Malware Analysis Report

2024-10-10 10:00

Sample ID 240625-mvrfhsvfje
Target https://github.com
Tags
gurcu umbral xworm discovery evasion execution persistence rat spyware stealer trojan upx
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

Threat Level: Known bad

The file https://github.com was found to be: Known bad.

Malicious Activity Summary

gurcu umbral xworm discovery evasion execution persistence rat spyware stealer trojan upx

Xworm

Detect Xworm Payload

Detect Umbral payload

Gurcu, WhiteSnake

Umbral

Drops file in Drivers directory

Creates new service(s)

Downloads MZ/PE file

Command and Scripting Interpreter: PowerShell

Stops running service(s)

Checks computer location settings

Loads dropped DLL

Executes dropped EXE

UPX packed file

Reads user/profile data of web browsers

.NET Reactor proctector

Drops startup file

Looks up external IP address via web service

Power Settings

Checks installed software on the system

Legitimate hosting services abused for malware hosting/C2

Adds Run key to start application

Suspicious use of SetThreadContext

Suspicious use of NtSetInformationThreadHideFromDebugger

Drops file in System32 directory

Launches sc.exe

Enumerates physical storage devices

Suspicious use of SetWindowsHookEx

Runs ping.exe

Modifies data under HKEY_USERS

Modifies Control Panel

Checks SCSI registry key(s)

Suspicious use of FindShellTrayWindow

Suspicious behavior: GetForegroundWindowSpam

Suspicious behavior: LoadsDriver

Detects videocard installed

Suspicious behavior: AddClipboardFormatListener

Suspicious behavior: EnumeratesProcesses

Suspicious use of SendNotifyMessage

Views/modifies file attributes

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Scheduled Task/Job: Scheduled Task

Modifies registry class

Uses Task Scheduler COM API

Checks processor information in registry

Enumerates system info in registry

Suspicious use of WriteProcessMemory

Suspicious use of AdjustPrivilegeToken

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-25 10:47

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-25 10:47

Reported

2024-06-25 11:17

Platform

win10v2004-20240611-en

Max time kernel

1806s

Max time network

1806s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://github.com

Signatures

Detect Umbral payload

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A

Detect Xworm Payload

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A

Gurcu, WhiteSnake

stealer gurcu

Umbral

stealer umbral

Xworm

trojan rat xworm

Command and Scripting Interpreter: PowerShell

execution
Description Indicator Process Target
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A

Creates new service(s)

persistence execution

Downloads MZ/PE file

Drops file in Drivers directory

Description Indicator Process Target
File opened for modification C:\Windows\System32\drivers\etc\hosts C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe N/A

Stops running service(s)

evasion execution

.NET Reactor proctector

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\CrackLauncher.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Roaming\XClient.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\TLauncher-2.899-Installer-1.3.1.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Roaming\svchost.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Roaming\nurik.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe N/A

Drops startup file

Description Indicator Process Target
File created C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\svchost.lnk C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe N/A
File opened for modification C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\svchost.lnk C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe N/A
File created C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\system.lnk C:\Users\Admin\AppData\Roaming\XClient.exe N/A
File opened for modification C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\system.lnk C:\Users\Admin\AppData\Roaming\XClient.exe N/A
File opened for modification C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\%startupname%.lnk C:\Users\Admin\AppData\Local\Temp\Nursultan.exe N/A
File created C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\%startupname%.lnk C:\Users\Admin\AppData\Local\Temp\Nursultan.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Nursultan Setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Nursultan.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\ProgramData\scppqqgespxv\jqvljmboayxs.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\XClient.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\Client.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\Downloads\TLauncher-2.899-Installer-1.3.1.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\msedge.exe N/A
N/A N/A C:\Users\Admin\wininit N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe N/A
N/A N/A C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe N/A

Reads user/profile data of web browsers

spyware stealer

UPX packed file

upx
Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Nursultan Setup = "C:\\Users\\Admin\\AppData\\Local\\Temp\\Nursultan Setup.exe" C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Запустить Nursultan = "C:\\Users\\Admin\\AppData\\Local\\Temp\\Запустить Nursultan.exe" C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Nursultan = "C:\\Users\\Admin\\AppData\\Local\\Temp\\Nursultan.exe" C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\svchost = "C:\\Users\\Admin\\AppData\\Roaming\\svchost.exe" C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\system = "C:\\Users\\Admin\\AppData\\Roaming\\system.exe" C:\Users\Admin\AppData\Roaming\XClient.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\msedge = "C:\\Users\\Admin\\AppData\\Local\\msedge.exe" C:\Users\Admin\AppData\Roaming\svchost.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\wininit = "C:\\Users\\Admin\\wininit" C:\Users\Admin\AppData\Roaming\nurik.exe N/A

Checks installed software on the system

discovery

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A

Looks up external IP address via web service

Description Indicator Process Target
N/A ip-api.com N/A N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\MRT.exe C:\Users\Admin\AppData\Local\Temp\Nursultan Setup.exe N/A
File created C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\PowerShell\StartupProfileData-NonInteractive C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
File created C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\powershell.exe.log C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
File opened for modification C:\Windows\system32\MRT.exe C:\ProgramData\scppqqgespxv\jqvljmboayxs.exe N/A

Suspicious use of NtSetInformationThreadHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A

Detects videocard installed

Description Indicator Process Target
N/A N/A C:\Windows\System32\Wbem\wmic.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies Control Panel

evasion
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\Wait = "C:\\Windows\\cursors\\aero_busy.ani" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\ = "Windows Default" C:\Windows\system32\rundll32.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\NWPen = "C:\\Windows\\cursors\\aero_pen.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\SizeNS = "C:\\Windows\\cursors\\aero_ns.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\Crosshair C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\AppStarting = "C:\\Windows\\cursors\\aero_working.ani" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\IBeam C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\SizeAll = "C:\\Windows\\cursors\\aero_move.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\UpArrow = "C:\\Windows\\cursors\\aero_up.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Appearance\Current C:\Windows\system32\rundll32.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Accessibility\HighContrast C:\Windows\system32\rundll32.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Appearance C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Accessibility\HighContrast\High Contrast Scheme C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\Help = "C:\\Windows\\cursors\\aero_helpsel.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\Hand = "C:\\Windows\\cursors\\aero_link.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\SizeNWSE = "C:\\Windows\\cursors\\aero_nwse.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Accessibility\HighContrast\Flags = "126" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Accessibility\HighContrast\Previous High Contrast Scheme MUI Value C:\Windows\system32\rundll32.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Desktop\UserPreferencesMask = 9e1e078012000000 C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\Arrow = "C:\\Windows\\cursors\\aero_arrow.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\SizeWE = "C:\\Windows\\cursors\\aero_ew.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Appearance\NewCurrent C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\No = "C:\\Windows\\cursors\\aero_unavail.cur" C:\Windows\system32\rundll32.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\SizeNESW = "C:\\Windows\\cursors\\aero_nesw.cur" C:\Windows\system32\rundll32.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\Cursors\Scheme Source = "2" C:\Windows\system32\rundll32.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithList C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\System32\msxml3r.dll,-1 = "XML Document" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9939 = "ADTS Audio" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-142 = "Microsoft OneNote Table Of Contents" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mhtml\OpenWithList C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133637860644070636" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\C:\Windows\system32,@elscore.dll,-1 = "Microsoft Language Detection" C:\Windows\system32\SearchIndexer.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.DVR-MS\OpenWithList C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-103 = "Microsoft Excel Macro-Enabled Worksheet" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\System32\wshext.dll,-4803 = "VBScript Encoded Script File" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\C:\Windows\system32,@elscore.dll,-3 = "Microsoft Traditional Chinese to Simplified Chinese Transliteration" C:\Windows\system32\SearchIndexer.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.WTV C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-116 = "Microsoft Excel Template" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mhtml C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\C:\Windows\system32,@elscore.dll,-6 = "Microsoft Cyrillic to Latin Transliteration" C:\Windows\system32\SearchIndexer.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9926 = "M3U file" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9935 = "MPEG-2 TS Video" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\regedit.exe,-309 = "Registration Entries" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@windows.storage.dll,-21825 = "3D Objects" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\ActiveMovie C:\Windows\system32\SearchFilterHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\SBE C:\Windows\system32\SearchFilterHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-115 = "Microsoft Excel 97-2003 Worksheet" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9923 = "Windows Media playlist" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft C:\Windows\system32\SearchFilterHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.DVR-MS C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached\{E2FB4720-F45F-4A3C-8CB2-2060E12425C3} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF = 0100000000000000eecce73eedc6da01 C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\System32\ieframe.dll,-10046 = "Internet Shortcut" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9902 = "Movie Clip" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software C:\Windows\system32\SearchFilterHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-107 = "Microsoft Excel Comma Separated Values File" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\System32\mshta.exe,-6412 = "HTML Application" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-125 = "Microsoft Word Template" C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9937 = "3GPP Audio/Video" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\windows.storage.dll,-10152 = "File folder" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\MPEG2Demultiplexer C:\Windows\system32\SearchFilterHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp2\OpenWithList C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached\{01BE4CFB-129A-452B-A209-F9D40B3B84A5} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF = 0100000000000000e120d73dedc6da01 C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\oregres.dll,-176 = "Microsoft PowerPoint Macro-Enabled Presentation" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached\{3DBEE9A1-C471-4B95-BBCA-F39310064458} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF = 01000000000000002943f93cedc6da01 C:\Windows\system32\SearchProtocolHost.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a\52C64B7E\@C:\Windows\system32\unregmp2.exe,-9938 = "3GPP2 Audio/Video" C:\Windows\system32\SearchProtocolHost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\ActiveMovie\devenum 64-bit C:\Windows\system32\SearchFilterHost.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\shell\open\command\ = "C:\\Users\\Admin\\AppData\\Roaming\\CrackLauncher.exe" C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-200405930-3877336739-3533750831-1000\{6CFA0AC3-3EE9-4EBD-9322-06CBCEDC34B3} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\Local Settings C:\Windows\system32\taskmgr.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\URL Protocol C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\CrackLauncher.exe" C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\shell\open\command\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\CrackLauncher.exe" C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\URL Protocol C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Roaming\\CrackLauncher.exe" C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347 C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\DefaultIcon C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\shell\open\command C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\shell\open C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\ = "URL:Run game 1199748644409184347 protocol" C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347 C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\shell\open\command C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-200405930-3877336739-3533750831-1000\{41E0880A-B0DB-4632-AAB7-6C9D706D8BEA} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\shell C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-200405930-3877336739-3533750831-1000\{F7640DC7-2C21-48CE-A834-C42F9F660625} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\ = "URL:Run game 1199748644409184347 protocol" C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\discord-1199748644409184347\DefaultIcon C:\Users\Admin\AppData\Roaming\CrackLauncher.exe N/A

Runs ping.exe

Description Indicator Process Target
N/A N/A C:\Windows\system32\PING.EXE N/A

Scheduled Task/Job: Scheduled Task

persistence execution
Description Indicator Process Target
N/A N/A C:\Windows\System32\schtasks.exe N/A
N/A N/A C:\Windows\System32\schtasks.exe N/A
N/A N/A C:\Windows\SysWOW64\schtasks.exe N/A

Suspicious behavior: AddClipboardFormatListener

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\svchost.exe N/A
N/A N/A C:\Users\Admin\AppData\Roaming\nurik.exe N/A

Suspicious behavior: LoadsDriver

Description Indicator Process Target
N/A N/A N/A N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1708 wrote to memory of 1588 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 1588 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 3412 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 2980 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 2980 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1708 wrote to memory of 4712 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Uses Task Scheduler COM API

persistence

Views/modifies file attributes

evasion
Description Indicator Process Target
N/A N/A C:\Windows\SYSTEM32\attrib.exe N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://github.com

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2144,18187794725135236157,434153305867393363,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2164 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2144,18187794725135236157,434153305867393363,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2216 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2144,18187794725135236157,434153305867393363,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2708 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2144,18187794725135236157,434153305867393363,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2144,18187794725135236157,434153305867393363,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2144,18187794725135236157,434153305867393363,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4128 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd99deab58,0x7ffd99deab68,0x7ffd99deab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1680 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2264 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3080 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3112 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4364 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3680 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4656 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4584 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4876 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4928 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4540 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4188 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3456 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x340 0x498

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4760 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5052 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5752 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5960 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4188 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\Windows\system32\SearchProtocolHost.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Windows\system32\SearchFilterHost.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784

C:\Windows\system32\rundll32.exe

"C:\Windows\system32\rundll32.exe" C:\Windows\system32\themecpl.dll,OpenThemeAction C:\Windows\WinSxS\amd64_microsoft-windows-themefile-aero_31bf3856ad364e35_10.0.19041.1_none_2fe4331ee906f14a\aero.theme

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5128 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=1644 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5732 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1884 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5436 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5624 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=2700 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6036 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6156 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=3256 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6148 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6452 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6484 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=6564 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=6480 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=6684 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=6676 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=7000 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=6848 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=7500 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7004 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8152 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=7028 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=1644 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=6316 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5508 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2652 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=5388 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=7628 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=7928 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5312 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=5292 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=7584 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=8072 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6904 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Windows\system32\SearchProtocolHost.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

C:\Windows\system32\SearchFilterHost.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5784 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=8052 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=5880 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7096 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=7052 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=2700 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\" -an -ai#7zMap15309:94:7zEvent23373

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=6496 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=5348 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=3172 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=5772 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=5652 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=5368 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=8092 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=5072 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3080 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5340 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5572 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5224 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5080 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Users\Admin\Desktop\Nursultan NextGen Cr.exe

"C:\Users\Admin\Desktop\Nursultan NextGen Cr.exe"

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\AppData\Roaming\и.bat" "

C:\Users\Admin\AppData\Roaming\nurik.exe

"C:\Users\Admin\AppData\Roaming\nurik.exe"

C:\Users\Admin\AppData\Roaming\svchost.exe

"C:\Users\Admin\AppData\Roaming\svchost.exe"

C:\Windows\system32\chcp.com

chcp 65001

C:\Windows\system32\choice.exe

choice /c 12 /n /m "Enter your choice:"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=6192 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=7516 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Roaming\svchost.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Roaming\nurik.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'svchost.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'nurik.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Local\msedge.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\wininit'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'msedge.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'wininit'

C:\Windows\System32\schtasks.exe

"C:\Windows\System32\schtasks.exe" /create /f /RL HIGHEST /sc minute /mo 1 /tn "msedge" /tr "C:\Users\Admin\AppData\Local\msedge.exe"

C:\Windows\System32\schtasks.exe

"C:\Windows\System32\schtasks.exe" /create /f /RL HIGHEST /sc minute /mo 1 /tn "wininit" /tr "C:\Users\Admin\wininit"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=7552 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=4848 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\Desktop\Nurik 1.16.5 crack.zip"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=7004 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=5244 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=3212 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=5192 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=6176 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\" -an -ai#7zMap31196:94:7zEvent30757

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=4900 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\SearchFilterHost.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=3444 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=7016 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=7084 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe

"C:\Users\Admin\Desktop\Nurik 1.16.5 crack\CrackLauncher.exe"

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Local\Temp\Nursultan Setup.exe'

C:\Users\Admin\AppData\Local\Temp\Nursultan Setup.exe

"C:\Users\Admin\AppData\Local\Temp\Nursultan Setup.exe"

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe'

C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe

"C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe"

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Local\Temp\Nursultan.exe'

C:\Users\Admin\AppData\Local\Temp\Nursultan.exe

"C:\Users\Admin\AppData\Local\Temp\Nursultan.exe"

C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe

"C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe"

C:\Windows\SYSTEM32\attrib.exe

"attrib.exe" +h +s "C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe"

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"powershell.exe" Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe'

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe"

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"powershell.exe" Set-MpPreference -DisableIntrusionPreventionSystem $true -DisableIOAVProtection $true -DisableRealtimeMonitoring $true -DisableScriptScanning $true -EnableControlledFolderAccess Disabled -EnableNetworkProtection AuditMode -Force -MAPSReporting Disabled -SubmitSamplesConsent NeverSend && powershell Set-MpPreference -SubmitSamplesConsent 2

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"powershell.exe" Get-ItemPropertyValue -Path HKCU:SOFTWARE\Roblox\RobloxStudioBrowser\roblox.com -Name .ROBLOSECURITY

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"powershell.exe" Get-ItemPropertyValue -Path HKLN:SOFTWARE\Roblox\RobloxStudioBrowser\roblox.com -Name .ROBLOSECURITY

C:\Windows\System32\Wbem\wmic.exe

"wmic.exe" os get Caption

C:\Windows\System32\Wbem\wmic.exe

"wmic.exe" computersystem get totalphysicalmemory

C:\Windows\System32\Wbem\wmic.exe

"wmic.exe" csproduct get uuid

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"powershell.exe" Get-ItemPropertyValue -Path 'HKLM:System\CurrentControlSet\Control\Session Manager\Environment' -Name PROCESSOR_IDENTIFIER

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe'

C:\Windows\System32\Wbem\wmic.exe

"wmic" path win32_VideoController get name

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://discord.gg/SDxDej44bY

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://t.me/sk3d_club

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Windows\SYSTEM32\cmd.exe

"cmd.exe" /c ping localhost && del /F /A h "C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe" && pause

C:\Windows\system32\PING.EXE

ping localhost

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2160 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2216 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2128,4278015208191264751,11061948834584013572,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2140 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2128,4278015208191264751,11061948834584013572,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2192 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2684 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3532 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3540 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4184 /prefetch:1

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'MSBuild.exe'

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5020 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4488 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2152,14386076208624240401,2481628032043714766,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=2172 /prefetch:8

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Roaming\svchost.exe'

C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe

C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe Add-MpPreference -ExclusionPath @($env:UserProfile, $env:ProgramData) -ExclusionExtension '.exe' -Force

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c wusa /uninstall /kb:890830 /quiet /norestart

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop UsoSvc

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop WaaSMedicSvc

C:\Windows\system32\wusa.exe

wusa /uninstall /kb:890830 /quiet /norestart

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop wuauserv

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop bits

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop dosvc

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -hibernate-timeout-ac 0

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -hibernate-timeout-dc 0

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -standby-timeout-ac 0

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -standby-timeout-dc 0

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe delete "XMRKNZQC"

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe create "XMRKNZQC" binpath= "C:\ProgramData\scppqqgespxv\jqvljmboayxs.exe" start= "auto"

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop eventlog

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe start "XMRKNZQC"

C:\ProgramData\scppqqgespxv\jqvljmboayxs.exe

C:\ProgramData\scppqqgespxv\jqvljmboayxs.exe

C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe

C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe Add-MpPreference -ExclusionPath @($env:UserProfile, $env:ProgramData) -ExclusionExtension '.exe' -Force

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'svchost.exe'

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=3080 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c wusa /uninstall /kb:890830 /quiet /norestart

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop UsoSvc

C:\Windows\SysWOW64\schtasks.exe

"C:\Windows\System32\schtasks.exe" /create /f /RL HIGHEST /sc minute /mo 1 /tn "svchost" /tr "C:\Users\Admin\AppData\Roaming\svchost.exe"

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop WaaSMedicSvc

C:\Windows\system32\wusa.exe

wusa /uninstall /kb:890830 /quiet /norestart

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop wuauserv

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop bits

C:\Windows\system32\sc.exe

C:\Windows\system32\sc.exe stop dosvc

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -hibernate-timeout-ac 0

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -hibernate-timeout-dc 0

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -standby-timeout-ac 0

C:\Windows\system32\powercfg.exe

C:\Windows\system32\powercfg.exe /x -standby-timeout-dc 0

C:\Windows\system32\conhost.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\svchost.exe

svchost.exe

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://discord.gg/SDxDej44bY

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://t.me/sk3d_club

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2148 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1972,14679807656750041469,14632248920404486877,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1984 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2780 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1972,14679807656750041469,14632248920404486877,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3356 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3372 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4324 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4564 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,14647702308321823805,4823746578969105379,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5384 /prefetch:1

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=7844 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=7848 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=1880 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --mojo-platform-channel-handle=4640 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=4888 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\SearchFilterHost.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5072 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --mojo-platform-channel-handle=4196 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --mojo-platform-channel-handle=6812 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --mojo-platform-channel-handle=6380 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --mojo-platform-channel-handle=5164 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --mojo-platform-channel-handle=4644 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --mojo-platform-channel-handle=6788 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\New folder\" -an -ai#7zMap1379:116:7zEvent12072

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --mojo-platform-channel-handle=8020 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --mojo-platform-channel-handle=2248 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --mojo-platform-channel-handle=5764 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\New folder\" -an -ai#7zMap8903:116:7zEvent11837

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --mojo-platform-channel-handle=7860 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Windows\system32\SearchFilterHost.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --mojo-platform-channel-handle=8000 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\CrackLauncher.exe

"C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\CrackLauncher.exe"

C:\Users\Admin\AppData\Roaming\CrackLauncher.exe

"C:\Users\Admin\AppData\Roaming\CrackLauncher.exe"

C:\Users\Admin\AppData\Roaming\XClient.exe

"C:\Users\Admin\AppData\Roaming\XClient.exe"

C:\Users\Admin\AppData\Roaming\Client.exe

"C:\Users\Admin\AppData\Roaming\Client.exe"

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c cls

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://discord.gg/SDxDej44bY

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://t.me/sk3d_club

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ffdabb846f8,0x7ffdabb84708,0x7ffdabb84718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2140,4573821591324647784,41183444553796947,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2176 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2140,4573821591324647784,41183444553796947,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2228 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2220 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2612 /prefetch:8

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Roaming\XClient.exe'

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3600 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4140 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4444 /prefetch:1

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'XClient.exe'

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4012 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2156,15237602002325096421,15090544453627198127,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3996 /prefetch:8

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionPath 'C:\Users\Admin\AppData\Roaming\system.exe'

C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -ExecutionPolicy Bypass Add-MpPreference -ExclusionProcess 'system.exe'

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --mojo-platform-channel-handle=7824 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --mojo-platform-channel-handle=5040 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --mojo-platform-channel-handle=5004 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --mojo-platform-channel-handle=4972 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5892 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=8144 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --mojo-platform-channel-handle=8004 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --mojo-platform-channel-handle=7864 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --mojo-platform-channel-handle=4836 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --mojo-platform-channel-handle=5756 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --mojo-platform-channel-handle=7760 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --mojo-platform-channel-handle=1092 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --mojo-platform-channel-handle=6432 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --mojo-platform-channel-handle=5900 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --mojo-platform-channel-handle=7456 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --mojo-platform-channel-handle=8044 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --mojo-platform-channel-handle=5340 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --mojo-platform-channel-handle=7836 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --mojo-platform-channel-handle=6176 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --mojo-platform-channel-handle=7648 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=126 --mojo-platform-channel-handle=6216 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --mojo-platform-channel-handle=5956 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --mojo-platform-channel-handle=7272 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --mojo-platform-channel-handle=3256 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=130 --mojo-platform-channel-handle=8292 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --mojo-platform-channel-handle=8308 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --mojo-platform-channel-handle=8616 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=133 --mojo-platform-channel-handle=8612 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=134 --mojo-platform-channel-handle=8304 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=135 --mojo-platform-channel-handle=8580 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=136 --mojo-platform-channel-handle=2716 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --mojo-platform-channel-handle=6696 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=138 --mojo-platform-channel-handle=6764 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=139 --mojo-platform-channel-handle=8224 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=140 --mojo-platform-channel-handle=9156 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=141 --mojo-platform-channel-handle=9196 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=142 --mojo-platform-channel-handle=9208 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=143 --mojo-platform-channel-handle=6944 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=144 --mojo-platform-channel-handle=9520 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=145 --mojo-platform-channel-handle=9704 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=146 --mojo-platform-channel-handle=9872 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=147 --mojo-platform-channel-handle=10016 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=148 --mojo-platform-channel-handle=10164 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=149 --mojo-platform-channel-handle=10312 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=150 --mojo-platform-channel-handle=10456 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=151 --mojo-platform-channel-handle=8940 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=152 --mojo-platform-channel-handle=10760 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=153 --mojo-platform-channel-handle=10944 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=154 --mojo-platform-channel-handle=10900 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=155 --mojo-platform-channel-handle=11252 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=156 --mojo-platform-channel-handle=11104 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=157 --mojo-platform-channel-handle=10564 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=158 --mojo-platform-channel-handle=10568 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=159 --mojo-platform-channel-handle=9928 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=160 --mojo-platform-channel-handle=11192 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=161 --mojo-platform-channel-handle=11360 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=162 --mojo-platform-channel-handle=11160 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=163 --mojo-platform-channel-handle=11368 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=164 --mojo-platform-channel-handle=10548 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=165 --mojo-platform-channel-handle=11108 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=166 --mojo-platform-channel-handle=10724 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=167 --mojo-platform-channel-handle=10876 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=168 --mojo-platform-channel-handle=7776 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=169 --mojo-platform-channel-handle=10984 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=170 --mojo-platform-channel-handle=8048 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=171 --mojo-platform-channel-handle=9248 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=172 --mojo-platform-channel-handle=9424 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=173 --mojo-platform-channel-handle=9412 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=174 --mojo-platform-channel-handle=10928 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=175 --mojo-platform-channel-handle=10136 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=176 --mojo-platform-channel-handle=8440 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=177 --mojo-platform-channel-handle=11252 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=178 --mojo-platform-channel-handle=10176 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=179 --mojo-platform-channel-handle=7704 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=180 --mojo-platform-channel-handle=5192 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=181 --mojo-platform-channel-handle=6672 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=182 --mojo-platform-channel-handle=10928 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=183 --mojo-platform-channel-handle=11036 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=184 --mojo-platform-channel-handle=7276 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=185 --mojo-platform-channel-handle=9220 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=186 --mojo-platform-channel-handle=9256 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=187 --mojo-platform-channel-handle=5244 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=188 --mojo-platform-channel-handle=8704 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=189 --mojo-platform-channel-handle=9092 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=190 --mojo-platform-channel-handle=4988 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=191 --mojo-platform-channel-handle=10748 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=192 --mojo-platform-channel-handle=10724 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=193 --mojo-platform-channel-handle=6848 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=194 --mojo-platform-channel-handle=8980 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=195 --mojo-platform-channel-handle=6664 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=196 --mojo-platform-channel-handle=9460 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=197 --mojo-platform-channel-handle=6740 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7672 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=11548 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Windows\system32\SearchProtocolHost.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=200 --mojo-platform-channel-handle=8320 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=201 --mojo-platform-channel-handle=11436 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Windows\system32\SearchFilterHost.exe

"C:\Windows\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=202 --mojo-platform-channel-handle=10552 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=203 --mojo-platform-channel-handle=11256 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=204 --mojo-platform-channel-handle=11884 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=205 --mojo-platform-channel-handle=7812 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=206 --mojo-platform-channel-handle=1044 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=207 --mojo-platform-channel-handle=6452 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10624 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6188 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10864 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=211 --mojo-platform-channel-handle=11124 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=212 --mojo-platform-channel-handle=8732 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=213 --mojo-platform-channel-handle=5268 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=214 --mojo-platform-channel-handle=9028 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=215 --mojo-platform-channel-handle=7420 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=216 --mojo-platform-channel-handle=5400 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=217 --mojo-platform-channel-handle=8608 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=218 --mojo-platform-channel-handle=7532 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=219 --mojo-platform-channel-handle=5184 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=220 --mojo-platform-channel-handle=10800 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=221 --mojo-platform-channel-handle=4216 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=222 --mojo-platform-channel-handle=11576 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=223 --mojo-platform-channel-handle=11620 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:1

C:\Users\Admin\Downloads\TLauncher-2.899-Installer-1.3.1.exe

"C:\Users\Admin\Downloads\TLauncher-2.899-Installer-1.3.1.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5792 --field-trial-handle=1892,i,5622345848214960407,14250522505667454868,131072 /prefetch:8

C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe

"C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe" __IRAOFF:1773458 "__IRAFN:C:\Users\Admin\Downloads\TLauncher-2.899-Installer-1.3.1.exe" "__IRCT:3" "__IRTSS:26611457" "__IRSID:S-1-5-21-200405930-3877336739-3533750831-1000"

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Windows\SysWOW64\werfault.exe

werfault.exe /h /shared Global\c5dc84e0221344648f7437235ef566b9 /t 4952 /p 6764

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /4

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\Temp\Nursultan.exe

"C:\Users\Admin\AppData\Local\Temp\Nursultan.exe"

C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe

"C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe"

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\AppData\Roaming\svchost.exe

