Malware Analysis Report

2025-01-19 04:30

Sample ID 240809-b5xvhayara
Target opera_autoupdate.exe
SHA256 6635292453c93a00119c060636a4a959672dec0cadc905681c4eb74304a7651a
Tags
microsoft discovery persistence phishing
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

6635292453c93a00119c060636a4a959672dec0cadc905681c4eb74304a7651a

Threat Level: Likely malicious

The file opera_autoupdate.exe was found to be: Likely malicious.

Malicious Activity Summary

microsoft discovery persistence phishing

Downloads MZ/PE file

Executes dropped EXE

Adds Run key to start application

Drops file in System32 directory

Detected potential entity reuse from brand microsoft.

Unsigned PE

System Location Discovery: System Language Discovery

Browser Information Discovery

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of FindShellTrayWindow

Modifies data under HKEY_USERS

Enumerates system info in registry

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-08-09 01:44

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-08-09 01:44

Reported

2024-08-09 01:50

Platform

win10v2004-20240802-en

Max time kernel

359s

Max time network

357s

Command Line

"C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe"

Signatures

Downloads MZ/PE file

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\dxwebsetup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\IXP000.TMP\dxwsetup.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\wextract_cleanup0 = "rundll32.exe C:\\Windows\\system32\\advpack.dll,DelNodeRunDLL32 \"C:\\Users\\Admin\\AppData\\Local\\Temp\\IXP000.TMP\\\"" C:\Users\Admin\Downloads\dxwebsetup.exe N/A

Detected potential entity reuse from brand microsoft.

phishing microsoft

Drops file in System32 directory

Description Indicator Process Target
File created C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\dxwebsetup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\IXP000.TMP\dxwsetup.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133676415137376088" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4020 wrote to memory of 716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 716 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 5076 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 908 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 908 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4020 wrote to memory of 1592 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe

"C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe"

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe

"C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ffe9dd4cc40,0x7ffe9dd4cc4c,0x7ffe9dd4cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1828,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1824 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2180,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2368 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2224,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2380 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3172,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3192 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3228,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3244 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4580,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3700 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4860,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4868 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4932,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5096 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4976,i,16299158251346080379,16031066003220085579,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5256 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe9dd4cc40,0x7ffe9dd4cc4c,0x7ffe9dd4cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2060,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=2044 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1908,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=2112 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2216,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=2224 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3152,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3172 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3196,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3316 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4536,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=4560 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4828,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=4844 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4936,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=4528 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=5100,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=4272 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3248,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3236 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=3276,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3220 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5260,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3412 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3376,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3188 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5528,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=3216 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6044,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=5988 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5996,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=6052 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5768,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=5756 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6396,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=6280 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6288,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=6432 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5780,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=5000 /prefetch:8

C:\Users\Admin\Downloads\dxwebsetup.exe

"C:\Users\Admin\Downloads\dxwebsetup.exe"

C:\Users\Admin\AppData\Local\Temp\IXP000.TMP\dxwsetup.exe

C:\Users\Admin\AppData\Local\Temp\IXP000.TMP\dxwsetup.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5128,i,15530373253461486705,14801029717866643715,262144 --variations-seed-version=20240808-050142.731000 --mojo-platform-channel-handle=5472 /prefetch:8

C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe

"C:\Users\Admin\AppData\Local\Temp\opera_autoupdate.exe"

