838fbeb72cd13853158ab45c83a3625c865d4b424199453 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity~RFe67418f.TMP
| MD5 | db26bafa84a0a35158bf70b02790b05b |
| SHA1 | a297e65266466ea2dccb28b1156f3633a62063cc |
| SHA256 | 61737708cdee8e78db1abb171a40d8cb582f75ddec9a31d54de878336c576869 |
| SHA512 | f5f79e0a7f98dd19eb2511c1b4fbe1e3762cf0a67dfc8c885b4c5db1ddad175144aaae81fbedc48832520e9ba04631d54ac4051bf621485ee10cf4242d5e6c1f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 353207d0f95b95c9229aef8a60cd7826 |
| SHA1 | f9b5b3ebf2f27a81130c837a946741e5553a80d4 |
| SHA256 | 1b1dbf5527a2d3c2a5eaed7e5d3ffa1c9b546dc3061ab0c2dc9bf795e6506e3b |
| SHA512 | a39e3f28c66a0714bac76aedbab6e5d6433e72401ca9beb6274a35fbaf8799b791790c9afe873f6e4fab8d125ef958c1ecdff9bfd9522a7a97bfec1f47508649 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | df0a70147e676ace06bca86c9419bec3 |
| SHA1 | 80affb8523ddb7b7085c00c7783cbdaf6aa8dfde |
| SHA256 | b0e5a6bbdb334a2055436bcf2fd2932a1812e315d3f44b09340ee6fe0c41aa6d |
| SHA512 | f9949617133fc49778889e57479feea487eb35c967b6d46259daceb7d8e9fdb6f42beb421bbcf20b5810610c256646a007e83394e4a6c91d2710de5552cf1499 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 22e84624a0b57002021c5b0390dbd424 |
| SHA1 | afb55f7135d51cbf6124ed50f773d8a600312baf |
| SHA256 | 943d7603be0e1b02805866a070034da8b45422b6e3ddbfc58f32d7093c69ce5e |
| SHA512 | fb14a7b8a2060e274bcb84b267215b78bd6cdf5fcbd1132a2ad64ed1c20d49796800735b37dda0c4a00160fcdfe4654d0fa7be2d59906cde986f60e1c6402e4c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0b9770ded84c7a3e477114d0694ea90f |
| SHA1 | 5c7e01ff8f556153a2b06b94d4ae3aa4244dd52f |
| SHA256 | 3455cba28356a4bf3a1c4e6a98fb5202a3f98c915eb8a04e9d955bf4fa65c327 |
| SHA512 | 6e92e5bec0cb0eb09c65bba81072feb70a0513bef71615efd638feb3169a7b953480bfdc42284381f20bb8d54eb4b3ee3c3930a9e1f80a0191a3e6348de6f0c7 |
memory/4788-2599-0x00007FFEC37C0000-0x00007FFEC37F4000-memory.dmp
memory/4788-2598-0x00007FF69AF90000-0x00007FF69B088000-memory.dmp
memory/4788-2607-0x00007FFECB3B0000-0x00007FFECB3C1000-memory.dmp
memory/4788-2606-0x00007FFECD600000-0x00007FFECD61D000-memory.dmp
memory/4788-2605-0x00007FFECDFE0000-0x00007FFECDFF1000-memory.dmp
memory/4788-2604-0x00007FFECE330000-0x00007FFECE347000-memory.dmp
memory/4788-2603-0x00007FFECEC30000-0x00007FFECEC41000-memory.dmp
memory/4788-2602-0x00007FFECEF40000-0x00007FFECEF57000-memory.dmp
memory/4788-2601-0x00007FFECF120000-0x00007FFECF138000-memory.dmp
memory/4788-2600-0x00007FFEB6E20000-0x00007FFEB70D6000-memory.dmp
memory/4788-2609-0x00007FFEB5600000-0x00007FFEB580B000-memory.dmp
memory/4788-2608-0x00007FFEB1AE0000-0x00007FFEB2B90000-memory.dmp
memory/4788-2624-0x00007FFEB6840000-0x00007FFEB6852000-memory.dmp
memory/4788-2623-0x00007FFEB6A90000-0x00007FFEB6AE7000-memory.dmp
memory/4788-2622-0x00007FFEB6D50000-0x00007FFEB6D61000-memory.dmp
memory/4788-2621-0x00007FFEB6AF0000-0x00007FFEB6B6C000-memory.dmp