C:\Users\Admin\wininit

C:\Users\Admin\wininit

C:\Users\Admin\AppData\Local\msedge.exe

C:\Users\Admin\AppData\Local\msedge.exe

C:\Windows\system32\LogonUI.exe

"LogonUI.exe" /flags:0x4 /state0:0xa3e93855 /state1:0x41c64e6d

Network

Country Destination Domain Proto
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 8.8.8.8:53 github.githubassets.com udp
US 185.199.108.133:443 avatars.githubusercontent.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 185.199.109.154:443 github.githubassets.com tcp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 185.199.109.154:443 github.githubassets.com tcp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 136.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
US 8.8.8.8:53 104.219.191.52.in-addr.arpa udp
US 8.8.8.8:53 133.108.199.185.in-addr.arpa udp
US 8.8.8.8:53 154.109.199.185.in-addr.arpa udp
US 8.8.8.8:53 collector.github.com udp
US 140.82.113.22:443 collector.github.com tcp
US 8.8.8.8:53 22.113.82.140.in-addr.arpa udp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 g.bing.com udp
US 204.79.197.237:443 g.bing.com tcp
NL 23.62.61.171:443 www.bing.com tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 171.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 apis.google.com udp
GB 142.250.200.14:443 apis.google.com tcp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 195.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
GB 172.217.169.46:443 play.google.com tcp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.238:443 clients2.google.com udp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 youtube.com udp
GB 142.250.200.46:443 youtube.com tcp
GB 142.250.200.46:443 youtube.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
US 8.8.8.8:53 accounts.google.com udp
IE 209.85.203.84:443 accounts.google.com udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 118.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 84.203.85.209.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 183.142.211.20.in-addr.arpa udp
US 8.8.8.8:53 consent.youtube.com udp
GB 216.58.212.206:443 consent.youtube.com tcp
GB 216.58.201.118:443 i.ytimg.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 206.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 rr2---sn-q4fl6nsr.googlevideo.com udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
US 172.217.131.199:443 rr2---sn-q4fl6nsr.googlevideo.com tcp
US 172.217.131.199:443 rr2---sn-q4fl6nsr.googlevideo.com tcp
US 172.217.131.199:443 rr2---sn-q4fl6nsr.googlevideo.com tcp
US 172.217.131.199:443 rr2---sn-q4fl6nsr.googlevideo.com tcp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 172.217.131.199:443 rr2---sn-q4fl6nsr.googlevideo.com tcp
US 172.217.131.199:443 rr2---sn-q4fl6nsr.googlevideo.com tcp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 199.131.217.172.in-addr.arpa udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 suggestqueries-clients6.youtube.com udp
GB 172.217.16.238:443 suggestqueries-clients6.youtube.com tcp
GB 172.217.16.238:443 suggestqueries-clients6.youtube.com udp
GB 172.217.16.238:443 suggestqueries-clients6.youtube.com udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
GB 142.250.200.46:443 www.youtube.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
US 8.8.8.8:53 lh6.googleusercontent.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 172.217.16.225:443 lh6.googleusercontent.com udp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
GB 142.250.180.1:443 yt3.ggpht.com udp
US 8.8.8.8:53 26.165.165.52.in-addr.arpa udp
US 8.8.8.8:53 rr3---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com tcp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 171.39.242.20.in-addr.arpa udp
US 8.8.8.8:53 104.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr2---sn-5hneknee.googlevideo.com udp
NL 74.125.8.71:443 rr2---sn-5hneknee.googlevideo.com udp
US 8.8.8.8:53 107.12.20.2.in-addr.arpa udp
US 8.8.8.8:53 71.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr3---sn-q4flrnes.googlevideo.com udp
US 173.194.191.168:443 rr3---sn-q4flrnes.googlevideo.com udp
US 8.8.8.8:53 168.191.194.173.in-addr.arpa udp
US 8.8.8.8:53 cxcs.microsoft.net udp
BE 104.68.66.114:443 cxcs.microsoft.net tcp
NL 23.62.61.72:443 www.bing.com tcp
US 8.8.8.8:53 114.66.68.104.in-addr.arpa udp
US 8.8.8.8:53 72.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 55.36.223.20.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
IE 209.85.203.84:443 accounts.google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
IE 209.85.203.84:443 accounts.google.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.169.3:443 beacons.gvt2.com tcp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
GB 172.217.169.3:443 beacons.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c1.gcp.gvt2.com udp
TW 34.80.89.126:443 e2c1.gcp.gvt2.com tcp
TW 34.80.89.126:443 e2c1.gcp.gvt2.com tcp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 126.89.80.34.in-addr.arpa udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com tcp
US 8.8.8.8:53 e2c39.gcp.gvt2.com udp
FI 35.217.17.196:443 e2c39.gcp.gvt2.com tcp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 196.17.217.35.in-addr.arpa udp
GB 142.250.180.1:443 yt3.ggpht.com udp
US 8.8.8.8:53 workupload.com udp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
GB 142.250.187.238:443 fundingchoicesmessages.google.com tcp
DE 144.76.176.119:443 workupload.com tcp
US 8.8.8.8:53 t.workupload.com udp
DE 144.76.176.119:443 workupload.com tcp
DE 49.13.126.162:443 t.workupload.com tcp
US 8.8.8.8:53 119.176.76.144.in-addr.arpa udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 162.126.13.49.in-addr.arpa udp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
DE 144.76.176.119:443 workupload.com tcp
US 8.8.8.8:53 f84.workupload.com udp
US 8.8.8.8:53 21.236.111.52.in-addr.arpa udp
DE 176.9.34.148:443 f84.workupload.com tcp
DE 176.9.34.148:443 f84.workupload.com tcp
US 8.8.8.8:53 148.34.9.176.in-addr.arpa udp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 10.28.171.150.in-addr.arpa udp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons3.gvt2.com udp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
IE 209.85.203.84:443 accounts.google.com udp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 8.8.8.8:53 3.213.58.216.in-addr.arpa udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 rr1---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.102:443 rr1---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 102.8.125.74.in-addr.arpa udp
GB 216.58.201.118:443 i.ytimg.com udp
US 8.8.8.8:53 rr1---sn-5hne6n6l.googlevideo.com udp
NL 74.125.8.166:443 rr1---sn-5hne6n6l.googlevideo.com udp
US 8.8.8.8:53 166.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr4---sn-4g5edndk.googlevideo.com udp
DE 172.217.133.201:443 rr4---sn-4g5edndk.googlevideo.com udp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 201.133.217.172.in-addr.arpa udp
GB 142.250.180.1:443 yt3.ggpht.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com udp
GB 216.58.201.118:443 i.ytimg.com udp
GB 142.250.180.1:443 yt3.ggpht.com udp
NL 74.125.8.102:443 rr1---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 rr1---sn-5hne6nzy.googlevideo.com udp
NL 172.217.132.166:443 rr1---sn-5hne6nzy.googlevideo.com udp
US 8.8.8.8:53 166.132.217.172.in-addr.arpa udp
NL 172.217.132.166:443 rr1---sn-5hne6nzy.googlevideo.com tcp
US 8.8.8.8:53 rr1---sn-5hnekn7z.googlevideo.com udp
NL 74.125.100.102:443 rr1---sn-5hnekn7z.googlevideo.com udp
US 8.8.8.8:53 102.100.125.74.in-addr.arpa udp
NL 74.125.8.103:443 rr2---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.103:443 rr2---sn-5hne6nzs.googlevideo.com tcp
US 8.8.8.8:53 103.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 rr1---sn-5hnekn7s.googlevideo.com udp
NL 74.125.100.38:443 rr1---sn-5hnekn7s.googlevideo.com udp
US 8.8.8.8:53 38.100.125.74.in-addr.arpa udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 rr4---sn-q4fl6nd7.googlevideo.com udp
US 173.194.140.201:443 rr4---sn-q4fl6nd7.googlevideo.com udp
US 8.8.8.8:53 201.140.194.173.in-addr.arpa udp
US 173.194.140.201:443 rr4---sn-q4fl6nd7.googlevideo.com tcp
US 173.194.140.201:443 rr4---sn-q4fl6nd7.googlevideo.com tcp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 i9.ytimg.com udp
GB 172.217.16.238:443 i9.ytimg.com tcp
US 8.8.8.8:53 rr5---sn-5hne6nz6.googlevideo.com udp
NL 74.125.100.202:443 rr5---sn-5hne6nz6.googlevideo.com udp
US 8.8.8.8:53 202.100.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr2---sn-5hne6ns6.googlevideo.com udp
NL 209.85.226.103:443 rr2---sn-5hne6ns6.googlevideo.com udp
US 8.8.8.8:53 103.226.85.209.in-addr.arpa udp
US 8.8.8.8:53 rr5---sn-5hne6nsr.googlevideo.com udp
NL 172.217.132.74:443 rr5---sn-5hne6nsr.googlevideo.com udp
US 8.8.8.8:53 74.132.217.172.in-addr.arpa udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 172.217.169.3:443 beacons.gvt2.com udp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 8.8.8.8:53 moneyz.fun udp
US 104.21.83.20:443 moneyz.fun tcp
US 104.21.83.20:443 moneyz.fun udp
US 8.8.8.8:53 ajax.googleapis.com udp
GB 142.250.180.10:443 ajax.googleapis.com tcp
US 8.8.8.8:53 ulogin.ru udp
US 8.8.8.8:53 pushadvert.bid udp
RU 95.163.118.168:443 ulogin.ru tcp
NL 185.177.94.180:443 pushadvert.bid tcp
US 8.8.8.8:53 20.83.21.104.in-addr.arpa udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 counter.yadro.ru udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
RU 87.250.250.119:443 mc.yandex.ru tcp
RU 88.212.201.198:443 counter.yadro.ru tcp
US 8.8.8.8:53 180.94.177.185.in-addr.arpa udp
US 8.8.8.8:53 168.118.163.95.in-addr.arpa udp
US 8.8.8.8:53 198.201.212.88.in-addr.arpa udp
US 8.8.8.8:53 119.250.250.87.in-addr.arpa udp
US 8.8.8.8:53 dao01.biz udp
US 8.8.8.8:53 mc.yandex.com udp
NL 51.15.19.37:443 dao01.biz tcp
US 8.8.8.8:53 37.19.15.51.in-addr.arpa udp
US 8.8.8.8:53 pdkopk.com udp
NL 31.220.27.98:443 pdkopk.com tcp
NL 31.220.27.98:443 pdkopk.com tcp
US 8.8.8.8:53 teckha.com udp
NL 185.162.87.220:443 teckha.com tcp
US 8.8.8.8:53 mdakky.com udp
US 8.8.8.8:53 veachy.com udp
NL 185.162.85.2:443 mdakky.com tcp
US 172.67.202.108:443 veachy.com tcp
US 172.67.202.108:443 veachy.com udp
US 8.8.8.8:53 98.27.220.31.in-addr.arpa udp
US 8.8.8.8:53 220.87.162.185.in-addr.arpa udp
US 8.8.8.8:53 2.85.162.185.in-addr.arpa udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 rr2---sn-5hnednss.googlevideo.com udp
NL 172.217.132.199:443 rr2---sn-5hnednss.googlevideo.com udp
US 8.8.8.8:53 199.132.217.172.in-addr.arpa udp
US 8.8.8.8:53 rr2---sn-5hne6nsz.googlevideo.com udp
NL 74.125.100.71:443 rr2---sn-5hne6nsz.googlevideo.com udp
NL 74.125.100.102:443 rr1---sn-5hnekn7z.googlevideo.com udp
US 8.8.8.8:53 71.100.125.74.in-addr.arpa udp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 rr3---sn-5hnednss.googlevideo.com udp
NL 172.217.132.200:443 rr3---sn-5hnednss.googlevideo.com udp
US 8.8.8.8:53 200.132.217.172.in-addr.arpa udp
US 8.8.8.8:53 rr1---sn-5hne6nz6.googlevideo.com udp
NL 74.125.100.198:443 rr1---sn-5hne6nz6.googlevideo.com udp
US 8.8.8.8:53 198.100.125.74.in-addr.arpa udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 rr4---sn-5hne6nz6.googlevideo.com udp
NL 74.125.100.201:443 rr4---sn-5hne6nz6.googlevideo.com udp
US 8.8.8.8:53 201.100.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr4---sn-oj5hn5-55.googlevideo.com udp
NL 74.125.8.4:443 rr4---sn-oj5hn5-55.googlevideo.com udp
US 8.8.8.8:53 rr4---sn-5hne6n6e.googlevideo.com udp
NL 172.217.132.233:443 rr4---sn-5hne6n6e.googlevideo.com udp
US 8.8.8.8:53 4.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 233.132.217.172.in-addr.arpa udp
US 8.8.8.8:53 rr3---sn-5hne6nzk.googlevideo.com udp
NL 172.217.132.136:443 rr3---sn-5hne6nzk.googlevideo.com udp
US 8.8.8.8:53 136.132.217.172.in-addr.arpa udp
GB 172.217.16.238:443 i9.ytimg.com udp
GB 172.217.16.238:443 i9.ytimg.com udp
GB 142.250.187.196:443 www.google.com udp
NL 74.125.100.38:443 rr1---sn-5hnekn7s.googlevideo.com udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 rr3---sn-q4flrne7.googlevideo.com udp
US 209.85.165.168:443 rr3---sn-q4flrne7.googlevideo.com udp
US 8.8.8.8:53 168.165.85.209.in-addr.arpa udp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 oxy.st udp
RU 185.178.208.137:443 oxy.st tcp
RU 185.178.208.137:443 oxy.st tcp
US 8.8.8.8:53 contextual.media.net udp
GB 2.21.188.27:443 contextual.media.net tcp
US 8.8.8.8:53 ads.themoneytizer.com udp
US 8.8.8.8:53 smatr.net udp
US 8.8.8.8:53 cdn.adlook.me udp
NL 88.208.46.222:443 smatr.net tcp
US 8.8.8.8:53 lg3.media.net udp
US 104.22.62.227:443 ads.themoneytizer.com tcp
US 104.22.62.227:443 ads.themoneytizer.com tcp
US 8.8.8.8:53 yastatic.net udp
RU 193.17.93.93:443 cdn.adlook.me tcp
RU 178.154.131.215:443 yastatic.net tcp
RU 178.154.131.215:443 yastatic.net tcp
US 8.8.8.8:53 137.208.178.185.in-addr.arpa udp
US 8.8.8.8:53 27.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 222.46.208.88.in-addr.arpa udp
US 8.8.8.8:53 227.62.22.104.in-addr.arpa udp
US 8.8.8.8:53 cdn.themoneytizer.fr udp
US 8.8.8.8:53 ced.sascdn.com udp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 secure.quantserve.com udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 p.cpx.to udp
US 8.8.8.8:53 adtrack.adleadevent.com udp
US 8.8.8.8:53 ogffa.net udp
RU 88.212.201.198:443 counter.yadro.ru tcp
US 8.8.8.8:53 system-notify.app udp
US 172.67.174.127:443 cdn.themoneytizer.fr tcp
BE 88.221.83.129:443 ced.sascdn.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 88.208.46.222:443 ogffa.net tcp
IE 54.194.201.31:443 p.cpx.to tcp
DE 51.38.120.206:443 onetag-sys.com tcp
IE 52.211.86.237:443 adtrack.adleadevent.com tcp
DE 157.90.33.122:443 system-notify.app tcp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 8.8.8.8:53 ads.adlook.me udp
RU 176.122.21.226:443 ads.adlook.me tcp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 rules.quantcount.com udp
US 35.71.131.137:443 match.adsrvr.org tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 104.22.52.86:443 cdn.id5-sync.com tcp
ES 108.157.109.111:443 rules.quantcount.com tcp
US 8.8.8.8:53 s.cpx.to udp
US 8.8.8.8:53 pixel.quantserve.com udp
IE 54.194.201.31:443 s.cpx.to tcp
US 8.8.8.8:53 uidsync.net udp
DE 23.88.8.125:443 uidsync.net tcp
DE 23.88.8.125:443 uidsync.net tcp
US 8.8.8.8:53 93.93.17.193.in-addr.arpa udp
US 8.8.8.8:53 215.131.154.178.in-addr.arpa udp
US 8.8.8.8:53 127.174.67.172.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 129.83.221.88.in-addr.arpa udp
US 8.8.8.8:53 206.120.38.51.in-addr.arpa udp
US 8.8.8.8:53 237.86.211.52.in-addr.arpa udp
US 8.8.8.8:53 122.33.90.157.in-addr.arpa udp
US 8.8.8.8:53 159.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 226.21.122.176.in-addr.arpa udp
US 8.8.8.8:53 137.131.71.35.in-addr.arpa udp
US 8.8.8.8:53 82.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 86.52.22.104.in-addr.arpa udp
US 8.8.8.8:53 111.109.157.108.in-addr.arpa udp
US 8.8.8.8:53 cdn-a.adlook.me udp
US 8.8.8.8:53 utraff.com udp
US 8.8.8.8:53 sync.dmp.otm-r.com udp
US 8.8.8.8:53 sync.bumlam.com udp
US 8.8.8.8:53 match.new-programmatic.com udp
US 8.8.8.8:53 ads.betweendigital.com udp
US 8.8.8.8:53 www.acint.net udp
US 8.8.8.8:53 sync.opendsp.ru udp
US 8.8.8.8:53 px.adhigh.net udp
US 8.8.8.8:53 sync.programmatica.com udp
US 8.8.8.8:53 exchange.buzzoola.com udp
RU 176.122.21.130:443 cdn-a.adlook.me tcp
US 104.26.6.189:443 utraff.com tcp
DE 31.172.81.147:443 sync.bumlam.com tcp
NL 188.42.34.65:443 ads.betweendigital.com tcp
RU 158.160.128.78:443 sync.programmatica.com tcp
RU 82.148.20.186:443 sync.opendsp.ru tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
DE 195.201.106.117:443 sync.dmp.otm-r.com tcp
DE 195.201.106.117:443 sync.dmp.otm-r.com tcp
DE 176.9.79.218:443 exchange.buzzoola.com tcp
RU 193.3.184.137:443 www.acint.net tcp
RU 193.232.148.130:443 px.adhigh.net tcp
US 8.8.8.8:53 kimberlite.io udp
US 8.8.8.8:53 ssp.al-adtech.com udp
RU 217.199.220.43:443 kimberlite.io tcp
US 8.8.8.8:53 nr.bidderstack.com udp
US 8.8.8.8:53 match.ohmy.bid udp
US 8.8.8.8:53 a.utraff.com udp
US 8.8.8.8:53 sync.upravel.com udp
RU 45.139.25.121:443 ssp.al-adtech.com tcp
DE 167.235.186.113:443 nr.bidderstack.com tcp
DE 167.235.14.51:443 match.ohmy.bid tcp
US 8.8.8.8:53 ssp-rtb.sape.ru udp
DE 195.201.193.156:443 sync.upravel.com tcp
RU 193.3.184.215:443 ssp-rtb.sape.ru tcp
RU 193.3.184.215:443 ssp-rtb.sape.ru tcp
US 8.8.8.8:53 dmp.sbermarketing.ru udp
US 8.8.8.8:53 sm.rtb.mts.ru udp
US 8.8.8.8:53 redirect-frontend.weborama-tech.ru udp
RU 37.18.110.198:443 dmp.sbermarketing.ru tcp
RU 37.18.110.198:443 dmp.sbermarketing.ru tcp
RU 217.66.147.42:443 sm.rtb.mts.ru tcp
RU 178.154.231.214:443 redirect-frontend.weborama-tech.ru tcp
RU 217.66.147.42:443 sm.rtb.mts.ru tcp
US 8.8.8.8:53 sync.dsp.solta.io udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
DE 167.235.186.113:443 nr.bidderstack.com tcp
DE 167.235.14.51:443 match.ohmy.bid tcp
RU 217.199.220.72:443 sync.dsp.solta.io tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 acint.net udp
US 8.8.8.8:53 an.yandex.ru udp
US 8.8.8.8:53 videotarget-sync.rutarget.ru udp
US 8.8.8.8:53 vma.mts.ru udp
RU 93.158.134.90:443 an.yandex.ru tcp
US 8.8.8.8:53 redirect.frontend.weborama.fr udp
US 8.8.8.8:53 dmg.digitaltarget.ru udp
RU 45.9.27.120:443 videotarget-sync.rutarget.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 185.15.175.130:443 dmg.digitaltarget.ru tcp
US 35.190.24.218:443 redirect.frontend.weborama.fr tcp
US 8.8.8.8:53 sync.videonow.ru udp
RU 212.76.131.50:443 sync.videonow.ru tcp
US 8.8.8.8:53 sync.gonet-ads.com udp
US 35.190.24.218:443 redirect.frontend.weborama.fr udp
US 8.8.8.8:53 125.8.88.23.in-addr.arpa udp
US 8.8.8.8:53 189.6.26.104.in-addr.arpa udp
US 8.8.8.8:53 147.81.172.31.in-addr.arpa udp
US 8.8.8.8:53 65.34.42.188.in-addr.arpa udp
US 8.8.8.8:53 117.106.201.195.in-addr.arpa udp
US 8.8.8.8:53 218.79.9.176.in-addr.arpa udp
US 8.8.8.8:53 130.21.122.176.in-addr.arpa udp
US 8.8.8.8:53 150.2.65.217.in-addr.arpa udp
US 8.8.8.8:53 186.20.148.82.in-addr.arpa udp
US 8.8.8.8:53 78.128.160.158.in-addr.arpa udp
US 8.8.8.8:53 130.148.232.193.in-addr.arpa udp
US 8.8.8.8:53 137.184.3.193.in-addr.arpa udp
US 8.8.8.8:53 121.25.139.45.in-addr.arpa udp
US 8.8.8.8:53 215.184.3.193.in-addr.arpa udp
US 8.8.8.8:53 156.193.201.195.in-addr.arpa udp
US 8.8.8.8:53 42.147.66.217.in-addr.arpa udp
US 8.8.8.8:53 198.110.18.37.in-addr.arpa udp
US 8.8.8.8:53 214.231.154.178.in-addr.arpa udp
US 8.8.8.8:53 113.186.235.167.in-addr.arpa udp
US 8.8.8.8:53 51.14.235.167.in-addr.arpa udp
US 8.8.8.8:53 120.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 72.220.199.217.in-addr.arpa udp
US 8.8.8.8:53 90.134.158.93.in-addr.arpa udp
US 8.8.8.8:53 218.24.190.35.in-addr.arpa udp
US 8.8.8.8:53 118.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 120.27.9.45.in-addr.arpa udp
US 8.8.8.8:53 36.147.66.217.in-addr.arpa udp
US 8.8.8.8:53 130.175.15.185.in-addr.arpa udp
NL 23.109.14.90:443 sync.gonet-ads.com tcp
RU 217.66.147.36:443 vma.mts.ru tcp
US 8.8.8.8:53 x01.aidata.io udp
RU 89.108.119.28:443 x01.aidata.io tcp
US 8.8.8.8:53 tech.rtb.mts.ru udp
US 8.8.8.8:53 cs.alfasense.com udp
US 8.8.8.8:53 solta-sync.rutarget.ru udp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
US 8.8.8.8:53 cs.agency2.ru udp
RU 23.111.100.20:443 cs.alfasense.com tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
RU 46.243.143.249:443 solta-sync.rutarget.ru tcp
RU 23.105.255.196:443 cs.agency2.ru tcp
US 8.8.8.8:53 ad.mail.ru udp
US 8.8.8.8:53 dm-eu.hybrid.ai udp
US 8.8.8.8:53 sync.rambler.ru udp
RU 95.163.41.56:443 ad.mail.ru tcp
NL 37.230.131.22:443 dm-eu.hybrid.ai tcp
RU 87.242.127.163:443 sync.rambler.ru tcp
US 8.8.8.8:53 ev.adriver.ru udp
RU 195.209.108.55:443 ev.adriver.ru tcp
US 8.8.8.8:53 a.lotus-dsp.ru udp
US 8.8.8.8:53 7384392144736757577-otm.ops.beeline.ru udp
RU 217.199.220.43:443 kimberlite.io tcp
US 104.21.94.226:443 a.lotus-dsp.ru tcp
RU 37.9.245.57:443 7384392144736757577-otm.ops.beeline.ru tcp
US 8.8.8.8:53 pixel.konnektu.ru udp
US 8.8.8.8:53 dsp.qtarget.tech udp
RU 158.160.158.98:443 pixel.konnektu.ru tcp
RU 95.163.92.179:443 dsp.qtarget.tech tcp
US 8.8.8.8:53 privacy-cs.mail.ru udp
US 8.8.8.8:53 sync.otm-r.com udp
RU 95.163.52.89:443 privacy-cs.mail.ru tcp
RU 194.55.244.195:443 sync.otm-r.com tcp
US 8.8.8.8:53 s.suprion.ru udp
US 8.8.8.8:53 rtb.moe.video udp
RU 185.15.175.130:443 dmg.digitaltarget.ru tcp
RU 185.15.175.130:443 dmg.digitaltarget.ru tcp
US 8.8.8.8:53 stun4.l.google.com udp
US 8.8.8.8:53 stun3.l.google.com udp
RU 213.248.44.211:443 s.suprion.ru tcp
RU 188.124.47.43:443 rtb.moe.video tcp
US 8.8.8.8:53 28.119.108.89.in-addr.arpa udp
US 8.8.8.8:53 50.131.76.212.in-addr.arpa udp
US 8.8.8.8:53 187.44.87.213.in-addr.arpa udp
US 8.8.8.8:53 20.100.111.23.in-addr.arpa udp
US 8.8.8.8:53 249.143.243.46.in-addr.arpa udp
US 8.8.8.8:53 196.255.105.23.in-addr.arpa udp
US 8.8.8.8:53 22.131.230.37.in-addr.arpa udp
US 8.8.8.8:53 56.41.163.95.in-addr.arpa udp
US 8.8.8.8:53 163.127.242.87.in-addr.arpa udp
US 8.8.8.8:53 55.108.209.195.in-addr.arpa udp
US 8.8.8.8:53 226.94.21.104.in-addr.arpa udp
US 8.8.8.8:53 57.245.9.37.in-addr.arpa udp
US 8.8.8.8:53 98.158.160.158.in-addr.arpa udp
US 8.8.8.8:53 179.92.163.95.in-addr.arpa udp
US 8.8.8.8:53 195.244.55.194.in-addr.arpa udp
US 8.8.8.8:53 89.52.163.95.in-addr.arpa udp
US 8.8.8.8:53 sp.ohmy.bid udp
US 74.125.250.129:19302 stun3.l.google.com udp
RU 95.163.41.56:443 ad.mail.ru tcp
US 74.125.250.129:19302 stun3.l.google.com udp
US 74.125.250.129:19302 stun3.l.google.com udp
RU 95.163.52.89:443 privacy-cs.mail.ru tcp
DE 167.235.10.91:443 sp.ohmy.bid tcp
US 8.8.8.8:53 rtb.com.ru udp
RU 217.66.147.42:443 vma.mts.ru tcp
US 8.8.8.8:53 stat.adlook.me udp
RU 83.222.114.188:443 rtb.com.ru tcp
RU 95.163.52.89:443 privacy-cs.mail.ru tcp
US 8.8.8.8:53 7384392144736757577.sync.otm-r.com udp
RU 194.55.244.195:443 7384392144736757577.sync.otm-r.com tcp
RU 83.222.114.188:443 rtb.com.ru tcp
US 172.67.74.180:443 a.utraff.com tcp
US 8.8.8.8:53 cm.p.altergeo.ru udp
DE 138.201.139.144:443 cm.p.altergeo.ru tcp
US 8.8.8.8:53 weborama.utraff.com udp
US 104.21.94.226:443 a.lotus-dsp.ru udp
US 8.8.8.8:53 a.adsource.tech udp
US 8.8.8.8:53 s.uuidksinc.net udp
US 8.8.8.8:53 a.udsp.io udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
NL 31.220.27.155:443 s.uuidksinc.net tcp
US 104.21.37.210:443 a.adsource.tech tcp
US 172.67.215.213:443 a.udsp.io tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 sync.crwdcntrl.net udp
US 8.8.8.8:53 cstatic.weborama.fr udp
IE 54.72.120.129:443 sync.crwdcntrl.net tcp
US 8.8.8.8:53 adx.com.ru udp
US 152.199.22.228:443 cstatic.weborama.fr tcp
US 8.8.8.8:53 a.adiam.tech udp
RU 83.222.104.222:443 adx.com.ru tcp
US 172.67.215.213:443 a.udsp.io tcp
US 8.8.8.8:53 43.47.124.188.in-addr.arpa udp
US 8.8.8.8:53 211.44.248.213.in-addr.arpa udp
US 8.8.8.8:53 129.250.125.74.in-addr.arpa udp
US 8.8.8.8:53 91.10.235.167.in-addr.arpa udp
US 8.8.8.8:53 180.74.67.172.in-addr.arpa udp
US 8.8.8.8:53 226.21.18.104.in-addr.arpa udp
US 8.8.8.8:53 144.139.201.138.in-addr.arpa udp
US 8.8.8.8:53 210.37.21.104.in-addr.arpa udp
US 8.8.8.8:53 155.27.220.31.in-addr.arpa udp
US 8.8.8.8:53 213.215.67.172.in-addr.arpa udp
US 8.8.8.8:53 129.120.72.54.in-addr.arpa udp
US 104.21.58.49:443 a.adiam.tech tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 pixel.dsp.onetarget.ru udp
US 8.8.8.8:53 top-fwz1.mail.ru udp
RU 130.193.53.230:443 pixel.dsp.onetarget.ru tcp
RU 95.163.52.67:443 top-fwz1.mail.ru tcp
US 8.8.8.8:53 mts-dsp-sync.rutarget.ru udp
RU 188.72.107.156:443 mts-dsp-sync.rutarget.ru tcp
US 8.8.8.8:53 228.22.199.152.in-addr.arpa udp
US 8.8.8.8:53 49.58.21.104.in-addr.arpa udp
US 8.8.8.8:53 222.104.222.83.in-addr.arpa udp
US 8.8.8.8:53 230.53.193.130.in-addr.arpa udp
US 8.8.8.8:53 67.52.163.95.in-addr.arpa udp
US 8.8.8.8:53 156.107.72.188.in-addr.arpa udp
US 8.8.8.8:53 14.179.89.13.in-addr.arpa udp
US 8.8.8.8:53 tmzr.themoneytizer.fr udp
US 8.8.8.8:53 lexicon.33across.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 id.crwdcntrl.net udp
US 8.8.8.8:53 ww1097.smartadserver.com udp
US 35.244.193.51:443 lexicon.33across.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 51.193.244.35.in-addr.arpa udp
US 8.8.8.8:53 192.192.149.89.in-addr.arpa udp
RU 217.199.220.43:443 kimberlite.io tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 95.163.41.56:443 ad.mail.ru tcp
US 74.125.250.129:19302 stun3.l.google.com udp
US 74.125.250.129:19302 stun3.l.google.com udp
US 74.125.250.129:19302 stun3.l.google.com udp
RU 217.66.147.42:443 vma.mts.ru tcp
US 104.21.58.49:443 a.adiam.tech udp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
US 8.8.8.8:53 dm.hybrid.ai udp
RU 217.199.220.43:443 kimberlite.io tcp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
US 8.8.8.8:53 ad.adriver.ru udp
RU 195.209.108.46:443 ad.adriver.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
RU 83.222.114.190:443 rtb.com.ru tcp
RU 83.222.114.190:443 rtb.com.ru tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 95.163.41.56:443 ad.mail.ru tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 46.108.209.195.in-addr.arpa udp
RU 217.66.147.42:443 vma.mts.ru tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
RU 217.199.220.43:443 kimberlite.io tcp
RU 185.15.175.130:443 dmg.digitaltarget.ru tcp
RU 217.199.220.72:443 sync.dsp.solta.io tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
RU 83.222.114.187:443 rtb.com.ru tcp
US 8.8.8.8:53 google.com udp
DE 31.172.81.147:443 sync.bumlam.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.199.220.43:443 kimberlite.io tcp
RU 83.222.114.187:443 rtb.com.ru tcp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 const.uno udp
RU 95.163.84.7:443 const.uno tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 217.66.147.42:443 vma.mts.ru tcp
US 8.8.8.8:53 7.84.163.95.in-addr.arpa udp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
US 8.8.8.8:53 e2c25.gcp.gvt2.com udp
FR 34.155.84.81:443 e2c25.gcp.gvt2.com tcp
US 8.8.8.8:53 81.84.155.34.in-addr.arpa udp
US 8.8.8.8:53 beacons.gvt2.com udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.199.220.43:443 kimberlite.io tcp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 1033--mzu5zddkndvkyjyyngzl.stbid.ru udp
RU 94.141.105.124:443 1033--mzu5zddkndvkyjyyngzl.stbid.ru tcp
DE 31.172.81.147:443 sync.bumlam.com tcp
RU 94.141.105.124:443 1033--mzu5zddkndvkyjyyngzl.stbid.ru tcp
US 8.8.8.8:53 a.videohead.tech udp
US 104.21.18.123:443 a.videohead.tech tcp
RU 95.163.41.56:443 ad.mail.ru tcp
RU 95.163.41.56:443 ad.mail.ru tcp
US 8.8.8.8:53 124.105.141.94.in-addr.arpa udp
US 8.8.8.8:53 123.18.21.104.in-addr.arpa udp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
US 8.8.8.8:53 rr4---sn-5hne6n6l.googlevideo.com udp
NL 74.125.8.169:443 rr4---sn-5hne6n6l.googlevideo.com udp
US 8.8.8.8:53 169.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 yastatic.net udp
US 8.8.8.8:53 cdn.adlook.me udp
RU 178.154.131.215:443 yastatic.net tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 code-ya.jivosite.com udp
US 8.8.8.8:53 lg3.media.net udp
AM 5.101.37.37:443 code-ya.jivosite.com tcp
GB 2.21.188.27:443 lg3.media.net udp
GB 216.58.213.10:443 content-autofill.googleapis.com udp
AM 5.101.37.37:443 code-ya.jivosite.com tcp
US 8.8.8.8:53 node-ya-1.jivosite.com udp
RU 51.250.22.213:443 node-ya-1.jivosite.com tcp
RU 83.222.114.186:443 rtb.com.ru tcp
US 8.8.8.8:53 code.jivosite.com udp
US 8.8.8.8:53 37.37.101.5.in-addr.arpa udp
US 8.8.8.8:53 10.213.58.216.in-addr.arpa udp
RU 83.222.114.186:443 rtb.com.ru tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 88.208.46.222:443 ogffa.net tcp
NL 88.208.46.222:443 ogffa.net tcp
US 8.8.8.8:53 download.oxy.st udp
RU 185.178.208.137:443 download.oxy.st tcp
RU 185.178.208.137:443 download.oxy.st tcp
DE 51.38.120.206:443 onetag-sys.com udp
US 8.8.8.8:53 boot.pbstck.com udp
US 8.8.8.8:53 adtrack.adleadevent.com udp
US 8.8.8.8:53 counter.yadro.ru udp
DE 157.90.33.122:443 uidsync.net tcp
US 104.22.0.93:443 boot.pbstck.com tcp
IE 63.34.213.143:443 adtrack.adleadevent.com tcp
RU 88.212.201.198:443 counter.yadro.ru tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 35.71.131.137:443 match.adsrvr.org tcp
US 8.8.8.8:53 cdn.pbstck.com udp
DE 51.38.120.206:443 onetag-sys.com tcp
DE 23.88.8.125:443 uidsync.net tcp
DE 91.228.74.200:443 pixel.quantserve.com tcp
US 172.67.25.151:443 cdn.pbstck.com tcp
US 172.67.25.151:443 cdn.pbstck.com tcp
US 8.8.8.8:53 s.cpx.to udp
IE 52.48.136.129:443 s.cpx.to tcp
DE 23.88.8.125:443 uidsync.net tcp
US 8.8.8.8:53 intake.pbstck.com udp
DE 31.172.81.147:443 sync.bumlam.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.199.220.43:443 kimberlite.io tcp
US 8.8.8.8:53 tms.dmp.wi-fi.ru udp
US 8.8.8.8:53 93.0.22.104.in-addr.arpa udp
US 8.8.8.8:53 151.25.67.172.in-addr.arpa udp
US 8.8.8.8:53 143.213.34.63.in-addr.arpa udp
US 8.8.8.8:53 200.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 129.136.48.52.in-addr.arpa udp
RU 91.220.120.9:443 tms.dmp.wi-fi.ru tcp
US 8.8.8.8:53 sync.dsp.solta.io udp
US 8.8.8.8:53 ev.adriver.ru udp
RU 217.199.220.73:443 sync.dsp.solta.io tcp
RU 195.209.108.56:443 ev.adriver.ru tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
RU 217.66.147.42:443 vma.mts.ru tcp
US 8.8.8.8:53 56.108.209.195.in-addr.arpa udp
US 8.8.8.8:53 73.220.199.217.in-addr.arpa udp
US 8.8.8.8:53 9.120.220.91.in-addr.arpa udp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
US 172.67.25.151:443 intake.pbstck.com udp
US 8.8.8.8:53 s1.oxy.st udp
US 104.21.234.182:443 s1.oxy.st tcp
US 8.8.8.8:53 182.234.21.104.in-addr.arpa udp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 35.244.193.51:443 lexicon.33across.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 id.crwdcntrl.net udp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
IE 52.215.98.156:443 id.crwdcntrl.net tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 162.19.138.120:443 lb.eu-1-id5-sync.com tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
US 8.8.8.8:53 156.98.215.52.in-addr.arpa udp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 188.72.107.156:443 mts-dsp-sync.rutarget.ru tcp
US 8.8.8.8:53 mc.acint.net udp
US 8.8.8.8:53 sape-sync.rutarget.ru udp
RU 178.170.196.247:443 sape-sync.rutarget.ru tcp
US 8.8.8.8:53 247.196.170.178.in-addr.arpa udp
US 8.8.8.8:53 api.telegram.org udp
NL 149.154.167.220:443 api.telegram.org tcp
RU 83.222.114.189:443 rtb.com.ru tcp
RU 83.222.114.189:443 rtb.com.ru tcp
US 8.8.8.8:53 220.167.154.149.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 logo-active.gl.at.ply.gg udp
GB 172.217.169.46:443 play.google.com udp
US 147.185.221.19:25835 logo-active.gl.at.ply.gg tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 19.221.185.147.in-addr.arpa udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 sync.rambler.ru udp
RU 87.242.127.163:443 sync.rambler.ru tcp
RU 217.66.147.42:443 vma.mts.ru tcp
US 8.8.8.8:53 seems-poet.gl.at.ply.gg udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
GB 216.58.201.118:443 i.ytimg.com udp
RU 217.199.220.43:443 kimberlite.io tcp
DE 31.172.81.147:443 sync.bumlam.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.199.220.43:443 kimberlite.io tcp
US 8.8.8.8:53 nrr.bidderstack.com udp
RU 87.228.3.93:443 nrr.bidderstack.com tcp
RU 87.228.3.93:443 nrr.bidderstack.com tcp
US 8.8.8.8:53 93.3.228.87.in-addr.arpa udp
RU 185.15.175.130:443 dmg.digitaltarget.ru tcp
US 104.21.18.123:443 a.videohead.tech udp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 172.67.25.151:443 intake.pbstck.com udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
NL 172.217.132.136:443 rr3---sn-5hne6nzk.googlevideo.com udp
US 8.8.8.8:53 suggestqueries-clients6.youtube.com udp
GB 172.217.16.238:443 suggestqueries-clients6.youtube.com udp
GB 172.217.16.238:443 suggestqueries-clients6.youtube.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 8.8.8.8:53 clients2.google.com udp
RU 37.18.110.198:443 dmp.sbermarketing.ru tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 1.80.190.35.in-addr.arpa udp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
US 8.8.8.8:53 lh5.googleusercontent.com udp
GB 172.217.16.225:443 lh5.googleusercontent.com udp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 rr4---sn-5hnednss.googlevideo.com udp
NL 172.217.132.201:443 rr4---sn-5hnednss.googlevideo.com udp
US 8.8.8.8:53 201.132.217.172.in-addr.arpa udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
NL 89.149.192.192:443 ww1097.smartadserver.com tcp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
RU 188.72.107.156:443 sape-sync.rutarget.ru tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RU 217.66.147.42:443 vma.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
US 8.8.8.8:53 rr3---sn-5hne6n6l.googlevideo.com udp
NL 74.125.8.168:443 rr3---sn-5hne6n6l.googlevideo.com udp
US 8.8.8.8:53 168.8.125.74.in-addr.arpa udp
RU 213.87.44.187:443 tech.rtb.mts.ru tcp
RU 217.66.147.36:443 vma.mts.ru tcp
NL 172.217.132.136:443 rr3---sn-5hne6nzk.googlevideo.com udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 8.8.8.8:53 ww1097.smartadserver.com udp
FR 5.196.111.65:443 ww1097.smartadserver.com tcp
FR 5.196.111.65:443 ww1097.smartadserver.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 65.111.196.5.in-addr.arpa udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 gstatic.com udp
GB 172.217.16.227:443 gstatic.com tcp
US 8.8.8.8:53 227.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 ip-api.com udp
US 208.95.112.1:80 ip-api.com tcp
US 8.8.8.8:53 discord.com udp
US 162.159.136.232:443 discord.com tcp
US 8.8.8.8:53 1.112.95.208.in-addr.arpa udp
US 8.8.8.8:53 232.136.159.162.in-addr.arpa udp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 t.me udp
US 8.8.8.8:53 discord.gg udp
NL 149.154.167.99:443 t.me tcp
US 162.159.135.234:443 discord.gg tcp
US 8.8.8.8:53 seems-poet.gl.at.ply.gg udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 8.8.8.8:53 discord.com udp
US 162.159.138.232:443 discord.com tcp
US 162.159.138.232:443 discord.com udp
US 8.8.8.8:53 99.167.154.149.in-addr.arpa udp
US 8.8.8.8:53 234.135.159.162.in-addr.arpa udp
US 8.8.8.8:53 232.138.159.162.in-addr.arpa udp
US 8.8.8.8:53 ww1097.smartadserver.com udp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
US 8.8.8.8:53 240.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 api.minecraftservices.com udp
US 13.107.246.64:443 api.minecraftservices.com tcp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 8.8.8.8:53 mine.bmpool.org udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 30.178.252.5.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
N/A 127.0.0.1:28223 tcp
NL 149.154.167.99:443 t.me tcp
US 162.159.135.234:443 discord.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 telegram.org udp
US 8.8.8.8:53 cdn4.cdn-telegram.org udp
US 34.111.35.152:443 cdn4.cdn-telegram.org tcp
NL 149.154.167.99:443 telegram.org tcp
NL 149.154.167.99:443 telegram.org tcp
NL 149.154.167.99:443 telegram.org tcp
NL 149.154.167.99:443 telegram.org tcp
US 8.8.8.8:53 152.35.111.34.in-addr.arpa udp
NL 149.154.167.99:443 telegram.org tcp
US 8.8.8.8:53 unknown-sunglasses.gl.at.ply.gg udp
US 147.185.221.20:28223 unknown-sunglasses.gl.at.ply.gg tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
US 8.8.8.8:53 20.221.185.147.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 rr4---sn-5hne6n6l.googlevideo.com udp
NL 74.125.8.169:443 rr4---sn-5hne6n6l.googlevideo.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.178.22:443 i.ytimg.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 rr1---sn-5hne6nsz.googlevideo.com udp
NL 74.125.100.70:443 rr1---sn-5hne6nsz.googlevideo.com udp
US 8.8.8.8:53 rr2---sn-5hne6n6l.googlevideo.com udp
US 8.8.8.8:53 22.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 70.100.125.74.in-addr.arpa udp
NL 74.125.8.167:443 rr2---sn-5hne6n6l.googlevideo.com udp
US 8.8.8.8:53 167.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr1---sn-5hnednss.googlevideo.com udp
NL 172.217.132.198:443 rr1---sn-5hnednss.googlevideo.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 198.132.217.172.in-addr.arpa udp
US 147.185.221.20:28223 unknown-sunglasses.gl.at.ply.gg tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 194.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 i9.ytimg.com udp
GB 172.217.16.238:443 i9.ytimg.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
US 8.8.8.8:53 beacons2.gvt2.com udp
US 142.250.71.195:443 beacons2.gvt2.com tcp
US 142.250.71.195:443 beacons2.gvt2.com tcp
US 8.8.8.8:53 195.71.250.142.in-addr.arpa udp
US 142.250.71.195:443 beacons2.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 mega.nz udp
LU 31.216.144.5:443 mega.nz tcp
LU 31.216.144.5:443 mega.nz tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 8.8.8.8:53 eu.static.mega.co.nz udp
LU 31.216.144.5:443 mega.nz tcp
GB 172.217.169.42:443 content-autofill.googleapis.com udp
NL 66.203.127.13:443 eu.static.mega.co.nz tcp
NL 66.203.127.13:443 eu.static.mega.co.nz tcp
US 8.8.8.8:53 5.144.216.31.in-addr.arpa udp
US 8.8.8.8:53 42.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 13.127.203.66.in-addr.arpa udp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
US 8.8.8.8:53 g.api.mega.co.nz udp
LU 66.203.125.12:443 g.api.mega.co.nz tcp
LU 66.203.125.12:443 g.api.mega.co.nz tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 12.125.203.66.in-addr.arpa udp
NL 66.203.127.13:443 eu.static.mega.co.nz tcp
US 8.8.8.8:53 match.new-programmatic.com udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
N/A 127.0.0.1:6341 tcp
US 8.8.8.8:53 px.adhigh.net udp
US 8.8.8.8:53 ssp.al-adtech.com udp
N/A 127.0.0.1:6341 tcp
RU 194.190.76.35:443 px.adhigh.net tcp
RU 45.139.25.118:443 ssp.al-adtech.com tcp
US 8.8.8.8:53 35.76.190.194.in-addr.arpa udp
US 8.8.8.8:53 118.25.139.45.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 gfs206n457.userstorage.mega.co.nz udp
US 8.8.8.8:53 gfs208n203.userstorage.mega.co.nz udp
US 8.8.8.8:53 gfs270n457.userstorage.mega.co.nz udp
US 8.8.8.8:53 gfs240n121.userstorage.mega.co.nz udp
US 8.8.8.8:53 gfs214n196.userstorage.mega.co.nz udp
US 8.8.8.8:53 gfs204n306.userstorage.mega.co.nz udp
FR 185.206.26.133:443 gfs208n203.userstorage.mega.co.nz tcp
FR 185.206.26.133:443 gfs208n203.userstorage.mega.co.nz tcp
FR 185.206.26.133:443 gfs208n203.userstorage.mega.co.nz tcp
FR 185.206.26.133:443 gfs208n203.userstorage.mega.co.nz tcp
LU 31.216.148.40:443 gfs270n457.userstorage.mega.co.nz tcp
LU 31.216.148.40:443 gfs270n457.userstorage.mega.co.nz tcp
LU 31.216.148.40:443 gfs270n457.userstorage.mega.co.nz tcp
LU 31.216.148.40:443 gfs270n457.userstorage.mega.co.nz tcp
BE 94.24.37.125:443 gfs206n457.userstorage.mega.co.nz tcp
BE 94.24.37.125:443 gfs206n457.userstorage.mega.co.nz tcp
BE 94.24.37.125:443 gfs206n457.userstorage.mega.co.nz tcp
BE 94.24.37.125:443 gfs206n457.userstorage.mega.co.nz tcp
NL 185.206.24.151:443 gfs204n306.userstorage.mega.co.nz tcp
NL 185.206.24.151:443 gfs204n306.userstorage.mega.co.nz tcp
NL 185.206.24.151:443 gfs204n306.userstorage.mega.co.nz tcp
NL 185.206.24.151:443 gfs204n306.userstorage.mega.co.nz tcp
ES 185.206.27.108:443 gfs214n196.userstorage.mega.co.nz tcp
ES 185.206.27.108:443 gfs214n196.userstorage.mega.co.nz tcp
ES 185.206.27.108:443 gfs214n196.userstorage.mega.co.nz tcp
ES 185.206.27.108:443 gfs214n196.userstorage.mega.co.nz tcp
SE 69.30.89.31:443 gfs240n121.userstorage.mega.co.nz tcp
SE 69.30.89.31:443 gfs240n121.userstorage.mega.co.nz tcp
SE 69.30.89.31:443 gfs240n121.userstorage.mega.co.nz tcp
SE 69.30.89.31:443 gfs240n121.userstorage.mega.co.nz tcp
FR 185.206.26.133:443 gfs208n203.userstorage.mega.co.nz tcp
US 8.8.8.8:53 151.24.206.185.in-addr.arpa udp
US 8.8.8.8:53 40.148.216.31.in-addr.arpa udp
US 8.8.8.8:53 31.89.30.69.in-addr.arpa udp
US 8.8.8.8:53 125.37.24.94.in-addr.arpa udp
US 8.8.8.8:53 108.27.206.185.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
US 8.8.8.8:53 e2c16.gcp.gvt2.com udp
DE 34.89.141.94:443 e2c16.gcp.gvt2.com tcp
US 8.8.8.8:53 94.141.89.34.in-addr.arpa udp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 e2c27.gcp.gvt2.com udp
US 35.227.159.135:443 e2c27.gcp.gvt2.com tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 142.250.71.195:443 beacons2.gvt2.com udp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
US 8.8.8.8:53 135.159.227.35.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 beacons4.gvt2.com udp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 116.32.239.216.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:28223 unknown-sunglasses.gl.at.ply.gg tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
US 8.8.8.8:53 metrics.biddertmz.com udp
IE 34.248.22.168:443 metrics.biddertmz.com tcp
NL 89.149.192.240:443 ww1097.smartadserver.com tcp
IE 34.248.22.168:443 metrics.biddertmz.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 168.22.248.34.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 ww1097.smartadserver.com udp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 227.210.32.178.in-addr.arpa udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:28223 unknown-sunglasses.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 www.youtube.com udp
GB 216.58.204.78:443 www.youtube.com udp
GB 216.58.204.78:443 www.youtube.com tcp
GB 216.58.204.78:443 www.youtube.com tcp
US 8.8.8.8:53 78.204.58.216.in-addr.arpa udp
GB 142.250.178.22:443 i.ytimg.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 rr1---sn-5hneknek.googlevideo.com udp
NL 74.125.8.134:443 rr1---sn-5hneknek.googlevideo.com udp
NL 74.125.100.70:443 rr1---sn-5hne6nsz.googlevideo.com udp
US 8.8.8.8:53 134.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr5---sn-5hne6nsr.googlevideo.com udp
NL 172.217.132.74:443 rr5---sn-5hne6nsr.googlevideo.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RU 217.65.2.150:443 match.new-programmatic.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:28223 unknown-sunglasses.gl.at.ply.gg tcp
US 8.8.8.8:53 t.me udp
NL 149.154.167.99:443 t.me tcp
US 162.159.135.234:443 discord.gg tcp
US 162.159.138.232:443 discord.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 cdn.discordapp.com udp
US 162.159.134.233:443 cdn.discordapp.com tcp
US 162.159.134.233:443 cdn.discordapp.com tcp
US 8.8.8.8:53 233.134.159.162.in-addr.arpa udp
GB 142.250.178.22:443 i.ytimg.com udp
RU 217.65.2.150:443 match.new-programmatic.com tcp
US 8.8.8.8:53 response-hamburg.gl.at.ply.gg udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 unknown-sunglasses.gl.at.ply.gg tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
FR 178.32.210.227:443 ww1097.smartadserver.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
N/A 127.0.0.1:6463 tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 seems-poet.gl.at.ply.gg udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 mine.bmpool.org udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 clients2.google.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.179.246:443 i.ytimg.com udp
US 8.8.8.8:53 rr1---sn-5hne6nsk.googlevideo.com udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
NL 172.217.132.38:443 rr1---sn-5hne6nsk.googlevideo.com udp
NL 74.125.8.134:443 rr1---sn-5hneknek.googlevideo.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 246.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 38.132.217.172.in-addr.arpa udp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
GB 172.217.169.46:443 play.google.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
GB 142.250.179.246:443 i.ytimg.com udp
US 8.8.8.8:53 lh5.googleusercontent.com udp
GB 142.250.180.1:443 yt3.ggpht.com udp
GB 172.217.16.225:443 lh5.googleusercontent.com udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.169.46:443 play.google.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 bing.com udp
US 204.79.197.200:443 bing.com tcp
US 204.79.197.200:443 bing.com tcp
NL 23.62.61.129:443 www.bing.com tcp
US 8.8.8.8:53 r.bing.com udp
NL 23.62.61.129:443 r.bing.com udp
NL 23.62.61.72:443 r.bing.com tcp
NL 23.62.61.72:443 r.bing.com tcp
NL 23.62.61.72:443 r.bing.com tcp
NL 23.62.61.72:443 r.bing.com udp
US 8.8.8.8:53 129.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 assets.msn.com udp
SE 92.123.135.86:443 assets.msn.com tcp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 86.135.123.92.in-addr.arpa udp
US 8.8.8.8:53 login.microsoftonline.com udp
NL 20.190.160.17:443 login.microsoftonline.com tcp
US 8.8.8.8:53 aadcdn.msauth.net udp
US 13.107.246.64:443 aadcdn.msauth.net tcp
US 8.8.8.8:53 17.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 89.33.18.104.in-addr.arpa udp
US 8.8.8.8:53 aefd.nelreports.net udp
US 2.19.252.134:443 aefd.nelreports.net tcp
US 2.19.252.134:443 aefd.nelreports.net udp
US 8.8.8.8:53 134.252.19.2.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 services.bingapis.com udp
US 13.107.5.80:443 services.bingapis.com tcp
US 8.8.8.8:53 3pcookiecheck.azureedge.net udp
US 13.107.246.64:443 3pcookiecheck.azureedge.net tcp
US 8.8.8.8:53 80.5.107.13.in-addr.arpa udp
US 104.18.33.89:443 www2.bing.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c11.gcp.gvt2.com udp
AU 34.129.38.245:443 e2c11.gcp.gvt2.com tcp
AU 34.129.38.245:443 e2c11.gcp.gvt2.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 8.8.8.8:53 beacons.gvt2.com udp
US 8.8.8.8:53 245.38.129.34.in-addr.arpa udp
GB 172.217.169.3:443 beacons.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
NL 23.62.61.72:443 www.bing.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 r.bing.com udp
NL 23.62.61.171:443 r.bing.com udp
US 8.8.8.8:53 th.bing.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 tlauncher.org udp
US 147.185.221.20:28223 seems-poet.gl.at.ply.gg tcp
US 104.20.36.13:443 tlauncher.org tcp
US 104.20.36.13:443 tlauncher.org tcp
US 104.20.36.13:443 tlauncher.org udp
US 8.8.8.8:53 performance.radar.cloudflare.com udp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 104.18.31.78:443 performance.radar.cloudflare.com tcp
US 8.8.8.8:53 13.36.20.104.in-addr.arpa udp
US 8.8.8.8:53 78.31.18.104.in-addr.arpa udp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 147.185.221.20:28223 seems-poet.gl.at.ply.gg tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:28223 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 response-hamburg.gl.at.ply.gg udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
NL 23.62.61.72:443 www.bing.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 r.bing.com udp
US 8.8.8.8:53 tlauncher.en.softonic.com udp
US 151.101.193.91:443 tlauncher.en.softonic.com tcp
US 8.8.8.8:53 sc.sftcdn.net udp
US 8.8.8.8:53 images.sftcdn.net udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 sdk.privacy-center.org udp
US 8.8.8.8:53 softonic.com udp
US 8.8.8.8:53 bat.bing.com udp
US 199.232.213.91:443 softonic.com tcp
US 199.232.213.91:443 softonic.com tcp
US 23.219.230.135:443 images.sftcdn.net tcp
US 23.219.230.135:443 images.sftcdn.net tcp
US 23.219.230.135:443 images.sftcdn.net tcp
US 23.219.230.135:443 images.sftcdn.net tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 151.101.65.91:443 sc.sftcdn.net tcp
US 151.101.65.91:443 sc.sftcdn.net tcp
US 151.101.65.91:443 sc.sftcdn.net tcp
GB 142.250.187.196:443 www.google.com udp
US 204.79.197.237:443 bat.bing.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 151.101.65.91:443 sc.sftcdn.net tcp
US 151.101.65.91:443 sc.sftcdn.net tcp
US 18.245.175.80:443 sdk.privacy-center.org tcp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
US 23.219.230.135:443 images.sftcdn.net tcp
US 23.219.230.135:443 images.sftcdn.net tcp
US 151.101.65.91:443 sc.sftcdn.net udp
GB 172.217.169.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 www.adsensecustomsearchads.com udp
GB 142.250.187.238:443 www.adsensecustomsearchads.com tcp
US 18.245.175.80:443 sdk.privacy-center.org udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 www.datadoghq-browser-agent.com udp
US 8.8.8.8:53 btloader.com udp
US 3.165.111.23:443 www.datadoghq-browser-agent.com tcp
US 172.67.41.60:443 btloader.com tcp
US 8.8.8.8:53 www.clarity.ms udp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
US 8.8.8.8:53 storage.googleapis.com udp
US 13.107.246.64:443 www.clarity.ms tcp
FR 52.84.174.40:443 config.aps.amazon-adsystem.com tcp
GB 172.217.169.91:443 storage.googleapis.com tcp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 172.67.38.106:443 cdn.id5-sync.com tcp
US 8.8.8.8:53 ad-delivery.net udp
US 8.8.8.8:53 api.btloader.com udp
US 8.8.8.8:53 91.193.101.151.in-addr.arpa udp
US 8.8.8.8:53 91.213.232.199.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 91.65.101.151.in-addr.arpa udp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 135.230.219.23.in-addr.arpa udp
US 8.8.8.8:53 10.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 80.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 122.194.245.18.in-addr.arpa udp
US 8.8.8.8:53 23.111.165.3.in-addr.arpa udp
US 8.8.8.8:53 60.41.67.172.in-addr.arpa udp
US 8.8.8.8:53 40.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 91.169.217.172.in-addr.arpa udp
US 130.211.23.194:443 api.btloader.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 130.211.23.194:443 api.btloader.com udp
US 8.8.8.8:53 c.clarity.ms udp
US 8.8.8.8:53 notix.io udp
US 8.8.8.8:53 x.clarity.ms udp
NL 139.45.197.253:443 notix.io tcp
HK 20.205.115.81:443 c.clarity.ms tcp
US 20.114.190.119:443 x.clarity.ms tcp
HK 20.205.115.81:443 c.clarity.ms tcp
US 8.8.8.8:53 106.38.67.172.in-addr.arpa udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 253.197.45.139.in-addr.arpa udp
US 8.8.8.8:53 6.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 119.190.114.20.in-addr.arpa udp
US 8.8.8.8:53 81.115.205.20.in-addr.arpa udp
US 8.8.8.8:53 api.privacy-center.org udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 id.crwdcntrl.net udp
US 8.8.8.8:53 shb.richaudience.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 ad.360yield.com udp
US 8.8.8.8:53 prebid.media.net udp
FR 13.32.145.62:443 api.privacy-center.org tcp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 brightcombid.marphezis.com udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
IE 54.72.120.129:443 id.crwdcntrl.net tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
IE 54.72.92.11:443 ap.lijit.com tcp
US 8.8.8.8:53 partner.googleadservices.com udp
DE 157.90.0.38:443 shb.richaudience.com tcp
DE 157.90.0.38:443 shb.richaudience.com tcp
DE 157.90.0.38:443 shb.richaudience.com tcp
DE 141.95.33.120:443 id5-sync.com tcp
US 34.120.63.153:443 prebid.media.net tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 172.64.151.101:443 htlb.casalemedia.com tcp
GB 142.250.178.2:443 partner.googleadservices.com tcp
DE 37.252.171.53:443 ib.adnxs.com tcp
IE 108.128.174.15:443 ad.360yield.com tcp
DE 141.95.33.120:443 id5-sync.com tcp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 8.8.8.8:53 static.criteo.net udp
US 8.8.8.8:53 cdn-ima.33across.com udp
US 8.8.8.8:53 75a5d89bd823a7c5f58351054d9fa44f.safeframe.googlesyndication.com udp
FR 18.155.129.39:443 tags.crwdcntrl.net tcp
DE 141.95.33.120:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 c.bing.com udp
GB 142.250.187.238:443 www.adsensecustomsearchads.com udp
US 151.101.129.229:443 cdn.jsdelivr.net tcp
US 104.18.35.167:443 cdn-ima.33across.com tcp
GB 172.217.169.65:443 75a5d89bd823a7c5f58351054d9fa44f.safeframe.googlesyndication.com tcp
FR 13.32.145.62:443 api.privacy-center.org udp
NL 178.250.1.3:443 static.criteo.net tcp
US 8.8.8.8:53 www.google.co.uk udp
GB 142.250.200.3:443 www.google.co.uk tcp
GB 172.217.16.225:443 lh5.googleusercontent.com udp
US 34.120.63.153:443 prebid.media.net udp
US 172.64.151.101:443 htlb.casalemedia.com udp
US 8.8.8.8:53 ampcid.google.com udp
GB 216.58.212.206:443 ampcid.google.com tcp
US 8.8.8.8:53 region1.analytics.google.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 lexicon.33across.com udp
GB 142.250.200.3:443 www.google.co.uk udp
US 35.244.193.51:443 lexicon.33across.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
BE 64.233.166.156:443 stats.g.doubleclick.net tcp
US 216.239.34.36:443 region1.analytics.google.com tcp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
IE 67.220.224.150:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 match.adsrvr.org udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 62.145.32.13.in-addr.arpa udp
US 8.8.8.8:53 191.36.162.3.in-addr.arpa udp
US 8.8.8.8:53 153.63.120.34.in-addr.arpa udp
US 8.8.8.8:53 11.92.72.54.in-addr.arpa udp
US 8.8.8.8:53 120.33.95.141.in-addr.arpa udp
US 8.8.8.8:53 38.0.90.157.in-addr.arpa udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 151.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 53.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 15.174.128.108.in-addr.arpa udp
US 8.8.8.8:53 39.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 229.129.101.151.in-addr.arpa udp
US 8.8.8.8:53 167.35.18.104.in-addr.arpa udp
US 8.8.8.8:53 65.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 156.166.233.64.in-addr.arpa udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 ce.lijit.com udp
IE 52.30.114.214:443 ce.lijit.com tcp
US 8.8.8.8:53 ice.360yield.com udp
IE 34.246.179.114:443 ice.360yield.com tcp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 rtb.gumgum.com udp
US 8.8.8.8:53 ssum-sec.casalemedia.com udp
DE 51.38.120.206:443 onetag-sys.com tcp
IE 52.18.136.6:443 rtb.gumgum.com tcp
US 8.8.8.8:53 dis.eu.criteo.com udp
NL 178.250.1.9:443 dis.eu.criteo.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 150.224.220.67.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 214.114.30.52.in-addr.arpa udp
US 8.8.8.8:53 114.179.246.34.in-addr.arpa udp
US 8.8.8.8:53 6.136.18.52.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 ads.pubmatic.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
GB 2.21.188.239:443 ads.pubmatic.com tcp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
FR 5.135.209.101:443 ssbsync.smartadserver.com tcp
US 13.248.245.213:443 eb2.3lift.com tcp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 sync.ipredictive.com udp
US 8.8.8.8:53 match.deepintent.com udp
US 8.8.8.8:53 b1sync.zemanta.com udp
US 8.8.8.8:53 bh.contextweb.com udp
US 8.8.8.8:53 c1.adform.net udp
US 52.46.130.91:443 s.amazon-adsystem.com tcp
IE 67.220.224.150:443 aax-eu.amazon-adsystem.com tcp
US 52.87.131.177:443 sync.ipredictive.com tcp
US 64.202.112.63:443 b1sync.zemanta.com tcp
US 54.159.1.74:443 sync.srv.stackadapt.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 35.244.159.8:443 us-u.openx.net tcp
IE 54.73.50.175:443 pr-bh.ybp.yahoo.com tcp
US 8.8.8.8:53 csync.loopme.me udp
US 169.197.150.8:443 match.deepintent.com tcp
GB 216.58.201.98:443 cm.g.doubleclick.net tcp
GB 216.58.201.98:443 cm.g.doubleclick.net tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
DK 37.157.6.243:443 c1.adform.net tcp
US 8.8.8.8:53 image6.pubmatic.com udp
NL 35.214.129.72:443 csync.loopme.me tcp
US 8.8.8.8:53 tg.socdm.com udp
GB 185.64.190.78:443 image6.pubmatic.com tcp
US 8.8.8.8:53 usersync.gumgum.com udp
US 8.8.8.8:53 rtd-tm.everesttech.net udp
JP 124.146.153.165:443 tg.socdm.com tcp
US 8.8.8.8:53 creativecdn.com udp
US 151.101.66.49:443 rtd-tm.everesttech.net tcp
US 8.8.8.8:53 secure-assets.rubiconproject.com udp
IE 52.210.15.1:443 usersync.gumgum.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
ES 23.60.223.190:443 secure-assets.rubiconproject.com tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
US 35.244.159.8:443 us-u.openx.net udp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 8.8.8.8:53 pm.w55c.net udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 p.rfihub.com udp
US 8.8.8.8:53 data.adsrvr.org udp
NL 35.214.149.91:443 x.bidswitch.net tcp
IE 52.210.15.1:443 usersync.gumgum.com tcp
US 8.8.8.8:53 sync.1rx.io udp
IE 52.210.15.1:443 usersync.gumgum.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 aorta.clickagy.com udp
IE 54.77.130.68:443 pm.w55c.net tcp
IE 52.214.45.172:443 match.prod.bidr.io tcp
US 8.8.8.8:53 u.ipw.metadsp.co.uk udp
NL 193.0.160.131:443 p.rfihub.com tcp
US 8.8.8.8:53 dis.criteo.com udp
GB 216.58.201.98:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 sync.crwdcntrl.net udp
US 8.8.8.8:53 cr.frontend.weborama.fr udp
US 8.8.8.8:53 mwzeom.zeotap.com udp
JP 124.146.153.165:443 tg.socdm.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
US 44.199.98.35:443 aorta.clickagy.com tcp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk tcp
US 8.8.8.8:53 um.simpli.fi udp
US 8.8.8.8:53 eus.rubiconproject.com udp
NL 35.204.158.49:443 um.simpli.fi tcp
US 34.111.129.221:443 cr.frontend.weborama.fr tcp
US 104.22.50.98:443 mwzeom.zeotap.com tcp
US 8.8.8.8:53 image2.pubmatic.com udp
US 8.8.8.8:53 simage2.pubmatic.com udp
US 8.8.8.8:53 gw-iad-bid.ymmobi.com udp
NL 178.250.1.9:443 dis.criteo.com tcp
GB 2.21.189.68:443 eus.rubiconproject.com tcp
NL 198.47.127.205:443 image2.pubmatic.com tcp
NL 198.47.127.205:443 image2.pubmatic.com tcp
US 47.253.61.56:443 gw-iad-bid.ymmobi.com tcp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
US 8.8.8.8:53 sync.targeting.unrulymedia.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 239.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 213.245.248.13.in-addr.arpa udp
US 8.8.8.8:53 8.159.244.35.in-addr.arpa udp
US 8.8.8.8:53 91.149.214.35.in-addr.arpa udp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 175.50.73.54.in-addr.arpa udp
US 8.8.8.8:53 243.6.157.37.in-addr.arpa udp
US 8.8.8.8:53 72.129.214.35.in-addr.arpa udp
US 8.8.8.8:53 91.130.46.52.in-addr.arpa udp
US 8.8.8.8:53 63.112.202.64.in-addr.arpa udp
US 8.8.8.8:53 177.131.87.52.in-addr.arpa udp
US 8.8.8.8:53 8.150.197.169.in-addr.arpa udp
US 8.8.8.8:53 74.1.159.54.in-addr.arpa udp
US 8.8.8.8:53 78.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 49.66.101.151.in-addr.arpa udp
US 8.8.8.8:53 1.15.210.52.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 190.223.60.23.in-addr.arpa udp
US 8.8.8.8:53 131.160.0.193.in-addr.arpa udp
US 8.8.8.8:53 172.45.214.52.in-addr.arpa udp
US 8.8.8.8:53 68.130.77.54.in-addr.arpa udp
US 8.8.8.8:53 90.132.214.35.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 165.153.146.124.in-addr.arpa udp
US 8.8.8.8:53 221.129.111.34.in-addr.arpa udp
US 8.8.8.8:53 98.50.22.104.in-addr.arpa udp
US 8.8.8.8:53 49.158.204.35.in-addr.arpa udp
US 8.8.8.8:53 205.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 35.98.199.44.in-addr.arpa udp
US 8.8.8.8:53 68.189.21.2.in-addr.arpa udp
US 8.8.8.8:53 210.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 56.61.253.47.in-addr.arpa udp
US 8.8.8.8:53 token.rubiconproject.com udp
NL 69.173.156.148:443 token.rubiconproject.com tcp
US 8.8.8.8:53 en.softonic.com udp
US 8.8.8.8:53 contextual.media.net udp
US 8.8.8.8:53 sync.richaudience.com udp
US 8.8.8.8:53 acdn.adnxs.com udp
US 8.8.8.8:53 js-sec.indexww.com udp
US 8.8.8.8:53 visitor.omnitagjs.com udp
DE 157.90.211.246:443 sync.richaudience.com tcp
US 172.64.149.180:443 js-sec.indexww.com tcp
FR 185.255.84.152:443 visitor.omnitagjs.com tcp
GB 2.21.188.27:443 contextual.media.net udp
US 151.101.65.108:443 acdn.adnxs.com tcp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
DE 157.90.211.246:443 sync.richaudience.com tcp
US 8.8.8.8:53 api-2-0.spot.im udp
US 8.8.8.8:53 image8.pubmatic.com udp
US 8.8.8.8:53 cs-server-s2s.yellowblue.io udp
US 8.8.8.8:53 jadserve.postrelease.com udp
US 8.8.8.8:53 id.rlcdn.com udp
US 8.8.8.8:53 ssc-cms.33across.com udp
US 3.230.90.51:443 cs-server-s2s.yellowblue.io tcp
FR 99.86.91.62:443 api-2-0.spot.im tcp
GB 185.64.191.214:443 image8.pubmatic.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
US 67.202.105.23:443 ssc-cms.33across.com tcp
US 8.8.8.8:53 player.aniview.com udp
IE 52.49.23.226:443 jadserve.postrelease.com tcp
DE 51.38.120.206:443 onetag-sys.com udp
US 2.20.12.70:443 player.aniview.com tcp
US 8.8.8.8:53 hbx.media.net udp
US 8.8.8.8:53 bttrack.com udp
US 192.132.33.67:443 bttrack.com tcp
GB 2.21.188.27:443 hbx.media.net tcp
US 8.8.8.8:53 c21lg-d.media.net udp
US 8.8.8.8:53 medianet-match.dotomi.com udp
US 8.8.8.8:53 rtb.mfadsrvr.com udp
US 8.8.8.8:53 sync.mathtag.com udp
US 8.8.8.8:53 pixel-eu.rubiconproject.com udp
US 8.8.8.8:53 ads.stickyadstv.com udp
US 8.8.8.8:53 cs.admanmedia.com udp
US 8.8.8.8:53 t.adx.opera.com udp
US 8.8.8.8:53 pixel.rubiconproject.com udp
US 8.8.8.8:53 ssbsync-global.smartadserver.com udp
US 8.8.8.8:53 spl.zeotap.com udp
GB 2.21.188.27:443 c21lg-d.media.net tcp
GB 2.21.188.27:443 c21lg-d.media.net tcp
NL 89.207.16.204:443 medianet-match.dotomi.com tcp
US 216.200.232.253:443 sync.mathtag.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 154.57.158.116:443 ads.stickyadstv.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com tcp
US 8.8.8.8:53 cs.media.net udp
NL 81.17.55.108:443 ssbsync-global.smartadserver.com tcp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
US 8.8.8.8:53 ads.avct.cloud udp
US 8.8.8.8:53 sync-tm.everesttech.net udp
FR 5.196.111.73:443 rtb-csync.smartadserver.com tcp
FR 5.196.111.73:443 rtb-csync.smartadserver.com tcp
FR 5.196.111.73:443 rtb-csync.smartadserver.com tcp
US 8.8.8.8:53 sync.aniview.com udp
DE 3.71.149.231:443 ups.analytics.yahoo.com tcp
US 96.46.186.182:443 sync.aniview.com tcp
US 8.8.8.8:53 simage4.pubmatic.com udp
FR 5.196.111.73:443 rtb-csync.smartadserver.com tcp
US 8.8.8.8:53 match.sharethrough.com udp
GB 185.64.190.81:443 simage4.pubmatic.com tcp
US 8.8.8.8:53 casale-match.dotomi.com udp
DE 35.157.83.226:443 match.sharethrough.com tcp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 cdn.indexww.com udp
NL 64.158.223.140:443 casale-match.dotomi.com tcp
US 8.8.8.8:53 sonata-notifications.taptapnetworks.com udp
US 104.18.24.173:443 a.tribalfusion.com tcp
DE 35.157.30.247:443 sonata-notifications.taptapnetworks.com tcp
US 8.8.8.8:53 180.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 108.65.101.151.in-addr.arpa udp
US 8.8.8.8:53 62.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 152.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 214.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 8.8.8.8:53 226.23.49.52.in-addr.arpa udp
US 8.8.8.8:53 51.90.230.3.in-addr.arpa udp
US 8.8.8.8:53 23.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 67.33.132.192.in-addr.arpa udp
US 8.8.8.8:53 204.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 70.12.20.2.in-addr.arpa udp
US 8.8.8.8:53 8.213.145.82.in-addr.arpa udp
US 8.8.8.8:53 149.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 116.158.57.154.in-addr.arpa udp
US 8.8.8.8:53 88.199.214.35.in-addr.arpa udp
US 8.8.8.8:53 108.55.17.81.in-addr.arpa udp
US 8.8.8.8:53 162.87.77.80.in-addr.arpa udp
US 8.8.8.8:53 73.111.196.5.in-addr.arpa udp
US 8.8.8.8:53 231.149.71.3.in-addr.arpa udp
US 8.8.8.8:53 182.186.46.96.in-addr.arpa udp
US 8.8.8.8:53 81.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 226.83.157.35.in-addr.arpa udp
US 8.8.8.8:53 140.223.158.64.in-addr.arpa udp
US 8.8.8.8:53 173.24.18.104.in-addr.arpa udp
US 8.8.8.8:53 dsum.casalemedia.com udp
US 8.8.8.8:53 sync.search.spotxchange.com udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 8.8.8.8:53 s.tribalfusion.com udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 pixel.tapad.com udp
US 34.111.113.62:443 pixel.tapad.com tcp
US 34.111.113.62:443 pixel.tapad.com udp
US 8.8.8.8:53 cms.quantserve.com udp
DE 91.228.74.244:443 cms.quantserve.com tcp
US 8.8.8.8:53 uipglob.semasio.net udp
US 8.8.8.8:53 pixel.onaudience.com udp
DK 77.243.51.121:443 uipglob.semasio.net tcp
FR 141.94.171.216:443 pixel.onaudience.com tcp
US 8.8.8.8:53 dsp.adfarm1.adition.com udp
US 8.8.8.8:53 247.30.157.35.in-addr.arpa udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 62.113.111.34.in-addr.arpa udp
US 8.8.8.8:53 244.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 216.171.94.141.in-addr.arpa udp
DE 85.114.159.93:443 dsp.adfarm1.adition.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
NL 35.214.129.72:443 csync.loopme.me tcp
US 8.8.8.8:53 pubmatic-match.dotomi.com udp
US 8.8.8.8:53 ad.turn.com udp
US 8.8.8.8:53 match.adsby.bidtheatre.com udp
NL 188.166.17.21:443 match.adsby.bidtheatre.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
US 8.8.8.8:53 121.51.243.77.in-addr.arpa udp
US 8.8.8.8:53 93.159.114.85.in-addr.arpa udp
US 8.8.8.8:53 6.163.102.34.in-addr.arpa udp
US 8.8.8.8:53 21.17.166.188.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 d5p.de17a.com udp
US 35.186.193.173:443 ipac.ctnsnet.com tcp
SE 213.155.156.169:443 d5p.de17a.com tcp
US 8.8.8.8:53 core.iprom.net udp
SI 195.5.165.20:443 core.iprom.net tcp
US 8.8.8.8:53 cm-supply-web.gammaplatform.com udp
US 8.8.8.8:53 cm.adgrx.com udp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
IE 52.215.155.11:443 cm.adgrx.com tcp
US 8.8.8.8:53 green.erne.co udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
FR 141.94.161.190:443 green.erne.co tcp
US 104.18.24.173:443 s.tribalfusion.com udp
US 8.8.8.8:53 matching.truffle.bid udp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
DE 23.88.86.2:443 matching.truffle.bid tcp
US 8.8.8.8:53 pixel-eu.onaudience.com udp
FR 141.94.170.77:443 pixel-eu.onaudience.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
DE 23.88.86.2:443 matching.truffle.bid tcp
US 8.8.8.8:53 173.193.186.35.in-addr.arpa udp
US 8.8.8.8:53 169.156.155.213.in-addr.arpa udp
US 8.8.8.8:53 20.165.5.195.in-addr.arpa udp
US 8.8.8.8:53 11.155.215.52.in-addr.arpa udp
US 8.8.8.8:53 77.170.94.141.in-addr.arpa udp
US 8.8.8.8:53 190.161.94.141.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
BE 64.233.166.156:443 stats.g.doubleclick.net udp
US 199.232.213.91:443 softonic.com udp
US 216.239.34.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 connect.facebook.net udp
GB 163.70.147.23:443 connect.facebook.net tcp
US 8.8.8.8:53 23.147.70.163.in-addr.arpa udp
US 8.8.8.8:53 43cb1d16b9f8c58386aa9778b92f1187.safeframe.googlesyndication.com udp
GB 163.70.147.23:443 connect.facebook.net udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.147.35:443 www.facebook.com tcp
GB 163.70.147.35:443 www.facebook.com tcp
NL 139.45.197.253:443 notix.io tcp
US 151.101.193.91:443 en.softonic.com udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
DE 157.90.211.246:443 sync.richaudience.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
IE 52.214.45.172:443 match.prod.bidr.io tcp
US 54.159.1.74:443 sync.srv.stackadapt.com tcp
US 35.244.174.68:443 id.rlcdn.com udp
US 67.202.105.23:443 ssc-cms.33across.com tcp
FR 5.135.209.101:443 ssbsync.smartadserver.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com udp
DE 141.95.33.120:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 ads.avct.cloud udp
FR 5.196.111.73:443 rtb-csync.smartadserver.com tcp
FR 5.196.111.73:443 rtb-csync.smartadserver.com tcp
GB 163.70.147.35:443 www.facebook.com udp
US 8.8.8.8:53 diagnostics.id5-sync.com udp
DE 162.19.138.118:443 diagnostics.id5-sync.com tcp
US 8.8.8.8:53 wct.softonic.com udp
US 8.8.8.8:53 js.adscale.de udp
US 104.26.3.63:443 wct.softonic.com tcp
US 8.8.8.8:53 4f61653b18cfe9adfd9d5a00de564cea.safeframe.googlesyndication.com udp
US 18.245.175.24:443 js.adscale.de tcp
DE 141.95.33.120:443 diagnostics.id5-sync.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 prs.sftcdn.net udp
US 8.8.8.8:53 articles-img.sftcdn.net udp
NL 23.62.61.178:443 articles-img.sftcdn.net tcp
NL 23.62.61.178:443 articles-img.sftcdn.net tcp
NL 23.62.61.178:443 articles-img.sftcdn.net tcp
NL 23.62.61.178:443 articles-img.sftcdn.net tcp
US 104.26.3.63:443 wct.softonic.com tcp
US 8.8.8.8:53 ih.adscale.de udp
NL 23.62.61.178:443 articles-img.sftcdn.net tcp
NL 23.62.61.178:443 articles-img.sftcdn.net tcp
DE 3.123.51.204:443 ih.adscale.de tcp
US 8.8.8.8:53 push-sdk.com udp
DE 157.90.33.121:443 push-sdk.com tcp
US 8.8.8.8:53 63.3.26.104.in-addr.arpa udp
US 8.8.8.8:53 24.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 178.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 204.51.123.3.in-addr.arpa udp
US 8.8.8.8:53 uidsync.net udp
DE 157.90.33.68:443 uidsync.net tcp
US 8.8.8.8:53 cd.connatix.com udp
US 172.64.146.152:443 cd.connatix.com tcp
DE 157.90.33.68:443 uidsync.net tcp
US 8.8.8.8:53 inmobi-match.dotomi.com udp
US 8.8.8.8:53 cds.connatix.com udp
US 172.64.146.152:443 cds.connatix.com udp
NL 208.93.169.131:443 bh.contextweb.com tcp
US 8.8.8.8:53 121.33.90.157.in-addr.arpa udp
US 8.8.8.8:53 68.33.90.157.in-addr.arpa udp
US 8.8.8.8:53 152.146.64.172.in-addr.arpa udp
US 8.8.8.8:53 capi.connatix.com udp
US 8.8.8.8:53 ads.yieldmo.com udp
US 104.18.41.104:443 capi.connatix.com udp
IE 52.16.246.58:443 ads.yieldmo.com tcp
US 8.8.8.8:53 ins.connatix.com udp
US 8.8.8.8:53 vid.connatix.com udp
US 8.8.8.8:53 lit.connatix.com udp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 172.64.146.152:443 lit.connatix.com tcp
US 172.64.146.152:443 lit.connatix.com tcp
US 172.64.146.152:443 lit.connatix.com tcp
US 172.64.146.152:443 lit.connatix.com tcp
US 8.8.8.8:53 ssum.casalemedia.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 s.ad.smaato.net udp
US 8.8.8.8:53 sync.go.sonobi.com udp
NL 35.214.129.72:443 csync.loopme.me tcp
US 8.8.8.8:53 cks.connatix.com udp
ES 108.157.125.95:443 s.ad.smaato.net tcp
US 69.166.1.66:443 sync.go.sonobi.com tcp
US 172.64.146.152:443 cks.connatix.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 104.18.41.104:443 cks.connatix.com udp
US 8.8.8.8:53 104.41.18.104.in-addr.arpa udp
US 8.8.8.8:53 58.246.16.52.in-addr.arpa udp
US 8.8.8.8:53 95.125.157.108.in-addr.arpa udp
US 8.8.8.8:53 66.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 imasdk.googleapis.com udp
US 8.8.8.8:53 img.connatix.com udp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 104.18.41.104:443 img.connatix.com udp
GB 142.250.187.202:443 imasdk.googleapis.com udp
US 8.8.8.8:53 s0.2mdn.net udp
GB 216.58.204.70:443 s0.2mdn.net tcp
DE 157.90.211.246:443 sync.richaudience.com tcp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 70.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 gsf-fl.softonic.com udp
US 8.8.8.8:53 pubads.g.doubleclick.net udp
US 199.232.194.133:443 gsf-fl.softonic.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net tcp
US 216.239.32.3:443 csi.gstatic.com tcp
US 216.239.32.3:443 csi.gstatic.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
US 8.8.8.8:53 3.32.239.216.in-addr.arpa udp
US 216.239.32.3:443 csi.gstatic.com udp
US 8.8.8.8:53 equativ-match.dotomi.com udp
NL 89.207.16.140:443 equativ-match.dotomi.com tcp
US 8.8.8.8:53 140.16.207.89.in-addr.arpa udp
US 172.64.146.152:443 img.connatix.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 139.45.197.253:443 notix.io tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
DE 162.55.120.196:443 matching.truffle.bid tcp
DE 162.55.120.196:443 matching.truffle.bid tcp
US 8.8.8.8:53 196.120.55.162.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 cacerts.rapidssl.com udp
SE 192.229.221.95:80 cacerts.rapidssl.com tcp
US 8.8.8.8:53 246.211.90.157.in-addr.arpa udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 mine.bmpool.org udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 en.softonic.com udp
US 151.101.65.91:443 en.softonic.com udp
DE 157.90.33.121:443 uidsync.net tcp
US 8.8.8.8:53 x.clarity.ms udp
US 20.114.190.119:443 x.clarity.ms tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
DE 157.90.33.121:443 uidsync.net tcp
DE 157.90.33.121:443 uidsync.net tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
GB 142.250.200.3:443 www.google.co.uk udp
GB 142.250.200.3:443 www.google.co.uk tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 20.114.190.119:443 x.clarity.ms tcp
US 35.211.148.231:443 e2c49.gcp.gvt2.com tcp
GB 172.217.169.3:443 beacons.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 231.148.211.35.in-addr.arpa udp
US 8.8.8.8:53 ad.360yield.com udp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
DE 37.252.171.53:443 ib.adnxs.com tcp
US 172.64.151.101:443 ssum.casalemedia.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 34.120.63.153:443 prebid.media.net udp
IE 54.220.54.255:443 ad.360yield.com tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
US 8.8.8.8:53 226.16.217.172.in-addr.arpa udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 s.richaudience.com udp
US 8.8.8.8:53 255.54.220.54.in-addr.arpa udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.google.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
DE 157.90.0.38:443 s.richaudience.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 20.114.190.119:443 x.clarity.ms tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 tlauncher.en.softonic.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 sc.sftcdn.net udp
GB 157.240.221.35:443 www.facebook.com udp
US 151.101.193.91:443 sc.sftcdn.net udp
BE 64.233.166.156:443 stats.g.doubleclick.net udp
US 199.232.213.91:443 softonic.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.200.3:443 www.google.co.uk udp
US 216.239.34.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 images.sftcdn.net udp
US 8.8.8.8:53 sdk.privacy-center.org udp
ES 18.67.240.105:443 sdk.privacy-center.org udp
US 8.8.8.8:53 csm.nl3.eu.criteo.net udp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
US 34.120.63.153:443 prebid.media.net udp
DE 37.252.171.53:443 ib.adnxs.com tcp
US 172.64.151.101:443 ssum.casalemedia.com udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 8.8.8.8:53 49edf3f9f5b62a89958166ceedb53238.safeframe.googlesyndication.com udp
US 8.8.8.8:53 105.240.67.18.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 130.211.23.194:443 api.btloader.com udp
GB 216.58.212.226:443 googleads.g.doubleclick.net udp
DE 51.38.120.206:443 onetag-sys.com tcp
NL 139.45.197.253:443 notix.io tcp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 226.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 cd.connatix.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 104.18.41.104:443 cd.connatix.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 ssc-cms.33across.com udp
US 8.8.8.8:53 cs-server-s2s.yellowblue.io udp
US 8.8.8.8:53 id.rlcdn.com udp
US 35.244.174.68:443 id.rlcdn.com udp
US 184.72.174.29:443 cs-server-s2s.yellowblue.io tcp
GB 216.58.201.98:443 cm.g.doubleclick.net udp
US 67.202.105.24:443 ssc-cms.33across.com tcp
DE 116.202.167.133:443 inv-nets.admixer.net tcp
US 8.8.8.8:53 29.174.72.184.in-addr.arpa udp
US 8.8.8.8:53 24.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 133.167.202.116.in-addr.arpa udp
US 216.239.32.3:443 csi.gstatic.com udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 sync.richaudience.com udp
US 8.8.8.8:53 contextual.media.net udp
US 8.8.8.8:53 visitor.omnitagjs.com udp
DE 168.119.72.236:443 sync.richaudience.com tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
GB 2.21.188.27:443 contextual.media.net udp
US 8.8.8.8:53 match.prod.bidr.io udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
US 52.223.40.198:443 data.adsrvr.org tcp
IE 52.49.23.226:443 jadserve.postrelease.com tcp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 192.132.33.67:443 bttrack.com tcp
IE 52.212.235.85:443 match.prod.bidr.io tcp
US 54.174.166.97:443 sync.srv.stackadapt.com tcp
FR 149.202.238.101:443 ssbsync.smartadserver.com tcp
US 8.8.8.8:53 236.72.119.168.in-addr.arpa udp
US 8.8.8.8:53 153.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 85.235.212.52.in-addr.arpa udp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 35.244.159.8:443 us-u.openx.net udp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 141.95.33.120:443 diagnostics.id5-sync.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 cms.quantserve.com udp
US 8.8.8.8:53 ce.lijit.com udp
IE 54.217.40.10:443 pr-bh.ybp.yahoo.com tcp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
DE 91.228.74.166:443 cms.quantserve.com tcp
US 8.8.8.8:53 ads.creative-serving.com udp
IE 108.128.26.74:443 ce.lijit.com tcp
US 8.8.8.8:53 eu-u.openx.net udp
NL 81.17.55.106:443 rtb-csync.smartadserver.com tcp
NL 81.17.55.106:443 rtb-csync.smartadserver.com tcp
NL 81.17.55.106:443 rtb-csync.smartadserver.com tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
NL 35.214.241.248:443 ads.creative-serving.com tcp
US 8.8.8.8:53 ssum.casalemedia.com udp
NL 35.214.241.248:443 ads.creative-serving.com udp
US 8.8.8.8:53 101.238.202.149.in-addr.arpa udp
US 8.8.8.8:53 97.166.174.54.in-addr.arpa udp
US 8.8.8.8:53 10.40.217.54.in-addr.arpa udp
US 8.8.8.8:53 166.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 106.55.17.81.in-addr.arpa udp
US 8.8.8.8:53 248.241.214.35.in-addr.arpa udp
US 8.8.8.8:53 74.26.128.108.in-addr.arpa udp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 dl2.tlauncher.org udp
US 104.20.36.13:443 dl2.tlauncher.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
GB 142.250.200.3:443 www.google.co.uk udp
NL 23.62.61.171:443 www.bing.com udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 response-hamburg.gl.at.ply.gg udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 seems-poet.gl.at.ply.gg udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 mine.bmpool.org udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 response-hamburg.gl.at.ply.gg udp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 seems-poet.gl.at.ply.gg udp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
US 8.8.8.8:53 18.221.185.147.in-addr.arpa udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 8.8.8.8:53 mine.bmpool.org udp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.18:59171 response-hamburg.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
US 147.185.221.20:30996 seems-poet.gl.at.ply.gg tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp
RO 5.252.178.30:6004 mine.bmpool.org tcp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 b704c9ca0493bd4548ac9c69dc4a4f27
SHA1 a3e5e54e630dabe55ca18a798d9f5681e0620ba7
SHA256 2ebd5229b9dc642afba36a27c7ac12d90196b1c50985c37e94f4c17474e15411
SHA512 69c8116fb542b344a8c55e2658078bd3e0d3564b1e4c889b072dbc99d2b070dacbc4394dedbc22a4968a8cf9448e71f69ec71ded018c1bacc0e195b3b3072d32