Network

Country Destination Domain Proto
US 8.8.8.8:53 76.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 73.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
US 8.8.8.8:53 183.59.114.20.in-addr.arpa udp
US 8.8.8.8:53 18.31.95.13.in-addr.arpa udp
US 8.8.8.8:53 192.142.123.92.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
NL 142.250.179.196:443 www.google.com udp
NL 142.250.179.196:443 www.google.com tcp
US 8.8.8.8:53 138.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 131.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 196.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
NL 172.217.23.206:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
NL 172.217.23.206:443 clients2.google.com tcp
US 8.8.8.8:53 206.23.217.172.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
NL 216.58.208.106:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 106.208.58.216.in-addr.arpa udp
US 8.8.8.8:53 3.36.251.142.in-addr.arpa udp
NL 142.250.179.196:443 www.google.com udp
NL 142.250.179.196:443 www.google.com tcp
NL 172.217.23.206:443 clients2.google.com udp
NL 172.217.23.206:443 clients2.google.com tcp
US 8.8.8.8:53 81.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 duckduckgo.com udp
IE 52.142.124.215:443 duckduckgo.com tcp
IE 52.142.124.215:443 duckduckgo.com tcp
US 8.8.8.8:53 215.124.142.52.in-addr.arpa udp
US 8.8.8.8:53 improving.duckduckgo.com udp
NL 216.58.208.106:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 links.duckduckgo.com udp
IE 20.223.54.233:443 links.duckduckgo.com tcp
US 8.8.8.8:53 233.54.223.20.in-addr.arpa udp
IE 52.142.124.215:443 improving.duckduckgo.com tcp
NL 216.58.208.106:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 external-content.duckduckgo.com udp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
IE 52.142.125.222:443 external-content.duckduckgo.com tcp
US 8.8.8.8:53 222.125.142.52.in-addr.arpa udp
US 8.8.8.8:53 172.214.232.199.in-addr.arpa udp
US 8.8.8.8:53 www.microsoft.com udp
GB 95.100.245.144:443 www.microsoft.com tcp
GB 95.100.245.144:443 www.microsoft.com tcp
US 8.8.8.8:53 cdn-dynmedia-1.microsoft.com udp
US 8.8.8.8:53 web.vortex.data.microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 lptag.liveperson.net udp
GB 104.117.183.64:443 cdn-dynmedia-1.microsoft.com tcp
US 8.8.8.8:53 lpcdn.lpsnmedia.net udp
GB 2.18.109.131:443 c.s-microsoft.com tcp
GB 2.18.109.131:443 c.s-microsoft.com tcp
GB 2.18.109.131:443 c.s-microsoft.com tcp
GB 2.18.109.131:443 c.s-microsoft.com tcp
GB 2.18.109.131:443 c.s-microsoft.com tcp
GB 178.249.97.23:443 lptag.liveperson.net tcp
US 8.8.8.8:53 accdn.lpsnmedia.net udp
US 34.120.154.120:443 lpcdn.lpsnmedia.net tcp
US 8.8.8.8:53 publisher.liveperson.net udp
GB 178.249.97.99:443 accdn.lpsnmedia.net tcp
US 8.8.8.8:53 fpt.microsoft.com udp
US 34.120.154.120:443 publisher.liveperson.net tcp
US 8.8.8.8:53 www.clarity.ms udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 52.167.30.171:443 fpt.microsoft.com tcp
US 8.8.8.8:53 js.monitor.azure.com udp
US 8.8.8.8:53 d.impactradius-event.com udp
US 8.8.8.8:53 cdnssl.clicktale.net udp
US 35.186.249.72:443 d.impactradius-event.com tcp
US 8.8.8.8:53 bat.bing.com udp
US 13.107.21.237:443 bat.bing.com tcp
US 8.8.8.8:53 analytics.tiktok.com udp
DE 52.85.65.84:443 cdnssl.clicktale.net tcp
GB 2.18.109.131:443 c.s-microsoft.com tcp
GB 104.117.183.32:443 analytics.tiktok.com tcp
US 8.8.8.8:53 144.245.100.95.in-addr.arpa udp
US 8.8.8.8:53 64.183.117.104.in-addr.arpa udp
US 8.8.8.8:53 9.211.222.173.in-addr.arpa udp
US 8.8.8.8:53 131.109.18.2.in-addr.arpa udp
US 8.8.8.8:53 23.97.249.178.in-addr.arpa udp
US 8.8.8.8:53 120.154.120.34.in-addr.arpa udp
US 8.8.8.8:53 99.97.249.178.in-addr.arpa udp
US 8.8.8.8:53 171.30.167.52.in-addr.arpa udp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 8.8.8.8:53 fpt2.microsoft.com udp
US 8.8.8.8:53 login.microsoftonline.com udp
NL 40.126.32.134:443 login.microsoftonline.com tcp
US 8.8.8.8:53 72.249.186.35.in-addr.arpa udp
US 8.8.8.8:53 237.21.107.13.in-addr.arpa udp
US 8.8.8.8:53 84.65.85.52.in-addr.arpa udp
US 8.8.8.8:53 32.183.117.104.in-addr.arpa udp
US 8.8.8.8:53 13.227.111.52.in-addr.arpa udp
US 8.8.8.8:53 134.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 browser.events.data.microsoft.com udp
US 20.189.173.11:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 acctcdn.msauth.net udp
US 8.8.8.8:53 acctcdn.msftauth.net udp
US 8.8.8.8:53 lgincdnvzeuno.azureedge.net udp
US 152.199.21.175:443 lgincdnvzeuno.azureedge.net tcp
US 8.8.8.8:53 logincdn.msftauth.net udp
US 8.8.8.8:53 acctcdnvzeuno.azureedge.net udp
US 8.8.8.8:53 acctcdnmsftuswe2.azureedge.net udp
US 8.8.8.8:53 aadcdn.msftauth.net udp
US 152.199.21.175:443 aadcdn.msftauth.net tcp
US 8.8.8.8:53 download.microsoft.com udp
US 20.189.173.11:443 browser.events.data.microsoft.com tcp
GB 95.100.245.121:443 download.microsoft.com tcp
US 8.8.8.8:53 73.31.126.40.in-addr.arpa udp
US 8.8.8.8:53 11.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 175.21.199.152.in-addr.arpa udp
GB 95.100.245.121:443 download.microsoft.com tcp
US 20.189.173.11:443 browser.events.data.microsoft.com tcp
US 20.189.173.11:443 browser.events.data.microsoft.com tcp
US 20.189.173.11:443 browser.events.data.microsoft.com tcp
US 20.189.173.11:443 browser.events.data.microsoft.com tcp
US 8.8.8.8:53 121.245.100.95.in-addr.arpa udp
US 8.8.8.8:53 download.microsoft.com udp
GB 95.100.245.121:80 download.microsoft.com tcp
GB 95.100.245.121:443 download.microsoft.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 142.250.69.3:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 3.69.250.142.in-addr.arpa udp
US 8.8.8.8:53 93.65.42.20.in-addr.arpa udp