memory/4788-2620-0x00007FFEB6B70000-0x00007FFEB6BD7000-memory.dmp
memory/4788-2619-0x00007FFEB6D70000-0x00007FFEB6DA0000-memory.dmp
memory/4788-2618-0x00007FFEB6DA0000-0x00007FFEB6DB8000-memory.dmp
memory/4788-2617-0x00007FFEB6DC0000-0x00007FFEB6DD1000-memory.dmp
memory/4788-2616-0x00007FFEB6DE0000-0x00007FFEB6DFB000-memory.dmp
memory/4788-2615-0x00007FFEB6E00000-0x00007FFEB6E11000-memory.dmp
memory/4788-2614-0x00007FFEBB9E0000-0x00007FFEBB9F1000-memory.dmp
memory/4788-2613-0x00007FFEBDBD0000-0x00007FFEBDBE1000-memory.dmp
memory/4788-2612-0x00007FFEBDBF0000-0x00007FFEBDC08000-memory.dmp
memory/4788-2611-0x00007FFEC2810000-0x00007FFEC2831000-memory.dmp
memory/4788-2610-0x00007FFEBA430000-0x00007FFEBA471000-memory.dmp
memory/4788-2640-0x00007FF69AF90000-0x00007FF69B088000-memory.dmp
memory/4788-2642-0x00007FFEB6E20000-0x00007FFEB70D6000-memory.dmp
memory/4788-2641-0x00007FFEC37C0000-0x00007FFEC37F4000-memory.dmp
memory/4788-2643-0x00007FFEB1AE0000-0x00007FFEB2B90000-memory.dmp
memory/3420-2644-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2645-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2646-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2648-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2647-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2649-0x00007FFE9B670000-0x00007FFE9B680000-memory.dmp
memory/3420-2650-0x00007FFE9B670000-0x00007FFE9B680000-memory.dmp
memory/3420-2671-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2672-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2673-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
memory/3420-2670-0x00007FFE9DF10000-0x00007FFE9DF20000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fec732fd7d94ccc6724c3fb0ffbc9997 |
| SHA1 | 5d2ab1795a75c679f407f4814fdcdc82dc753b7f |
| SHA256 | d2be1dc6cfd554c967c074af99ddb675efadf604585a05b1df3a131104e009e5 |
| SHA512 | ca3b6af32a69c2d2e7e64b839e4d7110ff2dfa57f22a9447c6b8bf1e1f2b948128b8fca9a6d708ffc134d50463f62cbc9c07485e28acc1f7064cd1741e86a36b |
C:\Users\Admin\AppData\Roaming\vlc\vlc-qt-interface.ini
| MD5 | bbcb5fa16df1026cb07898424e7c98e7 |
| SHA1 | 664d90c42e9a08493a152d60c2baee1cfb77204a |
| SHA256 | 7a7808013cfaead38fd4762d61a2b192a2e601f4238285a632f9567af7011494 |
| SHA512 | 606563c4440a60505f460d0e5481f8a27d1aa62d81b89acdc2c7219d7976d3cb7f65b2a394bdd544b0b889dce8822caa006648bdc5c13e418387225a8d962009 |
C:\Users\Admin\AppData\Roaming\vlc\vlc-qt-interface.ini.lock
| MD5 | 1a44ad7ee5737a8597651c2027eec9ca |
| SHA1 | 9e74aeef2a35c669027e0f9fbf480b3bf53fab48 |
| SHA256 | b6209532fc63bf42fb4affc5f336fa67fd30492f0d9efc1cc0da639f83405f2b |
| SHA512 | ebf883692be3c2d587d20aeb8714aa93c6e2cb261116f05c550ebbfc8399a0d0e43984adf008109ac1b47a01f2154fbbd9a003e11a7e1fd81591dfbdbf2a2672 |
memory/3180-2710-0x00007FFECF120000-0x00007FFECF138000-memory.dmp
memory/3180-2712-0x00007FFECEC30000-0x00007FFECEC41000-memory.dmp