\??\pipe\LOCAL\crashpad_1708_LXDRXBGNHEZOZBPK

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 477462b6ad8eaaf8d38f5e3a4daf17b0
SHA1 86174e670c44767c08a39cc2a53c09c318326201
SHA256 e6bbd4933b9baa1df4bb633319174de07db176ec215e71c8568d27c5c577184d
SHA512 a0acc2ef7fd0fcf413572eeb94d1e38aa6a682195cc03d6eaaaa0bc9e5f4b2c0033da0b835f4617aebc52069d0a10b52fc31ed53c2fe7943a480b55b7481dd4e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 1a23f767b35cb6a41fd38ecf55fad3dd
SHA1 c9755ceebdd3a7a6b9c36d29ba02afa397174c4c
SHA256 6fff712addee8043b019ae729ed21c985d9cbfd59137cd2e54673245009ac43b
SHA512 8756c167c8dfcdfaac29d12e96ebdf75d4c0c3993333af7a9ddfd06123508b06057dc1b9d9caacb9459f2aca7030a60930400df3627df9407a216ddfd01a9f40

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ee7f5a61133e8284fd238e8fd33ea15e
SHA1 720bd216174ca6b7f1a6cbd7e14d6081a139e95e
SHA256 c8ac227060013e24de79e0e7040f5a35cb145ac53999578913b5d150e50f8439
SHA512 fd5e6626a9450a56a5465145af752967e04f8a4f8894029fee1773c7ca0ae44927afb181c467f6ebf5665061ca315145b2c18881722a0aa83b1cbb21efc88583

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\24d59804-65bc-43ca-a3fe-0ab6c94f16a3.tmp

MD5 04ca8d1277b82876e084c813eee5a09a
SHA1 87ddf7b14fd7eea443842754661714c7dfff9989
SHA256 3fa82e90860ea651b8e9a2a3a029a6e555d2e5eee8d89695fc1f2af63aa9ce4e
SHA512 a0d77d259dda084ae9c3ef4609ec5a2535bcfd4fd3c43fcdd7b6b5fe44e85350921ddacddc3046504df1689a84e56e662ca1a7d9db8722ff754ef039f0a2f323

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ef3ac0d913de1be0e7b67d386dbfda3a
SHA1 619b2b87e6bca63cb65f3b12804c68d904763c1f
SHA256 f61d630d052be95770814bc6c2bb6a8fa470e44d3d4d7c3afaff24d3b5e45391
SHA512 d9d3d962bcb301eeb18e2e900f41b8b29dd66ebde9ef85ca5681e3453374a2666925f47fe70b7e207c6bff26a70ab1d23023cef612807ae259ead42b565c0fe1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 19c290b347488e53b95ce3784454079f
SHA1 1555f572aca7019916950464f7d43f9b4168bacb
SHA256 ec5b7b06b05cd11383ecb8b8ca7d37ab608bc4756b02aece913d2d8f60c0e4c7
SHA512 0704088983a0121c7dc7be6167d5ca651d03ce73a521d8f4b1199c1378ebd3f2171837a55b1bdf1493faa8269c6c83cc7fa0b68313da245a08e282a2932b3f11

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 d0a7d474e5496ec70efab8c06a370241
SHA1 e3c93284fab5ebf2b95d651e8b63487f5d701f4e
SHA256 a87fc882d91b788e6e03cc227735b90165b1b61db87614e7fe1b7002ec92d9ca
SHA512 61e63925fd6556be46727c236ae62a9d9806e259f1eccaf8b25388c2e87300bbfbbda5ca8de976a1bfd59f86e00f8814d76f34d91aed652a23cac39f5753ff1d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe576e2b.TMP

MD5 7b9333932f56382c801eec9b6ecf7c09
SHA1 e3ac1fed2c37bf26546bf00e7db5cc20944e2e70
SHA256 bd9bbf208aa12d23a7d44dcb3c63e1d5fbcad150bfaec63e5b107ddd9bc54c36
SHA512 1bbe005d136921ff49038426cb2a8430a37cafd372aa4b028659f8133c175cab021cab60d95a29050016c26dca281145d351ed6ff2ed0b93ab62d7ecae31842e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 515d33da348e69a0990f6c6cb53d3608
SHA1 9254fe6c70483a0fae14e75319a186b17765322d
SHA256 06fa7daa35c94d1dd288e9d7b6a5ab4c7a74daeeacb241dc4fed64845a4fa86d
SHA512 1ea37d51e085d3b88b126400ba523f36927b094258c0dff4261b1226c705cf24fcbe920fcf4774714d032df18738a434e8bd68a4aec196ed8fb1b4902c805de7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir3856_135313023\Icons Monochrome\16.png

MD5 a4fd4f5953721f7f3a5b4bfd58922efe
SHA1 f3abed41d764efbd26bacf84c42bd8098a14c5cb
SHA256 c659d57841bb33d63f7b1334200548f207340d95e8e2ae25aac7a798a08071a3
SHA512 7fcc1ca4d6d97335e76faa65b7cfb381fb722210041bdcd3b31b0f94e15dc226eec4639547af86ae71f311f52a956dc83294c2d23f345e63b5e45e25956b2691

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir3856_2067205674\Shortcuts Menu Icons\Monochrome\0\512.png

MD5 12a429f9782bcff446dc1089b68d44ee
SHA1 e41e5a1a4f2950a7f2da8be77ca26a66da7093b9
SHA256 e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37
SHA512 1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir3856_2067205674\Shortcuts Menu Icons\Monochrome\1\512.png

MD5 7f57c509f12aaae2c269646db7fde6e8
SHA1 969d8c0e3d9140f843f36ccf2974b112ad7afc07
SHA256 1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f
SHA512 3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 00af4745ebb2bb0a6effe990b47c9295
SHA1 b5129fb4b1828465024619ec10ebe8bebd46a9e2
SHA256 dff99b64ffe1a43a63d638b075d33be7ece92907454bc3dcaeceb8e2b0422744
SHA512 49b7f86cf2db1dc4cffa9e9f78c9fdc6a92380182ac0f04642dfa9288016b61134eac544595e902ec5ed99f0b5e78c50a22b386118d4795a8ce5eb0397ddc921

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1983ac73d831a0c9fbf4f4f2624b1994
SHA1 4366a8969871e3929cdab64c19342e2ca4b5cdab
SHA256 7954df78136cf0494ff527d0f7ede80c2f2e0069e6ec4de992d6b13acd95aa7c
SHA512 9adb79becf7216db6200d9956e294d1e9158d493a57751ab60fb1d1e187e683b2decc26d18fa8c8a5480b5e54cad2cce720ad4a1e2782a3b1b7f600b4d04a912

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dd7330a4d245b441e9a71ef53661f8c1
SHA1 251230ec857dc724f882bbe0543c08be79bae02c
SHA256 3ec1805649cc57cefae038ba9f9b01889ace2c927d8af29c3b26fd3e9fce91f5
SHA512 05f0180834f5abbcd91b3bff6d7fa5e0cb8d6a0cac0764cb8a76b7cd76bf04df730ec1b58cefdbf64e0c106c5860f28e2697a617dd1d2f55b6b027d6f0f544ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 bb2e44c78b6c64955e44e9d1d3f289dd
SHA1 a7b004b945f2ca033315e27283e7a0b1fca8230e
SHA256 af42ae93c1890e4bac48ecc930cb56f05cf0c4e35927c6c53442fcdcd82bbbf7
SHA512 12e90106748dd570667397150af386b59177c289064a65f1b9f8a1117cba28352d0c7e44ac53890bd5e9f16be4dbd3d02b5cf7121f8662ab472cd0375f4d91f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index~RFe5779b4.TMP

MD5 7c451885fa63bbf8b58d8ef609e7371a
SHA1 505f24c5fa778187b7ded38a79713d5741e138de
SHA256 7a3dd89a55fa7cef6bad72f83eede5910b98fce8bd66a443325f24f73f469f20
SHA512 32c8c2989f27820dd06fc9504307a5b22bbf7e29d43c36c756ae5e81c9476018edeb10f921ca7d2d86c038092428141787a2d28468e1d3ebfb61fbec34c40ddb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 60358d5d2a61c370ad35447347c81270
SHA1 2174d04bc1c0ae9bff7dee42db45ebd54c8faf74
SHA256 4ebd8f6ef5764e35c30255a90491d5eaf65a8a46473afed0bf569ce50a8dafa4
SHA512 13c0f8e2ff1785d983d845f8fd80e076b65e749e69ec050f1f7e413c4a1da548dfc50ba3d147629ee8e76834e28f0029ade6aa7bad1e329276a1e25d269d8f9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 2d49c392d8859ca037eb7753e8e366b6
SHA1 1e81b8541b2ed177108774a2de33068c6eb6c198
SHA256 41ef9602bf6dcb8d139a6b9657c06f9b1d9d670adc6dd012e4b6a02f10076aef
SHA512 8a69896a440869649a6a0868fdfac57c229a5d962b93cd4ac0b62bf1ed752feefb523fff8eaf7b61f360efaed6c26735d237e8380d6bed5c2439bb49001ba720

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 273e04df5e0063aef120ab76052e33f2
SHA1 cd68c58d4b44889dea757acd2416ac02df378884
SHA256 0ce3d76dd2d137d3ff5b5a444488075c535242b1ac387180ee70a882fcf81911
SHA512 a1096817378448079e59526dfe6211b97aee67030f2329c16fd72bb484079b34cc8c742ad5ee5f1e64d68073ac6a99042942cad141ffbcdd3df981efad610a04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 c6dbcc0422f27944f253081832cf771d
SHA1 7b07daa1c6a885eb59f208f213a76a367e3fc6a2
SHA256 a6127ea5e3388c4addec8a8529720e9b951101240ec4c3dc9f19979c751c6618
SHA512 88bc43b7fd7273fa7717fe9e4cdf847e827f4f1aa2217bb3e78ba491c7814adc8ee3fbefcc71051b90f5301d8ab5f646977d6485f20081b5e6837a10d66619b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

MD5 296107fd9e4b08da2a5eb5381e62e59c
SHA1 0fab647f77db64c6284dd6335f6f01696217fb88
SHA256 9a75f06abaf3c4db9cb4110d32c18ba80356efafd79e6f6255aefc31054ff133
SHA512 519f5c12f414e6321e63c5c2992b4eb89131334543310513ffefcb9b4cfdc9cbf9adc48854dd40daa8475b238ec4a1b1d6f31d666e5edb773f433582777bea43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f

MD5 fc48cf248229ad8686eb77300a78daec
SHA1 296a0ca8f11e043acf0b005e8ade51656fb2af6e
SHA256 63bd216b1612653bcbd661cee187b56f2ec2f3587cba7e638793ffe6d48a1429
SHA512 3fa41693e2824711e981cbb0945ae7b99299689946bfe30b722bbc2a6e14701743dbd3801c1edd9a5f83da2f23a01b5f4c4de30e8b2f08cdad0d9d0ca666cf4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 3dda883b89b1f31dd1e8e0be2d4250e9
SHA1 ff69000e8307afcb2b4db7d6117b47975f9de06a
SHA256 e60268695e6c66a62ad318850e45954bb22d21f2ae62fe9f0c5490dcb1e69f9b
SHA512 25176c5acc9cf658129508ccc1b7fc8e93777cc59a404caf06a0e0eeb7c10b5276923aa51d56a99ebfd45d9f05b16f598794fb31ea0aa39565770b3c3b8c8c43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

MD5 20adea22eec53811cc6bb3e6fb9648a1
SHA1 89ccfb989609bb343bff0f260fbc28e78b0ae16a
SHA256 d1b7f4208210049da4739648765e40bb8d8f0a7fd4e942df1d736e803739f5ea
SHA512 24342b4e909b88faa4b028aba8428bf4b3fac6203a61e74890a4c3439817444826c6d4785f0cef484b73c6116a9913c2980be3c59abaf2b3711942e1e53e6b55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

MD5 0e598b4e0838f1540edaaa0ebf6d1e68
SHA1 a69cc56bc59a19d8e0da1b74db64b0f6c319e095
SHA256 4ed8eeb9c3e8abd8a3ae9a6e4a0da56d3bb513938555795256d73cbd578bbe17
SHA512 4a00bd10f567a45b9a3332a50803002f4a089bc38b065657e2a921d505c0a10c4275add2d6c9b4c3ea6a5ba87ccff47140aad0222bef3fceac331de97cb1f273

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 8566f4355a6dad82d5542020b98142cf
SHA1 95672c37ef8af504045d0f8506a7da2af6210a14
SHA256 ed8f95d673882e4c9bfa4e5ba33daf234ba2e4d79eea9f143e44390e6fb3102c
SHA512 5c0021653eb80823e9e1939cd017301c701221d194c5049e191171198baef610da6e88134dc675039c563a631770ce33cd8b52713a6e54ab82e1f48f129f307d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 072a96e856451cc045781fb62d678a00
SHA1 2b8134bb6744b7226952a82e740ab8edc36fc29b
SHA256 5bfa717ca974033c12af631fab9d544b5cd3f96c122a50038a4b80468c71a386
SHA512 aaf0b75d70fb53439271fca361a3084ba1007e87b41b5211f4406a6b613488d483c1238ef1094ab4095a69b49bbc946812d0d8742534c1191fababddcd898cb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 5996497fbe3b4372d63ea760179aff66
SHA1 c910fed32bf78862180fd446d345cf7e5894464f
SHA256 276ddb170921f02de6e953a618321600608b339069f1d63bbe73871643bfb55c
SHA512 79909e1c6ed08f30cbb6f7052c3ac35d063575bc7ba6b98555f14bfafaa9ed557f935137417da64633adb0d527d8745137e769bb8fb3d84e9d4922f5f6dde341

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\694ed832402bf385_0

MD5 a802863f740ab4768b02e3b9559d6836
SHA1 d675c4f8377a8e866fbb69b7748fa9b75fac35c8
SHA256 7f0f551e5ccce3c21353b112aa2b1f8585526bc4c9c7954c8c8f9d15149705b2
SHA512 219c4eb4240805411f970bb1ab5e1a1d5255456ad79bb799ca66ade87de92443aabd36920b6b0e0021230f7de154a0e54c826b78d95989aad2d7deb429f5cc2c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 9bd2ee095496ff2555bcc244de944f59
SHA1 1e29c4258442e022f2b8fce2907d1fd0e5b807e0
SHA256 a886debd9174d55b29035babb45a22b2fe184ec1ff198602315a61baeff79bc6
SHA512 03024bd9c47b1996154de28246cadcccbaca45348c7d62f2c3cdd598df867f80ce00b02fe20a3dd6b14f2980997ceef4530a93c00b7c5606c09b73efdefbf204

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 9fb76bcc680f3814b120808ab74d90c8
SHA1 4074889f25461daa067c14e384e55640342f9cad
SHA256 9c54c42419e49c0ec07427e741214ed6803d462d00fdaf261f7ddbcfb7c6d863
SHA512 04839771728f5eb46c8e93c626048f939634c1ef903eb4ca3f2422790d62e016c6bbdbed2626e5ec7510a6dedc935abf03b1d49ee01ae0a8e0101c85de9c9ce8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\850c4ec620521f44_0

MD5 75ee1614986ce5bbe0e25b32c545a4d9
SHA1 bba681dbdaf9fa04dc4e42cfd198fee6aef916f1
SHA256 6b6d2b9e4bdfa4e6e69f867f6ce629fe58b6ab8896ac806c52bd295b97c4d1b9
SHA512 a9ffeee1af1af9cc7ab6451fa5b57f2eeaff8495c48921bc8eb1f1f6fef9c7c2ee08fec59785993ff9e5e9d892fa6063284215a7f13256ade4b34e4b6652f3f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6c5dce65fdf0f662_0

MD5 9827b78c2707cf4e48a5d491250c703a
SHA1 0c3326d13f5955f0f3faacd5bf104757db7a910f
SHA256 10001c62cd79d8c05d91465bbf50ee334384c163273ff141d3bd6ca8fc1c7fa1
SHA512 ca049e9917200f1986fff3de21efb2e44e0d795d111bde249d9f56e5f3a387f1303fbc6808a52ec82bd10f4eec0d83fbacfa227d0027b4cbc73f39e42b4c3b8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 abd9b0171103adfb2e4a81e5d0749085
SHA1 18233a4781a2952a0f6ee8a1302c96142a526040
SHA256 ecbd33f6dd24e617f806e548a8bee70bfd2f357e86d241c7a6c1b326b7797fa6
SHA512 052d8a31eb58fb164ccabbdc259b4aa3e257729748ce96d6bff325682454823a0d01e0aa6a4dfe8a7b0e9b88a70370409ea9e8ac9dbf32ce5a61a5b0ffb2ed01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\index-dir\the-real-index~RFe57d1d7.TMP

MD5 b350921a8df4604819b287d2c73c3f7c
SHA1 1b48656d7009a8e48bfda65d8acd4024019948b3
SHA256 3d2c963a4d66ef2f90ad42389528694409813ac13edad4a165140569f9d1fa22
SHA512 d07e3e8b25f85f2e5fc9086c5cd7a7c1b2bbafdb3b81461f13dfcdb69d8eca8aaed734fdc60d8878888fcf5121848d83117364e021b6c9eefb48c510de894f27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\index-dir\the-real-index