Files

\??\pipe\crashpad_4020_XKQWVZFGCEAOFWXN

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8f4a3d94c6654cd5b4003abe59dd5299
SHA1 aa280a629f1a8c2f94175edfe0cfc8f06f962d6c
SHA256 d6938fa87ccdd2334f32545d36b8f76a41682ea465ca556a8e8c29982d377013
SHA512 1cca4589b3c5b4e8b714ea494ee8be3f6042e97177b274a807a872e0b636e7cd4d0375f7c9bb5cdd0812670bbc613e5800161baba46fa932dc59dad01ef5b690

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 afe25a848fef22f9ea108404fd12001d
SHA1 f31a616c9ea20fc2da380c9a2877b7f35a637d00
SHA256 7b90ad0955268160af79e453aa9b7ff9d2a65d45223c10943ed8857a9fc31640
SHA512 ad10501a314b10e625c89b59f24237afb62ed94fc5fcaf101a8fc0e89d2fe6bd652523cb5d7c8c44a64e4165a3a80287d3c374723f7a5453d052a13fe35138f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5f1bbe12f2607eeccb288201a34dc5e7
SHA1 0edffdc1dcda6db86948931447edc106fda55f30
SHA256 adb54a4253434d4212dcb595648d6e9c6b995250d42338d8b6f2ada19adef53b
SHA512 8ce52b23bab7afe43db519621bcb245a8558659ad5b387e57be78867952a450519f3bd720a073c3056a0799e3d0c284de651e1119f51788bff001149231ce968