memory/3180-2727-0x00007FFEBB2E0000-0x00007FFEBB2F1000-memory.dmp
memory/3180-2726-0x00007FFEBDBD0000-0x00007FFEBDBE1000-memory.dmp
memory/3180-2713-0x00007FFEBB350000-0x00007FFEBB55B000-memory.dmp
memory/3180-2724-0x00007FFEB70E0000-0x00007FFEB7147000-memory.dmp
memory/3180-2723-0x00007FFEBB9D0000-0x00007FFEBBA00000-memory.dmp
memory/3180-2722-0x00007FFEBDBF0000-0x00007FFEBDC08000-memory.dmp
memory/3180-2721-0x00007FFEC2800000-0x00007FFEC2811000-memory.dmp
memory/3180-2720-0x00007FFEC2820000-0x00007FFEC283B000-memory.dmp
memory/3180-2719-0x00007FFECB640000-0x00007FFECB651000-memory.dmp
memory/3180-2718-0x00007FFECD600000-0x00007FFECD611000-memory.dmp
memory/3180-2717-0x00007FFECDFE0000-0x00007FFECDFF1000-memory.dmp
memory/3180-2716-0x00007FFECE330000-0x00007FFECE348000-memory.dmp
memory/3180-2715-0x00007FFECB3A0000-0x00007FFECB3C1000-memory.dmp
memory/3180-2714-0x00007FFEBB300000-0x00007FFEBB341000-memory.dmp
memory/3180-2711-0x00007FFECEF40000-0x00007FFECEF57000-memory.dmp
memory/3180-2725-0x00007FFEB7060000-0x00007FFEB70DC000-memory.dmp
memory/3180-2708-0x00007FFECB660000-0x00007FFECB694000-memory.dmp
memory/3180-2707-0x00007FF69AF90000-0x00007FF69B088000-memory.dmp
C:\Users\Admin\AppData\Roaming\vlc\ml.xspf.tmp3180
| MD5 | 781602441469750c3219c8c38b515ed4 |
| SHA1 | e885acd1cbd0b897ebcedbb145bef1c330f80595 |
| SHA256 | 81970dbe581373d14fbd451ac4b3f96e5f69b79645f1ee1ca715cff3af0bf20d |
| SHA512 | 2b0a1717d96edb47bdf0ffeb250a5ec11f7d0638d3e0a62fbe48c064379b473ca88ffbececb32a72129d06c040b107834f1004ccda5f0f35b8c3588034786461 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003f
| MD5 | d2c717fb486c397c4ed891d7216fd994 |
| SHA1 | 3a82ee4e677f343937d91104798c7fa4af747113 |
| SHA256 | 608f70f17d61f6e859522bcc08eb88a9be8c7d77df744c66bb688c2d7ccb1e0d |
| SHA512 | e49080039604241d964875b0aed96d9057912b49a5eec707dc24749b96b771ea8c13318c1b570bb19c3f606678f2c4feb731c81911324be09528be480395df25 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c93622985013877f_0
| MD5 | 285519cf340b6157fb4cac676117064b |
| SHA1 | b8855515c75ad9cd5bf5d9a77009dd4fb2306d4d |
| SHA256 | a29b28a9955fffff80fa6c2176b0a8181319a0204424db8ec92a0d27f3f8c5e0 |
| SHA512 | f4dfaf014a5d5ed322e9cf3ab9a5ac4698efc2e6443dc256e87418fbdc4693f9e5e81c865569c1be4c518ef329593f18fac0dea13741b0bc981d62110cff3e70 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4daac663d0f90125_0
| MD5 | 832a3158eb9d7414012155808484abea |
| SHA1 | c32494fde62124884578e8873e14d4cb877f9a19 |
| SHA256 | fef7adc15d47f98d197e52e812dca79a6109e442528dfdd0edacc49555ddef25 |
| SHA512 | b7199a33dd0152420d83cfd5c462feea35f8cfce5dd2fc5d3cbcff363fe5fe5df947ce1fe1a292a5e16dd5bbce494b5856f51dbb93047c15ac8f5e748a28490e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\50e7ca177d06e22b_0
| MD5 | b3bb9e899c0d95b08e01747f788a79a8 |
| SHA1 | f14ae3f68171296e575250bb919ff5d1a7671563 |
| SHA256 | e0d9ea0149523f2503e99f67aaa7f5584945f46fedf02b00b6e53d328b89d785 |