MD5 ab640d2fcbdfc6ca8e5eeab94fe71197
SHA1 0c5a290be0a48560261eaadfe9734018b39801d2
SHA256 b058056d49cc5f57ab6a2a760cf90c1125b34bf8f3c37fa851d9fa44aaa2ff63
SHA512 ffaf138cb3cc87da752acbbdfff97a396b86c54fe3dc40a3a81dccdff69ed382573211500be115e44a25e78e283315b4cd9f235d368cc64d8ff3ab87ca7a8fa0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9e6d815c6bfd3d279c591a4ecc9c375c
SHA1 c7ba38c3390cb246b800530ce9edde760b2f18a8
SHA256 c58deff26a37d936d060b5be4a0b022773f83aa419eed7dcf7ff41ed4a04b7ec
SHA512 ecbe66330d69900334d552a5defecb4aa7d710ac944593f53e72368fbb32d92c9bc9de329d8ae98218a6df46ad01bc99180ef5b15e4f7a2586a854dcccfab9dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0cdb53a6c6bd68e5e99c05d46dca1bdd
SHA1 4eb3c2d294b4cfd68086c592962c056bc62a5285
SHA256 b585677ad2aed8e11446b69063f35c741852b134a0079af8253e72562020ffe5
SHA512 1cf2e3002a8905f3f0a3d16c8bea7946376c76186990a585a21bafff2d28eca56ec6fb2a253be8b8ef56d9c0031b690fdc9a6a7ead0c5f9d44928ba4d1e22296

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7006ea41c792d3aa9d505d67df9e8f6c
SHA1 6f6c41023a1c37a6841c4342c3e8b3b9b3a81ea8
SHA256 9185e2ae405edad6dfd7fedfa1e18a7cc7fca300af66260f9cd2d6a65b79c00a
SHA512 7d457b5998b43c8778fc818b7a950126a873a057d1c2917416edb6d199f72d7309a1f7eca2dbb3f19765d1f47867486b55f186bdee2d2749c89a1d70abf1fb9d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 543e94f4c5d1725deaaabe26707af2f5
SHA1 f3dd3d0857402be933b63c1d09b2b68a9ef091f1
SHA256 54b680593ad232788988923211ffbb02729a5ee38301fcb59667aea24374060e
SHA512 2036240fbd99a5a7246fed23df05c944efced8f0d45eff01e3ec1c3542cd84eee03b4131e7c537bb49867c2dcc8060432c3e12676d4512ee9ad076ee3acd6cf5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57ea9e.TMP

MD5 2d4e1d8072917ad14159a0f8082735f7
SHA1 3b746c663aa917afea0c9397b4356f7957a28efe
SHA256 175612f3025f105c03dc0f4b191b852be6c2b2742af56008c4d0533bd83115ba
SHA512 c14fd9d9497c190417a1d9522dd649f25dd9e9758cc1a4ae52b65810d0a2bb5180e031b277ba14ed7bb52a5a89dec25c8442dcf31bfad8913415d93cae1bafea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 d810e3c38edfb01ed9327a722c4d6a6a
SHA1 19fc32ced671724488ac787e7edb3400ed4487e1
SHA256 52eb8cd2f470ba2fb0630111d4c6978ed05619a4b712d3d3df5d39fc6d0261d6
SHA512 2f1654627e4658bd02f24ad9a9fab5e6430881a2ebd321b90124cd4b17a65b4d3196b1aa4f2fc55bddb63662dcf8b553edd75dd0fa73b6c7e75c65733d32488e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 2b577403de6ede56c9148c0e30dc8fff
SHA1 806b698039be17140ad51d7585ee027aca7b08a0
SHA256 a53565ef53e315bd4823cb3f096fbb228c35cc0bdebfb37f59dd113c5c8286f5
SHA512 699796355a6a81d6f94048210f590583559d941580bb52a70c621c07ccfd91e3eab825f4114b7c9d3c5999d2d9068a6a4401400ec351a9637035f510fe58eab5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 c9dde9b2a3f1341acde91c092ea2838e
SHA1 31233de342013055f9096782e836f1cb664c887c
SHA256 3f73b7771e2e5d75818f86199c08d5ebff95c3476a9b57b1ff284e84ed92da8f
SHA512 c98638b9858228513a33b810b986ff7a2900f5143f19d33c7c7ad4673bd3ed9add0a67f3dcad71087ff2e3f95f0b08d5efdc334e14ceb60eb57d26de59999c88

memory/4088-1099-0x000001E9BBA90000-0x000001E9BBAA0000-memory.dmp

memory/4088-1115-0x000001E9BBCC0000-0x000001E9BBCD0000-memory.dmp

memory/4088-1131-0x000001E9C0080000-0x000001E9C0088000-memory.dmp

memory/4088-1135-0x000001E9C12A0000-0x000001E9C12A8000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\Custom.theme

MD5 097cad178daa9869c4babe0216b87ef5
SHA1 2424f7586455b5dde6924b94e1ccc03c9e089d69
SHA256 a0a7e1c83570ee41e29e2c1fc66f1e08d474d1868055b39af016be1e43cd5326
SHA512 d8e4896e0461014db631b994289f4b9abc3181f71ad963a345a5369a098cbc4288329101c6aded325371ae6cead2715c0db39875108db302479daf294f31fe5e

C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\Custom.theme

MD5 7374292efa0b87b0c21cd5594aef6ca3
SHA1 4a765eaacb15dbb104dbb00165e43624c9315d14
SHA256 7ec3259c75541c0c21ccca1ec24999866436af6890a62264eeb895d4bdcb50b9
SHA512 7856d7f05536a7729a2e2041b404e3a7823757d0a510f55eadd9ff2d46375ed9b0ac50a5392694ac1f874d2f2393b8ebc863d3f0fbfdc7777a40829a21a09eab

C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\Custom.theme

MD5 a1992965db33b2a7497523ed1c59f9e2
SHA1 62da096fcbe9e4b21016a07bcf9624c5701c9496
SHA256 0b421c72505974f1876ae70383317be5a318906687f3b7786041c9b1501d74a6
SHA512 ccd104a5d6aeb0d8919e4e7c68c7e7ce98bb843ee6b470f06995bff552b74b25d248fde88aaaca0c3ebd13ea05208858e9730063cb3669890dcd45010153f16e

C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\Custom.theme

MD5 64bb3cfa69b2d58ccfa13187de522176
SHA1 c91776bbcbaa432b0b55a9bd5c97457a7ff2e7a2
SHA256 c17ea84d2467c61cb694ea587ce98542f6a5549cec373b699d032066e935f4be
SHA512 e04d9bf45f15ce9956749c13465538fec8d55d4549db9223dbd4e5334498fe346a7a6d8b8e687f8d3cecc172cd0beed58be2b1b59c1b1de78b55b46bc406cb5d

C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\aero.theme

MD5 1348e4e8fc451e8021f935f4b1376c95
SHA1 c6fecb47e09a1a255cbe9a9f03d91d2100cd1737
SHA256 cdf0440a375c4d4a180a358ea3c87448482622fbc71833bc797ec1410e54bb01
SHA512 ef23469825048d1fdc7f693a9efce5a1bdb8472743917288fa06244c7172d933347d8403440598a9f4062b3514ee313462655e21bc1c1a8dde78cfb607796703

C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\Custom.theme

MD5 c98b67d3bcec583281ec60bf2d444ba4
SHA1 06b1f559a3a90d071b3dca855702066a24f9aaa3
SHA256 ccbed901b1c9cd192ec3741ec3b66e3dbdbba3ea9152337c6372d99b3cbda864
SHA512 c3e7230d19cf581f7b9ce7effd5c5ecd41519fd86cc7794c85f3c715526e8f1d7821181b2d5508e562967fd42918e5d613a349279f2cf85b06335e1875c009a1

memory/1316-1845-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1844-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1846-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1849-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1848-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1847-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1857-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1856-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1859-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1858-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1855-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1854-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1853-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1852-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1851-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1850-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1860-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1861-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1862-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1863-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1865-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1864-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1873-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1872-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1871-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1870-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1869-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1868-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1867-0x00000295CB740000-0x00000295CB750000-memory.dmp

memory/1316-1866-0x00000295CB740000-0x00000295CB750000-memory.dmp

C:\Users\Admin\Desktop\ClearWatch.mhtml

MD5 d8d82b71bf1a9655490f3cb1f1799202
SHA1 2b9ab5b2650ab3e85ad1b109a1d7baf33bb690aa
SHA256 d6acce02b29aee82de4a4b5e40db99f10385773b2a0ad4f93fc15ff7942f0e37
SHA512 78f135ac220a38505a0d9ecc3243857069e9471f3fa02c650a6ec86d91c738786cf1f3c1e99af100810b2c3651bacbdb0429528aae02800e81e0cf7c94ddebca

C:\Users\Admin\Desktop\CloseRemove.easmx

MD5 0306e3d4b867fe1d7d5dd421f69db502
SHA1 d25af879f20cfda5c3fda6a0dc92b4333cacddd9
SHA256 356773050d57e6289ac5eaa5e74d8704298c3047e712c2a28b3a6c5688dd2299
SHA512 bad2ce4b5bfab5d65eb5e602a9614468d37e43b8168745c62bdd917aa83ade9faf3b70fe5b8be5c66c60df9f471f5a8970b594d8ec7fa29406155657e66c148b

C:\Users\Admin\Desktop\ConfirmSet.lock

MD5 801968ff5d9f6e89df6082e0f6e81868
SHA1 3848abde26ec562d4abfbfc76e74085e4a24b53b
SHA256 f36d46af04a0a541c6ccc317b59333593ac5db62fdddbea9e6f62a30c5254e68
SHA512 371941c42491e01f30ecf8412de3ee78f31d86bdfc7b8b3e17231ab08a5cf9a91567f2dfdbcfc4c0baf73b98badd5070b404e072427dda2d218244a6b9704e28

C:\Users\Admin\Desktop\ExpandStop.mpe

MD5 a6125bfa6699ab1c27429817680b53c3
SHA1 d7e3c35296cebf58fca8d0b6284110522855c7c9
SHA256 e22cb25cf392bda2dfebf8bd629a26158e7066526e3a91e9b768eb39cba33f7f
SHA512 457cc5883cda12d39cbb4f8a50924174ab50ee640365883ce5164f09cdb60f07cdf267ee549021e8aca3df648c13d60accd44f972bd0961de5486d90543db656

C:\Users\Admin\Desktop\GetConvertTo.gif

MD5 5de966d1a8f35d6a3db835098754a2a8
SHA1 cb75d69cadfcd0f13cc33cdd204f91c9e0ded27c
SHA256 811058c5eebe8d5c5438c879320dde9efb413f8941d6e5ea34eaf4ff1dfaf3c9
SHA512 fd99e675c035becdb965cf4d9f7b22706a87309d880e8e91bfb913c2f54e993cdef375e0cb0a29b14d2519b865171a5fe438a065d0a620ee481c6a2bcda8e46b

C:\Users\Admin\Desktop\InitializeSync.lnk

MD5 38d21800e30b18a81e968aac7dc9de35
SHA1 440f47ed557ad8c7261a9e4c360bf1b48f1992f7
SHA256 b849fe080d51b291f14b4de95ab4f51be41c2d6002dbbebf445a45336466bc2c
SHA512 5332311e586d51e078730ab8680d850f3f02973a89b80b74aead57fef1e7a946dd0a80e39baadf59658158f552acc764e4060a0ccbd4de17053fc370c8e8bef5

C:\Users\Admin\Desktop\OptimizeSwitch.midi

MD5 84bd0685510c7a6ddde2280a97f0f6bc
SHA1 424c5acf1412ca83a531fa78508ed3f8b73c7d50
SHA256 f9884be637e95afe44d52abdf85b0440c8a28e0d5c103addcd3c6b789e3d5778
SHA512 209a4f7bc6c2c35fcc60db040d8b557b1d8b867504b31a0e3375ae2e7015bcf77dba0cd7caecf29ed36949698c76850361433ef184e8c80472ef96ae46b185f2

C:\Users\Admin\Desktop\PopCopy.xps

MD5 7400d3cfe6ae7ecacdea74d64cba2911
SHA1 8b21ecef83249ea3ddc8fca3ae42f5e1e0144ca3
SHA256 6239f45fd71aa0949ef6938d75806f0ff1c148f93deb59b322250de611b64f99
SHA512 ca011cd2a25132417c1c6d4bc8eb5f4afdd49de1314929a9770b64a657e3852c944699c3866b6c5f8e321c9edbaf4be65e40d90276736095fe0febaafbfc390c

C:\Users\Admin\Desktop\PushRequest.eprtx

MD5 6e2b1d341239661e5d0bacba4edb4cdd
SHA1 62d7e06fbe56fa250dcefa9512d74b1f56df58aa
SHA256 64dfe701ec89747b73b48f106f8eee5e4df06f64f3578ccec53d947fb192079d
SHA512 6f1e97cd96b663640bc82b2911a99e6ed19981f5c38cee927fa984ff7e79faf79b153265ad71458690c7a616838f6e66bccb8891f97717c3fd5dc75d5db96af4

C:\Users\Admin\Desktop\ReadPublish.xlsb

MD5 a7062b3897f03aaefeff4a5e9a29643c
SHA1 7647e8213aee6d4d0eaaa0e133e555caf44e8aaf
SHA256 ff8ff4da74d0445c80a81037cfbdff61f3fedf69e85dd776d6a94446ba81aec0
SHA512 db4016b1c9ccf07ce2a330af8a99344128cd58c6ec0d24b741ecce417edbd8c496007718312edf43c519193040b19e0a2ea4baf53b01faab71d853be4cd01980

C:\Users\Admin\Desktop\SearchConvertTo.wpl

MD5 b316108ec64ab3315be471615be4ea17
SHA1 6ea9dbd222a4a750f14396594a0fcc4a513c1635
SHA256 2ffd97570787606a6ad75db507be550316389b8795e82920c8c3e9c510750ea4
SHA512 8822d5d899b1b3b18b167c06eefc5b2c81c4282f1d76f178a804b6eca865eb991d5a474350aca357b311cb57bd605421565ef95802dbbcaca540a4646ece8432

C:\Users\Admin\Desktop\UnregisterSelect.svgz

MD5 1d95d77e7a159c9dc046308c48d93428
SHA1 3a988e94f15f5d66a7c001211fe8d50ae9bd1f03
SHA256 cef5014bd34a9bad90e95f9376bd955f039d7ad6d69a564d045d1b36641c32d1
SHA512 d7f4d76a833dc0c6c8762b03f8ffed6c7038057ac4a4b122f277c63646b2650bd7bf75f54340dd72e6cba2d782be361546a181f396a3d378c5fbc65ad28d809d

C:\Users\Admin\Desktop\UnpublishAssert.dll

MD5 b89fbcc0f939e40e727c8ff573a631ae
SHA1 4b50c3e81c785095a8e95eaed3d1d90e9c658419
SHA256 ed87a23847cb702220d412a273180140e77e05d7a6c791c9e87bb1eefc699470
SHA512 03200229709b2f1b608886073acfd4bac9555f6b09939997df28f592854e0c8dc546e7857180f77d420ea28a7c26bf7c6a61acd159d5405635fdaabb8ef5339f

C:\Users\Admin\Desktop\UnprotectSubmit.shtml

MD5 d02c1c12abb0ae2872d5140ba53146d9
SHA1 cc6908caa8a6292d8f9fedf173beb5ab8653a6b6
SHA256 bec9a407d88f2230c5bce08686eb33238f0a6163171744c6e4b5763f5399645c
SHA512 033bdfc1c5b5408d43c506ebcd1e75c749859ce516d38db3882721c329594da50f60c5258c1e9a3430774f0548b2bf4a91f286c4c1959226bef48c298a02197b

C:\Users\Admin\Desktop\SuspendSwitch.m1v

MD5 c77649a4c8da710dfc43ad4d2406c700
SHA1 dc8a3b5fa8812464ed138be9f518174480efb9c5
SHA256 879b5c0b033705038458cdd2fa4fd68110c8a70a17c20d91e27c00a7daf0a366
SHA512 906c5e054d5f0877d2739f7dc2cffd66474630a60997c2f57b64c2c611ff767cbe70e45c1a4d174dded8c059f5f77ca71b16a390cad7c5da6f78fbb089cf2431

C:\Users\Admin\Desktop\StartResume.zip

MD5 ada4289e597a44c7a205aba079a3ed6f
SHA1 68a56e6cacf5aa6fb9448ef91e2c5a89fabf0a29
SHA256 34b662e912bcc214abaa7a0f046b6a29d3929d0664aed71677071ef362db87a2
SHA512 1208292d62ef93bf8938db948c4dc0d8117908bfeba06cd84c83b254281b407b787b8a8fceaf905d5240c79ad789774708ec24b1497fb692bec4ab9dbecb633a

C:\Users\Admin\Desktop\SetUse.ppsx

MD5 325ffdbe412d830df469e712c01b16d5
SHA1 3e5e8122812add211f0ca9eeb144e6f89b449f60
SHA256 a06a8f529e3b273c3f4e96c0b257cc50193db86ad2132b331849c7c336afae39
SHA512 b3289c22f537a83e7371b3adb87dc47a71bfe3b6fe794d2b011fbda6a3c4ed1a2e8ce511e3b07e9f7ec0040bb1bbdd66c60284836507b934a021b97b5a18b977

C:\Users\Admin\Desktop\RenameUnlock.mpeg2

MD5 70c3429361f1776c46f7056748099f64
SHA1 4ba680462b841773d4bc06d36d6e80448d5ccccd
SHA256 6707c09473ded2496d1c457820ea4aca12e8d6bc337184af230e1ec40313234f
SHA512 157b5ccaaeb3f2d04abaede2be4dec168a7cdb3918dcca4d333842e35e896282d10d487615af22e5a677043c67521021b0981711511c2a64b0eba59ef933d143

C:\Users\Admin\Desktop\RenameTrace.vdw

MD5 b4f2fe02e99f592a440e77497d3c13ef
SHA1 c5af7c3ce1585dba38da3cf93844c910df688341
SHA256 5470ad331634f62f3757cc18b7fbcebd4b28b9a606d3127c06cfb14e0441b89f
SHA512 1d79f22ca35a90eef19eca3070bbbd128c667f453eb78a8815e54f91cbb9685afba20ae2d565df1d02299bd08c2b9a6d30a482ae05860507857040267fbb8857

C:\Users\Admin\Desktop\RemoveReceive.M2TS

MD5 18628d4d7d6b13cb0e4e5741b412a1bf
SHA1 6f7aa0a01a7c724464c71693ea8755e9c38c9865
SHA256 0a433db4e11f752763ce6e9fd29ef17e664c18c852f9fc8dde7891e910c41ff9
SHA512 e0263d9ee6a15f101bd249e10cb1ef346db9a92e49db7dafa9f084d3c2665eff1b512ed978ae5039371111cec094fd62889997af29ed546f1ef97078ef308b9a

C:\Users\Admin\Desktop\PublishMeasure.hta

MD5 f45f5b15f018e738cef6b2513c5e78d5
SHA1 43003245659a3fa810e8fce7d5ce88c02aea27fb
SHA256 3ff685f7e4c22e99330e220f668ad96548d2e3db09e6f8eae84a24990ad7dad1
SHA512 eb3d05faaa3ed5ac1bdbf2d95f970b12dc09734d27dedfd34d1427b425945f80cb8e0bd137502aac43d2906ffa6043d62030420008681e9bb51ad2e8d4c3a3a9

C:\Users\Admin\Desktop\ProtectShow.pptm

MD5 c1021684a3943ff6e56f2defa6a00e9a
SHA1 5718c9c3e398a7a94982db4792965939e42407a7
SHA256 586fd9fcb2f30dfe4002d3e83b4b2bcc22c872f57fe8f0031a46f3d1b004c1a8
SHA512 06aee091f02f23d8bb9965ad28e44ecc1cff2f209ae496058af139174026072ec3c10ff259efb28e6191af856e914723c7af0b2b0a52bc08f0e7e80d76207a39

C:\Users\Admin\Desktop\OutRevoke.ADT

MD5 c47903a8c0d0c82a636e080d8bbcf29e
SHA1 5c04b86e2350f5d3767cf07114f85f977ac8f635
SHA256 f5dcd8503bd58ecb8221324938f206a156e83e931154863f994470b6bef920c8
SHA512 2d7db2983531f27c7352d49730498e265a345572656b96c32943d39c6b73125cd0e09cb1c669a287833bf5c26f2e22e37ef5e2f7b62e3ac29ce0aba5ff4c253b

C:\Users\Admin\Desktop\ImportOut.php

MD5 47b9cd28732ae3cf5c21cd046deb51d4
SHA1 7a2749156c3b5be6a6ad4f2694e6ea1e8ea5028e
SHA256 a85c559162c2e87cc77e2c31af379053b1670d496e745cbe1504a4184e8fa481
SHA512 d210cff22f9e7b8426f444156d62b3a9045515ce6ccbc49516673421853f2fce7287f324a3a47eb70dac4fdf3c34cb07c32eaee3564e57261ac6d94f8a73421a

C:\Users\Admin\Desktop\GetRename.vdw

MD5 f81b35e012dbe502264ae8cdf1f53c57
SHA1 9171e550e2aa0b3c9a67a260ef3e0df31da8554a
SHA256 dc83c0350a2b7f9c8c157f03da9c7a63f8db7c8befcbf1ddf6678242cc512111
SHA512 96c6e61b26d25fb6f645cd333d24000bde34f693da9b735dd5a800fa91d3d179eb93b2d16e79ee32ce0886f88cc1e8812af45fa9bba5fef6fae28a14101ab866

C:\Users\Public\Desktop\Firefox.lnk

MD5 ee4e8bd5fd9e0969feaf40e245b82224
SHA1 61b67afe9c58e59061de94e417f4dc8b3581f57d
SHA256 47682b7eea334653c70b8e5d808a9687c94f5749a31bf8a1cf2e8d81b59f2db0
SHA512 0006bfecf051810e87c325f8d7df8dfd1661b02d26033b4efee719aad096935e7c37faf4b738903ff84353245d42408ee6de6a6bbc87f1d769c6f6ab1d1f9dfb

C:\Users\Admin\Desktop\Microsoft Edge.lnk

MD5 2fc59208d0764cd7633dbaa3fcce58b2
SHA1 830d894049cd1122d89dec279fd4443d9304b212
SHA256 ec5995d87010a55f862907768d35c0055bea7ea9ac73e8fc39d89a2376a5fdc1
SHA512 8701f8420ca5cf29aa78e19c2506aa3a384533cdfb0385ce256756d18c2435476133529531ee5a68e8fe48635a44147ed852335cf5951401a451eb90eaed8274

C:\Users\Public\Desktop\Acrobat Reader DC.lnk

MD5 b294dc5f6a12822497393767130c5a17
SHA1 999b51fd53bf4d7d7c1b3cce5f501baf4f6a4386
SHA256 1c20d70b2588edc7b1f98af5d77e7860a580dcfeea1894a6139885a87db6008d
SHA512 398206486a1924714fbf6e10f84f7c41ba6f7b9a3dd6125d1599ff62686819d2848178342a9b6eb7658c7e95d251567049aad0e3387befca494e0f3246385e8b

C:\Users\Public\Desktop\VLC media player.lnk

MD5 6034836e2c8e9c51a4030e0e4213942a
SHA1 714d10a9f5f9880b524a86a2f48cddde675028d1
SHA256 ec00648d9ac5a26a2a4f484f3d394348ec72c6216a6f790eb8b9b30f7266e699
SHA512 59568d46fa199453d1edf99ba9bcbdf7444b20097909534db9fccc07e05844f54b0996b3e8ff14d9989cab8fe72e3185e6cabb23b4c03314058ed308240ee4d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5647fc2c6e1f01df048f0f2e162b24f7
SHA1 d882eb19a6733b8aec4f09fd1f10753723652a6f
SHA256 12e06c131ff94af649e099a0c7f67daf3d65905b67ac86a0498c90205967cc76
SHA512 d1853f17902f2801b1c81f3fc5f3cef93bbf2bd0d2175db6e2668027f504e749d30bc534d36cd472761094a7d951b9235f1d88f58cb8e495902e8cdaee4e7beb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 afa387be1692378e74a9ca533f988a5c
SHA1 32760629752e3c44b54c39479dd6b217ebbec71c
SHA256 3179570ccb26f1bb851fbc471b53afab995a39868d6a6dc4f311be88cfcd5d1d
SHA512 6013d6e4ab715385bc72ab9ca4133db76a8d5827077c4da1113b2b4d4775867312c79e36c1ec9206ed332a6d66bfc977b2b330e8c5c3ed8d85dd60978c4a581d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 b26d5c364ab9993b56945b639450571a
SHA1 c9c645a7ca4574b8c8ae0e164e3654c8b53faac7
SHA256 9d2067249d585f8a560c8724e7b48c5a2f797b854a561212e1572607ccfd724e
SHA512 74a83c58539207711f93fe64bfe810937f5bfc95734e886c861593abef2140a76ac9c9b08a062f0fdfc041ce3bc834f653d7405156754f8ba1eb5f125be89b28

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 dda83ae2617071fc257d24ed4a6ed32b
SHA1 1196edb28193b89dff9d5223583a2a28a65ffa61
SHA256 1c366568b9c3addd44d2566c537b7b71633826e9e0ecd6e7d8bada6bcf742ac2
SHA512 06c322e6d96d671e12e28cba33659e1634a5e09076e1cdc4b5bc5b3054af0fc110ba631e844ff3159c84ceee5d0dc8c2e97b11eea38fd9e3283868917f111798

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6a9788542215981defb0bef419e8bd91
SHA1 687dc6cff73ebfbd84b4f508a734f00569b0b492
SHA256 57c4726d9e3a95a5d31c413ae5c0c429d3ae8dd121c9e69d64590e9d6da701b9
SHA512 1eec070992c2766c6b3ec91f480c97d07c2e4cd0951e1b2d0df3d094ec3e7e11aa61300a928c0dbfede6cc5b8f81eb440974be5b0f6813905ce0c6bab2621c6c

C:\Users\Admin\Downloads\Nurik 1.16.5 crack.zip.crdownload

MD5 2022752653c5d322eeb42ddc452343dc
SHA1 c1917a38c4d3d0aa413aa8ba879b0611f77dc2da
SHA256 ce9179ba964486c17b5e2b39ad11ec1cbe5cad79b66b3897f0cbb827dd2c2e1c
SHA512 c9b5a2cd3c731880948c7c99fd3de05d642603e99a5675f0ffd1c5dca1d0b08bf8a0bbfb3b92ded210f3cb697f9dc59670ee52986c0f3c7461a952919a0c6f83

C:\Users\Admin\Downloads\Nurik 1.16.5 crack.zip.crdownload

MD5 003cc12277d1d03d9378033fbf4f8671
SHA1 a9aee48245c17cd4d0e41b03e82bf6e63268c4b8
SHA256 80544e7f4796858aeda3e6eedf67a6cab47ba6b7bc927f2fdb3739ae616eee8a
SHA512 bf09586cbbb249e468c4f97a3912894d5c6dba0b19c31ccc76cd11b31eab6f1c96b93f0a1665caaf844edcb35a97bc3dc8deb14fe0221b8d5006e87e90924af3

C:\Users\Admin\Downloads\Nurik 1.16.5 crack (1).zip.crdownload

MD5 e2c1cdbfa0a7760bcaaffbf6c2569bd4
SHA1 e8befb113de37e075a349348d3ee78299766bc9e
SHA256 50dfd5e1a207f0106e8f28b096ed8455de4d0eae91898605d95c4fcb3301b699
SHA512 4b5e3fbbc81cca3d2b40541930c9b4308fbcecc84582e31c02d437cda75bea9f20461e7645d6df86b425e412c8af8f97f3346a45cf2975b820e347f6dd788ef6

C:\Users\Admin\Downloads\Nurik 1.16.5 crack (1).zip.crdownload

MD5 137e5a6c49161035686ea3ac065f7149
SHA1 bc73ad1d6f09925f98f4ee2df280124e4368dee1
SHA256 c5f3b77c535d99162225aeb3376ec52a2ff856cd1cd6310ab26322aa9d2aeaae
SHA512 b3eb0b44ad23bb7f8e5379d0d03cc56c5ab74b8fbe09f3e00ea0d03afed518ee090e289f85df700b145329515ff0ced7552f33e8c69c19aaf534e2f41228c46e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 7b37833b91bff43ca829e2de808c02c0
SHA1 45b44b021ae49bf71ef9736fe00479a075d80dec
SHA256 8c59050007d4bde6ff287c29d534f5d6a241e6fce5f4201eaeec5ccfef54d3f8
SHA512 f9b2cf76023dcc8354b4c897c8c7b91b24bfdfaba7e9fd827ed76e01f551d702cf48b31c8494a3c058c2670463dc281dbbdab7254c1e50a7d27a747eab9790c9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 64e4cf4f750e5452360f657a5daa5b98
SHA1 d21a0cfecabde6ec21317edd6050ef398563b3c9
SHA256 c8d0cf3844e576e7428c94a85b53ec64cf8525893fc6a78f4f6491376b3fe3cf
SHA512 f1b7b669e654270b8c87bc1d67b37277494eaf2c85dee9108015c0b30406b753f2f95ab49ebead41a139ae5d6ad8b55852fdf21e20bbda5f66ab0274c148447c

C:\Users\Admin\Downloads\Nurik 1.16.5 crack (1).zip.crdownload

MD5 1124babe972926ba9b369956cccceb34
SHA1 924bbfc717b319e9bd3893098e22730c92ff6947
SHA256 e0367e36014cf14730d8ad062db1369b9994c86317764a2ee4c7a6a782248a70
SHA512 8571f0ab1033f48137a1b4d039e687f94a8cf0567ef98ead63570450878d80d50ce2dbeadd9dfaf16baafc4606f87e21ea6423a901bdb050dcfe20e6173a39fc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 20b920cb0a3b22fb7134c5e897616309
SHA1 bd9fde4a6dfe4a64fb3e2e8a5230d66a61751871
SHA256 57d38d19e69b97eca0b553899d6de94f264cff6b196bf04a98d09dbb3f7d8b9b
SHA512 76a633c98f3662272d5464f409fe6b96f153d37b77822d86bdd4af59d7c219ed864a5b08c7b4c1c917ce984170a0ee03ea8781749b2029b62feee481751cb30d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 d0f5e9adb20a642152bd0b4c2767dac2
SHA1 22920420e86c1fd50fd52325a250536334d764bd
SHA256 600c36b97cfcce5c0e1a6a15d11e00a902de48cb0e9522b47e0c9c87390eaf93
SHA512 4ded15448dfcbd564b0a808a93523e599db9f29adf9c36400a7dedc4e9645b1e9f2aebc0c0caa8efed936432975a4c53e74aeb28da4867477e5ce3f05255024f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 0adab9d2af80211c4fb9f1930fc27d4e
SHA1 4b8c86a46c858393dac45e593ef35d66c1ef1079
SHA256 0206dd75df1a915b69aaf50250ecded8b07f4c602c1dfa0aaf0e4f14d3cadb79
SHA512 1aeaa1b86396922881a244173fbcd3f8a60d88f8969d3d702ce0c4fa21a3910ea367b5182f7f5ba4b8a4d87819512695683ec327df996d10fa2b616e9a35ee70

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\3b81ddada97594e6_1

MD5 6f6a8b519fc24b692884cf92a1d98673
SHA1 c568c8333ab842278d1cf0226abbd2c9a9784eba
SHA256 a73de1a852d6ee9c3180fea17473e0209ff8517471934f7455e5adf4d7fa3b23
SHA512 709e2f27e8ef0b8cec9f7b63574b48fac9272b73d22473ce23bc9f7dc040fc7abc58d2d2e964a5f8897f207240b72e07ff40041cb84958784d48d3b785fefc55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\3b81ddada97594e6_0

MD5 a2c054bf23b2a232612c427a294cf60b
SHA1 31218e0cfcf5cebabf38d959caa86430a898c1e1
SHA256 545beda87358d866cdc6c67f7eb2127dd26958891f300a4c065a238748aebf44
SHA512 39213e669a3e5a1562ca1ae4f1a61709c1bf1da5d3b10878472038cac7893179c8e4e4583f4a7fbb2481367bbdceab77da235641aae42de54cca215fd05efd23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 a7c407c86c7f5d442f8e9d82d0bb4bba
SHA1 0386c8abe544a49fb9c2111a7453f2ce86bbf036
SHA256 4ba567dd6bc1f97a3d6b4a4924d75c30116ad07e7690e4e1faa77ef45a10fc23
SHA512 237770287314161ad59449b8c0f1a5d55e54c792df9dd239d9ae36cbe90f81c5469a49fafcbb911534bd75a37774b81fb6ea56215b8eadf2b3aa3893fe44e5cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\42de0592c955ba91_0

MD5 dd877870a3113af1208ddbe321146e80
SHA1 f8b91e748b03714d9de08fbe8043a7d9d9ed7198
SHA256 833ee3f88a4a18e10a16b4845444c4e03266295647d742fcb16e06261efbca1a
SHA512 826cbc620a0b06e31692d17766d235e74ac93c4b0afe0fe25548d8a718f357a661344aba3f9ec802ec449e4c18275ee2214a531b843ca2c855e34cba245fb2be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\42de0592c955ba91_1

MD5 e3bd672ac970811dcc0cdbfc70ce98b4
SHA1 ec32467d5eadc648b95a059fd1dc28e80a266972
SHA256 d338a8860abc13af9de8a528142efb497b708021b6a8636b9c5d1cc99165c064
SHA512 fcb0eb7c069319458d5a362bc305333f882cab4bf442679f9ea4d04f3c023066d2d2473bda6e759d7be15db2da5739506792e6faf44ea331a7b0e977d185d7d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\842f0131da9f4c94_0

MD5 c574c4cd9f4fd9ee385dcd7780572e09
SHA1 262c68d267eee5482dd27cbae1582917c739b5b7
SHA256 47ed11fa6cb0e38a931f68bbbf374f9dcbce2f662afa8c80247a040bb93bc966
SHA512 903e9c54c7ebba4705cc804d5cf313fcc6242e727ca75f09a221aaf21f626d33d70dbb676ed9c7b4c3d883a7224668e158b9417592303b91572435ae4f4879c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

MD5 2d0cbcd956062756b83ea9217d94f686
SHA1 aedc241a33897a78f90830ee9293a7c0fd274e0e
SHA256 4670bfac0aeaec7193ce6e3f3de25773077a438da5f7098844bf91f8184c65b2
SHA512 92edce017aaf90e51811d8d3522cc278110e35fed457ea982a3d3e560a42970d6692a1a8963d11f3ba90253a1a0e222d8818b984e3ff31f46d0cdd6e0d013124

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a42859f951a6f237ac05954c0b8d9cea
SHA1 7208cd6032327062ba3711ef429e07e5749e30b4
SHA256 849c71c97d389e7ea1f278956472ee9d74f20d3c4a9225f7978247f24805830b
SHA512 ad8ab1ac767e1a5ed7e14f3d69ec4d7cca6da977f2d356d1562ff19ea3b795e36115d79566592928b892008545593dd67b62568ed08779f916162c47f1fab7ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\a9e11d6842736397_1

MD5 da0e5b9d4f722cd671d2ac1614521087
SHA1 6da310dfb12442b3af23fb2c199f1abb666eeb94
SHA256 a3cb47df08501b562eb014e97f2ce74e8fb9f6b490905cccc548423177392cbb
SHA512 2c463a4d8c1530e77b03e6f45520661177039c4d0e0ca32901da82b282874b2d7c7dead0042ace38e199cc66bede3fd3b7861752d7f111530c2e3bdb1931afdb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\a9e11d6842736397_0

MD5 403b16a193e2873ecd5072b185e8459e
SHA1 c488d46e917161ff4cf05a0cadffec47552e5a84
SHA256 77628624c8027937ea5b47e9f8a6d3aa5fc56746cb005e4310f1f7708ce7937f
SHA512 b5933c187d2ce09a0677ae27bf872ccdd0937ee994c2b5f9a61f407978bd9ba70381014d44c4656e32147e063366a3ce58d79452aceb6c5b5a30e63ec11fa4a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_0

MD5 0a7df73c90d47fe07a84fdebd5388261
SHA1 25ea15f418ff94f125805e2c57a4078c938d6c25
SHA256 e5806aae2917530da1f3b0c025cad2a14f1127cdae471c7767c875931232302d
SHA512 91ce04495c0e4d6f5e4f32bd4ff95fc9365a10ae3c8803456c89e506740ebc05e8680b811680826b40674ccce189079e1d0cbbf768e9b87e01b7229dcfb14ac0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_0

MD5 49aa19bfb8e7bedd5fb7e41416c3df55
SHA1 43f0f4109f3837879fc1089ccdae3bc152c1da54
SHA256 88197a74327b0e3c48f612da2c11e4bdab692971c780f3a5b216979f6993433a
SHA512 96160688ee8f8bc72252ad7ba08a6dd6e25cbfa3a8b7079024a69e04f258a9949875b4ae64966e93f16c8d29a98f3244956a16e2e7eb4a5547d3415ead0541bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 3b32f4a296bf217e9b2117c7f1d096c3
SHA1 f7e100b8376a0b406ea07c0036566f7526d6f1b4
SHA256 79086a57e819601b0c32052fbe8a699fc4eb5f1d20d437f94e114ff9d5cc6700
SHA512 1711b8dd31cbb98acee76091100f70726b7c50e5b986268a28baeba2a116a4fca08661a8420970d0725e0821c375afacbc62bb31b38900515f0a1bb6e454cbf0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eb9da67cf97263dc418f67032fd6aded
SHA1 9e662bb372b0ed82bb7652efd182f2ede986785e
SHA256 422b33f008959a51def0ac860fcdd5e6e1b86fcfb40d7ed6f3debfc8c33c6a57
SHA512 10a760595a05b40e8808510a78e51e3e685bd696f41185238cec4acc22032f656cab2862d562b572284afeeb39a6be0b4d806cd55fcec9415fc45994a67f4e9e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9209b29b650bdc8fc52b36a89454a5ca
SHA1 4c5c4f5c693f753cfd1a79d86e4a61b09dbe512b
SHA256 e9f3b16cd9fd8d14421ea83ed9874993d683d7ba91df6268c56fde48ac92313a
SHA512 10d182682af9f412a88cfa6ea21dbbb160f9f5b9325e79cb2c0a5693419e78e47a1243f2a2a4d039f30d0e0aa66e1d743e7c29e8bc65f6462866ee3ce34ab73f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 cfcaaeb5771ea5cd8c58dbc89458853c
SHA1 3ec6115911e59b34abc2c22f33f38e170e181b2d
SHA256 a961296edf79758f5ac756f931ae3630860bb40d133f5bc29f130ecce24799ce
SHA512 9c70548128e52716fabbb3cbd7cbb5f4db843d527ad0f81a7999a6c192cdae7c6788111becab3ee2ba2178ffbbb40b781f2b1c5f9afb03c3a13b0a6148727e8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e17ced3cacf5147b54a286029fdda6c0
SHA1 e363dbd42c4dca40bbb8d160324c49e5c8b94498
SHA256 4d17b0d94981e714adb3fa0b3a5cf40fda8712fc34a2d12b56fb49908f42d529
SHA512 b8e628e4bd303cea565d3952113ec48a0c6c5fa5e845b288c961a392037471833ec6bdf137933a209ecd855390ec48a556dfcfe14440d4687cdbf56065304322

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 c1d110ae47a009ebca1f78d5cdd668cc
SHA1 29ba3d8a44586e5920009d7b12e4d7a076f82536
SHA256 26110c3a05e765f061c3c6ceb58d26543bc41773f7f6e6ce5d4abb6b3779c00a
SHA512 37432adb05add0c604524191fea5d85a697cac8a15dd00fe0fd1e03f0eda4c7b00755c5161c40aa727efbb30f329a7e629712ca1e184f8086711b8fb5d380f7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 d90c3a6f6246808163d2798be6e868d0
SHA1 36d41f72a80952acdfedcfaa631a75b48a9affb8
SHA256 97cf10a288d49b2c9754abb67c108f820d2c895242cb96b69037b0f271f81226
SHA512 dec5842db6720ecff9f33cf66dc678ffb34782fc88bdda863fe560a21b82f065b618913c3330260761a7612f9860ac7015c71dfcc7f5ba941dd024847c328504

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dab60ccfb49f4c590691b8f265352f8d
SHA1 bdae8754c37e5985599edc7490a8fb6be40c88cb
SHA256 1a8d86ee6fdf1dcf88576d2cc6c51787bec1dbd74e48df7a723c2b362f2871a2
SHA512 a9488e60f6cd2ea539f4c0c6acc5e3ec755cbebefd04a1627677626edf2932745b9a78c58ade552d50fd763678de83886f036b60db8d9c2174dda8a9bb192d4d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 15f1e3c4b19ff690c59466d343a423ad
SHA1 aaeaff520c0550d78774a32859878101019b4889
SHA256 f5927ebb99a673422052e9be0698e6579363f6f3e1b917248b86d8df1499657b
SHA512 14d5796976fe8a0b801ba19af174bb03b8f0be9086d3c506a7316a5b3105d47fb0c3157af3a6b5fc36f3e93bd15612bdb9f6698d7ca1d4f2e8cee22ef1fcbc18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0e2290fe9259300eee48428a12fb9245
SHA1 fc9d0b094ae9b71ccb3604ce3307516d7224078e
SHA256 7c04a5cc11e73b4bbe662f3a1b1c2e932a3927f279f46ba6b3b6c16dd1ae908a
SHA512 90f3c2fb471dd43b9e87c07f93e6fa13603d4d2b32c29b32350165231259265a18dbc715c7157be64dffd71c48f9a764ee009b879518865cbf20c5fd7e033a12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 c073dc41d6b33649f68a9405fcea26dd
SHA1 af3a88167af239f68f6a2dd1b5ec439989955e35
SHA256 b677c6f36c8ff34aab5397aa97f224c085295d5d5e5860af427e0c73643320ad
SHA512 e2ee5025fceb2db1cc04cbcdc6d6720910565d8b2d2d433d9d7fbe12dbcc604eb9469a2c49302aef5bb9d2a3b53ec09a0c923570f4f4c5338a3340ed2a5d09b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\3c9646c7495498a1_1

MD5 f5bdf1e57e060904ec4e396d994913d0
SHA1 db0e520a474068ebd59cad42b64daf10bd5012de
SHA256 9c130fdcf4471cd6786f9b477abb3270fc2caee0abff378311b25c23c8c4d2b6
SHA512 a71cea8fa48f62eef8ef1f22a2d03d1f827fac46c02eac6a81afb6e7d74db0f7a2c27207f5c1fdac3511fc146aa2097e9b99c639a212140ce19675bd60864a80

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\3c9646c7495498a1_0

MD5 b25ed5e610b32c2dcf88d7b3283f1d1b
SHA1 f355163af64a248974c3a0cf6bb3fc93e5bec267
SHA256 564c507b6c7606354fa2138f86f472c905104c1da9b8f6401a8186beedaf1b5e
SHA512 046508463e9efc328d97aa3ee6f8c2f034c265c018a15c1fd965973bea5b89da9940182e8d460b8d9db534295041fbda015cd62ac57220d54f19d92d11936908

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\fe2312a264bff678_0

MD5 eb0153337aaa10611bec1de83552da25
SHA1 9914ba6bdc6c8352c605e4150377285c79ce343a
SHA256 e270cec3ef41480d6f1a950edd6b43452ffbb4b61863eadddaa388e0647bfa07
SHA512 baa8026249ad76445bdf9d5fbf041de184a532f362b61efea93e6b29fff4b321de793e07a88121d157a235fa39301bde10b8860a908ed66c0f533e978670c3bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\6c1c5bc73548ae9a_0

MD5 980cc69381952c940112ed89feea6ae9
SHA1 d5c63fe3e0f8fce87490e1fe3829dad0079f7453
SHA256 7cc7141bc94d727c486eb414fff189da52282b38faa42eb7a695548efe4d8b04
SHA512 bb25130f943748bae4246f5c9ec56772dece71127d548b1e971ccb92a1539f9ed788101c0abb0f9ce655f8a6e4170305f1c4411f5cf48cb051ac5ddffa603e97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\6b343b21ae48c39c_0

MD5 003bd241ad3a680c5d3769d051b62610
SHA1 d7c327d9ec4a5e87274ed985aac0a1738ab3dfa8
SHA256 35b574230a9a0462454a96b2550b9af093a70476d5ff964f73f571043e170f8b
SHA512 1e1442e9cf988cf1a57a82877c38f41c4e46a69096c1c0b9f7a35eb00bffbd2dd342e7ee0ac8810dfd59ae5019d49ff37afdf44d818924eaecce8b02cdb30c6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\a7e56c91146642a1_1

MD5 633345d1576c70d3eea487e6edc1cd2f
SHA1 c609dc690a3112cec888b90845d85506715f978e
SHA256 0860fd02a298d8276fe8dc04fc765dc38444585d391ea091157d24b8d83c2de3
SHA512 32450862e47cc25925d7b001cec0a85e41b8d579111f1ba4a22e0362da4de14d5a6238417f498bb8844d7c410622103c7ec3a5ac5552669332a9299739e81b76

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\a7e56c91146642a1_0

MD5 d98332f86fa3ed185e2f6267daad7529
SHA1 aa85ec8a6aaeb6e4943781c11be6be096fa93288
SHA256 61461186ecba2d5dad722d63c70bd85aede2333c72f09a10380d510c0665feb0
SHA512 39808ecf5c0f9e103718d9ec29d655d2bf920f022eaaf43206b808434a2ad268d124137efe685cddf168bd1cb82519d28eb33b410f91203460b232009c29edf9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\dc02d647ee47da4a_1

MD5 c6df7549981599f9d25c0b8ab821492e
SHA1 3adbac00066f2706febc24a7b90c08eb79176f16
SHA256 0b2dea730d73655b3d1012b342bd06b4580d279f5618d6201a80256bedd571d9
SHA512 1d2420fe4159babbfd6359fe1f65d45753ce50e4c82e28bb4c8c8a1948ae6885efb30c8f6429d28d9242327d69fdeeb31f55fb7ab2fc4717fe82538a95921955

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\dc02d647ee47da4a_0

MD5 41098dcb5bbdf775668c9616371bfb9c
SHA1 a598b3f87f7d976c7db77993161d0be641053772
SHA256 a42be3d4090d2f640fe81508f5bcd7d16f73bf7f1f70137f1a8f1b6fe9f4f4a9
SHA512 0acbcfb01d1fb6625fe5b45ed671cae4482ee85c5bdef6c7d27913e48194da85d930cc0a1bc75db0b9225e70f16bfb5712ecb5cf4af48c2ab374e9fa1c1fee86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\10f11c14884ef7a5_1

MD5 16bcb14ffba10c0730cffe410fadb533
SHA1 cde8a2a57162c962d7c3fabc9cb1b622a013c9cb
SHA256 c2f10aed12107e8436d4500a2a73c948c9f297fe2814adc4e61bb35a252b02e3
SHA512 5820daf005329a3e38eae9b931c419405a8c21c7b41071c2230a0b1361f3ae56fb40e4c3544ab249b952255f068d0e2289f97bd91d95295478b261ac58a7420d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\10f11c14884ef7a5_0

MD5 5f8109692c513b2adbf75b9f34a35465
SHA1 6aee501747ac44981688ec7f970cfd79ceb50ec3
SHA256 073679004dec22e0ef008cfaee74f0b93a3ea214519106aee2543bba5b056009
SHA512 27ee99e91c2aee015098556c372ac002b24e9322c4cf020e61d65f2ae36022eced796eecae837e827087e4b1f87fcee7c0300fa6c776bd9be3d4aa62c2981d78

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\caff7594aea5865d_1

MD5 8ff33d0ae106fc58168f5b3b77cc1b33
SHA1 614df24ae063f7257da61171f971584f8bbf18e0
SHA256 75d68544b3dea5295646b8d8e8d71d9e2db9d304214bcb4a1124457e186c439d
SHA512 a98fa23fa2b376eac31b86823c595141b55a6a5eb04ce3fe92733a7f7f998d325840a19e353dc461000469800ea60a3912eb7409dbf8cd4dd59422b3f1193df0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\789ce8b994d5b856_1

MD5 a6f3cf50bf499706c5bb7377d363ad21
SHA1 91a343b0a20d780a0c049832fe3992e74d6b5d07
SHA256 f1843be17c10efbfb95efc88d11784606185984d231c5df37ab1d0d2fc077aab
SHA512 ca976a1a5e9b849d65dd3276a8cc83cbb1f409ff94d63d562c99a2123b7dd350f9eb7cd55024f8b67118509dd486086d11b5b077f88f3e68bf509cd0f0b70af2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\789ce8b994d5b856_0

MD5 d20067140bb3d717421f7e3bd85010fc
SHA1 91cb3baeb4a01ebb2969666b2ffedeef6c89aae7
SHA256 2ba393db37f64b19f512460290d5313526ac0ccbb8d0ea74d84fa1510865810a
SHA512 5bd320ade61f64ddfd89b9a6f005fbd984c6eb2225605ffcbab1cf15e3e3767d33cea917dc4ac2ffde031d5bb4cfa00da32411521e2dbf6a3544252cb253e4a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\762569c45c417f05_1

MD5 df31c942eba3ea2647ef53fb8a12f1e7
SHA1 94720cb79f400321c2006d19707230e6466a669a
SHA256 37b7555d1be04435d217a1163e77258b2722654dabdf74af082fad4ac39b6d34
SHA512 9eb7d2edbed2a3e6c21a9a6506e51837df96800a492ba1e1ec25c6122576cf327cdc7d9e45d01e045777cbbc234779e12c21adffd17950d7c4cd8e63c9dbbc38

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\762569c45c417f05_0

MD5 c1104125e79375dde53a40b4a5758d5d
SHA1 c8e204a5228005eed268ae0bab348749957e1e5e
SHA256 b50d5848c8d3dc9bf4957901f1d7dc6bc9e47ea97bb8bed32da7dbb4cb5d6924
SHA512 d19ca32e7c5d63ace6cad2e42530c28c65dfba67fb26124e49bffd11ee8da552c3c62b1c2d0c97bcd87c3124bbc63f4175a449983ba4a36dbb2e7ce34aea530f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\caff7594aea5865d_0

MD5 4a6aab71df23484ef4d99e0d27637ed0
SHA1 818476d294f0ef5c9627e1f5768b89c8790808a2
SHA256 e08f05730e28018348f241ab63b3d182edbdca8a5ce4ad93f9c3dfd492720010
SHA512 344ed4f74c3c92562a69994363ec901b173a78d6228da1f023da2f9cc3ecfd09222adaa71d2bcf1bba5dce9f0bb4d903a9c45855f5071346d560e6afdd1af7d7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\720a13da1f645cb9_1

MD5 c4bfab4f01349821f9b7813e18f79fcf
SHA1 e9b797fdf9bb051f68e30cf4d573626c29aa103a
SHA256 7ddf905356a0b7a43fe2bd032544a899d561664c7f692d2897898993a1e5174c
SHA512 9fa3c6d83321090ed70feab1cf44d5ee85364345017180352fff9563b7fa6e8e23edcd78b1dc8bddffbd81597cb91f0ab536002ff366b33bba0701fc5caf594e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\720a13da1f645cb9_0

MD5 8a5029e4c416147f9447d546782e6a05
SHA1 c4efc62e9fddd7330e3efbbbb89451715bb3286f
SHA256 87750a191e47fd9ec50f7dc0db21af02cf800397d09dd03cf6eb4b3e3b71c07b
SHA512 68980929e1e701ff8be403f336c7283bed1c9fc7907200eabab9d42b79c77782224e816445e5b797dfea106217ca9dce905b079aaeecd1fbc802c5a010f58d2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\10e2dffe2a633e9b_1

MD5 92ae1ab4ec92f23074e6781675a00304
SHA1 c5336f92275ed382603428df44bb0bc7cd44695b
SHA256 b77efafe25870b0b20b2a6e41536fedd5a9564fd3338942e605283a848d999b6
SHA512 5584afef5aacf865de208c2442083b452409f36849657af41e79b4107e579ce069d5993fb8cd5b01dea640662e3a183265fcfa6a45f24cf44110f260672ae8f1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\10e2dffe2a633e9b_0

MD5 7dde09027ce466ebdfc44af8ea8c1f45
SHA1 9a1283cc2f64d0b53cdef5113eb73c53ab4721b0
SHA256 184f145b44a9e55c812ef2aba553791d9fa83ead57fe6361f7e9855831647901
SHA512 0ca2ce4d859ed3c81f136e2b78ad85fab952d11570d9a72de324ce42da6227d78678f588bee1259a090285cf9bd5d66ff4e5614bead39d33bc15ced924ec49c8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\b5c6faff6c9bb674_1

MD5 2f7b3920aafe509126e5245727c6c659
SHA1 2d679f92bd3f1fe785aac0773633a7700b396192
SHA256 c3a40bea1c77c4957287caa272c39aba3abc95442c2682a8fed46ff3418314ec
SHA512 d3da97ff09e9c84ea0e2df9f14724447a15d65a800f1e08cd06fcf43772ab5c4c8724f1d68314c41c5bb1f636ec8754e607b2af19a4cf682250ffc06ab423f4f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\b5c6faff6c9bb674_0

MD5 0ffb5d9c9f20f9bf98a01b567e17c8bd
SHA1 12f6ab29d112ced756fe58c03d42b61d888919e9
SHA256 3fa0fdc1fb4a040c6ec552590836df0c694e071d0351acc55eefca369dcb3be5
SHA512 a2f82f2a5445163364822ecaacab08882867d3e08145a5635229137ed40581b9708972af03ea6e329833d0a6a89e0947fff672309cac20d70ae7c6be99a407c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\c31e02d05de3db0a_1

MD5 570d2c37f7249b9719e0ea79b7710234
SHA1 54e8fa7d53f8eb283a3f11940ef940ddb5020962
SHA256 21c6edf90e7829b8a52441c5e7692e3156e4413f1279d7a9d249f70871e08454
SHA512 733c0a43bc23b83d732da88b6c31f9391c7184c218512361bd4c26ac8b807995bf6bdcd5c66095220eef63760f03935f22e60815c137d4cefb8d29c85568c6cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\c31e02d05de3db0a_0

MD5 83836d4cf78155a95c0ba9b3ce286c34
SHA1 c859783698527fa7ae64920cf73de46d90acc5d6
SHA256 f8a8dc308193f94feebbef80c8a79f428d1d6eb0aa19666c30b0f51c28b9ac7e
SHA512 ac40d42b6063695f177b779d5bf6ca6f2258baa789bc71acea607cfd60c005a13ad9532da2e573de927e03a96f4919ec66138b1470bd8d7de6188471ec213b20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\7953f4777d6fce6e_1

MD5 d1c4f18640c51b8b756a3cb906ca13ea
SHA1 77fcd1a39f67c83ad1feff0cfddc8ca3acde7ab3
SHA256 17ec0bf9de5f3c75cbdcacc18d06ad821ad0238bbaea3e9bc7df37dbccb345db
SHA512 f347ce82dee3541406e4c181fd1c92c8d300efc43b5cdd5f69259624a3ac4a926447bad0303960dd8e4afd9b14c1b2d2075133c684d5ed551b17eeee7a04ef9d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\7953f4777d6fce6e_0

MD5 1c04c55798572dc9364fe18d7be93547
SHA1 6cd6d26a74d454cfbe95207b25e60bb0088044df
SHA256 42618ddc462ad3521470224869d9ea81c08b87e7a6901d682d9ef8684117e77d
SHA512 f4982f13f7c608678848b25b66cbc8cc6878af7ffc979b4ca20e3cc51d8d1a8ecf4bb16a581df82c66c9b854cd2ae78515983c6ea39d6726d4fd0b2b8ab61283

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\3eee284ce9ff5379_1

MD5 10e96e087e9feb8237a9fa91b013a6df
SHA1 ffc13e31f3a503baac577320086c33c7cb100e01
SHA256 b979e90ebe084d4c5a770d1c2105d90b93c2b0af7c1fb824df255058a1181c71
SHA512 db4adfceac481d321f2c27df1914f05d9623eccaff7f10d48009953cce4fffae82542891b66ffcd7fb19d10b2684caf9cf57f0cf8425086dee9e8dab13df4931

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\427357e6-580e-4a38-a254-0b97699813dc\3eee284ce9ff5379_0

MD5 971940117eeba940543ea6879bbc688a
SHA1 06d15ea097faed1aa88c79e939b1fb5a66d51fba
SHA256 86f180c3f5cbb768d3c0af34ad47ac694efe56d6d2269b4e40d12049e96d6c77
SHA512 4274104c9cc08b62b20da737b26eda4749f1821ee52f20934dd1efc948094e7b3751ee5716d51bb03e65234d4fff795acc543a1651440065b4675814cee034a3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0

MD5 60e87c7ffeb82aa3d8d1ba2b1bc523c1
SHA1 f7140aa7f96f7ae0e308b5b4fa3673d95663f451
SHA256 ee14400a523d5944b90cf235bfa1b028a8d6383931926cf934954c840faba211
SHA512 4ba0bb4ade8b10535ea3ffd5aad0889ccdaece6a2dd25435b7551b187a895b8251f8b2a0bc356ec4820c5d7cda5997135f806f765753cb268f59a0fb57d789c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 87249194b4a8ce8f549076f09a93123d
SHA1 80c0909b01fbfe5e85f210512471a0e7cb3766a9
SHA256 d02192cea953d71fa29485c2ad98832c4c5092d7c809ba44e3e3d284799cbf84
SHA512 efab7b2790d2693ca5696a408f7e23572dbe9dd9293bb3daee5f48320c348f12edaa81759c883fd3d4316cbcb16df6eeb693ee08746bdac6061d598cbec7d62b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6ead8863b5a489c39d424fc550228a03
SHA1 48d02de2fe8ca5cdfc0ff1204eeb0bc3004b0b98
SHA256 ff3083208e081d84fdb54c540e6d21d9cfff9587f59265626826aafe68b09a22
SHA512 c40f4d458616c3b20e8430269fbdfdee31876fa2a392b9e9dfe4dfb8230fa55d6b1e691258ec321ea30628eec39ed0d4fd6d17d63f96409677084f9197a03c12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 04bd72640b7808f4633d526d88c0a27a
SHA1 f4b46a8c262488cee714b606a23d9f110c0800e1
SHA256 7a351419e0cb0df664e59ed66b7fa6af6ccd2ab243e0af8ee9e6e01e0b8dd8bd
SHA512 e714e9745fc966b9db4d72c32d9bbbdb68adca307e983cb7ee796a62c841c6bd8f1830038607efcb6a8c1c658e57f0df43c1e22e866606b2eb08944e42e97bb9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

MD5 6e919278ab156e132d44764ae9d7159f
SHA1 d2d57e5fbc703ab20f870069a4c597c3cdfa9e5f
SHA256 bf9abc7bfa3e6c9a1ca2af59496d3faafa7330f76085d01d312750d59d6cc9e0
SHA512 fd060157b6cd5b2317a2efed2309731c8802b459d52f8eb7e5150633cbe64c4840249a4bc40aae6a5416ecd160dd514affa2f64fd318c4336d1ad0681c7cf04c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

MD5 367d6749aabc56bcfd8fe6f68e8ec07f
SHA1 94603bfd837a6cc48b0b413d97e6c21294139f01
SHA256 aba7125a597cbea4846b275de47b9e35fb42202d217c321ad861b09d3b831b5b
SHA512 737b43474c49d945fcc767a082ae79734333de55374c35825993539376577af76175a966e633b8224b4ede6a42738f3298e5c42d7a307f37897857c7c65842c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 c2cbb38ef5d99970f0f57a980c56c52d
SHA1 96cff3fd944c87a9abfd54fa36c43a6d48dac9cc
SHA256 85369a1cf6e7ff57fe2587323c440ed24488b5ed26d82ba0cd52c86c42eec4a7
SHA512 50371320c29f0a682b9ae3703ef16c08f5c036e84d5056e658f5d9be7607e852adf72c13bf2d0b63fc492f5c26d330bdeb2ba38bfd8b0d4567f0cc6b0c0f7bd9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_1

MD5 4aa3135acaa78bb472ed81cd2c104560
SHA1 175ea20f243282f4e6927c99db8c67a65c2d8776
SHA256 82e854cd1df86c6cfb3ad8fd5c36395a413ed03a715dd8785340e3865685599c
SHA512 48e110b08a0349c0951cd5c300126f3bb78dec8ac120cfde8e1cd628a82694c0c97a9f43d1aece675ca993862210408336ae0322d8ec776ebfc393574a1bf9db

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_1

MD5 0b9c79a8372eb11cfee0bb3c6f86146f
SHA1 31e44e082201c3b9ff426c145e6584b5112acbb3
SHA256 08c220221a1e34a6b947bb8c57ff0302629fa8bb98f974876f67e989ab7a0b41
SHA512 0617f4c49262c0fcc24d8a7e643bf4679330bfac16f588eaab70cf0ce8f4d4c09756085515b3efa82e1c8aa1793e7cdd1dbc46f6127e48f69c7789a76f499c55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 65a6e20d6ce7f590ca738a83d8b81189
SHA1 3c741dd8c04b7328f92214c675e037938abb5474
SHA256 5c30b889e1ecefbdd95066edb9432ae03e66f77db1b0e6c4a188b1b0894ddec0
SHA512 80b0ebecd46cf62d6e2ee98bf4becf08b3388e0ed5335ad679978539bbf51a941e1daabf6f9662bc14e6a09623cadf5ea26beef09b199edc159797143a4c0032

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a48d97e54eb253c0ad2a34ee2aa3f155
SHA1 3482c5cf2519741160c2a881ef53b6fd092c2469
SHA256 fa1355abf84433b3470eac0bacc290786ab32a7bec70670826975ffb3583bac4
SHA512 05cb3382b4a12d2693ead9a9307c6f362a6cb957370ec364de17d1d14f7283ac5370380f1863a3b56c86ec7ec6236763e5c675e4f9dfcc222354dfbf269b8651

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 260ad3e01c6a631fdb960c45a80e38e3
SHA1 893cea0ed18ee848ff181661392c3e75e826c370
SHA256 5c4a3e7ae5c5f5c570fb329448417d5e91650ea74984b5f01d81692e0bab2611
SHA512 321ef42c1ae2b3078364c05227720280683745051fb56dd656823702e3c2222d1260303cf691a302cbd733fed71457d53662fcb5895e52665a2cbc88c92d91f9

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 671a8c2e2064af01ffc0a1ecba81ef52
SHA1 982299eb9739a2ebb5d581dc119a8024cb29b86b
SHA256 5fdb6d5246c270adc9db292421c6ea9a46727832959e49f45b314d82726581b8
SHA512 3dd6ca2d5180f0977a9dd6bab393b44c2b5c4f4ea1d098749f187ecefcfe3c62f0ae93ea581a2a0d7efed83dcff81dab3c437360adeb989fc13009abd244bcc6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 131cf78abd632f7fc43c037e1fb2af70
SHA1 ea288cca0d89b598979810caace489a620a1737b
SHA256 e5db250e9d734e9682569f704919efc8eee45a509aa4f097ba9972eae9c6d8ce
SHA512 e4d58889a17b80dbe7b06b2a8ddf281d73156660a68f52f1f8c149f06b28fac0269532a5092f18951d3042df418bbbbffe6f3d2cbfc9ac148c4be74b1d686917

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 0443e510c098057c5ed52f2e50ac640a
SHA1 227e8f8d517457219a3e56504b9c828922a0f1ef
SHA256 ae5b76d8c987d2bb168693329c080b964a71bc33d840de65c585a791712a0a23
SHA512 ae93735775eed414da8c87e69b99e28601613f8651c8125664f087de2d5f34e948b867b7e8e05c73b4d5ef10901e34692b7b8c0fffd445b0655041d6513ea470

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\260abb9ab5463d37_0

MD5 b9df8056e986de91de99fccc2651bc97
SHA1 361a6302a48b07ad2d76afcab794ea03d5bb6275
SHA256 7aae83f8f6a39e9a5984861d7f13b8b38ea3299fda5ac0bdea7bc515c87da9b3
SHA512 08b4c3e28348d4ee362f1cab5e93daef77cbace35b6d6aae5dce21f1907ee08a084bb89c3125de40be29aa15bfd2aa07ae802aa8717455d508a92e5f2347b41a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b5a4cbeda3f42093_0

MD5 2d425847122c04593952d7e1a1a9a572
SHA1 09d7d115ddd0897e48787b793b0a899b6ec63731
SHA256 edeabe9cf39963e177dbb3b88f1949f63844d0d199e89f7753357aee0860d919
SHA512 310e8fec280dc243975205a548c8dd7c92dc3984e7145d5e2fb24aa2e64c40536e3ab2e3b0b0453f09fbaf9a03902fb852675f28607e26985324fccb7674b6c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c877a4bfeec3e54277763e02d94c5d8b
SHA1 4af6697511fd66d7db5468c1852274443957a6d9
SHA256 3ec7c2be5c4b2d663edc6befb6cc9902f56131a0d3c4ee4d17f25b853db30b4d
SHA512 c9f592fadebfa7d2661cf201d1b358a2dc954ee53b232d09edd2146434b48ea43db3080803cbd2a16ef06a7b7f611a91e17e9f6bc6aa5ecab52053f1863ab462

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5daa7d298c7855543a8ac48757b7e402
SHA1 551573f5a04081c3a07b0afff7e2db3c0279a2a3
SHA256 0a042cd6869a15d3f3a5c47c1a74a34e6223a8b17aaad2970a81b95c2145b60a
SHA512 bfc31344fc71c72746b4432314cfececda6054cd5dbb586828179766f4ef3b298a1624d7402197952acf680ab91027dcfb3201a2ad9e2b49f040f7ee8943b745

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9aa5bcd27381875c07bfe4e0b1260f89
SHA1 e668d2f8c63e0598e681a774b9818064a050eef0
SHA256 b100b6db6ddea4a12b28e4987f98a9ab57f79ee2f6b495f07d3df05de13f979d
SHA512 3f78b3cf2e86bea51437a8ef89de47f9c6e36dd93caf174ec4060ac0d46b45b8d3bfc2d34cf5ae0cdf152779805eaa8c5a37ef921123cf0088bb826834ec701d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 275c5ea78f55a0d82ef93280b3697181
SHA1 80a5bdcaf2c8226e0148b85cb22e63cf9075069e
SHA256 f4165c4a1ede64c6e8e0e6840603b4a2ec3de9af3f04377245568fdf2e5ed1ab
SHA512 b4ae46ceddb2862858e96b32bd88c56b9e70f81880e6ca9c6a4a87345571dc120dc767317d5088641b93dcb9817c0385a405bcf4a928855e0c3f90c7b49a5da2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\8bcd9e8b0b746dec_0

MD5 a07777f902d71981e86ad5103b43a469
SHA1 668ef79758ba5a996af5e02cf3ed3272446be5ce
SHA256 f7a588e99ef3ea774588b1570b8fb0fe0de5563eb12408af749ab4d1985fe32f
SHA512 12b5391d7f33ecd6904d21a646ceaa6ddf275edf089b60ad50ae57b5cd8879ff61ab05f91a2f15e95e7545fc5634f3e672ec225d4d78ed59ea0c1d9711a81679

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\2aefc90dcd923e21_0

MD5 bfdabb2bc8738bd32c67ca5909dd9958
SHA1 606102453d5ee5e3364f35080f26b7dad623dcc7
SHA256 d234762676483b857668ff7d77d38825aa7834a6bc5f44be5700ba0648d1d450
SHA512 03938722c5e5a19c01c22eb4ffdfc6b9bf18c245cad6eca3733e51ae6cc5113b454b6eabdb54e382c81dfdb12a64e3f6775a1dcefe2087f63cd31c92b5a5e9b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\9ab8f143aeb5e79f_0

MD5 8b98537d16115572b4aae93410dc4c2e
SHA1 0b7a8f36be4f4965481a768432c00b81c9efc9fd
SHA256 0c89a1d5343bf57e7aa6a2db1fce6af7152853c2b6f3c8c27da063e3d1f3bc8c
SHA512 8d4b0a422a44958ca5bee5a52eb0f5c4e8a7aba47e3d6886d092fab38e6e53fb1eafeaf9b3a08650ddfdeaa415f9cd20dd2498e790c7ab06bf6e7d25d73066a8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\80eba78637633e1d_0

MD5 2f3281069858747abd18229a0ee34af0
SHA1 dd8e72a68e08d7deb8a2a979048989454cf89590
SHA256 6ec37438ebd0b7cd722144182c956aaffb504b5b90c1f18952d06cabf4f2a4b8
SHA512 1060c9970e21dd1c3ab015ef60b84f729c92d850a43082e81c60270f34f6674f622cdabc0e51cd6fb48c9243004018515f51e714cbc008c4a3edba9dc179f87e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\e4cb571d59fd7eb7_0

MD5 23e14fcb18b6b72a74c0c426b5a65be0
SHA1 6cb93151113d8b5f64ba33c242fc64f3c974a914
SHA256 425fddf39fb02b460b278d6de4f5999b8d7163c83d69abe2a5bc9910793a5486
SHA512 26b81f6dcb212f232c2cd8c78136c00c366a9080f90fb498e3341a624ccd2867ff4d6fddf3f0836b10f796eb3316377271401d1d7ab787931171d8361e40420f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\4ea02909a5d84a9b_0

MD5 4d97e39d0191c744a0b5474574d7c0bc
SHA1 59c07da0df17ad9177ff49ef23b1419fefdbf050
SHA256 f207b588d15371dabc118c3f44eca1b5f3e8875006904045bb8fc33f81bbf5db
SHA512 0f19385af95d426fccb9420fd6f875fa3de2c8f00dfe0bd330dbd74d85db2192965e035afa1fbd0fe304f46802aeb4906f3e135639a41ac0d36c78599fb422b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\85ade39e4df78f89_0

MD5 cb95e09da9a9a9681fe5e524fb88cd39
SHA1 6ed3170c7d16553677a16e02b0ee423754da0b0b
SHA256 110e7de4be3b59b4a7105b1d1106a8aabfeff4eff6a8b5bd531789f8c36412f3
SHA512 23dc9cb40ffe6cd1be3cd66ce4efc93da295dddf9fbf2f58db79c8f1292aa9e0ee5509e7c1c4e6d0b2c4e7db431a83d5b8dfb0877e68522d546f0d277d917ac5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\05dcb51db89022db_0

MD5 5baed6ab68b5e509a80162274ed1b887
SHA1 5860a6aaf54563cbba5cddd6d23cbb36f9b5fed8
SHA256 476c6823f69adc391733abdd473207ff23e3fe7e89c4d1213245996cce3fc757
SHA512 e767ab26b54c037600d43ac9e83a27918da2b008950e59725836680e73c36994aafc45655d303b2b629b3c128c40b8723cb2f64a1b9c5b560e55333dca09449b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\1aca1f18437ce2af_0

MD5 e0b2bd02a7c78f404e1a59a1d685e0cb
SHA1 512efcc45ceb0a76dc2704ab88eb516a7228c104
SHA256 c90a84b599f352ed1dbbd7dc32e0054a3f6444d3e551c760e25d339db8501444
SHA512 b9cada37a045ad3a3762275286e2ff80e402d82aec66b3e331c59f5d22f478124a9da8542aa797dcecc499c258511be9cf0f7a6531fee90480293fe2ef70fc58

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\1094d8464a878fe5_0

MD5 c169774dbc400713fbfa3ea1055b72fe
SHA1 f2fe75c0bc0fd6ae9eb345dd4afaadad95313f74
SHA256 37ae0365f07a19d05efce007aae3b87646749e5838125455191c55b673855986
SHA512 e81c0c2a5f2112c630ed365582d600b16900996b3c5800ca4ea0dd52796b10e6420c6994b943fb5eed0acf130fa22f9e5dded6fbb8ec1351789df322181d346f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\296a61baf34a477b_0

MD5 dd4ba5751fc7ed502417edf7a36837c8
SHA1 b7a88b63a506425732965f8082a811c8a5ad9826
SHA256 f83f373bed5c9d446b2b111a8349ca603ea563a82d66680884e836387f2d115f
SHA512 dabb35ff5257b54174c16c203763279f4b655a78d4d125b56c2d337383de416ea4002de959f4e8bc1e0115074d34aba11744efbd615112f21a95bb929743ec12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\ea620276acec5737_0

MD5 d30e94ec7523ea84a6ac0d8486866e5c
SHA1 f04c43616bccd7b3b3f5894d5687c8bdfc127a1b
SHA256 568eb38f607eb4e96c7cec454d5f6b0ff0d2c12a19c8438b5faca60793c6d4d4
SHA512 c795a41db7671672ce55939899b2fe3174a54f9144a65aae8a0e6b99941623a055509de966d85976661670722fd5a094c88682e1eb0e6a284192e3889ab5ab04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\ab0423415fc0f8de_0

MD5 ab7bc0589a4cb92168380ee9bc2de1cd
SHA1 a2c756ee1994be7b7af205ab2974fc362e49b1e6
SHA256 82051f096a062b51f1804b63e9e89bf5786416cb5fea165063db2bfb1bfb67e6
SHA512 542414604653e35dcefe059b0e150f7e6f1450e573e174ff8e4e86102e3b71d7b21f55a47677bd635238698df9f51481a6fe9806fe42e178deff2d54f23dec2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\50e90a0afa1981bf_0

MD5 6e134e0593b5e5e671c3246335fdbc57
SHA1 3c79af686e0dc79233bc82497519341b3309720b
SHA256 37c9a026e80f330f51bdb4db395d769a780586289857cd052b7cc212a3357748
SHA512 02d6122d3daf10536095e8105556ac7a53068deef91fb8bfa5fa6d78f9d22d54eef81c365927e39ac580eaf27cede07e2d10438243e2654469fe644e3beea8fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\f2683fabe64bae2f_0

MD5 b5bfc385fa5c020cde6f9a6ea9e5c586
SHA1 62d69d731679a59e20a98aceed9c8e401473c7d6
SHA256 9be68c17460cd443a38883dca039c2ab164cca4935ff4b8b596b3a8a4aa32be7
SHA512 fe323458b13540e91e2d49ae2659e84bf2a9363a9ba838b283d849150585e444e710758ee8c2a7058c1a72b3b6e51a23110c3b05d9d708f3a326c314c132ca44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\5067ef0a99458f57_0

MD5 c90a1d07848ab728ff06aba3d5429964
SHA1 f6d06fc740130c642e758004b8a88b0d7820eb30
SHA256 4e0c5bd97ca5606c5205e7023739f5d87606d62ffa2dd609020632fd1a60eddd
SHA512 794ad1d075b02d19ccc0ba73fe0b2ca8b1842038be864570c4774a3bb3033cba4d031e9f13b07af5a1376728d9de481f6e6216676d7c7b01fe128d3f572016e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\c539d577bdedde3b_0

MD5 fc4951373e5a96e8ab746804668f8c52
SHA1 17b3cd27f6d425377af4d033377f74164c10e4a7
SHA256 6ea96f299ea6c65f518c80209b349fe1072d045abef064d9ea0b972ca1b69207
SHA512 859c387c36f6d34e9f2b835ad7b192eaf1439a2c3907c588e5649f54f4c5efda92a355ce375f903400b1d610b1c6738a0b57189dd9cfe0a394ac9293abc79cf4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\a6b2e6529740b47c_0

MD5 331a098bab1d5ba67c0505821d61e0cb
SHA1 9651cad29a62e525bc2675f9fab64c4de0e92d11
SHA256 f9eb7d81eb3f0e685e00f6bbad536d3c3a083488a53520e95a395f0297d253f8
SHA512 2259637d777e9f4dca46465bfa0622b0d1a926e0a14704d758d29e38fdb9b9604222a01c5a7f3599dc04606701452386a9d01ff68a35ab2061d0fe2472d1c43b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\8ef2564ddabd1ac9_0

MD5 e0811a860b00a975028be38fede9e789
SHA1 dd3426d8b3646055f0b4c23ba7200c952c4945b6
SHA256 cc1f21a33e7c5c8e79be9134c9055b7471c67b6109f2267d4544aab777757c90
SHA512 db0674722fea0c975905231c7f210b078e828404d6cc4813352420dfc062691bc4c5b8cf18567c7e124b110595098d403fef4af9c20a9c4427dc4c833e90cd88

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\2a3a5eeb2614d0f8_0

MD5 bd218639787f8a286f7253ccc8bba42b
SHA1 df4fd9f6733648efd1d6fce05d03a698290dcf80
SHA256 466ee87ae05e114914fdd662aa71e8636a3d71b4967dcf3af35a36d308effd78
SHA512 14337d6f6ee4acf230a42d72d2ce9e29fef0300060ea2a4966a4212f349c5452c164cc2c8e6821052551f0e53cfd8d3f6a63b95623aa100849cca6d9aa14ac09

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\f40a64cbc66a4451_0

MD5 c732b83cd7413d4990ab1c273af039e9
SHA1 a4e2c309ac7688b6a44a4b6cfb4041038717b3b8
SHA256 b4a2f4ee58fd0e214855b99f29c912e0a19e1ef9405108aab05bda98b76370a9
SHA512 7e4adb0f54f8aa689a8a4dcd863d1f4e42348957a27f1dd86274e259dae39ace460841adc17051aa6d481698afca5a1b745849fefc361d87de2a06227a857a85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\fc496558f77f6d37_0

MD5 21f295638a347485e094a1be4e763607
SHA1 62031e596ef91adf35345ae8ea432310d4dfa7fd
SHA256 7b01ad3ef7956a0bba9a8c893236331b9a028868a9f9ba60a0ce247c802027a4
SHA512 e7a1f05008dcdc7c0ebd817580fc979e4bd69db235afe2daf72b013cce84fb402ff6ba8fb1d99e6689c5ef13675499e20737fd990a7a27a0b401a0f7446d7275

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\9f0570cf70573c01_0

MD5 14656899d73133f7abceea826e89564b
SHA1 8d42887085d66ef4d405a27487b27e3382665ace
SHA256 b46afd19c30fcb66a70fc8b5247651dbf227d5154ede9ae18e555fd0a0a6a219
SHA512 52d5bb92959b89c5694ed48ca4153e4f485e1f6401568000e8574dff7cf28d84526fbfe0139bd5cd29d7b0ecb06be71f887390222c4c7f380253e0c644f0e65c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\73c023c4157dee87_0

MD5 7dc0569a9d20abbe900d1624676a2905
SHA1 e8eecdef1bfe6b2fce5cb83d95705051212ce914
SHA256 867ff883aa3a6f9a00d6762adda4a06a32bfa738b851c300778933bc32aa4b10
SHA512 825ce4d9d67492323c330a178b1e5dd2e893d5859fea74eb35a0d1976194d73b20ac3f1d9c3e6e6dd70456018d0f129d498802b84ffca702baacc8d0d91b0c2b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\3e7834d4964b8805_0

MD5 92eb70433d1a9eab2a85d59a137f7007
SHA1 9ddecf1ae2cfc289e94458aa7b5a43bee8adf7ab
SHA256 fa6192e6f681fdc2b718d6534a00572dc3f41ee8fca3d22120c52529733c25c9
SHA512 31d33fdc14c68dd46e634700b9087e7e1a312ed66c552b86a4842173faf2a48b71e4c853d3282fd9e2f2a868d267b003f05926712b4538f1afef043437dcbd79

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\9ddda9536225ca22_0

MD5 fef0448a7a410d049a042a579972303c
SHA1 06b9eed741760871872b1090110d47a74af2e5ac
SHA256 75eb9771a30b58eef27d48f560982690e3019c8a3e862937a535297f4568e6bc
SHA512 5b83055173a28dc7236dbe83076382cfc384128dccb378e226ceb2fd0f2e83d60a0214ccc47a04ce1be9f0a34a013a043b49c7a40d1ee32e58bf6b3881621899

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\bd90de8af9374096_0

MD5 0ca9d94ae38ed076c8f64461daf103bd
SHA1 5ad98b962b99360d8c05e436d1d4cf0230da978f
SHA256 4e3ef828b05b90100c7f8711ae843baa5745625c8ec0baaf7d6de39c27f65990
SHA512 916f1559dec461d836949245d44338ac93fa9a12420d9cbb74025e621e7aa398b001bbb3354ef42979b4f397cd5de6f702528e7ccb93ad3874eceefecd8a3654

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\8798af3c84594e1b_0

MD5 1507ec8098fc49c57da1d627cfa2a78e
SHA1 5b896aa13652ef1e34dcba0e4c6fd44ec096e19a
SHA256 e67ad885d33eea942aa00660dd86ad10f09d555a4e1b43f3fc51df0b6d73f2ce
SHA512 37937820e30b7aa228d753a0c3ee1692605de4c342fb376d10eb3efaf4c8b73fcba8bd072654beb2abd17c84e2137c4a1788af193f75c30678759b3dffca9107

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\7adef1711f65fa38_0

MD5 e17004ef5023ee27d2bcc65a04194e0f
SHA1 e12f88b3704456c381f9e726be3a931d97808b31
SHA256 1da03a8e3577bcbcda0327ba96530e8e68a1227063958c631a0752c08a4f09a0
SHA512 285153f7f3760f6b94a41862feb95980e8ca5fec4c50aec215715061880d3b0f60a2f767758d58e9158038aa28f337ae2c786a97828caa6d164dcc863897070f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\e5c07661ec64c5fe_0

MD5 15668d97589e0232e411e2258cc854fe
SHA1 b1c157ba73843e1206e72afc41603db88c9707bb
SHA256 15f92ce95a9313cf79fdeb013fe6184d6dad547120c63d5d0cb3f4c2dd0fea70
SHA512 68312140b09d16efd2dd3c401718cad2e38eef2c3042c8a9c8e5855acf14e0e3fd53d3c0288b7d2ed05f4e5c60274bf1795faefd8d2c98e38bc1b4f9c1b13867

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\a4bb93aff597cdd5_0

MD5 d5f52b2ef0141534fbeb86e8468b508d
SHA1 e9dba95894b85fdab32ad77f24d2087bbcc54713
SHA256 27f4f7136094f619ea5034fc916cb0cf82417b85727f0e8214da4157e5986fa4
SHA512 c3be2745e6762ede193ebdc53822fdb7b2d58dd638d791bc0e90b299988088677f566073a80deba9112a4e3e4a2d027767c8ecf037f5543943fccc47fbfa7750

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\d109b9b7172fb490_0

MD5 c08164e14d64dab7edce37bda88e205a
SHA1 898e3820de6afbf9fea3bb49cf6a9340901b5086
SHA256 2d76d50da0e1d20a90ad46d4cbc18ebe9227e38e0a6485b3378b69ef3c574168
SHA512 0f40be2a04d102c58e26b9bc9e589661f6e299e5062bd81db0046b90998d9f856674f5625b456676503f8f5dc4b92429fcb1f97f49192a2fbda2bb85e1bb9226

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\2bf260df9eec0de3_0

MD5 be561b6ab5964f3284127833c27c1bbb
SHA1 e850ebbbf2a3f43462eae161bf3e93d8b658f15c
SHA256 d9db33935236192ee860a3d7c1f4b49fc5cd466d60d7907bcc470a4cb60040c8
SHA512 8cc534d097614ebd5a6ab4cfa178ba5b187d2f8f922377c575d204f0c83c2ddcee6959e04b3449468f3d95eb4b8ee1703d6a1ac2ed58f3a759856b782045558f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\cc128d1b3dedff96_0

MD5 8e471633118385d47883f68173711495
SHA1 fd164972d8ce2d855d7d5893a7c18a57207e47ec
SHA256 86e4aeab8a4190062f80100ab94531eb4ff7889fa1b1421135792ae2737cf708
SHA512 3adaf25bbad0f59d21ef60b39cd9b847b29f3096fa357381a02ba9eb902edb02346a4dceb5b425dfb378801cb1fbed5fa4abda4db0f12d7b35d873d51d2a502a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b5360af0b77ffc5b_0

MD5 b1ad31fcd192bfdba77b076c3c818a74
SHA1 246afe38ccc760771f0353a2157b5acdb091770d
SHA256 150df6807134a3436f2011eeccb8c3ba5afdc1e0c65e89ce7d8dbf811707f2bd
SHA512 6cdbce57901c0486cdce5f53c26e35e4c5e509dc0d840b9fe570cfe9f1919f4f2307b1be21aa7f801d45b9da82532f868e1c9d40003f31240dfc90b9f8b935ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\1557b7fdc2795560_0

MD5 70488343b4760df1d34538ae742f1bd9
SHA1 5e77e6377ccc9f02652fc98e9e8785dc1b66312a
SHA256 5267448ef26703ba018ad6eefb17fe197ad78f354e10861d7ca497b01d6dbe49
SHA512 e46871f120297b065acefef8152f09f401a50428f4cee9ad7107ee67a45f815b46850cceef29d0f8b95db97371a9f64b8044a13c76a1f7c186ddb68ea5ebc44d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\d5b24d864da153a2_0

MD5 1b55f67214e01ce57d797d6ba1fc48dc
SHA1 e1c3885ec9cc07b6641d5a9af520cccfe9bb2115
SHA256 5ca32f06a5377a59db782174379da895620e4beeebcfe7c7c37726830eba0713
SHA512 0ddce8a46d6bdb42bbc45fe458831fb340be7f094ed288cde9ee2fe5962bef5cae958ac3d33c39377a04faad8df81bd324d5deefda5db7b6fd0d483975700284

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\df6fcc25dfcae313_0

MD5 0a9ddf196291a14f9f4e30e88d5c0d9d
SHA1 cade0ad0793bc89aba0f798926328ed65a340d0e
SHA256 792d0def44f8620c67a2f0e054d1e0c04833fe1a92a56697c8f01d9e7bedf34b
SHA512 e8c293a39184d450de791c7f83cd4289ac8a0f0c8a365cdbf8e3ecba6f118eda4e5a50e5170b3f4697264b7a6dfd570c078a2804978f99449abb20fd60c657ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\f835a9c68ede7223_0

MD5 28cf56c3f39e11a61cd771ff97142abb
SHA1 593362d8c98834f5359703db0510e12db96d9864
SHA256 5e20b1a0abb40f5f6f515bb46d280b3536c7ca1ef0f22cc70790241e06829083
SHA512 7770225ec87464054e7b21c93ed00561c9220ae35a7ab631ba35d2887aaf76c4c03cd75114e9cfde533b537270f2c05a9b7adb00612ee09bc4dfb09916fefad3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\4bfc653db9edfcdc_0

MD5 2722a9b02d69c607f4860aaabf9e91d9
SHA1 2c12143086cdb927b1f31205b6c683c262752311
SHA256 0098d3c7302f0dd3f1be83db1d6ff5c9a666fe27b35d7547acbc63623aa7ba74
SHA512 cd1ebb66421c8388a4fb7111e3f75fe72373a6d5a9c78cdd3e0cdd02400c746e8a62d2aaca10375e09ee1ae5cf56813ac6c2281f178c2b82980d680814fcf8fc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\57c63dee16688cf9_0

MD5 4ff6db7f96e334be5a734fc490a36614
SHA1 b6c26ca6f1367ac8e5ecdb5c4dde1107d82b7722
SHA256 e2843e0f237e3bc5e4d8a409af82592606e6ee6716e6fb0ae4607d673ddc4ba8
SHA512 d30b50bd236fc1353787dc7f775040dc0d34da337f49c84b0ca761d41b05e9c44d5d683c2668d912f31c9e32a11e5a7af0c455bcfda1e402a27c8f97ddc56272

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\676309ebc9bee713_0

MD5 061607716b3f0cd397227b8c0758cec1
SHA1 a80fd62546b4b575265b9fe9fe6c6cc136df677d
SHA256 ccb024192908e2400e72abf540881325379da8d5b201b05cb22a6222ed9567c9
SHA512 386b6080b2b2cb78ee576857627f09320ed58c82fa8892cff62df9f585627478305bf402deff83de22022601b0185a155cfdfafcb1b3997a650020de9508fb68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\766415f99b4c6b7d_0

MD5 ef008124b6f1311742b8040d3692f7b8
SHA1 5ab845827129572c3ff6ea7d6c0531b4889a6b9c
SHA256 4bab0c1f10274b065d09c9096ec2bb408e189c94b7095074af5bd22b95747be3
SHA512 5995352204967161a1d52529f0d1169a22034d1c3e0352ce5b1a8b148208623e5d0d495423358b9cbe0dabba9b9a1802aa743296c78798d1e8531bc1705630ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\6e13fa10387f2f71_0

MD5 4bbb02830353ffb3c692ab190b5aacd4
SHA1 7afd02ad30e7f0524b50e110db283884e0615caa
SHA256 4429fa0c11a9266b7986c706e6d312fe9838fcc654eaabcef9f00572b3705cb4
SHA512 ffaaa09ed00bd17e7c454776d0f9a02a97cef0eff67ca33e96a32dca46f6ccee25bcff88d84ebb7d0178784a92267416790f1cbc512814f25bde74b07de24647

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\3761f940ae901389_0

MD5 68ff802e5525ab6dfd8257e6a0df1e1a
SHA1 be37babf7c8c9626187b4e7a0b8d60afafef3d22
SHA256 f3a9e7af8d5db400ca182e5e83766d02618bfb35887ccf4a63a35b0b1cd4b939
SHA512 fb42a7f2613d683f7b0d052a4af5f027c3a1b7f691469d75941aadc9a154bd9aa9aded9a51b3e811264ecb633d532f8bea80e67dd98aef0a72229528a35367a3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\ae7557eee904f6ed_0

MD5 f65dca9d71f55775b59aa208401979ca
SHA1 5d0a8db897241f44c0076d25305a7feb7767b3a0
SHA256 4e516a26b1894cdc0735e246f62a3196a5c1842d268136de7f84bd5605430827
SHA512 489e82e03b4943cb5ba27d34f69d6b012968469f0a0ad3d12a8bc95b998d39c1653f0a68caf49923b87b6f30b07e1aae838e0c842c8d483faf0ab4e0384563ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\5da2fb196c265036_0

MD5 1bc4a854139c4eba40e005b379e3a71e
SHA1 c4b5af65f8470f5b1c3561d346e132c7256d003b
SHA256 3d33c5abe72b79984831aeb73d8e501fa826f784a3e0e0dea3fead54473bea4f
SHA512 f502a2f300ac6d14d9015a3b1eee91c9d54d85154bdafe03d9f652ce06e6275b818145d9b9c394531f6ef51d09e74c00d9ab01a4163fa4d90f8a2ad6acec0866