| SHA512 | f82f940944ebea91fe5c2d8802dccdcd7f2d68a1dd40f128498c84773b9286e65684f8fde04eeda765eb207583193ae98bf2e0ad02ba4261864c8350035e2b18 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5c3a64a9c52d7921_0
| MD5 | aa58e73cf3417d96b59d0a3b4763db00 |
| SHA1 | 35dc4892bbdf1f91cf1220c8d53520bd1ff6cea4 |
| SHA256 | a7e09a4a420d5af6bd2b1318b527599b9222b1c0a3889bf37ee966bf82f48041 |
| SHA512 | 687d5979c3df18a3cb1088f91353e5b1e0f2070faeae09fc1e9d121419d1c32fecceeb1cead4a11eaa4e868c4074bc996feb55f1ce1de3a978dd9b1997d33f06 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\890341016b4cb769_0
| MD5 | 32461d937007b29e5600606bbafd4bf0 |
| SHA1 | f97b389384bbf2184c374101bfb7cba05cc0498a |
| SHA256 | 09baee5ef8770b8054ead0d3184a7cee2d96fa5b900581d469927278b896302d |
| SHA512 | 62cd7daa7291dd142fb0acf060360f7ff380d2dac288eeedb106de60cb6459066a9786cd176a2d020cedded7e33fdc7b4474c40b158e21c6b0daa4506c1176cb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3ea857d7190276a0_0
| MD5 | 10f485b075c092eaea0eeca700a6c1ba |
| SHA1 | 468bc0642204eb4eb1bf28a3dae52c7286398790 |
| SHA256 | a047091f1146728fadd3aad35dcf749b9232e99fd1250eda6ee49c93536ba936 |
| SHA512 | a608305d2cc69353d87657f314214ca8d1d318b7ba4ca25450dafda9cfb3020d5d94236a0bfd4272ff70ff26804c63ccbcaff4d487292bd926c60d9a385b8678 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041
| MD5 | a890b29534ce51dc1eb6cff86f5cc3d8 |
| SHA1 | 90ad999236f0e8b657caa3317be6eab0460ebe2f |
| SHA256 | 19ecf581f8a7725121ef1307f00c19997e5202d3b950be66496850696d5ca31a |
| SHA512 | 2d1bd91acea85dd6f9fe1f6d1453462e3166f3f70d697756c2aaa74792a65e40adab2be47175afb46691e7ee74288d71075509627dba8c6fddb10bd51ccdb481 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\997d66cf2e10a48e_0
| MD5 | a4cfc809d6aba21e9578120cd76e343d |
| SHA1 | 7805234a8f7f88d34bbfe4ac1a3a47ccc19a3934 |
| SHA256 | cfa61d854cfe1cb171be4d6ccb8bff4060dce3f097d2303c7cfce1d7566003a0 |
| SHA512 | 2404e311b022446d02bd5eb4cb029e72b7bc9f0ca8cc59f3fa32c94cfaa26655a35a872ce31bccb5b0477ccd92b98b03baf3d106a77dcd87b3119fe7fabda722 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3c1b71d6c92f4ff2_0
| MD5 | d56e462dbb0189147f50d4cf131d2700 |
| SHA1 | 8b5bd5e9f96cdf9302201561214a324831a99756 |
| SHA256 | e0f8e3b10afbfbf9a6153b14e588e282ec88176ffa045468398cdd7f9bb111da |
| SHA512 | 637245ba328154595ba64924393a223f6dd22e8033d4d8759d10c07f04ac93cb4000ef2727ea600f65e487c785d5e0a0772c95651584f633f9b9ce9a8397947c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6f8a512a3635fbb7_0
| MD5 | 5955a4b36fc786dc901247b350ba1cfc |
| SHA1 | 86f0322a9eac1f9759b558c1d85304b25a4f23f9 |
| SHA256 | c8421a3db8086b826706bd122e855f316a16ae874369dcfbd9333f3bda8119af |
| SHA512 | 905ebe10309a8b65e5a729ee764b87789997a35b04e5a6fc1b2256f7fdaf6ab787cc1ca159c79f9dc6280d0a2ebd6e2b32e10bdabdd201bbdd2044f3e94d44a9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\00237b8e0e6ffdc1_0