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\f5c01eb9c70a0925_0

MD5 e1951ab97b5386fa9b0c200a10975f22
SHA1 caa6d865d645fb31c39619f4d90a2dc7fb7d8b8d
SHA256 e861bbd51a450970ad906a02e5624d70245d43a6b7998d9b9bbcdea38c3102e8
SHA512 47345d1d922187bfda1babbc82567de107a9473cd3ebd2d445e985c06c0a2cf9b6a51d27256b046ddbde9ffbeeca87c501a745cbdfb5e6a5b4cbe02749c97009

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\51db86437fbde823_0

MD5 8193e7c2da161a0a990cb0926bbf7829
SHA1 0d22f4cdb04b0e24889dab647a3432e923cac9da
SHA256 c851f6c505141a39c3571b0f1341c3d6fa916f70d7076e1335d40671e44c654b
SHA512 f10b42d971ccf32e8023114f79496cc0ceb0a45137b1b44eccce75debb942f4daffebc5a9cf58fb102fb938a9e5065ca7b0bb9ddeb8a026849d0c4d67f14564f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\bf7a8649fa9dbeb9_0

MD5 a6e67d318416b71ac29a63515f6bb981
SHA1 f94f36bd8d20c953b1f0b8fbd2dffcb4d3937e80
SHA256 8e8a606e9123654ebb1ef337076c63702be6a1d175826d06bcb6240cd87242a3
SHA512 bbedd27069055872c3dd49a5c177ebcda7c1e08cbcd49bf3baab6edd096be4d8ce585371ab45d9bf346317d93aeb9a36dff091e6c45628e68482164b35619590

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\4815725c8ce7cac2_0

MD5 b64d9c2fcf1e1b314f8e4ece9c93f826
SHA1 5419da7dbf4c926972fd98770df4c671aeae8de0
SHA256 c52ee82c827447b110e8c94c599dd8ede644e66d90bf7211ef39663e56c695b0
SHA512 be5d3bbf4582af76a4ca284b36561d0bec3c639f452ca75ff16ba8c818a12812f7b6446c7f41c0c0e55a7cf50f9942406e2e69edbbf5581ebe79d75199150e59

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\2bcfe390dba90335_0

MD5 ae48e26b25b8a17877ba27db41eb4f95
SHA1 ac77941ceac8ebc92eefd89c088198197e1f7f91
SHA256 3afa79a49225de457de7a6e7174c7a10c4e3aae3e91896a49d963ff2ea7356f3
SHA512 5a780926ddd73eea99911d4e5032f5a1779e4c7092ade6a23ff012294e7064e3b758315f5ba4b3f7256e96ea35c3ab31a1ae7da792598d1cb46992c10c93e7ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\8d439ccb90934736_0

MD5 f30998e993a68b8e9962a9dc4243655b
SHA1 74889680629110668c834917e7db342a76296ba8
SHA256 838e5275428ca23d395567143f7a5407e546e06642b4f8a16b754cd2bfceac7e
SHA512 efaf6d6f57bab3cc6b1e5e40d2bbab4c138ce0488d532d01f277ae71a4f20fa45e2908c2d7a3ae10765606e4c1093dcb80b1658d9749591bbdca335d2eecb8e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\ef92fbea0aff4515_0

MD5 1c0bea01778595caed7984f548c19a0e
SHA1 e8d6b2724792792d93571cb7ba0391b9c119082d
SHA256 edc948a792aae9a29d8eab02d1d9d123f68171518ba1ed7cdb0ed773202b5cbe
SHA512 d01b2650290bbf1483b43cff3687f041367020554980eeac3430195168f4bbd60d156240f509bc386552993088d38cfd6ef7d4e8f2a4e741555fee9061af216d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\a99747c743014393_0

MD5 77614bbf2ef532e2cb7e516dfab8b73a
SHA1 81ffc4e044827302ea6179958591527cad2fcc2e
SHA256 68d532cf46f83028ac788d134d0927150a6c0da127b6dbd0ff9b9dc7aa181b14
SHA512 d811f00673b1775d80f3d4dc612ad7c97f74864c476f255122042d91b4317ec15fdc79c9fb62e3c0b3c5956b00f95d400dfc0bdbd1b563a1bd936c3a1d9a4844

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b262aeaa780b5937_0

MD5 8d83e37e6ed3708ddbc5a270254e833c
SHA1 39bb715486fb8a2d8516022daa1b9394616651e8
SHA256 6fb1a09fa92a3d726bfce8909c7671fbf25042cce941268e728c7ac69c9f6678
SHA512 c3e6c05beff8f57f9b4b35316f871fe35d3304756071da0b8bb6c204276bf981f80dcd63730801c386b8bad71d205b522f10a72a0d7718d729fec800ee33ea79

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b00e230b1666101f_0

MD5 4d97ec2144a4a584ba49439a0c550229
SHA1 185679c47e956d825f649846d4dd9414b03c28b0
SHA256 2dd8861e8754d0e16b467fdd9695bf9070c7e7405d0a995a4c3ec80d4a70a2c5
SHA512 6de4ec18251de651e4ace015460732f1efb4dc5acbe2519527d7236448ab83d61b460ffa11170594942d3d6a4cc8da76a9d8ec836ffdbad5a01f28491d9e81ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b25b3aae265ef44d_0

MD5 755918f7d4691fb6c18c70f28628c292
SHA1 631ae577800109003a56ab6d11e89129fd5dc2bd
SHA256 1e6bc7a905aa27b8c8af5d07e68a27b94c749ede49ff96d875bf0f5fb0137299
SHA512 b7c7aa525a4b521031ef929cae20a08e1f7cd8e0b20a045c484dc1a9d736a3d26c0bb80b54bc5691ea94192c1d376088a8a96888a8cbf815949ec3b38eb9c4bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\69efd29ffe7f5db8_0

MD5 fd86785e34ed98350f86cccefb60df0d
SHA1 d959c52b7d360f06be302b9523a01967a7af175b
SHA256 75d1c86a7029402c4a53c3df5621925cafad14d6eefeb574a688fef0b992777a
SHA512 987a3e87cee9a58b2bfb3493d8410940c5eec18cb7af2f24090a1d02226b31604bc353fd16dc40db6e882fadf35e5175665f778936236846ae08ea7bd4d86116

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\135f15e6b6aa3240_0

MD5 d4faaaa26c1fc285ea08ea6b87cf1869
SHA1 b4e293e2078b788f34bce9c5c2ddaa70ec4fe26c
SHA256 623a5c207e782fc77ee4f6f48fab30adcfc25f7cbcf4057984cdf102516f4fdb
SHA512 302902fa7e921227812df646744177db9990a4f85f9bf1a1db76aff675f52edcb57f5f3f38823facbc4fba70b8759be4e1739f481ac4b8a879e6dee611571fad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\e4e447ee380a509e_0

MD5 f7f65ceb93e0183eef543a499da051b9
SHA1 a356d3191938cca1bda8af93c10917c8e52fe78d
SHA256 eac4dabbbd6e165e54c1b6fa2820270844ef449085978deeb67c63248b2db2e9
SHA512 11eb63bbfac885a268c8176afadd96d7d49a036207345e83652ace881dded2b767650189f68fc0431f4c731b8bfd2985b0a317084621bbe1367165c4fb7f32dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\e979d1cda74c68a9_0

MD5 06e43f7d3c13d451b943f7af204dbf1f
SHA1 f12a9d070a36f5c479c16210babcd7a18caf617e
SHA256 caef51ef10828d99da778b232c8afa0b4c3f6439dbf17f23dab87e2423629019
SHA512 7c8456f6b6b08edd87c0606f3c92a4370ed2421e24f8cb650f23248a863dd81dde59e2d2b6a50cf2ee487b70db744c3763343eddcf436b9587a55ffd23116a6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b9faf49cd63f59a6_0

MD5 38967b0cb673a74fbffcfc185fd5270d
SHA1 7d26926ec057dc7312ac286fb76899c42c3d33ce
SHA256 79bcf17a4153f74226af2ce0076fcead19bd9542b6197edb53007a60e8253184
SHA512 cb68182a6b175299f038b4f7aa0db1d793df2a417428d3d232f9cfd286769548582423e78ffc86deff9bddf16839409993093aedbc7b1c476aef78b72db081e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\1e109dc9985e23e3_0

MD5 f92ea0d7acc8ddf915b915f84ecb634c
SHA1 3b386d8f183d6d2cedd92711a39256e8f67541f1
SHA256 34b6a81fd1ccbf8930308b070bc9b32868f2cd684609bccd4ddb619985fdb7bd
SHA512 e6833d1717f71adc036766b0923a09bb79a170e512c6f3f614da5e658fae4a200593c25328740a64b77d16f7154c4f98d6f5c6d0035caa1ee3b25585851cc5c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\98e21bf0f093e493_0

MD5 595a3ea838067e2408b6a2dc18c1588b
SHA1 527954fced272af7c9840e8c6dfc622db9707c40
SHA256 d041fa2a7e6256b5090d81e77e6a7589d5fb98b857fffed153728054c2e79ce6
SHA512 d22a42559028c4d812308a7e4c3907698148868e9f93ce8714db596500799bdf0f778b9666b454de547f9fef9c0a9f0e4d11aa4b5d71a63e4f62fa944da1b072

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b3f0e35eea4b0f24_0

MD5 b7ab611d773d7f051dbce8cff5d4e1b3
SHA1 ce3759a9526396abb9ec53723d55a06eec9d9558
SHA256 d3dfcb183a2559dea6010638b3efbdd44cca06c184edfbf854fd501d4eacf663
SHA512 83418f96a81d4a1ed0a14ba4c54d3b57e8cdf818f966f5778c0f57da61387801c817f3c59ec856da157de98fffe4aba62732e0cad6bdf6923b956d1733abfda4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\047389f836a23469_0

MD5 e55a2e87230ed8ecdbda8ffc8a1a7412
SHA1 4178dc90a7f2638b9fb01a4f99caaa28bfbea20b
SHA256 39b8b8f56b9248bf7634f9c0844b833e0712e855020d2e520e4f236268c6f96c
SHA512 abd105942a37ed9f0c940b40b0e09d4e17aef69a58b0857dc65ec162f7d9f4167eb522972997f282bce71a75d855b3d5de1c065e2998a0f4c90b0c56561f2d76

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b5adca99b81aec6c_0

MD5 bdfd234e28611a9645476937fac1e74a
SHA1 0c062c638d9361b3e3b8cf31d5cc7ae0031895fd
SHA256 49c85a64a7b4f2ff2cf93e30d20774c50c7daaf62982b5c770181d5d57b0756f
SHA512 5816182789b299b6624e29a5658cfc9a36a8c5d652748acc115a60e84beac8bf9d1f51a0c9b7e493419d2e8d2f24239c45c2d9a316c30aec0705226e9cf8a8b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\be57e96208f23f53_0

MD5 25e61ca1ddc0d58907dbb195a12faaff
SHA1 cfec327240a29760c1b3ea4a7a1bef2321ff3bb2
SHA256 f0137587f72353d199cc3f6e2ac54896ace4efad5730ea93a94363e95ec20324
SHA512 c156ee8115c6ff734543cac5348c1418db8bc8030b22f418dcd16601b729377cf2f0e4845100439125bf5851103f5796f82fd91c9ce8ce3b6c697d4c994ae2f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\880927cc8e6e9765_0

MD5 2a9beb56f2e887c80cc190c88f4f4db7
SHA1 715ce3ef6d5dfe5a7eb48be795f86a37d159c169
SHA256 1db21321abef27099bed2a2579a8db242b30b41b43ed8f2ce5387a4b97ea7004
SHA512 d0e71855a6a8ede6de5b15bf234273fd724fcf52f8c4e0e06bc1f4b9b91f5b13dca0efd95f709e2ee509d9b017697e54f8f810a134ffeada1c26268226471bd0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\d0b40ffeb2fe39a6_0

MD5 416498e2754d24f31faeead3625ff7c1
SHA1 dc8b8140053d4afc1490c385a56d67f3e26fe48f
SHA256 2fd1dcd3c5461a1833ecd5ca2b9dc2cff85a5f2eca72b6d4ae5e12362b761827
SHA512 694a16d5dca4ba05a95a1cf8085931a21cabd64001133036c5a33cd02de7f8757377634771a9f4241afbba582738391cbfdb9b7e3aa46ea4279fa8e13c4a827a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\d2555b74a1131c9d_0

MD5 fd287c1f96dcb5f1a41049a96070a179
SHA1 eb37657da5c1393fb1807da784056001d2d18aef
SHA256 4f122bc24e9d55e0ae2e46e5989cf04d7e534ecd13e7a03ea4a6e322126c9436
SHA512 1c039bbf057e6cf832d895e259a31b09e9096ed87c66e9044ee6f2134540ac15c8ad20dad991217f1787996df3c5ca4a6b78e9d17aaf0c9ee774f570ac12d5f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\e2aa79afcd69da46_0

MD5 4d9363057731be652ad5ab00125c813b
SHA1 8b8218bba46cf2b196e62ec928a10081f2642b72
SHA256 bf6b047018125f338fa3e3a6005c418f703b3fb920137b5d67a3b6daec720dce
SHA512 6b5c9745efadeb59aac83bc7a6336a45bc0166f1dd65a787baf8664acb9394d6f8f080866cdfed10330d4f86be2a50f49a9e313d330471be6dd5c0f71bd2c97e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\232e8ce34b8361a8_0

MD5 0017704bd25069627ee70877598c081e
SHA1 80f12d4030cc697a5f1b1fd65ebe3f0199ed56dd
SHA256 89ee4c9c73464922f0e63b793bcc06bd908ccb72c526d3820a923bd397207de0
SHA512 d9e1489c29626f8d7e953bfb49170d8aef127f08016ef31fb7ab473314dbec0a7de606f5d825e094e5f9bf35d72b44cad274f47864bbec1bed7f4815c7c2ec0f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\2ee660419e7bb481_0

MD5 b6a955a27b950d6947e41270d9bf959e
SHA1 9fee41ad796f305c5fd0c4482e68d2f6223b6c17
SHA256 0c998f70825c6a7b3bda2a91d06c18065f92db46beddf31c1735015907ac7cd6
SHA512 52098f0834951163872a2d1c4e324c941b02dceb66374181a5991a1971ff8ab041852bce8e749e29ba60987ed62e128d94f064456b8ad94e1bb0f315161f625b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\d8d9cdb8ccf2edca_0

MD5 2b9745a8478603da8b0af439b61c4374
SHA1 718b0bdabddd3d53d8825eccb9e21cf79a50ac7a
SHA256 de65170237e7d6b1652422712efa7c7fe469038d0c4985b7be8c177f62019568
SHA512 e52773fac556aa31367115370f1f76da5c7457b919327207d394490ee70a6bff36463500313adcad3d864160f5f25d632f4686d92a52c56ae534a4e06420588b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\bf2ab0d73a66faa4_0

MD5 274c399ccdd10b39728529fe2beeb5fb
SHA1 733f9001b17369fed5b4c9754e0598e0a9ad7f35
SHA256 105d7300d79dbd4a4ecdc145b6851634dc55c2abbacde3b05a1b87ac23b0cf17
SHA512 1e3a8deac4f958abcfc4a893cfc7c9ec231338ecdffd976e42e9b19a378d922717ccb68217ae459d73b8ac88602348f6b3188568482ddaa535a08971a2a32d9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\9c60a0453baf11bf_0

MD5 4fc88ddea0e0eba481579fbbfa1c5e7d
SHA1 f8b25a7c4ccea645ed2bca1b30dd1ac3792d7532
SHA256 536c4cc34f1d337806c0e97f0d933a88b6c0700add21342c22a278c6d6146691
SHA512 9cf2a9b06b3755dea9d0b2f7e5467beeb0bd62fb241913cd5916b00e27c39e1c1aebda299c95be3f6b6d918bb924a37196eec38a1cfc5790056086417bd42867

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\c85d3865b8a09bbd_0

MD5 489193c588de30952d729df8a154a25e
SHA1 13876ecda3223082655e9352fec431a92fe8492e
SHA256 85ace954f7c6197a2f772634bdcd906b11d297cc7ef389b90098a8fe9ed85b7c
SHA512 4e58a21ddeded5e2428f8c3800b6ae0e7827b376a782bbbac012300edf7264b0784199df5057f87296cc3ad9e57ef3c3463f24bc7294fdbef499ad81d0cef6a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\8052d137354c78a6_0

MD5 470217267a0429b2dc06e1651ed0a651
SHA1 d4a33f5aa18b0c31e52001da148db0fbe80c43a1
SHA256 474bcc1483a9b01a480e3111a1420815de0d17b43f38df2a1d019128808567a5
SHA512 7d977e2a2933a2034a6ba58cbfb5fde2d0c62430ac488af796f3860ee2157bc3e14781213235bb0867a0b7cda883539fa266be98a09334b73e0ed29d0b0eb28e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\1767a8b348839f1c_0

MD5 4cd37a2767504c441c783cb49da0d543
SHA1 8aa8690a94522335b1daeceeb3e2ad6b6161496c
SHA256 e379f1d4863da946f394406ea4c7c90e7da6cd423476681025390cdd729862af
SHA512 1f2172b5f089273a9356698463617067dfe4af77f320f6c77b43051d1d796c8e76568b2e72c9b87812a27d6c6545df9b3f2c45fe0c8c398e7de15fba966699e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\f80c5d3ceb7c8259_0

MD5 e852d9ad3978a97488d32cf7ce91952b
SHA1 0a6be7ddb7cc074f89783a737b7196e4bde92aee
SHA256 03cbe9aee3dda13218db711ae41cbe5195bc915fe50d3ea1f60a2e6b9c7477b9
SHA512 fe1c40963c019302394265d7833b637c33ab933ec32f816eb23751461ee40ec385c48b981638e9f3ff071aeb1341caeda1a069f3bee37de84ae69fd0bef2362e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\cccb4af9a32d559a_0

MD5 c5721885ac6e5c42bb2ba4ecd24fd870
SHA1 79426b471cfd05530fcc6d93c26cbad980562075
SHA256 2d0fe208636bb03a48a0ae8bf11a544a2a9a6fa35cad1dbca9a97616b6f1a78f
SHA512 824b4db013580323aa33e0d26d32d4e4594bbd6ff5f8fde3ca79da3650a2a87745957bb754ed2983e60e674ce41b19d707a41727e10cd484795d2617dcc47eff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\c5c34262898c6925_0

MD5 680bfe8452d514abfba464a27d53bdbc
SHA1 63ec178ac6cb2fa449ff53ce0c30b6a0124b4fc9
SHA256 76050a22f41d1018cad93efedad17426c38f78add7f6852c404a2ca10211c34b
SHA512 47c68567911de379713b450213bde64759197335afe38cc57982172126d7ee5cdda9b6480f2e23e8906daa8657b4af009a142521da4ae679c0725d0af33c943a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\7272decba30800cf_0

MD5 bf762847713e5f29fed1e4487fa325df
SHA1 af9064c0fd1bee4ad4180f1a9e591824ef179474
SHA256 9b1b6343aa20e2a527fcdbefd920d8e34fd608f166ac15ef5999fb6041b4a9eb
SHA512 5d9cdd7c81c3831a28ebecbd2a7c4d5bff861129e2bcc7a992c506be7e96180692bf68dd22fee072e4d28357689638548f860070af9f67d0f606983b3952b2ac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\7162e1d2493ab2a1_0

MD5 ca55fc64c0389a6d4ae5b161fbbc4980
SHA1 3443f265f182f01c3ac32d82841e0f5bb337e8f5
SHA256 a951fb4d3f41a34d977a9813ea022d72a3a029e8b216987a4cf06c2841817be7
SHA512 8f5774d1d94071c46d4852167939f7090b4bf3d123d0c9990de54ad529c773640792b724e97e9a094b7884d7deefd4aeaaa57d35d255b988a21e9de48056e5ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\fcd77c4e5365feb9_0

MD5 f4852c99bc33a68308745a14da95f65e
SHA1 64cea694248e7a62e0a478b31a6c676fe5916933
SHA256 506b13f595ae55d20fbcd141768c55351636a944ce53d1e796e79a887bd6b1ba
SHA512 d5d8286d2c75a49e5cf255a1e4ac911a3dcac107fe0e2359bc497536aba3e571f7c90f746b780a2037d231a8c14d6c94f366b227d1af366904e035f041c42b56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\d0ae18162ad8eb6b_0

MD5 b1b4b0a77ee8e2f4bb58874225a8d685
SHA1 526745aac296fc40a571a399fc191b36a2bf2284
SHA256 b399c868e4b08cbc421ec53a1349308ee79f273a49d24b902b57881596f92062
SHA512 61b3a8de134cc61bf2adf6bc58faac4ed084dbd2065544d26152750067e897427265f53c4516c3a285c360ccfd4c6a2f57b18581598ce33668be25c13342347a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\11ca329ff4409162_0

MD5 7c698c813990d18514b36d07b85d995e
SHA1 fdb55da022e65510ff413d05469bbda37ceb2e3c
SHA256 24e727e35dcdbe0949b951083b67c7b68e0cba91a3059197a267cb0d62d695ba
SHA512 75fbd679d8e1fe7356e68d0207b22699eb0954939954447ed1157a1b97c5668d634c4490741ff353d709c1b7f5345bf7a0b67ae82cf4aa2bcffc2cc17f8fc4bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\e7890cf39e18cf26_0

MD5 9bd4bf711263dca6d1a4f1fcfdc74cb7
SHA1 500fbd9a3ce59763fce7ce1d376c3130751769e3
SHA256 d29e3ba343bda4cd3b6082076a17099b1ddf41b835045d58824bab9eb73681ef
SHA512 2f98063cbf7c33ad3290e77f5784d174d418cafcbb595e40b8f4047195c5c7a62267b29cb36862f189f31bfef69f426fd88fcb5cc7891f6f7353fa3f5cf788f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\b39bb45419b60405_0

MD5 e31d423f01f3d27bb5bc6df9cda930cd
SHA1 ef12861c4f6d40ed7f2d67762b9150c4dfb28c52
SHA256 95a2bf8774b90a17070f3000c9a5de6fc98369e5000ea8101608969ec7fc0c95
SHA512 c970ddcbd9cb982cec9e40f3c9a2f880e8dbb409720e23d3c1beaa028fce780ca21cab7f1ab14f30698a61f59a4fe130feaecb88f1cd1763a705fb22312bc192

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\181921b9c261bfa8_0

MD5 3d92bd90e01c45d88723ca1660fc3c93
SHA1 264f882e402086dcc53d3385eb90dc3cd5477747
SHA256 fd9cdf65d2be11132d2b81dd9e918bdf2df68925df0ed16abf0dd2af1024237b
SHA512 c26c4b415b964f930c8b23a18a455e0030ba364bc7b35975af854ebbf357dc8448ac87a5f51b7f1332fc18b5484d281a38c983e6b4c5c8ae922c01b9fc67d5e2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 0027bbde2ebe015e0e2032dc6b927d40
SHA1 5740cca45d7890d9c431fd3f3a102e681486d1be
SHA256 9a921aa247a9af20f0bf99eb241ccf9c4a150f548d6c7e8bcdf7029a3582edf6
SHA512 8bfb7af5a33e1c14a6a61df60ab63086d3284d60cb3332a1e61ffd50fb0d308c9caf13c67efdc2b466fc591266fa5980d54bc2b8211c9643c527cdc39dcb55ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 aadbebe01aa3f8af2936eb1dc6fc0199
SHA1 6a4c9aab769cfe4a580d461359596886ad356440
SHA256 7a6580eca36e6e6644c180bb6a8afad00f9617eb837fee0adf8953f2d0948c6e
SHA512 be079c1f7340e8ae14fec82701d74fa6ab20c199e5bb520b0df6587c3f7274f096ea1cdd9185d0e97cf11ab18f7734b659eb3ea4b103ed8ceff7a883eb51a336

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c5058718c3768d039bb06a6faccb0dd7
SHA1 5aa86c4c9c1a7b3a80fb7951da943ca6afd2cb79
SHA256 6ee0a9a17d34642395d4d3bb3d919d7b9f7743a7dfafff136539aee4fd7520dd
SHA512 2539d9db74f154c59b1fc07f1dda062f09b400b6d3f25116505993c122b4b80fe9c13c6d8e7da6959f294a9e1840fd3b8f3bb7a9a19406938be3348956bfe1bd

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 c583ca264d6c489a634b967e1023a53b
SHA1 309efaa3c027b1f7268649bf8a3200d99112526c
SHA256 6ced69eaaf68b6016d3eee54c279f5d9b8bdf3daa5dd96d987e72927608d1d34
SHA512 1ad00bea812e9fa194f01d159f3552c8a42e743b86da5435f8e08664b5ba12527566d38864ab2bc7356625802070e92c0257d6128451dfa0f7037299bdcc8aff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 eff00568d867d841a10e57abadf312fd
SHA1 a78421eb8f332f1cbedccd477dbd2b48d987a395
SHA256 92b969e684d5967aa7db8e649f5c5a02e40e3c6cbd982720340dd077a5dc7094
SHA512 96d4a87e8b5b067638691276d8819dce1b3e0a724ab21e5e365e30d63e57801a0e92f55d43a88582ccd125885ee5662d9d88fb7815be78eebbebc92cc29ce850

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 256fa0591051e4601619ee9b68708d21
SHA1 694f7e03e0512d6145562213b1034c457935a990
SHA256 b2c837a352da1ee6945122e565d9b4859ff4117541356bcdc59221520862ff54
SHA512 2afafc990e3539933e81b46815d20ba94a41a5142b212fe1f42b311cbac285801ef65f4946b574f91fdaf8e42c8acfd3c840e5e48d8f6671a84ad9c33f8ebf75

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 393720b07dd1303b37fa0bea71b72e87
SHA1 8432e19efa24c5769e62b43f2b8041c63ff86fd3
SHA256 beeb8e058515dc8071575d8ed66315cc7ced5e2c108f159bbc7f9c83af462a6a
SHA512 d5bdc4ec9779a294fe0c1858da3b2875d459fd217a68caef9092db631a73cd4efd64a961266b5d2cdfb9b0896d99428e69d5d500011f077f80748df791588a19

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 df9d49b645ed32fba0436a1ff6ae8aff
SHA1 85d570370c489c968f9f0ac19bc6b93136990006
SHA256 0b3e2e27f403572d9c86588b1c0346fe906435c2ad5a535c5113b501e7e10b40
SHA512 88e7676f5f77326009c561582af0e7dd3b7a4975eab06faf4a887042ee8aa6952987a91a46c387dabac75238594728701a274704592b8da4f9bf9daf09f8da73

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 ca292d3083176da5ba3394eacac33bdc
SHA1 7c18a9a493279a471d7efda2ec3747f64435a373
SHA256 e781ed058db123e58ff1832e1f8cd108b1ba568da11ff6248801b4c81cb7c854
SHA512 54cf5a11d13669295c38c65042dfeaf6f226b4040aa5230a8745cf49b8dce9e3ca1b4e9ce205de4f00b22475ba0b8e8325338df2494f19680cd065ec8b214aef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7bfaeef4c5d1707456671fbfafc16794
SHA1 7cabb74d1662ffba434b6dd000ac5c6813ded105
SHA256 f547e08342290ae671e37a4a34c9c926a8b185682fcd07108404f28416c45ab2
SHA512 8296da7c77a9c2b26b4ad8178f66007b97a6eb7f8b13550c95082b8973e71ccc96c7c6a4e96bc169e7824cda633cd930cb0aed9b57d37acfc773ab1de4ebac2e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 2af030e67d3b2229a12b69c5e658c6d5
SHA1 a6d096c47238bd003827b1af0387fbd8065c3d09
SHA256 090bb342c151fdae2ba4d3ea01f406e5239c78d7666c45072f0735d5f9eac79c
SHA512 cd6d5bcc21c8d0fb0e729bfe5e1efb1fd494a51018e9a6141cedc61afed69f747c509a89df561c433b13e0d29ba67e4b36fab8429b7776ee7a55d3ab86fdfc13

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 4559e2b92b71bc978bc6ccd773e42dac
SHA1 cb3a56b5587f20b7f87aafa2565a0cf5b711c853
SHA256 d2f1a18ef9dea55776e0e9270aa04063244cfc87f6dbdf9d213515a8ea3e6d69
SHA512 f94f9b8276e8153093e5e4b273a30e1475deb323f8066d663b27c87626b948f0090c0478ce671c7afe5d685f6ec177b6ace2f898c8e55c679a01bbbf2d304f35

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 cf95ae4186d174c59bf6d9be52184c0b
SHA1 751de6c748a3b4d379acb2280757f6ac7e74d1a3
SHA256 4306948ace6db052d382e9abc4264e6d060fbb4d9588ab23ecb2433bd39b60b8
SHA512 97c6d6caf9eb4c3356e525a5904a0ac5cabf8cdbf32a0201b75d89d171fe5eda5378760cfb4d2aedb7c3f2b6ff3f371ff3c267a65768006b456a04d6e2604993

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\JumpListIconsRecentClosed\b39af8b7-ddeb-4e93-976a-2f46acafe3f8.tmp

MD5 18c8e71fa2d4b65d7ee89c6e11e781f9
SHA1 9c3c55befec8a4b1be8616951c15c02e0f822f16
SHA256 bdd47db5e9a527593254920cec84839b599f317079e2bde31e197cffebd92b6d
SHA512 bfc68dd3367120e150bc10278a9beaf77a4534d0a7c2c8ca5a5734961f3989c23ee949db2017cc337f52329ee8cb3ea7754d5e7ce8318bc88a8840d69c38a1fc

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 f86a1e68d765ac3cd0723ea785fadd63
SHA1 f8546eeaf8f91510bed3ee80ea77a21720b31cb8
SHA256 0a65ca98298a3b5b4cec518839fa83a1941f07628b17e2dd38435741f32b7281
SHA512 613588de94be7d1361d4dae8ce7e343cb4f0dd042424f150a078ba852f0db804ffde3044f857328ded8e9a75e2d6aabcbd5caefc432f8408b57c3b52d5636b55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7419f8fc84048e87141cc43b871ee753
SHA1 8a279217abe08e1989b35023e112992652f1e864
SHA256 10d99e9a1fdad67b65c2317852c86095d1b097db223b2562a8ba39b2b89c3cc8
SHA512 407e809304639e1747b4a8a75b0321e97dcbabe08260c06fd6f8c6633bb7b68d8757b6c74fadbe908e62093401a84dc12e7b2b90c40e34a8eb67028077879e1b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 780ebb7aed41131dfd34256a5ab1858b
SHA1 73b45c10cae687dcbdff33745b981721db2d0971
SHA256 9b192384bb05e32083a1fdaa43f872f35f27924e849903fff75591c1bbf3f345
SHA512 20dfa35f050cb0f0aaf8824c712b4603897fa1d0362b3891d29a86645f535e93e97d528edbe106f1f83be5524e4a12712a4d1e7990253cf0bdb733af7b21b32b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3eeab76d0a5458b331a3c547ae86cb4b
SHA1 45455d68478726eec54afa25004d4090411edf4c
SHA256 6effeb44218e2263da17d9e4582b91372f681b94aac3b247211346bed1971945
SHA512 c049cf9987b01d28f9731c69adf7f403c9a0eb520fa78b30acd196d16008e065df3853d027a55b7083012669c65bad462b3c0c96ecf25e5f5e7c6bd20876bbec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 1d5f57b36984d3bc13513937212f7c85
SHA1 6962d480bc6216080b90505c9f25c8a3ed4c8df0
SHA256 7c5544c2101aa4a9ab3bd0ed98d6d1126457f802c8073333d2e7fb7be273dc30
SHA512 dcb01342a2eb9ff3ed03a23b7e0914ccb626e1136c2a24dc4e8144cd785c90acdbffc877408a922519055f0a375b4a31172e3120744de656d55dcd83b84a4f4a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 cfd2fdfedddc08d2932df2d665e36745
SHA1 b3ddd2ea3ff672a4f0babe49ed656b33800e79d0
SHA256 576cff014b4dea0ff3a0c7a4044503b758bceb6a30c2678a1177446f456a4536
SHA512 394c2f25b002b77fd5c12a4872fd669a0ef10c663b2803eb66e2cdaee48ca386e1f76fe552200535c30b05b7f21091a472a50271cd9620131dfb2317276dbe6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e43052c6a214b33955fffde01bafbea2
SHA1 56dcf65e8d40fe4b517619b1bd03323dc9785998
SHA256 a5c7b9a63d4827ee187b786eaa5eaa74528b63ed113ac73f9b20a0b2519c215f
SHA512 00dbd9d588a2265c87c92f1eff58052133ac0f52217473878e0bbc4b336793de22e7e1c8978ee65a334cbcf3c3238808e6902afa50af58267b29a9f392d70395

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c55f4ed56fa6247fd75780ada80797d4
SHA1 4e40d6001b26f0754445850dd40b706e42a6de68
SHA256 25d4ac02495a29380bb456403612085c53ec8f93f45f79e3be54b182336d6a46
SHA512 b4329aa5b84776c203c83567c0cd2d61935f030a3ab64904518cee0b6ed5577bb84dd0e4e62219aee7431fe5067a8ce2dc0593c9711a200de21b43baa93059bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 17d6bab4e7a964a340f5d0e188352c55
SHA1 bdcdad33d24ccd559bc2decd70a72e1aa1df882e
SHA256 e2b1dd4e8c628c49b1e88a0cb65a7dc7f875f71f70c50efb9ca6c1da45de7743
SHA512 ac2ec2729c13017dda29b03efbb014c4c2d38461fc32369541cc4e6f8c4b82fcb1fc6da4ee553577b710a7d9494fee4e348db04601e0d759423a7b4d90f0f27c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8442246e1d1fd83b923c80e72ebf58a9
SHA1 f9145fcaf65fe1fa19477edcdf875d1ccb6eff7d
SHA256 4ec958b79a866fc00826b92ce4deb0c0ed3cbe5c31e863f5d5f78aa529d77c1c
SHA512 3d970a71a305e7bb835bfcd47311f39a8f8bd0611c984ea6c8900ad351b02c27e1f13fd3e4313adf7885b79e7364882f70da87e896ad8043c54d8d343a7a109d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 e14c117acaf8c68d4e01858c20a08e68
SHA1 edd485e712920b910aa65b50492ebca39482df0a
SHA256 97da31602f49e6c3aba5e0ddb920ba97fce7b082d755f31f06887f14e0dcfa87
SHA512 cf9897493af687339b892b28f49f45c97bed0ab60f58ed0db8c01ac25fb92da9ffcd2a66c04ead3b0fda7a01f5c430aeec6a37fba011059b878b2df08aba681d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\53fd494482482464_0

MD5 d15bc5032696c9af5896d0461b8fa452
SHA1 2d50228c82af02e10cec3afca54e61495bb7502d
SHA256 05b18c6ae222b624bc86e624f55b15aa8fc686eb4754486750c740a9149937e6
SHA512 cd8c59803eed8bbee1effe15e7448df1ad41cd3f75c9a2204d198da2d103151be5ac56a947237ff7e75c67b22c932b3e29c73bdd3e3ee63058e9d7989165592f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\a17de4d11d6eb3d2_0

MD5 9af0ba6ceb0302b9ec03fda1fb7dc2b6
SHA1 d31e5ab1c45b16610a6ea10241edf327487b1a17
SHA256 390e2cf43206d42420fc6e8bc3a1a0d11524ed885ca8927ac566d22cafb0ebd6
SHA512 eb018abac0cbc68098d6118507ab83ea54dee9fc90fd980d1a47ac55046389f628e7846d16ccf1f3f3c97ee24ea17fdc96eaa2128e090c7a1016c82dba5defcb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\76580b7abfb9d966_0

MD5 90e772b23cc703560ea33940f248441b
SHA1 a330b92a6787bbf876444cede40e038d07eca7a9
SHA256 52eea5727cb98bce0cb3f252f66f4ebf9496507e53425bb3a207ddc83ea1d130
SHA512 b0c48db4b54cb643406123cc14f02fc60926878742f5ee24b0e76204251ffc279742b22c54f42a7aee081a2223352b2940201e0a46d56ad43c07036b4604ecaa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\bf3ff48678c82259_0

MD5 4ac10d2442731226a11ed810b8f35082
SHA1 c6b0c6f9f30e5717da1994a19212f10c7c84b877
SHA256 f047d49a307bd12ae7a667d831c29e2e040a500099e981a60c2dbae0a0fb41f2
SHA512 3d9e21469df4f04997255171db0244025dcf1acb7ea6880b637de8a3f21d52f43a127815c2b670850892afe13d48dd7745562a4bbc9df545a81eb157f3b7e9bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\615f8767d32a1c8e_0

MD5 72eec8694429c21eb94a539091f7c8f4
SHA1 6d41a48b78a3d5bf2b9bc02da4db66867ac782b1
SHA256 42b93638def71cce14359d2db95eca72faf66e21e4db233b15520b27656759e5
SHA512 0557b74f8977ad89a402c9c1f327aa0deec5115e008d79c0713d09425ebfef07e7f90c4bd4cde4ea03680e09ea849f942be6620a87022c805fa51c238f0be0c8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\bf63a1545ed9fc41_0

MD5 01b48b5ae12d2f7d02559b025e9b601e
SHA1 ce135947781cabd869e6d930f61764ba92fb40a8
SHA256 771893678fee2d1eae08b09a2ec6d20ca06cdd57cd07380469d30cd67a1d8cc2
SHA512 5c5262eb5a852b799b5abcaaf2f93212bc71744e3c69a11abdc931668197bdf888a10f5af8c11c7584f56c0d78698f49922533e506080f8c44f1c7769af3f8b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bb1ff66c4912a840ba2f5b1eabf83c2b
SHA1 94458ef9c1a7c7555c3a39eaa24ba2fd950808e0
SHA256 810ce7b8070cd56e22306e22081644cffd3b3d9fdcbe5a0812ce5cbc618502fe
SHA512 dfdfe1f62868991196ddcf68552bd8768d76e24820453310404ee36d974d104297906f8e6381aa3bfe9226b059d1480d24b2aab0ceff6b7fc8793393ddf796ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\LOG.old~RFe5c78e1.TMP

MD5 41037f1e9fbf9c98f0f3e6fdad7c63ef
SHA1 93629ebb2028ba7ff12cca26198dc06c8fbfb52c
SHA256 79f63d11dbba8254c3b70b293c50a99afea7a1de67244b7182ef3a6eec615c87
SHA512 1722ba3f8066608abd3551d80e6c6fd5e2f0db51f4b4d5316c52a31b7495bd2d260094fa9882e34a6d7f6f8936bc2d34ae7e0cce7da04812bf86aec7530994ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\LOG.old

MD5 b3eaa86f2287c3ed4f8f5e7d06a47310
SHA1 334bdaddfcbc6d3a4b1f2e95ecc5afed62554a8b
SHA256 0e872691f4fe853b13103fbabb70a2e92fd7a8951bff2c8f41c692b0bc201419
SHA512 4a5b5bbd7e8984db9a666b75cbe0c493302c1d83f1bc3fbe9ccc7e43931a05e606456468b963a84e54ec6a4cba2bda27df198b2c2a9501433ba92ac0be703275

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\000003.log

MD5 a059daf9bab9596636dfde137ec7aae3
SHA1 92196359f29251e54d0494cafff57c79ed023875
SHA256 46444386c59b094d851e5977556422d391a526b85e712d03e7d24fc4efb1e9d6
SHA512 a040e8c2687283e79ed1be45f052a7547d61e350b50aea2adce701f3ed41302534c48901344dd0c767861160be880d77719fcd55c2bda1b67696bc784ead9676

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c26dd81ba9e7ac83b2b04e9c4593f9b2
SHA1 3454af1595829708a6379861a67bf34967c8b317
SHA256 ac1ff426c6bd670b17fd7fc07730d30762253a2f4d516e86c3d106b1ea6018ca
SHA512 1498090967f2f9f6e5e3cee540480a0c0369bf3a901356dd71becb6f1fb656558033f9bae914496b4b1674fa4bd42f05e1bb3e563fa9605aa05f5849fcf5a5a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 72eccebb573e3a4e03d2a58ea64c2097
SHA1 f35f617cf922e66f672859bd4fa98d6d963e2a21
SHA256 6a431aa59b7f25eef290f9782d9566d034a9dd2c4431610259a829d5d2ebb835
SHA512 1b0b4d5bcb0dae75fe5ed177a0934fba7ef96b82adc96415d74c6074fc623c044015f52c27ee8457d03b0ab172f071407cf75a74d1f86b09a1f77ba960269774

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\LOG.old

MD5 77f9671bf8eb5775c61e4714b35aeca3
SHA1 ccb853a87bd2fc91c7ffa6adbef1e6eae7292c79
SHA256 879cc68c3cb19e8d7143c71e07e2194e9c55bf4e964a5bf5a8397ff996cc0660
SHA512 e3e1e223de6e31134ddbec770cc54b4f5e41860583cea13ca53874890d1101c191b5b50fd6e41a91a8747804b8c7b9e3e211cc3c81b889df7cc4226cd33c2f12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005f

MD5 c86235dc4a5b3670a103b25eb11ed92a
SHA1 ac2cc2e1bbad2a9605a10df110374147084c64f2
SHA256 a6ec2a7cb7d8dd5004cea54655c4081c13c4e1cfaf463bd8a09109d6388e0fde
SHA512 693cf5aa38c0356c2549053a82de702b9ed9285d2cf5d23f793a74fa68c307bc9bfdd96f6a7d218df313ac99842d010c7768b54b65de126c3568d57783d9b36d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 c3eade1613bdb561252b81177e9caea1
SHA1 6953796b61ccb398cba9522c1f4d852abf37ef57
SHA256 6be3a7f856ee65f42d1efcf084109388572f0f4205df0d8593e235b9bbd59b7d
SHA512 35bef12c8d8b89ff04c97e2574a62803844ab101a664b3c08714a85cc7b2c795626c82fe06a259e0bcf766e5b36313af254bdcdd02bbe0dbd634d38951913d0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a674aee3a1f6c4384e19053f7c07d338
SHA1 b1a433f0ef830d7a59526be892407b96383085e4
SHA256 8ea2458493c37d3d7826cf5d9adae20ce2a640d17034d1b0df7e7f8316fef9aa
SHA512 0e3b736d8a3287fd4f6cd5c3d592665bc69ad82e8e6ef18afe2585d315bcdc33443561fc98d077435de7f05771bc4e3bc57a5fdc022c6e307284acb33f506d0e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\LOG.old

MD5 fa50e96f38050314499cc89626a0236f
SHA1 02dd694d022b40d45d016a1cac0fb6f2ed519fea
SHA256 f2e57138cc089bbc0aaaa0c357607e9e7c3ed51bf4d583de968fd96c1dc1ef3c
SHA512 bb149d8b47aa4b7ef9805f94167e40239c66f97dfa1a179eda1e632b2954a5187a914c2a001261861f0fe4e1821b42acde93660d48db27efd8aee4de0e0d9ccb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\databases\https_oxy.st_0\1

MD5 049b58269c62d5296cefef351c465335
SHA1 32a48095c5167e4a09f9f1cad9f6af3098da537a
SHA256 fb526b8bf1ceda8461a98c92d599877bbcfbd4f6102a1e00a31f6fff9d448b74
SHA512 438284f055bdd3dc22465b4d6b6c80acf14cf2143b9fc5d52e90ec9781f18473d61b17ac7bbdeff032ed1558ed18836f9ae55162aaf12f8a7a0a6d4bd9a44751

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a6180649407fd2a7c970028ae193b5e0
SHA1 a4b68337ef5fd7532ab51f8ed7b26403d6b514cd
SHA256 4d3045a166f4a88f55a24abc9e9ab0675a135a9d064400f687380125e97ffb7b
SHA512 ad18a108bbbe0e42cb0e73aa4a86adfd4bc718fddaa7c3d649d2bbd1ba63a3856761e851396f0886716e2b32a97c158096ce14856e624b31b1860300bd9d4515

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_oxy.st_0.indexeddb.leveldb\LOG.old

MD5 5b5c00ef7bff418d15705a17c9df3a19
SHA1 582f659ac3099e9b5173b3d779866fbe63074ce7
SHA256 3e852e05e76a211ba04a82d36d8861b0db210eb4f7828db82f3d07fab9b67f83
SHA512 f25148a9a78323efd0461f67fea4fe2602e05159dc6e4db335a7a406f624900e46f1ce87d2ee63b9aa1eb06532bf3646ed4fe4c2933dc54bf290d9e952a55325

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 2484a7ef5c29be93bf8f29660578b6e1
SHA1 0e048bda1e2ff568982db634b4ceae41a5bdb4fa
SHA256 82b6fa19a83844e9e4518aa04f749a9fbb431abcab0e9ad35dc4317144a06b2c
SHA512 139ac0469debbcc338ab005ce6d7cb99526ec664533b54a6740cb0edda776d3ca029219b80a6069ea4ea172d2d221596898656535747259c22176c8d503b6820

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000069

MD5 081c4aa5292d279891a28a6520fdc047
SHA1 c3dbb6c15f3555487c7b327f4f62235ddb568b84
SHA256 12cc87773068d1cd7105463287447561740be1cf4caefd563d0664da1f5f995f
SHA512 9a78ec4c2709c9f1b7e12fd9105552b1b5a2b033507de0c876d9a55d31678e6b81cec20e01cf0a9e536b013cdb862816601a79ce0a2bb92cb860d267501c0b69

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 70cd045338c2c0688520f030d070a84a
SHA1 e5f0f1bb5d6496f9d35fb4201583cdcc1131afbf
SHA256 ebe0c947d96de0e6a3a4acf5513e5b0eab246c4b883030a5160adcff23731832
SHA512 a782fac2ff726fc63f3a6f344d9c2a9acf7aeca7ef135e648a76f1037698588b78c183f846f046d0b4e3b932574d7dd444014ccc00ec227114811f40a07a5b99

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

MD5 4588208961b6b7ed6cd974687346348a
SHA1 52085a4f6c875b6949261704f05050c1727e9c55
SHA256 95a95b07b4e0d051f83a51b680810572bd1244b42cb6e640d3b29b98f3e92885
SHA512 a9853353e68286f62535548ddbf1a97f1b39c1b6200161a660b1a4eac6864a1f6e93ab72d2cfe61249bf4543e2317f04babb3be211a37c12a55d55ee08b2b515

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006d

MD5 82db06ca267ac7fdd878a1df35f41f4e
SHA1 9dae7f1ae60d7b83dbdada64fd1b4296f8f20051
SHA256 3847721350fd764d4d21cb4d2e02ab95c4ccdaa9d8ffefeb6f1078bf169ac6fb
SHA512 6e9beeca7caa94fc5dcf929d5af18d24acfc2a56612840b7084fb6057785d85b272eec8acdf4457c7dd1de9bee5e03fefc082a170131002229da0c01da9a8fb8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006e

MD5 cd7b3e4dfecea7028bc1bdeda5a47477
SHA1 5c37dcaa4ed3c2a4051e4dc1714a342ac0de8365
SHA256 4d401337713e7f1c9f6588f8f7d79721e531c837b5f2f73c0b3cb372fd8f9b87
SHA512 ea11eb8d8347a39a1aa990a05cce6543e47145a1e618091750e2ad77497449e12e8b4d5b1e3385c9669cdd6a66e7dac96ff0e67913730c27c0ef2ff40a669f2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006f

MD5 28198fab85f1ac98f664600f670ba43d
SHA1 ee0dd46d793071270130c08412258d8c32194a32
SHA256 81bd52c3dd2417f30deadecbe5412bed404a86e05233b7b7ba6b7e8f682b5b49
SHA512 a1b3ff8361213c15bb077a3b9d31e9cb8b7705d04f2815395c13365972ca94e798f11532df48583fb3792df329d2a98ec903aa0457841da34f062f170de5d921

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000054

MD5 e648b4f809fa852297cf344248779163
SHA1 ea6b174e3bca31d6d29b84ffbcbcc3749e47892e
SHA256 637f545351fbed7e7207fdf36e1381b0860f12fffde46a6fa43bdafcc7a05758
SHA512 a2240d4a902c8245e3ffebd0509e25dd5005d0e6f075f5c78a46095b9a52d86ed483583a2a8b39f1ad4e610d2f7ec63e4ef8eab89936d30da937690936ef4f12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053

MD5 057478083c1d55ea0c2182b24f6dd72f
SHA1 caf557cd276a76992084efc4c8857b66791a6b7f
SHA256 bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
SHA512 98ff4416db333e5a5a8f8f299c393dd1a50f574a2c1c601a0724a8ea7fb652f6ec0ba2267390327185ebea55f5c5049ab486d88b4c5fc1585a6a975238507a15

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000071

MD5 f64473f7f0d77763bf319a920044a5fe
SHA1 085e34089773af2ec9ec67f206d51e9ada6a84fb
SHA256 d0ce3ff70f038c52fd30f79350f60b4dff5c9bf0f327a1389c83c409a1f8846d
SHA512 25a85139b51b7b1e45a30c3cb8a5f53d7c7c09d7a636236a2abe56e7737c5ff1b7481d2d71ccdee2959c480cece1f753acc27998c1cb981c989b5b03aec5a20a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000073

MD5 8e2a0e56ae25b282b437f9d5bd300d96
SHA1 5d4ba26731ee84ba9bbc5487312162b826ede550
SHA256 b48a7837a73459a7d6f545cb45a810533d9bf006a54077b2ca3bd62dd6f6315d
SHA512 a2529efb9941f92a6c84c40214bc9c7c97ab70dd69040238b82f9422bfb5424b41e3f56146017c4a9fdb545b17f84058e03c8179fd4f6385e542d799df5d7a4b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000074

MD5 d37ece4290313a264b5e235c0dadf2fb
SHA1 9ae09bed58122b3d3c4914c45e682dce63993e14
SHA256 e08d9d0fd918211315836b13807379efdf0a22ac163c96f96c5a14d1212781bd
SHA512 28a9ebb27fa73557ed24458864558fca4666cfd53766795b2c6785202fba4ca67a29a25f48d3e11ff9bf462b070349571d67a92b1202ae42ca8583db3a781a9b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000075

MD5 ce2f90b81ee3a43f46c29223ad1d981b
SHA1 b82b68c892bd7c8b0bf06a883f1bdcd8ca0121e5
SHA256 7b5c7bc066eb345c6c48189f960ad13fac80add5b5769e2d7a1f59d82a382505
SHA512 85333d169f9815e608eca91d3ba07b18ad6d121806caec0474fd73bcdf22cd0ec032058ae029fd8ac650667df7a382c1fe186ec15f2e13b224a253e7d7c3c674

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000060

MD5 2421c3bbc9aabe7cb36f7f503a09cb9c
SHA1 cf2b7c9cec92beae6eecab7cf7d902a0209632a0
SHA256 af1c289ee4b4a82b7b4812c264bc1182bc006f5f3130c7708e2f9be8aa4ea590
SHA512 b2bafaba97cd8ba92cff59e1dd78fb6e39cd6110b40fb23fe4c62ca0879ea2c39cb30b65528d4a20e707a089ec658ce2ef9883196b37c783d264cb3b6f224abb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 2eef3b8f87f51bec9fb0e3db4c5c1a90
SHA1 3fd501b3c38800538deafb89fddfb1815292139f
SHA256 86627120d0111a91c451455e444ca0a7ecc7b79da63c56fdc6e4e6a58d2ca8ec
SHA512 61d1b0d98e302d686c278614657876cfff25ac21a8b8e9e72b79f1c322beb8355e99339aac59da1c29e0905f1e77d83b7244260baf60b72bc8390b0bfa25fa52

memory/1400-4204-0x0000000000EC0000-0x0000000000F00000-memory.dmp

C:\Users\Admin\AppData\Roaming\nurik.exe

MD5 9f63da826026312aa31cfdc40e7f5790
SHA1 1c998b6cdcdd52767a178a1a372ea005aa65d281
SHA256 1a253580bd2319e48591de7cdad23600ce6868e6e6cafa88316f4a205df1e63e
SHA512 3c796c1da0615cdb1e067494e41f8eaf96f7efde49eb6532dd1298475916d4f2b230edae9d04e974e349d4d3e85066337a176bdd3481caa57aea247172a590f6

C:\Users\Admin\AppData\Roaming\svchost.exe

MD5 530988da7b0c88c8caab181be38221fe
SHA1 3847dd7f6859782d1cf517adcb5277d5385dfc8e
SHA256 d97e3e66390706f476a546bb00099215674637555a91d10f9133c54be8f2a8ce
SHA512 ecd8500bc66c93ae8e3b01cfc776f11a6222e0fa0326a71d96a00067f629168a04ef52fa5839549685e1095cadbfee8085029406ba6d0b4b8945e3386a4d1b7c

memory/6348-4228-0x00000000005A0000-0x00000000005BC000-memory.dmp

memory/2656-4227-0x00000000002C0000-0x00000000002D8000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ce1dce08ba530043110f3cd9d5e5e96a
SHA1 cc4305bc059debb704c73908e7474debcaa2089e
SHA256 0e04546b3c3cfabc068c0cf795069fc62a5dd0a40ecca089973f3d69fff542e1
SHA512 271d55b1b2c0176ee3e0029b0930b90ab7e5187538c78bcb9a127e35c3d2ff0466c7635d578767a807be4ca282acba0387722343f954d3f9672d2cf7c32752a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 308eb7c5d5953ecabb8b41a35f382c80
SHA1 41b1add62714fe152b372f85ea6a0baae9d34c97
SHA256 6ac1eac6c7c472aa1302e8e3d34f054e444ddbf08dc21f1bfd6bf91a491c27bf
SHA512 c071146f6930abf480b13ba30997d4389810ae70abcd169a988db0f07f0df91b13b3504a5b78d121de24f0c276cd870ac11933406801032338411c7d94bca4ac

C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_nyydlibm.s4i.ps1

MD5 d17fe0a3f47be24a6453e9ef58c94641
SHA1 6ab83620379fc69f80c0242105ddffd7d98d5d9d
SHA256 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7
SHA512 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82

memory/6720-4264-0x000001EF8F450000-0x000001EF8F472000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2ead22dbeccb4779137441d0aff7c0df
SHA1 2aba1934a0fb71b6947ec2fec55e6671d5485809
SHA256 6e4a8ee2e4e71a1bea92d262933d7d72208398620b6970ec2ed37066a4928751
SHA512 7475d52ba1d2b8925b66447c00a3e0c7bd779980f0d2085f5dff9bfc4c8fb2a5b3c19bbb28641d80f4e681f3b55cf744637b7379e91ae686f5094d578da0ba4f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 05706ec7c60f11f2fae323b7e0d992ed
SHA1 5e76d2980ef2d03e09895f0f3ed1450adba670ca
SHA256 43e4e8518639aaaa2ceb8962ef374ac089d1831628365f5e3dbe56c31fb21d6b
SHA512 48a146ce3e5915bedeb986cf28eefe81b31a94ad29f55aab61c6887c7cfef4eed44b199f60bcb95cf2a2deacbd0706bd1a2c7a3e42f760fa4fc914811dd7e971

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1157e35f1277c198795327ccaa07095b
SHA1 41caa7e8a4ea98cf1df2cd2eaaccdd612d369183
SHA256 2638ed71b2ce781fcf04773322906d1525aaab0910bb377140e97b0c55f0d760
SHA512 818e177230014caadca540c560660a3c7fb4c882093284721309b6fbea42fb75a08f723041a64ff0d7753f13e8fd23ec5e3eba2825adcc650ae22c34d5cccc3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b359de4987a5a510f1880777d96fff84
SHA1 d89cedeb1a5b1c28e257bc8792b4d931f9d6f312
SHA256 ff8c101328111f338f9aa941507be2b11a007cd835894c161724a130c1c6bb14
SHA512 b286682073491bdf15ee442610cd01e42d4a56fc776f3699e2212da723155cfa71224169ba045165e0972f4828c5d1dba5aa059458e2f73052a5c4c2fb1c9270

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5a8dc2de0879e855a82c87a2261f68da
SHA1 87cc920f493f09b7555adaa59521019dda4670f9
SHA256 1a4a0b99ca36536e6af0bd20b3ed077d1b754335ffd8d99fe99097c5a87f49bd
SHA512 83dcfc513385bdb8aa1f49933ff7f6a2acf123fdab6ce75afd87ed55d955c5ff1b997011ec8f48359aff85eac63f30e144788f994a86e561d5f97497dc68ec54

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bf89f22000da6a193bbcbd7260a6244d
SHA1 3cc211cad3ab0225626540097c4a6696977921f4
SHA256 e1911e5617a7be57365364972422c858f77b262dfa6b4b49060e6e13a8ae7b90
SHA512 f18c489844761970215796128ef145bd5accca29b1aad1fa43fe5e4602603fb957f05eff22449713e3cf46c77b72cfba3792ce70ac4c162920e125b7492ca1d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 146d92f04d409ac1dbbc079a3d51e944
SHA1 3972a628be3b0edc94b5a9e8c9c85275eb151023
SHA256 8b488ae383a59948d585734345eea111432259f847ec4e8bfc5cd347fb32ca82
SHA512 f9f910d2a6011825b041846afce6af69dc1e997316b18190824735b43ab41d0d561f86f10880793b10e9e46dcb6351947799fd9c42e236cf71c47cc46855f7d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 5852b16e9a2f9aff004d4c9bf4bd2d62
SHA1 c50ac39e47611618bbbdd88df2d073af2ce3f3da
SHA256 ae97d4b22d415972e4afb2bcb4baf112f952e7c708327a498a24a873b21f6ad7
SHA512 bb8287ed98f7d1d6b2c582b94c008708ad3ed56acddfb2b10c7ef78d7372c8d1a2880ce8314736e8126f70b8416f8182f3ad30c45959e2acbae5d27407ed5612

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000080

MD5 8372040626b13da894d9494a326defa5
SHA1 6f687841d9110b49e4f9741e441062e32ec84860
SHA256 d2d1c9e1582b8164b21d8c5cd2ef2cb9432f106d0b09fa210152aa6f1e81694d
SHA512 db75e38184f79010280e4d0557ec7791344533fa89a008edf0009b1e30d20a6a0d6b12445d123ca20f5ef80c00ea73f379ec4cc8ec7d9d44a6bfbcfea3956193

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4784aaaf00d998fcb4852f366333dd7d
SHA1 8dc3ffbf6cd37ea7a6eee85a554d0c143fa90694
SHA256 9c9a354346b03c134566f05233dff97b5c7911aba2577e812411de8056da58d6
SHA512 b77bdd40585758897ebf35aa518013433b9160984e9f1d3d71a6cac8d0ebbe0d8f1e4daaad01646ce4f0ddf4ff2ee9a1405ed7b395d86edeed9b388b36aaacab

memory/4296-10347-0x0000000000820000-0x0000000000B20000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\Nursultan Setup.exe

MD5 a1d8db2a1ff742bc73dd5617083f5fde
SHA1 957b182d82efb40a36099dd886ad581977880838
SHA256 d715e599815190df86069fae7220db64b5999207f77fb6e41cfe318d34c7399a
SHA512 0c5407f5707e5f2808cf1d85d71815ca67d45edc8bd8a83cc424dc927afcbad6ced5a826fff81549e5684ca0ece039513c3351ce7bf231e37885f7ed04dc513f

C:\Users\Admin\AppData\Local\Temp\Запустить Nursultan.exe

MD5 f0b33cc162bfd36a995b8c90cd8ebff1
SHA1 ca1ddef08d47fc15a44a2d651b61e3decce8ebc6
SHA256 6363305dc75b8bf7aa2a8b31b0b0f38022fb0139f809ecba42e5cfe7530830e0
SHA512 1426cd246662adfd9aba4434586dc3bd54d31d395d9fafdcb15e785461a466567bff62e85085c36043cca047f951a96e5fc359c5cbf1000ff3121bba6b2905d0

memory/2360-10390-0x000001F236B80000-0x000001F236BC0000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\Nursultan.exe

MD5 0df0a039309525fd27e1b5e056c92b6a
SHA1 7551c27a9123cb56c4218647966a753794ac2961
SHA256 a29379238f93fa6301dd390e635b0c1f53d9197c68adc0f00cbc52bb4311a23f
SHA512 2c00ea216368e254167bd5f2562cbc93953b9c4756765f4504aaae7e9dc45e5584fef1ddb174b651a9a090c7217424e5b80dec58f6f2493c54704f46c35fede6

C:\Users\Admin\AppData\Local\Temp\CrackLauncher.exe

MD5 c137c5f5287d73a94d55bc18df238303
SHA1 95b4b01775bea14feaaa462c98d969eb81696d2c
SHA256 d294856177658df0159cfe937e5ea95a8ee8a2ca85754d897aea3bb5d0d962c0
SHA512 ba595d185ae98152658ce95964fd6bcce7e970896b0b1c674a142d126cf0433094debcd25527d9b4f5a6568cc5a8a42aeaef536166748eea3973f8b694564aa5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 46a537cdce1cf08bc30a96ac3eac525f
SHA1 09a1504c60463da55f567232b67b70623ba62d67
SHA256 0370b4c3a5b5a71fcb544d54c9b3f57da8e543dbdafe22d030dc3a6df4df9f45
SHA512 d16474cda4a9435b277914fdaaed382451ce6df576522b3e54649e955abfb8aae74adb4e361cca26a8ac82fa895d422ad83d5e1fe4a54d6a03f0de127b6d8f3f

memory/6548-10426-0x0000000000E20000-0x0000000001008000-memory.dmp

memory/6548-10436-0x0000000005AA0000-0x0000000005B3C000-memory.dmp

memory/6548-10437-0x00000000068E0000-0x0000000006E84000-memory.dmp

memory/6548-10443-0x00000000063B0000-0x0000000006466000-memory.dmp

memory/3892-10452-0x0000000000400000-0x0000000000412000-memory.dmp

memory/2360-10476-0x000001F251350000-0x000001F2513C6000-memory.dmp

memory/2360-10477-0x000001F251150000-0x000001F2511A0000-memory.dmp

memory/2360-10478-0x000001F2511A0000-0x000001F2511BE000-memory.dmp

memory/2360-10514-0x000001F238820000-0x000001F23882A000-memory.dmp

memory/2360-10515-0x000001F2512F0000-0x000001F251302000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 84a723901dbfb0019ea6af472a34611c
SHA1 5d86cd383f71d7b7e81a66244d4281962b491ff0
SHA256 6d86a6a71a90056adfb167acb11d91a8dc81e6a2ca172a10db854077ba019da3
SHA512 a0f6c74f014431e149c2dac0674de5c78272b4688eba041c8115ea8906ded92ba69e8daf0f324dc29062b9c11bae91a7ff728965c3a389e6a0cd6f611826fc7e

memory/5724-10541-0x00000000048B0000-0x00000000048E6000-memory.dmp

memory/5724-10542-0x0000000004FB0000-0x00000000055D8000-memory.dmp

memory/5724-10544-0x0000000004F50000-0x0000000004F72000-memory.dmp

memory/5724-10547-0x0000000005750000-0x00000000057B6000-memory.dmp

memory/5724-10553-0x00000000057C0000-0x0000000005826000-memory.dmp

memory/5724-10558-0x0000000005830000-0x0000000005B84000-memory.dmp

memory/5724-10559-0x0000000005E10000-0x0000000005E2E000-memory.dmp

memory/5724-10560-0x0000000005E50000-0x0000000005E9C000-memory.dmp

memory/5724-10581-0x0000000006FD0000-0x0000000007002000-memory.dmp

memory/5724-10582-0x000000006FE50000-0x000000006FE9C000-memory.dmp

memory/5724-10592-0x00000000063F0000-0x000000000640E000-memory.dmp

memory/5724-10593-0x0000000007010000-0x00000000070B3000-memory.dmp

memory/5724-10599-0x0000000007790000-0x0000000007E0A000-memory.dmp

memory/5724-10600-0x0000000007140000-0x000000000715A000-memory.dmp

memory/5724-10605-0x00000000071A0000-0x00000000071AA000-memory.dmp

memory/5724-10606-0x00000000073D0000-0x0000000007466000-memory.dmp

memory/5724-10611-0x0000000007340000-0x0000000007351000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 0715362bd2034d6bd0110d76b028887f
SHA1 153a3a1f456856d13b60511168892127074b1353
SHA256 8e9e2b4853e560f2b63c8ef66ba4048ce938a2c2b4c5eccb4ebc243962aae86a
SHA512 1e3aed0f4ad0f377631c09b0804a869bf4328a5f91c7c6d79d3b92f788c5d5e91f1d8588f715b577299ad331e009b973caad9ada92cd7ef69173f0e8c8901bc2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\8d5bee28-648d-461c-ad4e-42fcdc5fbcac.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

memory/5724-10622-0x0000000007370000-0x000000000737E000-memory.dmp

memory/5724-10623-0x0000000007380000-0x0000000007394000-memory.dmp

memory/5724-10624-0x0000000007490000-0x00000000074AA000-memory.dmp

memory/5724-10639-0x00000000073C0000-0x00000000073C8000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 52667bcacb02601ca32176d7bbaba8b0
SHA1 7a07973f00722cb1ee44f42fcfd91e3412be15d4
SHA256 b61696ea0290fcce9e912b1864915eaa5cce37c8bb533aa3079cd0e10f3e50c1
SHA512 151b2db4ef969a9a75427de237c5b54dfbde13f00c4859defc6b119f31639bcd908b87ae9af00979b1d5b5f17117517f1a70e181e5bd44422519c1163a038e2a

memory/7096-10657-0x0000000006390000-0x00000000066E4000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 1e358fa5988249ceb0d60e87e0561469
SHA1 99fbd860a06aea0329c70dc327daf3cbfced2c6d
SHA256 e01ff8a825b8cbdac86337f5cc58f71b112a7a78fd8647b96b44965134772f1f
SHA512 04533c0e14a38d4c472a788250ae5535e311829bb69ae0e6f86d7e5f8487a63264bc2d62b52d8a9957aac662fea70281afe51cb331a83d3275eff885020d5bbf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 d4365289ba26a0820cb2d0c390145e39
SHA1 267e9fbb4a781874aa38453834222caf175f8c0b
SHA256 002f4600e694127dcaac161236f79e983064480a81903df66a88bafda8b65742
SHA512 a802d477974de87842fafcfb6209afca41e7964d514dcc77b4b114f5f32beaa1f163e933b1f982930a9ad6c8631a3dd33421ab930957cf3332564b03ef04b159

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 1243b368cc1096ea3abe27367d242bf1
SHA1 a445cb4c4a763b65b3d76e0f89268a2300ce28bc
SHA256 601cdd784b2f6277aaf348268b75212eb6715242a8e9cbe738941b7baaced14f
SHA512 8a5875a6b1fea457a6114413c6eff10f5b0beb3c1e0aa7913613bdb0efe29c56b869919197e4a2e4a7850b89263a251fdd9156b8c1cd6e4fa9114f12290cf4b7

memory/7096-10764-0x000000006FE50000-0x000000006FE9C000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 f1fb41dabdbe0e04fbc6cc48fda37047
SHA1 bbede987e2ffdb9c3ba0aaa29155ee0ecdca95fa
SHA256 aca02b7837fd9e99394a965585cf26134c74a2a666e80ea8c6b2df47d045a20d
SHA512 37f997892a319b8e743d61f22665cb6da70bfa982f0bf927f7141d3bb7b8dd9719a21bb0d2d362d0625df54bedcf3b218d632b7c4394f84a8feb4fd7289dd027

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 28c5eaf0925ed2464adb53cfb357bf00
SHA1 496b6721276eb0b6b2a0e649eee122ed022cc44c
SHA256 ae011571cba4ffe598e68584464ed582c6a864db5bb239914a58eb68b9dfc423
SHA512 35e5d413b5aee223750c8e632ed2d8c8dec9b2c95de3443a8daf3019379f6049f23e9ddf716741c21f1042ebdc5f1165dadbd235fe2359b47817d41faf0b0b34

memory/7084-10879-0x000000006FE50000-0x000000006FE9C000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1

MD5 f50f89a0a91564d0b8a211f8921aa7de
SHA1 112403a17dd69d5b9018b8cede023cb3b54eab7d
SHA256 b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec
SHA512 bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

memory/4320-10967-0x0000000005D50000-0x00000000060A4000-memory.dmp

memory/6664-10982-0x00000202302E0000-0x0000020230395000-memory.dmp

memory/6664-10981-0x00000202302C0000-0x00000202302DC000-memory.dmp

memory/6664-10983-0x00000202302B0000-0x00000202302BA000-memory.dmp

memory/6664-10984-0x0000020230500000-0x000002023051C000-memory.dmp

memory/4320-10985-0x000000006FE50000-0x000000006FE9C000-memory.dmp

memory/6664-10997-0x00000202304E0000-0x00000202304EA000-memory.dmp

memory/6664-11001-0x0000020230540000-0x000002023055A000-memory.dmp

memory/6664-11002-0x00000202304F0000-0x00000202304F8000-memory.dmp

memory/6664-11003-0x0000020230520000-0x0000020230526000-memory.dmp

memory/6664-11004-0x0000020230530000-0x000002023053A000-memory.dmp

memory/3892-11017-0x0000000006C10000-0x0000000006CA2000-memory.dmp

memory/3892-11021-0x0000000006630000-0x000000000663A000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 28580ef08a4aafda59961a222a79a7ab
SHA1 fc32f5fa6b41e65eb6e5bc44471f2fb12d8b181e
SHA256 1a2c1592f06782836ea7abee1e501ad6ac966983b768655c734228e78e7f1f6e
SHA512 1ee7a0b5b56ba5469082ce2cfb28ef6e522f23f0a3d0a615efdfd13baac25c3a3677f3c0bea89155f6a9ec2bd8251ee2009ea338576f9e49e9cd1b1ef09c821b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 8eaa016209b02f145eccf99b40b159b8
SHA1 4c2ecebf3110d12d85827def611221cbd0e7fb60
SHA256 a8f5c333de944be7d6e07af91fbda14c1d26b728938605efa08d98939752546a
SHA512 39e7628ff25d8970d2ec243f623da2533489d772dffb8b80c47a86cbfc55c775d3b754c3117f1c835425b93df10ef8de281f18f7246dc2c73af9a696fba99156

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f7bc49bd2c0db8f5f02344f771b97eb7
SHA1 d89598896be1bf3a7fb940a1461a705a7c33401e
SHA256 ddbfe5cf728722c9e9a4477a18c9b3d4ffcf85cd715ff4d098979a8183de193f
SHA512 716beca47f765ecdb71195de3bbbf1259ee0557822e66f89f647d2285972b50b580a9c4ac7a2ae005c236049c8051da2b55137273e50f21ea4147be98dbb0e18

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 d2a037171427791402b84974aa15058a
SHA1 0b82bc649e3070766bc80d804f5d9c95e6c2b0f5
SHA256 70f94c8bb2a349888064b82f65d116796df00f7250e8c55310388ca85b410a6a
SHA512 d85a4422dd5e30f5437b131dccac92643b762b9746f9800dcbd787f16d7017446a1ee42ea6cf25212d49c65f789570d3993a15983240d9b81ea0ac96df8b1157

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 367b56e848a40c5c86c41ea253384154
SHA1 b47a89731e3913c56e930dab9071cb608af0af83
SHA256 7f6fb79885f13197cc7471c317fc7b622a519a872c859c35d1bd5ff9a6330ff2
SHA512 f0b94fb9ec9bdebc00333418ae4c930ffde11f0ae5a470ae8677bc334565b50aed09b53181cd990ded58bf54b838a131a8dae161ab593fe489b2711973abd5d6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2a64bcc1490e83985ddafe982d477a16
SHA1 e2dcbf6cdea5e808f992c734f60ffab8a32c58cb
SHA256 70745705f5c666a64593fa533398cb3d16a5c864316d2af35e95cc19fd2b476d
SHA512 47d02514d6e0920b17a8019a748f3d39214f927f7d296cd7de3337b07aa3319ce8d3c38b5633e460ace62766075ff3385bcf6a2c9241af628d6ae1733b3c4c6c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 6b384e5fc8bc0f14e27d49c9c147226b
SHA1 b40d13b98a64fd9e0ab9fba7b5342b388e8dddae
SHA256 5b9ec1c820f23e89c86b8994a36b1745d35168acb8ac8e3f2bf7e42353c236fd
SHA512 19ffbf7670d17117e7b96dce3923dd3d0be04468afec126f3499976600a14dbf78a0f296bb58d735370d8cd8783a9652713b2d2ea74308990c98fc87b1cf4e9b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 114d5b33bfeba2fd8e647fa03054989c
SHA1 cd20801fad63eedc2deba19269f6781a09c02b23
SHA256 285b1f1d5a8392150e4710e80485aded51c0c70ab3cb5bcf9f8c8a9a8a4dec09
SHA512 8caf1345c2e69247e87059036d9ca8906639b7ad7d6b86d52828e3ddb216c428997e72a72bab4258e3bc4da91e7574b3944d4199cb60f9ac5fe2259dd6f9de20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\Paths\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c1

MD5 950eca48e414acbe2c3b5d046dcb8521
SHA1 1731f264e979f18cdf08c405c7b7d32789a6fb59
SHA256 c0bbe530abfce19e06697bc4358eb426e076ccdb9113e22df4a6f32085da67a2
SHA512 27e55525ade4d099a6881011f6e2e0d5d3a9ca7181f4f014dc231d40b3b1907d0d437b0c44d336c25dd7b73209cd773b8563675ac260c43c7752e2d2d694d4d9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\00\00000000

MD5 aec7fa4c3ed7ddd74a8e2de568198e6a
SHA1 0cb01db037c80ab2e10e90efae4802cd10c27826
SHA256 c3934db7ada029376b168f67c648c845f651d275a7d5ab677256f96a001e4455
SHA512 911845efeff55f2e4682f2db0eb1d5cb1df01d6fe4e99b35043772e48976d3988286c084a9a47b4a3dbc3625c4ca8e8dd94bb64f13c2443dced0c6c838b6f147

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0692b22a6468cd6fea6b5db0afd8b08f
SHA1 dd663ab88e7a1ab261444cb1aa6fbc3243fce9ed
SHA256 ebd017aff0886021f97ae105ae1c69d97631535b712ba7d7430e0e75d6051bb0
SHA512 6aea46346588092f7ebb3c3b9d4c846d998551a80ccc40e67a5578ccb913b691428b2e6f9b69ec7b0cf737b61ed7a4e25b0cf5809b62151e8c9c80e652095a1f

C:\Users\Admin\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\svchost.exe.log

MD5 2ff39f6c7249774be85fd60a8f9a245e
SHA1 684ff36b31aedc1e587c8496c02722c6698c1c4e
SHA256 e1b91642d85d98124a6a31f710e137ab7fd90dec30e74a05ab7fcf3b7887dced
SHA512 1d7e8b92ef4afd463d62cfa7e8b9d1799db5bf2a263d3cd7840df2e0a1323d24eb595b5f8eb615c6cb15f9e3a7b4fc99f8dd6a3d34479222e966ec708998aed1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

MD5 d498f07dd2249e784e670101e7096c94
SHA1 52dba75aa175a3f643d22543ee4d715adacc1128
SHA256 b82014136d32356dde01ce55728db95ce91a3681a72aacde4de6033b51ef9267
SHA512 01fa4e2668eed98422d0f3fe04993e1fc6426a8589ba21ef331dbb1bbfacca94aa11fe7bf508330dcb2b7497f2ae8d451e19b9f7183333da7046b2aad94cb45f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old~RFe5ff72a.TMP

MD5 48c07f59189b29e8d8d23cf38a3b1f1c
SHA1 d86e99411a0f730f8915b6a703915cc087e481a9
SHA256 601a754745aaa8fe81c362308ea42b54a05cac9fa5a700c26bc087676f2ac04a
SHA512 c9690cc7e884913898be20e2bfe5a82f186c5c983287a11777a836e196df57a2c3f79cc875d8e001ebd5bc02e6edf1a0208f07e6a9b88a769bba464f5f6090e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 f71bbc00ffd85c240dca724507ffb8d8
SHA1 d262ba3caf65af677340c5959c0e7ac780bca4eb
SHA256 1c9eb936f977d5cb39c6c07255d01b606aafa000e15381b6eee77b6078d481f0
SHA512 f719ebd57c458369cc838304709146a72f5ec90c46f707ca48354fa700411c38952e5bd09be93dbcb3801e32ecc2906e299f94986db23471a22652df6aa7037e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 9a6bbcb1821a214322f72e8c62b34a8f
SHA1 9ad524aa8e3206b6e128ce7f9f9daff759c4feff
SHA256 0f2b0041b22d19cb2d82e284b70f1dcafe7297ed1b933cb17a08d9565a7417ff
SHA512 6be6e1890ea9a784a877ce06d0efa114ac22af6b85c13d4b486c5c93bfbfe054bbc6e4969a7cc16aa185baea0bcdc7fb49310278266389cab3ef051e6fb501f4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG

MD5 e3ae030109d39cbb13361e9ea30d0b28
SHA1 26bf9102fcb64a3c88fc5c44a45fdd98482d8f1a
SHA256 2a101b72619fe24760f6cda1eb8bc9184193b8ede00a80e847a8c81064b6063a
SHA512 e01abe6b5e9f2c6e4d07c870394419264527dffe62057f85606a40e29da5fee4f8f08ec069d5c248d27ed28ec359f0cd67b0d739e17b3ff912a67645a6520371

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\a6d14dc9-1e78-4f18-ae84-7a2a8952d5a0.tmp

MD5 372923d379e4c5fee0568ac8d95298ca
SHA1 c6d4938cf655d3dc5b1ed976ae281ba272c52393
SHA256 e46f860ebffbae8d85b5a2ad77144b73578f49ee631b1383d3dff6ed071c0f96
SHA512 6c125861783a71720d38e56fd8f9d8fce879e61c7ff57a3f7491bec722fae37545c942c3bb34de045c52b2254c31c64e2e939298578e0590e660f12c510b655a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\000003.log

MD5 59450906a22043559161be7db35626f3
SHA1 b38e9325d60e40a6694f6732f57880045c4c5ac6
SHA256 610fd18f1224f61c60b1a975ea5f0b37f0670030a508884ce01fc5f853982ea0
SHA512 004b118ba0c7ca545213a98cb08eca9cde01498eab8a278190e52dceaf55e3c34991a26dbf24427210663a9e9c7916c2a269ac716d44d8b091e809152f7948c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

MD5 a01e25b1e81e328d985fe92ebb873784
SHA1 6e0b76c8347fa94e6e4215c0c6054c363b506874
SHA256 5e10e106273c8483ee4601b6cd35aec3204eda24189eb849bab2e9408c421bb3
SHA512 500b90272857f89604821c1815784560e03c7631b42a29e6273b1237a070e7a6a25400934f86289961d7263be5e4a4797e1b769ac4f57100db0a771c769f3794

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 fee08abec471707cecec07ebbc210c2b
SHA1 9a7984d2bcfb12bbfa3b8692cde09ee72227ca5b
SHA256 6f6aa0c1f1fb30d01099e88372364a3d524222500ece94ede3699bf44a595f6f
SHA512 f6479b34ea4f7b3cf99943801a23c32b9045fa4f9839945078962a8e86dfe1b4f6bdf14097736756007c9612c08bc40e6ca263fccecfad5d3cadb3ea1f1ddcef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

MD5 c65a00624fcbf65264506eed4eb3f77a
SHA1 a45eda19d2d5cf00e729ae762f0fa1018e6b51c1
SHA256 4a1fef0449d3db67f0626b483ea8cc1bb5421fff7e51270488cce4675adf279d
SHA512 a645eb3298066f542e2339871e75c9e812a6005db7bca942108635225d5f70d5295f3f92ebbbe345bff58369820ac813777d478bf03c250a6cadcf6373d4f649

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 352f59410ea0c9505c1362ca8c2cc478
SHA1 7538064343729370d8ed5f2478a37aa7ac262048
SHA256 7d8895c5a911d245b914ddc95cd8406b43393a6c23920fb7ee5349d24a54743d
SHA512 283d4f84aabcdfea89240ed4c6a660b7e4c4c23e41f20275ce052e22dc2b0b5903c4f183c3e4bce305f95b30dc7fce5c5b2b743f174adc68c18663a52b6156ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

MD5 a7723ce1c4fbba4f435d309284c49aad
SHA1 af3873f578a2c4eceb870d3a3e99fd09b2bdea8e
SHA256 1de95bc8e21cc5333260e6a5e51c158de2c4b3dc245d8a2dbc4fe4eb580032f6
SHA512 9121d6dfb7ec183b80cae1ece256c2cef95ed4358b6bd28dbe8a2888932a574ac8c067f2ee7acb44eb2699fde0d20c8452dc69db706f7f40ea4eed966f17f9cf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3b8acbd1b7a2f2e5e299ca077c3a64e3
SHA1 2feb4d084410220129bc6b57d18cd43e92ca45e5
SHA256 5ae70a8484264d0843a2c4c2f883ee136c604ea609dea1d1946bf0034807a99c
SHA512 c5c58bed98a0aaf5cc1279b1e7aa8b99c8069820e643e06d38edb2970052475a312417bdb16a8586a0a89e2741126d49ef4526333df9af64f54fe9dc1669c792

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\LOG.old

MD5 494feeb0ce2b79d91070c017ed9d522d
SHA1 95f0fe57a8fc8cb4c843bd39cc561620b0113ae4
SHA256 40c5b52ceaaba1aae6332fb571e96539edc3ab4577c83459e3ca14bb3a973347
SHA512 b94bd6c8084629fbe3263b66123a09bcd0e77f567c4e469fafe621ba4df76f97dd89d10882555695b382750de39256a9ab2009ea880edef865c94c603e547adf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fa3086e879613f7875f0d95e4a1dc41e
SHA1 b941a7888e540d1867e0bcbf99c51bb3a49ca9d7
SHA256 10c21d196bb8d98bc10b17248ff1672bf2bd05a7a9d7195ed28e88a8571b7ebb
SHA512 bb1004eaae262b4585b31995f071c379a5d0e6933e8a76020b52b262c904339a6677a002de35ac8a7a1b2db50b7059abd0094dc4961acb0edbf103759104aa6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ded517faa96c2de8aaafb328a1824686
SHA1 f8aa613b72b0c86cf180caebe9e57b029f1c896b
SHA256 28d792356c149d5856cb484a0e7df8781555d30e012230d3a6fb869b184cbcb3
SHA512 a80b4d84b9e8e599401a74f208b73abf8334f19f1aada796e3ba4b839370e50adba2e4660d990bd5a3a965c3095b766b1c8ca03e95646e9b8f511a3fe43862fe

memory/3892-12391-0x00000000014C0000-0x00000000014CC000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 33d63e2fb1a382ef8cb311374a476e11
SHA1 37cce0dd819aa44e3956f8e885053c9ddae60814
SHA256 ae57573e3cab53dca0d4532efda57dc65f3157f4bbeee26a44b0f11e2c256688
SHA512 f3e82fe9dafad75b3b3ee8e299ea752a950d01a3f584fa9f5545b9697980bd328e1ccf93a939a59d4a27c22596c6c7b8e7b1509e7e83f823c87772246990f35a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9a0e2a0ca1db6b58280b06ca1582dec2
SHA1 2949a9b47fa67b2d0544c7493f142c34fcd4c071
SHA256 1d03a9f62278e7bf927f81349c49eab251658e2bd3747014b9bf2dc33b63c06f
SHA512 d6817535a7dabf938a702f800a532996557d81b6cd7985cc21f2f4ca373ea52d64c5c79dcc4a088e116aac857e1f66a94c02d20a5e798dd9522e3edb97147405

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 044552230d0be03c68f23eddd6e44afc
SHA1 44bdbbe14de00f0fc3e209167c8635fb5540ab46
SHA256 9860ef935dd3a4186daa08f83cb91e4164aa75c369a65ac37b8c68341f8f2617
SHA512 8e4c82bb3f48fe2f517161019c898d35f18f78a51c4bb40a65f4927d1c5897eed23f1c7ec9753dd48366324ed20722d6f92b0d7eb765dbbfab91861106f7872d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8318bcff92ad160afc0341f02d3356fd
SHA1 b7507b3f0e98fa82fd17d10864cfe472d54f5ee6
SHA256 558f4400177dd75f1d4888814aade371345d2a2df14b7d7b9f823de3b3d4ab2b
SHA512 e1ba2f466d20934691bf7a0ef12aa4b87dfb77e248fe97283083a3fe9de3784db74ef2aa2866589aef74e9f8e0a11da577168cb4315d9f0efa0b8a7896943168

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d848facdbb3467b568c94403a11dce68
SHA1 079460b619b9348a088665265a5394ae9986f680
SHA256 706b5f934aeb628907edf83bcc723bf1858fff470e764881bb286dd3591911de
SHA512 c9f3baa1bc8e4ad671f132b54b43969a77af8ea92a81a8108309474c7701c777fd04cda93c82d59f4196fad00352439f04d1cac5471bfd7c0b5a2437b3868b54

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 49c28d77f9567bcaede890edf327e0cb
SHA1 1a1cf3c4302023923b4aa0c5f74492288405c8bf
SHA256 63583c002eff6baeeacd191546035dea958661ab0c07ecd4ba9d1a64b9a1102e
SHA512 1d65a441bbbf85e1f8539ccff9c9037ec76897a63f4588499ca3beb67972c10fbe7db0d3d1ee8a83e247c17dad9fa8768904beb1ef112492556a71b8bb0839a2

memory/3892-12467-0x0000000007760000-0x0000000007810000-memory.dmp

memory/3892-12468-0x00000000088F0000-0x0000000008E1C000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cbb9afa7b00d96704304bf012f504659
SHA1 8c28929dd10f64994b8fad0fed349f96b22c46a6
SHA256 99e28edbeb727b35e1b6eb2a6aac7c4b2045fad1c60fc7b57e2c3bd9008bdf3b
SHA512 aa745463e55919af139c08df30e9eff8a97f7bf23045414ec261157334810b2806b9e31c2931d68df0b67b297370d9b48caa67b7c3e49e15c4c880ec8ca4a795

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 af3929df767af072fcd6acab8f1e67e1
SHA1 24238cf9005f02a44b2bf577d39d6f7b2c36a24d
SHA256 6ae90fa91876e04c50372d8910b6f3fd31903e7785f14308445c84de61e9ea28
SHA512 fbf291341e101048e939c43991dad7021dfd67913fdc91e6f628722012096538096adcfd0a1d56e0cf572e920597f005d6bf926ac48a13f7c2d536137797f5fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 28ba107852547a1b9009a63e96abece6
SHA1 1e27e3a697dc3c5283562128de1fda1ee7de5ab5
SHA256 c946a93f06cf5c0cfb6faff7d915ca670057ebc6bd38362be196d23757c97acf
SHA512 7bcf7b070f1206f77dcfe917c94329d117d1ed7ef3420a0b1f9e8d177bc52ef30fb5bd31cadd648aebb5079b7c794ab164b62f44c7e8be353bb110823acd5799

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 8a4ebdd41d5e85dc3375895662b6ec89
SHA1 0e0fff62f07d39d4b48bcdb9ea8d6bd239590a8d
SHA256 fc96b70a72b6bd9c13358012cd486cb7a9426ce50d177de9d1d0c41a0c288b62
SHA512 70e7e9647e13426915e60070b3246f9c57e517ff924ac7337f5b4a090031c79e557250e4b62786d1707e4e211126a6a8d647ea60d1cdf7222d5da8950a5131e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2fa2ed7940cc79103b08ecdbec4b80ea
SHA1 aa6204b3fc1754f04d63fa8a5ed398b1c36d11f3
SHA256 12336d4537adc8422670c73a9446667dae7c57609168d6bdce97626449b2744d
SHA512 f25ada00e8d7a4ab13788276e91c91c46b64259a4225392b3bdf98b546e6ed17f82d44365e6c52ab9611c4c77f1642cefc5c24de5bc5b1fe59db43492f6557ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1ede9fa81116900679b6183c6c9a5bda
SHA1 e9b60795807749765d15e57dfce69760c41722bd
SHA256 18df3e61f4a6cc236d3c8fc13f091e47635983141cf62a325c17ff4b360bce3d
SHA512 c86a45c2ee931940ea6bf50ad96663f13e81fcd35819a56269fc218f032b85d776bf311c4dcac90dad6dccff0fd3834db38760e91bbf6598c8aefaca42ced269

C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\client\assets\objects\d3\d31624d605dc721d8646598e04556b1ce9cf0c2f

MD5 35b5ceb2584ecb065a54b2a5b100a2eb
SHA1 d31624d605dc721d8646598e04556b1ce9cf0c2f
SHA256 97e9a8d5e87256fcfd9dcffe7b9ca6b0bc188448ef998518a5f83896922f841b
SHA512 3186ecdcf352a990baf61bcafaabe80a16ed8a1a67f105ddcced2c1536d4260fca6e7b78865dc90b676407936d07022484a14a8d8c9be459dd869a24367c6316

C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\client\assets\objects\fd\fd8db6a4ceb400e6abafb2a6b3ac53d871910b42

MD5 4345cdac02af39769f88af6a63287d8c
SHA1 fd8db6a4ceb400e6abafb2a6b3ac53d871910b42
SHA256 b3f12ca42844c19aac830c1be48643d8318ac09aa2a9b6c532e066458ae56550
SHA512 89f8474d6d5d4d4396137271c78766bf3939da2f811b762d340d9468fa0fcaadefb521877193827b62d3773378f1a89c7cadf3aec57b730b5913721c8f718b9c

C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\client\saves\Новый мир\DIM1\data\raids_end.dat

MD5 4907df94144e153d94ca153d28fa7c47
SHA1 888aed9e5dd1797fe1a52bf1d5e3a19dc7a8108a
SHA256 b3a3373921e7956edbf23df5ace89ec97f8fa518f92a4c6741ae24b9160de805
SHA512 5bd683632188431786dd0825a056408f7ffd479275bf7563b226f1eb54acb39ee2865481bdeb79a30c1fc61235ce21d42147107a6c1833652d70a8eb22169c48

C:\Users\Admin\Desktop\New folder\Nurik 1.16.5 crack\java\conf\security\policy\limited\default_US_export.policy