| MD5 | fceca521bec0288159e36237af7d1933 |
| SHA1 | 5e0f638a3e6b3f4630fd082f8985a2d659b1caaf |
| SHA256 | 84dc5825482059b087cb755076a91ce4512d8eca757cab07f4c24ee86f76ff36 |
| SHA512 | 3b8d5b4a20cb117a0d5c9f896e1f3fbc31f6f20c11fff72701e19d371dbf40189744bbe8ba56b9344af2d2331be6fbd0893a33df4acbc2e7649d012d7c5ae75d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0c8543dedcb7ccd1_0
| MD5 | 3354b2ef056a7393d00be57ea3be36d6 |
| SHA1 | b8eb5d711de551b74e044581d42a04304c81db57 |
| SHA256 | 1a97395cced6b3e7a959cb22a2ae92ecf6203a09dcf520d61f592e3fcf4acd7f |
| SHA512 | 82b5031a7e1455b23867fed85918d4354b5d61432bb71a8827e253ec9ed53c30085eb7ac029d7fc929f986252ae7547671ef9417caf3bb4b26536eb481c93ef6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\21fae64d34b37329_0
| MD5 | cc4aecbd175bc6258a0171a355f99204 |
| SHA1 | 528186bb71d6437b705fe712864a156693c9a677 |
| SHA256 | 214ee8047cad4f6343e580a61f9ae0260ae6b506824f8eb29dd499d172cb6442 |
| SHA512 | 54a11269a4c23ee8b038e8ae4cdc34db9fc82adf03addbbc9f706211ea5dd4db93ee3f6c286739590ae2dec227ebf3acccaf502a48b9c11d7f34c01720cb4f52 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b5c0b0d2ff0cad95_0
| MD5 | 1ffeb6c606ad12a5c8ee6bc37ad67b61 |
| SHA1 | bd9b1ebe8b5bbd865a00121e9082335f06837a6e |
| SHA256 | 436c6f4672cc091297500abf7e5cef4273660e854bee9a68c4bfdc14a26e84cf |
| SHA512 | efd28a5dc51d6f8be0576ce757f2052a071caf6c328d6c4cf7111f41fc49d321b8f304e83cb52e103453aabf57a1c610580a2545f79b826bfca0f17d908e916c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d7c15f8c3c2dd7b6735913f5e374c74c |
| SHA1 | c0acfeba4ef87b183ca9a8d046a42a34dd9c971a |
| SHA256 | 195c9c579595f6bb9ce6efb4e0441782bab554d49d92ed6e65850ac3674ebd84 |
| SHA512 | 15e1959cd735fb7d3147f1b68a78a5eb47149c83747762e6de9513432ddd529a2750624abd2a33c293fc288ffba088f534628e975cb67689b45a2941185fec72 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4f11c1d0476d070756419a811b25a368 |
| SHA1 | da6a555bff2cc4d4aa7f093603d812ffc6a20b3b |
| SHA256 | a774e7cbb973f864ab54d573933cc296470ef24430de9bd99d8a01704ed25ee7 |
| SHA512 | 316dbcf85462648164f2d50c68d9e3769788c069f5721423c8ba67af430255a07405667716aca72cd361590bb31a7c81b8dbc28f15ec72523ae583f74016d291 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1911a145c584760ee83c5f718918651c |
| SHA1 | b28dc9a354da4fb568f0aeb81968915636ac382f |
| SHA256 | 5a16ada18639dada079648249310a7a948f9d105be60514a7c1e065323d84b81 |
| SHA512 | 3b78de9a03a6eae3ec7c94f91b228b4b8b9584a8d6e97606df7df93fa2f917409ac9ab3a15b496e8e8b104ea0289a540ea1167f9b33e3a3cb1400155b1197c67 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 295b972a291a063ec6c274b54f19c76b |
| SHA1 | 5b312a012e8f276637e32d48849efdbbe6495117 |
| SHA256 | dab8963a602909b096643e2552c76375d28c05dd987e494e879bcb48307bdf84 |
| SHA512 | b5cd6f5bd224cfaa497b86b7ce49bdbb710d427859fd07470f74b66cd8fbe1551df87a59c57b9204d39be317fcef82f866bb5c1e6d5806899321f66700c0b3d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | db607bac57bb27252bd8fd5b1b6b7fba |