MD5 1a08ffdf0bc871296c8d698fb22f542a
SHA1 f3f974d3f6245c50804dcc47173aa29d4d7f0e2c
SHA256 758b930a526fc670ab7537f8c26321527050a31f5f42149a2dda623c56a0a1a9
SHA512 4cfca5b10cd7addcff887c8f3621d2fbec1b5632436326377b0ce5af1ae3e8b68ac5a743ca6082fc79991b8eec703a6e1dfd5b896153407ad72327753222fdb3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b7477e5ddf6e41c9116582d6caddc61d
SHA1 2dbd403333f56fe2532d9c4ca9c810be478573b1
SHA256 420fc07e07a0870653b875de214850b04e325a238bfc0c78910804e8b087c8a4
SHA512 eabd1526c98f73ef87daa9006d93d181bb08dcd5498bfcf582331cfba78be56c241bdda7141d7cea14904439f6d5f7987487e07dc15dd09ed6752dd11ab8c134

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 23938a2ae3aeb59f0ced69c0587a7242
SHA1 5a6e86a60d0bba3efcc1b35bfbd927d69e31e17d
SHA256 78f6df5d48885538e0390abac44b59d41f06f0b6bff326ebce42d50b5e17dd0e
SHA512 07f4fe6a9c2fdd766321fa73777935d3f0e3c01c0807d17ed332238dbe5031cd89985ad5860c6df79bcf2683f3c55bfadf790be4182391b8e5da0c8f43e4e5e0

memory/6892-18996-0x0000000000710000-0x00000000007D0000-memory.dmp

C:\Users\Admin\AppData\Roaming\XClient.exe

MD5 217390dd84b07808bdb0691041cebbf5
SHA1 f3803e47754b33423c20f7a9c64fb0ba83c3c0b9
SHA256 4a68801bf6c9e667c1fa8a43f2e799d743eab4f523c60abfd035bbc36b72a198
SHA512 70068abbe7c6c9c946ee8a00f76d6a1d4566367d22e1c17456ea510df62eb0fcd516aa0881111d0ec5fa44a850c924726d3ffcc814435d9e802810154f7f4caa

C:\Users\Admin\AppData\Roaming\Client.exe

MD5 aee4ec8307505ad42e1504df03b7fd4d
SHA1 b8220b2f77d3c6ac67732892aae7708487ae363d
SHA256 c7d03e173b9127fb6aa2adbfb1f883c404b281a7567f43c5902e5563c063d542
SHA512 49a7917c28e01191a26d574f127355b142f060e3a622829f444f06ca867b9d4d983e14eeba55fc7d0742e0bc7435c4f297fd5f827a7d088d04b75b3bdc22bcdb

memory/7396-19022-0x0000000000D20000-0x0000000000DB2000-memory.dmp

memory/7180-19021-0x0000000000890000-0x00000000008A6000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 4853c7b537869afcb5c7cf62bc930e10
SHA1 26e3b413c28188c8f99ab5360c97c53d129195c4
SHA256 6ec439fa649335fac484f2841cfc92672b2ecd4da72e107ea4dda7a961a16383
SHA512 c0eb5a0b59365aab0a18c069ae2883617f9d5cfddd7f031f27cc1db28e8e60174c68097a6ce1897abce98ae8d06f983597b14129a74576ff6a3d791dc319c84a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0e4f46a591a7f18d78fc907b2fa17fba
SHA1 83ba685bfabb7a8f8415fea502079e23a679e322
SHA256 0cf41ecd70494d19f3ecddf7bc878e0eb0bac91b3b985cafb361c940a2c50ccd
SHA512 5f8c43eef0ab3a7bca5fe7b9c19c5e1912bfdb074380a86a50ad91be89b7fc0de47906f4775243e82f49b93e23cac5199f8c7f849e0d1a48c0dcb0ff7623a914

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c7b66e76f926b23e8918408ba7a96089
SHA1 010ed796c50cd0450bdf28178d1dfe12599c2c52
SHA256 855da0288f481523f989ac3ead0c159b17a0c9ff3680a88bd97120962a324acb
SHA512 2de7d99127394418aba5757705b6f515d6e2d740f3714cbd02eb1eed2068a62beb81415ee36506f842eadae6763ada0e236d4cc2ffb51f7848c932a3a00b7e2c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 534b368fe8180ea3cf7d5aee2bf6481d
SHA1 ddcc53d4807f215ea99ec759ad7c6823ba4611c0
SHA256 b06a03239d74405effb7ce8206ec473c4f9dccacae0d2961f820b948445857ba
SHA512 cd24a9cbbb606d0eef4d27e7960857e81eb06844dedfb83e9d6a3e9c9fb08390d1b669a5edcc42014b34cb9eb0b8568a4f0b1334ab069e6666877ea40410600a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 de09c566d3ecfc81d8d4be7514bf8c4c
SHA1 7b6d00122a746c28aa977de2fe2990470cc85484
SHA256 a633413938a7c2f3e568d8e84e89d017127d4215a5f8d42bb6a217dc0a743744
SHA512 3dfa8e0b610e844c6eeb67a3ec58937ca08d2c9ac234c4388b4813fff2c881efc67bdc22411da8fd6585b7f890d244af405e1e1fa4bc0913942d93694b5d537b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 60a36008fa7969e6f7bb2e6e40524f42
SHA1 9b7b0c221b6ae82c8a717c456ab3e3f94b52aa35
SHA256 3422523b979bcd7ce2495166b79cdf9f6312c28e51ece02683a1358a84832165
SHA512 bcab319c34119ce85f48968c11e4697075c68584bd5b1d96b18cb949f01474a2db54ec1ae8a0b5ae8e3c93ec93be140f27de73c9a6c71baab38cb3d2017a41d9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e205b4b3fb1ba0aa57e07531bee9121d
SHA1 d1107478bc64ec5f62ba2c75103dfed8bd9ec874
SHA256 ccfc2608d42a2b5891ea302135e2a6c0d1dcec7502384cac02d092ec0b056983
SHA512 8f3905d4732c94713e5e2f8fdee1dbf018e11f70845741aa115346d07dc29e8351e920e8a21587548e2ebb78f26f0f84a1ef353bd2216bde5cab20a4612198b6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 0c55772fdfc2dfb6933e46b8edc20a22
SHA1 b6095c3f0cdcc80cdf30e5b1793ad664f09366a4
SHA256 49da5099a1cba2d721db3024620b0a4e9d327cb3fc5158e34452394388a9faa5
SHA512 93913595ed35e559c88063447d8c07a277ef2164f913d947168db53a6a3683b98fdaf8c45112a473930aa3371e6d257553c5148debe1a354359f5ed4e66163d5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 643e66198a3eaca201d72083d78c4943
SHA1 1e300caaa72b0765c53bea570d97cb061b42033f
SHA256 bfc1e77f77e2efa71a90b5a5ac3fca8bcf1a8288a6d6453cdda2068d7446b479
SHA512 d7d0d29accfdc368f537211502598352e14ec914463b6f896caabc917dac3a21636f20684c64aa459ed6cdfd95e78ed30b4592aa2bea2761720d16565b3b2130

C:\Users\Admin\AppData\Local\D3DSCache\e8010882af4f153f\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4c7c5a602ef02487b85827beb7a5b54c
SHA1 313010b746db91500b751b88092e7e68482cb109
SHA256 7e64b4ff0a0a34c722e039741f07a3e30b3b4bf44cf5872fab2c5be28ac4aa55
SHA512 c8a15126bfbda726c3d52971b52e0f7e85ac3d307c9589a1721f7990e7d24271d10c4b296a997408d4bb0e9673252f3964467b1d9579a2cf08600fc2a11e27c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 12b83e989851738f4289adcc37d5023b
SHA1 dae4ffd3ea26a44812a491b93fa1cc360c63ff12
SHA256 0671e614cf8e13a6f5c0785637d353773dbbf4c3e127fb463ce099c79c8f5950
SHA512 c4f3930765c45d90abc5c2a5f5be42e6d4cb98f533a8c72f8fd9c4ce73156850f1482f103584dbda8aa911568dcac35f8322cd27083ac3ad78132e6af8857f46

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 c904aa33bca013d7b7d36b1c3d8d5af4
SHA1 4ec2bb2e72a508c16611a34066ea1c9123eba28b
SHA256 c4c0f1f737dc9537accbcd92d7a3ef09b439f2613f30ae46a6bf2a5f4d6860cb
SHA512 e28d0bc78959ea4039ab5b09c3f28bcfc9debaaff4c8ea4161f64b55ac1c073a23692450c3ef4766fd94cf9d49b28a7b857ed84d10198b4d4d46400463d0c37e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4fd730698fb3eab275ef512ced8ae52a
SHA1 61375f555626bde473eeb761a086501d45e5d712
SHA256 ffcf7cc7a0afdbec9fa318cd89aab366b9a488537d2737a98762896b69f8e883
SHA512 d1f25a2d2c741a78f2af4ff927b832bb65b8602a5447f32cabcad7e47c5f7f91852826bdc5f4586db6f354f4bd36404de15e6062b97a7406143d60dfa5138268

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5bfacca0c67e2f3248e0fe78829d3ffa
SHA1 e5058e89b08644aff5f6b157e73dea6b92951d97
SHA256 eb0b676226fde2206bb596fdd6d98dfee9d9b8452177f8af9af5bddee6a72f12
SHA512 4f2cdcd737fbc90badff03ef6562c29ad275784701c8b96fb97719eecd335be284ea6354902d4721b3c2f52e507745205730c4fddacbe424393765e45594b4ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000027

MD5 714b8fd6013b7e8838c8572dfa4f03d9
SHA1 7b60c33822fa266716e5c28ab33675dce586fdfe
SHA256 40fe08d2686367ab6a92c7af31cde6c6c96e7ef0e4de331cc69a5bf472619a5b
SHA512 ff5cb75a2ca8052f2bf1f3d7450ec59d47a082960e79205d67d7d8cc2040e7ea212729c824d6dca58d5da6743d078d1b6d23f7b68bba9fcc31265bf5818c6935

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 430d2e83b8670f5fdf49e6f9efc25720
SHA1 79fa5d889fb499a9ae59a371d5dd03930cd78af4
SHA256 c08a08208d6a3e3886555932fdd2c3501c877a9609db90e6b1310127f96b35f7
SHA512 d8770d41d98c277d0d277c880d98b9cba2d4dae3a56059d09c7b7e112cc418ae62d4e8215de01d1f2962fd7997af39e37456b6ba6e3303884c87cfc4be0d8fc4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000190

MD5 77e89b1c954303a8aa65ae10e18c1b51
SHA1 e2b15a0d930dcc11f0b38c95b1e68d1ca8334d73
SHA256 069a7cc0309c5d6fc99259d5d5a8e41926996bbae11dc8631a7303a0c2d8c953
SHA512 5780d3532af970f3942eecf731a43f04b0d2bdb9c0f1a262dbd1c3980bcc82fe6d2126236ad33c48ea5434d376de2214d84a9a2ccec46a0671886fe0aa5e5597

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00018e

MD5 2923c306256864061a11e426841fc44a
SHA1 d9bb657845d502acd69a15a66f9e667ce9b68351
SHA256 5bc3f12e012e1a39ac69afba923768b758089461ccea0b8391f682d91c0ed2fa
SHA512 f2614f699ac296ee1f81e32955c97d2c13177714dbd424e7f5f7de0d8869dd799d13c64929386ac9c942325456d26c4876a09341d17d7c9af4f80695d259cfea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 265eff6c426ab81a8d556799ae29cc60
SHA1 9db9305eac3c14a48c7533958133ffb5a80bc19b
SHA256 6f27ef4536a2a8cca8fed2281c516c8fe693ae5da805ff6fa349e565bf248259
SHA512 b1a44d74263f356ebf7964a8087500de94cd9b430570a9c1da62eaa64ec810a7d73eb69face1eb27703c6eb4d4261540ca16d2e88fd723bbeebdd63c1989c468

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9ceb26c8d468861de60aeb81dfb18939
SHA1 694e9272024f5caf6d6dea474bbf82343e92aac4
SHA256 4e34b34245bb29badd96c445c03b3f01007269f96d8896e7df1d8b63734c0648
SHA512 352d72c67c005103a39636f08cf36e58f04dcb1e7a9dc6c55bdc8aed0ae2b460a6f66fbbacf590f098db62290429975ecbb13eb857664c2552ea7ae15c9ba1d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0724edf119cf3e33c4fd68826f0ec140
SHA1 fc6b0c452513df9395ab1162e274896de1e3ad79
SHA256 21d0a748de9b6fb75ef492904a09cd98da1896ec5591ee7b7a0a07f170f55ed3
SHA512 9f9a8cb31c3ae954870807cf0875f346891c2a4f0dd5eae6ce772b249754d96e207a550cd0ffab4ce369f4b69aa0878e990e436bfa0dc1cd31f4bcafe24c2073

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\1cab0936-fe47-4751-93ee-28088814136f\index-dir\the-real-index

MD5 a71398b5e54441d5e40110bf580931ca
SHA1 b7014af5ff865a3aedc8ba9383558fc12e10b6ab
SHA256 d842e33b239a4d52b719200e3e68aab8721ebada8f9f0359d783ae70d08607fe
SHA512 76d23f5a293837a31e91813928de6262dac6fe089bc3947b6bda8081125212126c504514bcf06b22bb6712a5b4fb453584fd851c2bb53d8171c2bc13c1a2e748

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 d3c6cfb23c2ccd13b1978e486451895f
SHA1 10ada72ecfc338be3b9082c81ce46bdc83e96cab
SHA256 33938a699017523c6c7a4da6b788b0472b7a72ea78a773f7cb8ca6cd563f4c1e
SHA512 7bf980054184d6b1e7ab37d3bca0886fee5120e3a46fb76b4c35c799d669d8d0c5452e142910a67a84567ab38e3ac7fa14fd4d234c94f14ef56a456970de86f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 1559f93323cba3b2ff75bdef2ae11d0b
SHA1 80387d460bc00c47baf89606a7735f678025b002
SHA256 4d69e131f91d5787ad91e5645b681f1632f05c3b45f532def9eac5b756bb9717
SHA512 e13fa4a9606430b8e116ceb26a5eb2a77afda444e587a0f588445fb5de494116d4d0fa4b46ce9f67bd54c42212979d0eabed997382fe747097116f049292a631

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 aed37a5d0f00390becef3332dec51ca6
SHA1 d11764d856756f03b63eaf3fca13e7f9a783c6e8
SHA256 9459029a0a047ac04f34ac2ff83668770a65eacdd3b91320192da39277c005bf
SHA512 e5dc0c68abe0547b584017949aeadbec612b8cd40332b2d9736e92370fea221779e7222ffd0cca0a629ace048a2c3c9da33dcb5c30a486b95f3daa0de7dd5fe9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000199

MD5 635efe262aec3acfb8be08b7baf97a3d
SHA1 232b8fe0965aea5c65605b78c3ba286cefb2f43f
SHA256 8a4492d1d9ca694d384d89fa61cf1df2b04583c64762783313029ae405cbfa06
SHA512 d4b21b43b67697f1c391147691d8229d429082c389411167386f5c94e3a798f26c2457adf6d06caec446106e0f0aa16d895bfc4e8a1ff9e9c21a51173a923e3d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000198

MD5 f7189700993d4198ee96bd6af5569539
SHA1 1ad2e11bb23ac04c9eebba69fe755fb27fcda164
SHA256 2447d53bd765b1f2c752ffda92b6f9a1dcabda1e4edc4d7496797f6cefdebf23
SHA512 3b5522068842502f5f6dcb6678248746eabdcdeb25e21d21fb0c9e446b75eb97077f15be7ca8e5b04abd4094bc7cc8ac8452c74a946d369614ee4e77a91753b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000197

MD5 76c36bd1ed44a95060d82ad323bf12e0
SHA1 3d85f59ab9796a32a3f313960b1668af2d9530de
SHA256 5d0e5d5fdb4d16cf9341f981b6e4a030f35d4766ad945c27381f8d3afb624542
SHA512 9f0555fb531734b786364701e17cb7f57ce94a688d4616fb85bf32cad45a253a9c479a301e05a4f8630cfea141dd52726a31b8e90198c19c16f33fb150a04a40

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000196

MD5 5d0e354e98734f75eee79829eb7b9039
SHA1 86ffc126d8b7473568a4bb04d49021959a892b3a
SHA256 1cf8ae1c13406a2b4fc81dae6e30f6ea6a8a72566222d2ffe9e85b7e3676b97e
SHA512 4475f576a2cdaac1ebdec9e0a94f3098e2bc84b9a2a1da004c67e73597dd61acfbb88c94d0d39a655732c77565b7cc06880c78a97307cb3aac5abf16dd14ec79

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00019b

MD5 0ce62e9d53ff7bbb7f9f3ec62519209b
SHA1 d50a698c63fb1957a07d805bd6e826b262773bf0
SHA256 d7d211c8ccfc31dd47ef275249fe7e4bd5fcda67a0c8d35781a8b2cd3d798521
SHA512 bcf0b9f827b6f1d9124cc16bd231d7bba6aa40929549dca3d32247134f8c27fcb5d184ca21eecd9a2a52c0a68333088d706fa37f215eb412adad0deac20ece0e

memory/3892-20144-0x0000000007A40000-0x0000000007ACE000-memory.dmp

memory/3892-20152-0x00000000072E0000-0x000000000731A000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d7a6414a2a883d6cd723528da6610949
SHA1 fe9e576dc670704496dbc39a74e690fce373a0c9
SHA256 2432db20699ba8fb0a09b1f1453a8c305ad9c906485253fc92d379eef98581dc
SHA512 1f7d377aa4d0949f438a3fd7d9247a08514cdd51d13123a4d7b1bae2e875a446fad66d0406dd4f9e85388036bb33b08b8c9c4c7d4f0d944a0cfc8743f7bc72fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 7c4ac3749cefe4867eb50f8e00543c87
SHA1 a5afd0389feca785690128ff4c9280a2ac3124fb
SHA256 c00c1b885cfe69b56bf7e1c034049b8545255d9ca6e0fbba2bf5f6a18b26f483
SHA512 3eca2c5dc7a5c2ef90cd8e1c1da504b9612deee7733e507c31267b9a3f0f0928eccf1f022bb5279fa502c68963b2082c1cbe7830fc22b73b3900d891e4366bb7

C:\Users\Admin\AppData\Local\Temp\tmpD058.tmp

MD5 c38b245b97fea00a08141af793a76f87
SHA1 c9c5c786f8e8d3c5670ef64f4f3ae35c556bb640
SHA256 b6647006cf5e920db52c66a2028f2492df03c4deceda32fb021ebe4126bfe261
SHA512 6d4a19aff6c2999f2369ae8831a8208aeefcb6fe7620a86bd8343690a155c055d0327ec4b42af3929fd6997ad5ce28d0e7f9a980567b244f3e373409cf2e5d38

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c646930d6808a79eff7fd36d155f18b6
SHA1 4f776065b7f47b7400220eaa8b1b5914dcb631e2
SHA256 6f2ad506b5fb5ffa86c06122fbf9159d2ad74bf97439ab14325fea728979c6f2
SHA512 80af94857c69b5a0f58f7747d36a4abcadd8143d6f6d63990c626f23e5fc376277131182c78aa18709ce2bf3c968a2601b395a6d9e9597c90c837ab47d3133a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b9

MD5 7820201f0db0c706a0ea5bb7ce018ef2
SHA1 6d116650afbb3b25bfd6226c7d5ee00dd1fe4515
SHA256 04f262a5cce0399379de17e5635f1e1acaf4371afe981edaaf792625a682c44a
SHA512 bfecb88d8852c413525e1e1bdb3eb69c97a10e4ff67ae3ca5eb97fff5a2ee369a1b80a0d314440a375d0f9e950e0e970a6de6afed09062d8523ca28ac878946f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001c8

MD5 82f9699668804cbeb6ea7060a645ece3
SHA1 bb994c7a50f1fff3f1bc6d693cd5d631dd00567f
SHA256 67ae1ed6e78991a1488107359f4257c474dc6daab3b61a4e11a0b53ec1938932
SHA512 709f3cd099ad931b71c4b1143090d9c5896348e2856ac55698da24e7e2c0eda9be88bb62d189addfe56199c692a9f42e4e7a5cf74fd5e378884abe78edf1be5a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6f63046ae12b5339ec95a2b6361e7aa5
SHA1 d122451781c894bc93dfddf83224ee57fcb3e9b0
SHA256 61643bef96507017ef2719d0726eb95334962128f8a5f974cd7472ca3c40de6d
SHA512 d03983925ebe79a31d04b6680bafad95c1e88ffe1cd059a06756de33d09470bd3ee73b30278bbeb829416e073200b916620b4381af651006d0894611e5824efc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 56d9dd2d10525ab732b5145b45665659
SHA1 7971cd9038217372e08d3f9e1ca3b8341f34e1c8
SHA256 227457fb7b26a286affe1f280f07adb28ad7e698fce168d360f2ab1fb62ce8d9
SHA512 74fd4b42831847b8389bf5c101401fe696774f5bf8470ad63e5976453358fa3419c02779e86cb25706d925b38d13f160dfc0c8dc6a71f834aaa6733bc36a4b4b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5766f4ba460a57550053232eac1296a5
SHA1 2d18fcc00188955d30656474b76d823044911be1
SHA256 c2eaeda7821e15f8b0ca97bffc2e60c08bc04dad8074baab18b303187543c7b2
SHA512 a199139f29e413e07078e14031fb4cbce907dbf3df200e60ce6066bb59db9d540804382e51a205981d9f8e234ca709ab6b2024bd2758d95ee034b9a0acd80a49

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001c0

MD5 bb30ea3b46964f49ba85f475efd1fb6f
SHA1 1bb4aae7781af8b933e1dd4dee56879a3ef92d38
SHA256 7a5bfdc2463dfde6b169ca4555ce9f5a0fb21c15c3ac807967590df27dd800e6
SHA512 bc52e8de4712d416aebf1d403d6ee8dcb6386a93dfc6727613af487f73de69db90913a9e9781660d8dec121d720ceec9c84b260c76f0f6f565ae80967eee7474

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ad

MD5 8a9b98ee03bf7cdf268205ef93433b48
SHA1 221855dbf1847d4ae4bb4d82486ad5b4103157f9
SHA256 1ba6d25ab39d9ce4b00abe4ab57f9d2429b52da7f89489728051c30ada9e8865
SHA512 76c88a767a402bfa6d69fc1b56e60f81855d5fd41ba0951497a2affe2fb66f1dea56273a911db5f2adab4f56b85b610915020f0a04456013abbaee178fb69a84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001aa

MD5 67e30bbc30fa4e58ef6c33781b4e835c
SHA1 18125beb2b3f1a747f39ed999ff0edd5a52980ee
SHA256 1572e2beb45d2de9d63a7e7fe03c307d175b2b232bad2e763623dceb747729ba
SHA512 271d4a65d25b0a5d2ff2fe8f3925fc165d9b4345893abfd919061d78ffc5ffe8890ded35e41274ad8b860f06264b027cfea6030ec9411a4e03bc6d7cb4d4d228

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001a9

MD5 e7789186ec22ea8caf2d9978b893baea
SHA1 ed0f94668dd8e43e8bc4f3c2e50654ec3029255b
SHA256 4ff5155985f6257327889a66f2974aba80fa396dd9d6245bf5cc92fe48343eaa
SHA512 d1c798badfa37be51ad621d7b2b34bffc041dbbeb38631f00765310689fca14e1a37831b209ac7332d537d4ce8893ec02ea2990de255400d843f4402564ef93d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b0

MD5 09578518d1a1feea9b2a62fe827b676b
SHA1 8c05352f1cd5e490f4a202b59cd5fc18e3b4fc06
SHA256 16f6299d5017cb6c6bed7ed3965b2e08b7f16312ae938a68a8dfbec0d1f46644
SHA512 5cd55a0d424c224f808e423c2e387e3050dc2b0e1960591a726704722552c856bf98ac4d6606d66afaaf5f051a0a69eb5d53581d8decfd365529c5fda482ec4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ac

MD5 7651b1187bb58ac4c7be625337b35e5b
SHA1 307d969ef4137a66fe2793737dc1c546587c7f43
SHA256 0632850d01a46bc2f8c223155a4bf6c398b33596bb711e098440623f118c3968
SHA512 a81d2f768af155bdc642941404e7ddf95a2cea33c9374acb5fe32f6f5266e337fbef32f904551f61fcc9f9ab5a1c6a5ad130ab85b38bc2258e2f82c0ca1e9c7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ae

MD5 c9920efa5dc3a42e2aa7db7622624b9f
SHA1 0ca19d0a95b5d157911ba417faf19c09b19dc5d5
SHA256 c41f2c0b121b029cd3712d839fd2f47823e04d00036e9ce7e3c537587a374525
SHA512 ecfdb5e4bf99eda167c8ca99288eeb84214fa81726f3d7b6c298dc0ebee5b2f48ca738eb432527e658d54ead80b1f5d26f25195e19a1639588397b6c1b8e448c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b2

MD5 06f6cadeb72f21fea2b6baafa80a7d3f
SHA1 6e702f40092ff9bb667015a5afa8d202c64fa107
SHA256 3930cb4778d56b24816847402cae4926ee8cd9a4a413d7113960f10f9731266c
SHA512 b68d09fcd7fbbac65983a0709fb570973837552c3e2579a2c1fb3ab3f2bcf4d58a60912a13a686806ddbd0dcea989905c547c3771f0efd239b0143f95e3df489

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ab

MD5 5c9dbc6f8d41923025aff2c66094f065
SHA1 d81d413af1a2dd686c2043cdb17540c7e12c0e23
SHA256 631f2b25668e3bad3c60404965ea31e387b6950d1617753dda7ad9352fb9736b
SHA512 de08e31e07c760205efdd336773e3dccf8cad321f987f2c7fab46467b4e9e903e842c9ac90bf5be151a88046b1db57a0b3579fa6bfee76768ec959a608708e96

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b1

MD5 0093a7fea08ee769dc3e0c1d4f7ca64e
SHA1 d849c7ce01bb9af664e050d365c49ffe4a299fb4
SHA256 3c56299bd65c2a9072347ccdb1025fb597baf4ecbc288c83ca6e3c34c9265cb7
SHA512 05ee9f05965f2a94c0760ff62d4b1273f3675efb479f92cc134440303ca97eb5d580a1c660c154743bfc8ca94357a24bee17d9186ed060fe6e0b4e774a0fb8f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b5

MD5 4b3732d4b73640116635de4fabc8618e
SHA1 634fc79ea026dd298e238087b541eab13637a300
SHA256 9d9045cd4a25e47addcab41f00a7c2fa4b2662640623fdcc3e79a325a902ba46
SHA512 0ccee3a51d6ca81c2ecc75517b85c75a420b370069d00f0d01244c57050339d07186eb001f05b3f9d4ac8941dda2855baafc34341d7978a7ae7016d35f864feb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b4

MD5 651f386a2030f5e67b376a2fc7ec54f7
SHA1 f042132852927370e7b7c74bb7857dc16d442b26
SHA256 d8f21c7e0fde393f609560e1eb9620bd02755371c064a885cb29be5e5347e49c
SHA512 0029871032914ca3ae0446b435ba2c11f9709e3bd610854ef3718cddfd2b8cf28fba5b96dbb7144a3a4afd989cda41d08421a4e608d5ff5e0d5c04b6f8728228

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b3

MD5 402d3acae0583eebde7e952f95e18c48
SHA1 2b92d3597d552fb01825c43f681244b213cd5a31
SHA256 39767192f93987172efafee4af4e6e6b8e1628c9cda4adb0951c5bd9bb57889e
SHA512 b44395e4be1f4505a46eaace19f77bf49dfc0ac282db299fe0462d3d85b87acbe5ce3982b65bfcd0a40dd164c01b3072fd31738a3f592e17299b7e200bf01599

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b7

MD5 b7a2ad9645afa7b6047557956d9540e2
SHA1 afe9d2f2c53149890784506e97057536dc39bd8f
SHA256 127539d026f851bef3cb66520c714050802898d52a93504114b74da81e197454
SHA512 612416421dffab66c38e80bb3b26884384e5029f906f1d7ef8b3f9a38948b52dc3c0e31dcd9a704f76416c8b8119addc1783d0bb229b229dcf539f0361c05a52

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b8

MD5 b908c50ba8e39debfabd831bd256f3c3
SHA1 906794b13d971d56dcc746b26930746132ec16a0
SHA256 68e2b5123b4bed8459d4fed9f3149242603c78b9ee893cd55a65eef155d737f0
SHA512 64c2fe9e1f5db1f26cc423af0c01f186db7691c7572d767ce13cd7d2dd81a20cb01d11ac0dacd5033964b50b50932d43ea9de870dcf018059ff00933c77e8b28

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ba

MD5 1b7ac631e480d5308443e58ad1392c3d
SHA1 95f148383063ad9a5dff765373a78ce219d94cd7
SHA256 7fb66071ac6c7cfff583072c47bc255706222c2a4672c75400893f4993c31738
SHA512 15134314dfd36247db86f9b3d4dcb637e162f8fd87c0ce73492ffdb73a87492fc80330655617f165dd969812ed2ebcc42503f632d757bb89ba9116137882119d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e32e28fbe9326b04e8adb55531e0b15a
SHA1 be0b5902b167bd606edc3d9ae51a3207279c173a
SHA256 5a0ec5f079a9258bc3b30f02afd81668088697cf429bbfea852fd63315963d9d
SHA512 65d3dcc2266413712543f1579080d7904e07a0c0ad1b89ce5c14378cf815491f6e7b957ab52625297c9ca3b7bc893b2fcdcb4e72a8cd07e4853675f3dc29aa14

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001cb

MD5 9c6b5ce6b3452e98573e6409c34dd73c
SHA1 de607fadef62e36945a409a838eb8fc36d819b42
SHA256 cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
SHA512 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7

C:\Users\Admin\Downloads\Unconfirmed 304030.crdownload

MD5 2c6b0c4277625ef13a7f9e177b02f7ba
SHA1 75faeead84e6b298989f578da791990154135dc8
SHA256 69a0c20c665b477a955b83bb6fb4f717dc04c27cdcf8a85e10718e4baf05c388
SHA512 b4d0acd39c5b2fe6f997d79af436cecd32947665dc785f787c08d0266c8d9923e51440e09a2eb51071349c5ad0f92e0f7a9234995eef18f930df80a26df17222

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 103ca892a88203bcf44f464a4ee9cc7f
SHA1 64bf4cf524102f0c6e5dba1adbcef5450dc546c2
SHA256 94b65dc6bff99fab5fb3b68cea21089e327347cdcf7d87ac8f1675d5edbb9e47
SHA512 395adc435190005f933c49c0b36a99de0ebf2f11c60f567db9502d9e5743a93d61d224c3390001458eeb58f1c740ece19191def50a326efbc0b6b62e05054d7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a51dc29508125e8c6eb009dac8d5c834
SHA1 ae2315c29abd44bc05ef14ae23c4e68629592201
SHA256 bcf728530e68f3942212c6d16bdaeeb7e0270956bf647353162b7ca317e7d279
SHA512 b09ca594f4a4fba8bd9ec7fb0b9cfa4e5bf1904d93f0c2d631ff5532bcb88787c6bc99be93cba1f84d43f8a549eb926a2a64b5fc64bc1b977d00328cb486ba5b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 bc16d713481c5956d317ce9f5bb3b6bb
SHA1 912f77f9dcdd44ca0f34265191a9aac8a80ae9ee
SHA256 04c9a58821457a75f7ccc8960024afe8e3c34240a7869e2454caa41801d9859d
SHA512 f72ae6980c821b3a60bceeb4f5fe933257d638fc82faaa52cf56d51ef58a8cf101fb891c45b3cde3f188d8e4ded9b52da03d544d3a742b163e403d1506eea87b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 80ba8a88d5b468fe943c135d39a7c8a3
SHA1 c719efaed90638d624f34c0cc469c888d2ba7d69
SHA256 0fcb09d938126f3734bf850bb71fb83e8f699c07dd5e3f7817c84a3ef2bf8ac5
SHA512 3a8d44a1c1afdcac181adea7b204843906695750616f1e88dc83e64270e1e9739d6a8831a67c343372147b6120875fc48c13a222244e1d5c8657ed30a29f9f98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 f2e7b10f753d8709bc823448a950b3ad
SHA1 e724ac4afca235d0431d3ce13ac3219715c042f9
SHA256 adf01ad61d672e76424c07a217f57e50800cab1ce9c266c05175377be4d5be08
SHA512 e59bdcba8f5ac3395bbc8795b395b044f59763530e41e22aa5ce710c494406ee5130816e1eab3527d4007893041a5486796c1dec6806f94ac6f1c58c8c3c51fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 b9f2f1f50a6bf7c40bf6555386d9b4ad
SHA1 589988c3c80e0d40fb04ed5cb1387e0bbec9f89c
SHA256 d0969877f5bd81667a1e25ed4ad289e745f9cc8738890554a1885a30f6c9fb5d
SHA512 1ad69f4633325481d21024b416053982911b63ec0bd062acdd1751b55704ef4ef203ab8d1efca18d52bad0784e864d1f888422724a26623ceb4a3ab825f70635

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001a5

MD5 036b74783ce20828ebda3211e891cb04
SHA1 7db78485a24e74851b46bda99b7182c086312b46
SHA256 4e78c615a7d6e9bd891b73196de1aef20908169f95ee0506aa1b8889cc8e7cda
SHA512 603b40cb949f402480bafb423486cef83e34334f1f139e51fcc13aee5e2fd933613c26b011cc75a10a5730c4252c0b406cc24022bb5aa841d9c29b2ee8ad487e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001a7

MD5 bd17d16b6e95e4eb8911300c70d546f7
SHA1 847036a00e4e390b67f5c22bf7b531179be344d7
SHA256 9f9613a0569536593e3e2f944d220ce9c0f3b5cab393b2785a12d2354227c352
SHA512 f9647d2d7452ce30cf100aeb753e32203a18a1aaef7b45a4bc558397b2a38f63bfcfe174e26300317b7df176155ae4ebaee6bdf0d4289061860eff68236fe1bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001a8

MD5 19c73397068ded824edd2c5b13d0a9da
SHA1 7f0f149b66309aaba41974d524ca69390a34e4f2
SHA256 8c93e33fb098c30a82d774c6a9db9aa92ea0e34586e907ed7d9d2935582c6100
SHA512 8795cd26570fe65181d49676dd9cc9a8012bc22c3e505ac8ed8c1bea68ac7db7f77d6bade360a403a8d79cc4126ac18c2c10e3b83a163e3b42f2e3f60c32426e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001bd

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001bb

MD5 52491afc2c652bbd023231a89e00eec8
SHA1 a3ab51984ca636f1d957dad02514f7202cc819c9
SHA256 ad378a0fdc2ba2bfd879ffe786e46fd30b7969d393052346945587ea7c037060
SHA512 3f3d351dbe6074661e2f50a7ee43b5682e5fd4d69e21962790acc803666be8752cd7b258b2174e0526808fae018cd9a410ddf439ee71dc244458df7c5860d5cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001be

MD5 1dd50b202c559d7d2c2efedc4424ec8b
SHA1 c738ea4f4eafcd5d74e36b57458fc534b3eb3f8a
SHA256 97765c9fcf5e02d3aabd8015c13199eb176ef19bf5a95403886bf938e83d036d
SHA512 78676e1c6cc8760ba2eb8bfc6b363906e37ec5e2a7bd387fd28115fc4b0a43298fa59d0ae76acd971c24dd312a7694d359796d89beb9a45fec80a6c614eeb029

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f2d66641a59de298_0

MD5 4101b1a919018222404568d0db6801ae
SHA1 fc0256565ee7c86dd1f55e65e856bccf70a63a2c
SHA256 2fd412916e4e62e87182569b8a5a81070e640ff8a159b3cd5109e2ba34c5cdcc
SHA512 13749fdef13568c99b356fed07e473964818769df8a2d4c0b6258f4ebbf2c130ff370b6f483e0266639e06c120fc2f2a126f5ede3f9e3917292bd65cac733b08

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3ee370fbf6fb6a7f_0

MD5 690b6182a035e2bda04071c0e16c762b
SHA1 a465560592d43b21b6dd27664260568ce5a7b148
SHA256 e30ef95957cb44b791384d1d37b5acbfaf8e31c2ae356b08e7fde5ef6a9129c2
SHA512 aae5becab9f7fddc530b7c78fea45351ac780695820d554a8ae56afa12a20b897dd8b22bb4c3a340f219e9f09dad7101d4676a8bf19514e62531e8227872bd7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4a06c7c3fab8e50c_0

MD5 748fb6d12a3af097abb509e70c3907f6
SHA1 636f53e24137c65ae3ec23b2a28d15fc4bbfe436
SHA256 cfe973979145831ef88c39b813bf43a99c72a0a0eb20b4c0850ec96e67339816
SHA512 aa57913fbb34285a664d88176e8b95b3ab9cdb556e19df63a9763dc85463e33a50ce5080463c2d12255d7888831b6b074b74e9ef72dd66d69c6d0e1d2248c886

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d782f305bb50c377_0

MD5 b81b465fe5b00dc69c0db8d6a5793ef0
SHA1 328ea78a9359e4bdc334180f33131fb8c3cc82f9
SHA256 5c669c134d8b3d41139b47ebdbb79f15225a75c76b8e2c9ed8aed31bb4a7fec8
SHA512 0c9d9ae86be8e2c98553eca24836e59c2f0c0fddef058d31450da325963152c8c532dda5ef77de9f4edcad39fc45a203ecf1f0c8ecdf92cb3cf057f56ce35106

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4c94262ba6326a38_0

MD5 4cc42ef221afccaae126b40f722d4812
SHA1 6883e7278b078e9cacadbc493161202aa4527f42
SHA256 1f67d747f61acb2f39be010ce6cecd8b68f2724d4b5e64923f21de6d74eee258
SHA512 b4951422dac8da88767653c95948d43a69c709619b2784ea7ce6d02501ca3949bad357f70fca1a84d020b73a0c8c42c212385d092c9872e90c43c994e309aa6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bd6b414df7ecb6ef_0

MD5 701562d6165ff18679621dc378035c84
SHA1 4d81dce76c9134deed41335a74101f93489871cf
SHA256 5aeb44584fbea442bf7100d3d7e8742ec58f323c00da62190f132ae46add0f7e
SHA512 75c1e0d7b7248da3039dfbfc76c2d2984108e65edf3904fe7e3f8608c7423fe09418b03c027cd0cd8c956934d67d022bf49546ad13ec5665879fbefef67fb5bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\58a7798e8b9ebcd4_0

MD5 02504d9dff3ba9baa2aed11c68485868
SHA1 20ff379dcdaf9b294fcafdacb79379a4750aec03
SHA256 fe52b8f7f1c2993378cf4f453b2d7f10cbee11c53cd75b84f700969bc5035045
SHA512 a620af4da47ff0a4e874d6623d59b5b524da4211fe93ac1966167e361b28d0e5e41488fe6de0941d8fae56980c8fb47fcd990f57a2a0406b47e214579fa0e497

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001e6

MD5 9a23e02c51224896115a872ee5f62800
SHA1 447ac79a43947ca2519a6a9e4d63333c81156c06
SHA256 f6acbc67934394aa13122f6cb281e96a0765dca464725108b63b046da126831b
SHA512 9d1e4546a4ced1959212bd1c0f0f8f8a09e6d69b85db5d9cd0172c614745c46143b269ac9a47253fadccfd5834f2db03d35398db16419607b4e749fbd8938321

C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe

MD5 a019b5697f8336ebc95e55e738dd65ba
SHA1 a91bbac4de57faccbdf04338006a8f136e2103f3
SHA256 abd8a1242e302f0b7067d5bed8fc89ad16136d12e27284911740305708824a69
SHA512 50bc39c25c1299ad3e30a9cea89557f55dc2fb31e03c14e02dd80945d9d006477d3a5a59cab6089b397d04d236ea1e96810d29ae9a3585c56969ad206258d255

memory/6764-21480-0x00000000009E0000-0x0000000000DC9000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\200.ico

MD5 e043a9cb014d641a56f50f9d9ac9a1b9
SHA1 61dc6aed3d0d1f3b8afe3d161410848c565247ed
SHA256 9dd7020d04753294c8fb694ac49f406de9adad45d8cdd43fefd99fec3659e946
SHA512 4ae5df94fd590703b7a92f19703d733559d600a3885c65f146db04e8bbf6ead9ab5a1748d99c892e6bde63dd4e1592d6f06e02e4baf5e854c8ce6ea0cce1984f

C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRZip.lmd

MD5 dabd469bae99f6f2ada08cd2dd3139c3
SHA1 6714e8be7937f7b1be5f7d9bef9cc9c6da0d9e9b
SHA256 89acf7a60e1d3f2bd7804c0cd65f8c90d52606d2a66906c8f31dce2e0ea66606
SHA512 9c5fd1c8f00c78a6f4fd77b75efae892d1cb6baa2e71d89389c659d7c6f8b827b99cecadb0d56c690dd7b26849c6f237af9db3d1a52ae8531d67635b5eff5915

C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\Wow64.lmd

MD5 da1d0cd400e0b6ad6415fd4d90f69666
SHA1 de9083d2902906cacf57259cf581b1466400b799
SHA256 7a79b049bdc3b6e4d101691888360f4f993098f3e3a8beefff4ac367430b1575
SHA512 f12f64670f158c2e846e78b7b5d191158268b45ecf3c288f02bbee15ae10c4a62e67fb3481da304ba99da2c68ac44d713a44a458ef359db329b6fef3d323382a

memory/6764-22042-0x0000000010000000-0x0000000010051000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\BrowserInstaller.exe

MD5 83a8f0546164c9ba1a248acedefd6e5d
SHA1 7652f353ed74015e7e78bc9f9e305a48d336b6d1
SHA256 e7c5072ec60d32022b3c818c527ad86f4985837a4f0e9fc6477f54ae86d9f1c9
SHA512 111d11acdaef0036ff5cabeb16ed55bf4c681fa6eb3c006af450a0ebadae3e213a8f3abb0f4a9aecc8e893af7a79b4eb7f74a5fc3743e338c3e3136b5d7f9f2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ef27722da2108d673b41b1b141d2e29d
SHA1 db4de36e27b6c2b14e402cf27d0fb235beda933c
SHA256 c522d174c2bed6cbb9b3935c83344e842b94e4aeb2e6755b287ac2a6531ba3e7
SHA512 32938ab9d01d589530388271516f4e261d252308ab3740efb655aa75d0b6120333045cefb4b82753c9ae41a4db939141e05262261cb90d26365597e57884fd93

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d823adb5191cef86f6f106ab60047650
SHA1 15e34cba3a26c59c8edc3bb75ddf6cd9e2653eda
SHA256 2071481c9729e43d82cdae8484352dec6c831757625acdf9d05c379987270263
SHA512 ead286067b05b91ed8d12b3c1bd21fac0a0b24427a3694bafb59a575d779c41d871c9bc162f24dee2f24857e0affe82a7da78e882d6d8bb9841c5158a1501edc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b63c291e722ea5ab1e88d4e7e536e7fd
SHA1 96179ba684d460878520dcc5e9bac8df3ec5932b
SHA256 e152f0afc00ed4fb6633646482297d9f09ab588d6de4a903647a8762fa665701
SHA512 66d43b123d2b081f4bd216ae0d930c9f404ba908c8391a2e78ebdff1563367c9f93c89c90fa8bcde88970dcf26418ee2bde533d802b362db5a99d3da263d3b81

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 776c306451b5cae2f26d08686410e492
SHA1 20ad604a4b2f5637f6c181161d057b5b569b939c
SHA256 63c2c4111155051576cc1a526d7d52546f215b516217e8211ce7857d5bf775c6
SHA512 2553b3825505644076346df6a8b97a3ea1eacca0fa1cd007b423227e747818c84d074379494737f0636ef48f1a0205a597c26120bf6644b6c4c6eb1fb1b804c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c62f08dcb88882ac86ca4aff48aea94a
SHA1 e4c56bb37fc0b10cf2fcc9f4e09b9752ad927c53
SHA256 59ec2d0ed19c4b52463451413a52971b057e54ec6ba0d53c51e9a05118eb5543
SHA512 23bc4c01855b6cec1c06801b4c7cb16c6c97b79e41b5e943ca884b3ceeb7957d8944adf1c6e1816a91295680c1d634e05c4e45cd491bf639299f4710365f5c35

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 d0f174d3c562aad0397bcecb9c6bb534
SHA1 c18d6f3f047437b89fdf593678a335b638556129
SHA256 7765806c241efdcf7471e808652cd357af30f2d50e9c8bcb13da7bf8bb0f8d5c
SHA512 a7b1eadcbb21c524b5432100d42ca081f4e42cd88b81861544542a4431ac0df4cf159cef0f40f3cff2c6c571dde4cdc499cb1207b642f39bb5ad40c9c1d4a584

memory/6764-22297-0x00000000009E0000-0x0000000000DC9000-memory.dmp

memory/6764-22336-0x0000000010000000-0x0000000010051000-memory.dmp

memory/6764-22368-0x0000000010000000-0x0000000010051000-memory.dmp

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.jcp

MD5 4d40d928184745c4bb9f16ad2ca8a74b
SHA1 34d446d958393f27f16af81a451950d5c246d1e2
SHA256 af8eea7c27bb8a455a4abd4e053e46129e63ef55632fe7734e83526a9353d21e
SHA512 d98eedccb17357905c998b57656abbd6c08fddd713c713575d6d2cf78563d58c095458e4a23cc73e0852d70ef03d927085f5737ee7d906f5feb7cd79332d6f69