| SHA1 | 3f3be40fb44e3088196ab5044fd330c4ad0324fd |
| SHA256 | 74318bcb242e63723189f1f360682ad5edf8c4d47a925afac933e18ab5ca8bb5 |
| SHA512 | c2cf6af2efecc2cc598d447ac2a13282714319db9d40f5f1a049e7125186ece5b0c43f51f54e6782bc1b4c5151139fbc8e8659726576d83732ae9ae0e8c7315c |
C:\Users\Admin\Desktop\RANSOMWARE2.0.txt
| MD5 | 35e9b0d52f6c44e51fc721dd8c48d19b |
| SHA1 | bd2dbf5e8c9b8394eab5b70e920465dcfd99472d |
| SHA256 | 55aff57e7d5a533ccaade52f02d791d1a5f422a9fc4bc5d41b418739aded8b0a |
| SHA512 | 13859c79427ba01d8f66a9d6306fddd0e660ea06909ab6223ccb0539bfbac2722544add360336d4ace7832948f9703ebf4eb6ecd9c0060588e70cd64d344c1fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4270f962cc120bc1dac91357e69dd762 |
| SHA1 | 7c0115870c0cb2ecf2c21c258cf15697a6e84970 |
| SHA256 | 17365d81fa7aa6e0455282b0190f7e377553bb78b0d54e7768ed8cba89c60b19 |
| SHA512 | e564e87648376c59c02a41d6032086c3e83920cea59a8d69917036a969e72702a07e719f1b8057e65cd3ad6d5151e26b984ff866580d522e98a4d641f45c3ac5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8db01409c530ba00_0
| MD5 | e5dd643c6b85bf360ad041ea36c4c819 |
| SHA1 | cc06df9a31399e98441c31596ee10856c7d3ad63 |
| SHA256 | f1731be0e7377254f5ca28116456f8ddd00905acb9dd6d1562cbf800f2284391 |
| SHA512 | f7aeda9aba9e21860faa6706240f3fb68b745a086352c7c652c77502b86db95e4c8a0d31d8bf2b773fdd2b80926d4c52be04a0fdfe58f897d129b6d0f0bfce6a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e89dd9ccf099407b8db540ee08edb1d4 |
| SHA1 | 28247c0d69d6f91cc9f23a47a5878bdf51d53fc3 |
| SHA256 | 8695e9a5d459791cd9913a175817064cbe7bb83d190f9dadd06a034ee3a4ab1e |
| SHA512 | ab57843d05a7a75186bdf080d51976c42b2cd1bc484ab92f1fbc93eee68ba206f1e63e9c2be8ca414c08f26163e35357e51bab2fec0a20c91eff59448e18a421 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c527890d713f678bc7fc46e6a4dcc78b |
| SHA1 | 9b0abe8674d008320638dbfeb1b564c9a9db2547 |
| SHA256 | d137100e354c278ec1e9b9a1fd0da23c7435992e4e0f6aa7c19e06bf199b73b7 |
| SHA512 | 5e033cd947b744eebf4da03d2e4e8286fd5949ab71f793f5c2684a8c81a8c253a88898fe5fed789bef8be12a745a2b2e6871cd344e1478105a19bf98f5418872 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f4925876f4487935a678664a860e4bbe |
| SHA1 | 3b212291bf59748d17e02e643878fa33826cfe93 |
| SHA256 | ed272b25be76a9dcbf5aa5e29923f496c432ef6ebaa4f08e35e69660cd966c9d |
| SHA512 | 3bb743c828f67e2e02560622c163e9ec2ec7f0f185e6e026ba4434ed7fb072562e57d7cf646da47b6ebf1c397f2b15dec950ada4c2694d5cf6af2f8d21d76386 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1f85940a27d205bce0b4cac0edc8f0d9 |
| SHA1 | 7548ad8c0bd29e4e8e3c524a777c224afc369c26 |
| SHA256 | ff61fb88ab0808575347889d6f599f8c7f6a8b459b0a9c67563448b63812c021 |
| SHA512 | fed5256554ddf8eff17bd8da8f1314d9e8d1af47100b96017035793b19176d218ef03387002b975c2fe734fadf94ae53c5e654c6c8e6375d21de152c70fc13a1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7191985fecd5d5a1297704e05d784ea8 |
| SHA1 | 50b6224a2c4adddae07efb8bb0fc6fa5bef11f52 |
| SHA256 | 20839de9b328ef7d2fec5ccbef8b568057de310b5535ef2d77578d9e3877e5bb |
| SHA512 | 503815242e6589e8de4c340afdf9f5c920385ca5b0e23a8ac922ef9a70901a5a8e646a56d306b7ca7cb66de530c7e19454065113c1320c21bf29f215df1a082a |
memory/2052-3158-0x0000000000310000-0x0000000000366000-memory.dmp
C:\Windows\System32\WormLocker2.0.exe
| MD5 | 041aa5e99ae545dac5f9306bb20d869e |
| SHA1 | 88ea126645bfd418abba44cca4a16adf12084d2f |
| SHA256 | 830c271c8aca775457a090a51c93ad08f9665361eeeaa3fda3f9ae032202ad73 |
| SHA512 | 4b8007dddd519c77bb596f6d17f270da62b236894b6fd7f1c528e553b1aac3a7f9c0df4bb40b678461f70bde3c5a8ac4b5e97e5372dd127a8184862c7f6f4c7c |
memory/5492-3175-0x0000000000F40000-0x0000000000F62000-memory.dmp
C:\Windows\System32\LogonUIinf.exe
| MD5 | 31618202eb911f6606405d237e098ad0 |
| SHA1 | 829365de595b00bd4ea5bf83a1f344f5288c100d |
| SHA256 | 7944285565408818fae6f861d45d7a722f5ac630da98fb762826f061831e46f4 |
| SHA512 | db157b67c9b5f966d3ada70ec77cd735f59ef595e786377c6fb2a8b487a69fc77f828897a97b537f6e296bfbe670686ebe4f4d521295a2edd6fc07f6809214ca |
C:\Users\Admin\Downloads\worm_tool.sys
| MD5 | 5031e9989ae1ab3ba509b7d4220c0ddf |
| SHA1 | d92342976d720ff38cf5dcb329be41959ab1ba6c |
| SHA256 | 954d1bb83d80bb6f6e746b28f0de3ec4c4ed980cfe67ed23a9159cd464ff339a |
| SHA512 | 0d6c3d5051b8eaa9902f6690eed8f1e5d5ff39b9c32b5a9f9fbeda24791117b73b19627f5ff7c5efd1748f9c677005322e908e1cb651492c4dfa6998ba04c02f |
C:\Users\Admin\Downloads\worm_tool.sys
| MD5 | c098f717287a45bd494741f0db820edd |
| SHA1 | 154d426b3de9183ba16a7aeee94dafa3ef2a61f6 |
| SHA256 | e86b7ef6c17455d8d73826bb539491079a0c942ec5543d490a6c4f50150608b5 |
| SHA512 | 7e354c0aa019449dd077671645dada103e24461159ef4cc2e0b54703d0ce0ee5782144d7825cc2140da965ca0bf261563805413170238ab6d464e25d77c5d9a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8e03a206a9f9e24a76b98b2b654360f1 |
| SHA1 | 0c493495fc0fdd13b1d5556a806623a40ea2ccc3 |
| SHA256 | 6288fae89714143c988f5de6a645419c9fec634d8a8912b788ff05de3c78d1c5 |
| SHA512 | a08497f662491ef7f680f132008ed1eab3836debf9b68dbc0c415793d4d932b6773d1f5203e7d2e9dda5ad977f445a896229f3be6ddaba47b26e70f340105d1c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 807b130bb4270513ae3b09a9c44796ec |
| SHA1 | 3a380fd7091d61ca66c5ce59e4c72d6ea2de3f2c |
| SHA256 | 4d5031d5f03a485472306c28a71171b696c2d1652732d491d0fa0bcd4adf9cde |
| SHA512 | 2ff2c090abc2b8b32199f949ec7a2d44c27c3c4732fd4d1d455198fa2d517023983f1634526e441f773418ab06f36dd96274c37fffce762e9945b50b5e317563 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 8b56d3dec4c00b8af2a13cb11efefc69 |
| SHA1 | 0f9061f74956104435c9348f9a3e1f46585fa609 |
| SHA256 | cb02cbf6f477eafd3f6a98f1a3cc794cdb6c2eba37c7c0c2019ed6080208d4b5 |
| SHA512 | 5101d85eb80f2e98528767381cab65c6255f7ce875f9206884b4f0f36d34699f34f909b6645dde33c3376e1436ed1efcf43a127506e108f53bb1cc98dc88e772 |