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001

MD5 48d2860dd3168b6f06a4f27c6791bcaa
SHA1 f5f803efed91cd45a36c3d6acdffaaf0e863bf8c
SHA256 04d7bf7a6586ef00516bdb3f7b96c65e0b9c6b940f4b145121ed00f6116bbb77
SHA512 172da615b5b97a0c17f80ddd8d7406e278cd26afd1eb45a052cde0cb55b92febe49773b1e02cf9e9adca2f34abbaa6d7b83eaad4e08c828ef4bf26f23b95584e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 00842fa456dd88186051ebbe4346b13f
SHA1 fa0bcdd6cee9bb14f796cf4843057d81ec9d0473
SHA256 8a0697653aa856cdbd7ecdb1549a8c82b9fb46fb293f71672f82e2b53e3d7c52
SHA512 31462cbd2b5953c89887cf5d2caeae771626ecfa0a19fd4be95166df0c1b08ef9d4bc6a0fea8e14e9f04f4ee9a76919bd3efbb9264e186680d90192a08ecf3b3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 cfd83b8d28c2ee46369309a945fc4343
SHA1 90c64234ce44ce3d1120f0e01e9ea439bacd495b
SHA256 33120f4820672fa01585eb6b9ad448c9f687028773b46ac884c8662b5edede0e
SHA512 62b5a426d99420f9bf85f97b8f46d2f4e0b172561944d27a85d79055a31fc1ee6532e6da24ab837aebf35c66f8a4a30cf9950bd779b699ebb17445639835a8ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 eeda037ce8f122569b3c6c0a4880297e
SHA1 167df4d300f5e9263ba232b60fde22619fa3e3a7
SHA256 1ca5f91159321d318e7ad72dc23a00ac017a4fbb7348b2cd687eff9e888a827f
SHA512 0977f1b0a093aa74f297261953dab5225c3a78048e487b7a550f419d1bec8032efde86fc1987714e5b17cd81c56e43b113dfb9c7527a2b616cedef854d081ee5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 a7ffae20943e1e348901728fc342f2c3
SHA1 8a7d24eb4476a2de3153a4481e5c72591d94bc72
SHA256 3bab65c5ac88702f57c561a5f60423326b215a79e2cecb0ac79df0bb2f2c8ac0
SHA512 c3ad2e25b3cbd9a4fb931cff98d00d1bed5300bc531cb7846522b1c707b2d8f3bd01280e868efe3108c1f63a80edb1cf77084c59c8e9ee7cdafd7b549a7e6585

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 f50f89a0a91564d0b8a211f8921aa7de
SHA1 112403a17dd69d5b9018b8cede023cb3b54eab7d
SHA256 b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec
SHA512 bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 ebd1e0c475994371b3998462615f0d05
SHA1 14e355cb59a4e518018b776164c6d0217aca50e8
SHA256 6982055c717bbdaed4aeec95fd9209e1f933093cf5419bc09194366ee80b0541
SHA512 7aa0bc09e0f291418fe3b6683c2e6e83781a2d96af1d36fd47162a132cfb1fe0051135fe401c6f953c85948974aa79343fb88a0d40ed31be7c60249ae21a3a32

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

MD5 bc6142469cd7dadf107be9ad87ea4753
SHA1 72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c
SHA256 b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557
SHA512 47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

MD5 ef48733031b712ca7027624fff3ab208
SHA1 da4f3812e6afc4b90d2185f4709dfbb6b47714fa
SHA256 c9ce8dbbe51a4131073db3d6ceef1e11eaca6308ad88a86125f221102d2cee99
SHA512 ce3a5a429e3796977a8019f47806b8c0671b597ead642fcbfbe3144e2b8112d35a9f2250896b7f215d237d0d19c5966caf3fe674165a6d50e14cb2b88c892029

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

MD5 b3ded42035c1e0d087766b8f6fc0358b
SHA1 157c10613a57acd8a405742eb364eea3c0785846
SHA256 91eb24a51d52cd9471220ecb7bb4db81e21d4a8cca18da01b395d5b76ccc8a8f
SHA512 034f2801a813087bb43f7421937e1e291c43fb178cdb691c939065d2a0f4c51e925edb116ddedbf36dbed0200fa72a2eddf01b6293196c363eb7784a34d7bf28

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13367641522413262

MD5 66f7a0d3eac410278c550bbffd86b463
SHA1 1daae6f51eaa5da29276210219a12f74afccc66b
SHA256 86a9d142059d0945e5a238909ad45e59a6adf8c811f048b0e984663ca0d89bee
SHA512 83c1532cb29dedd6519d4658163aa24fa3878272ac0673f91f14d3f6bce7fdd5a3a5ff579b135e8486221e6e4f4df5e0eefce9422b54f124b3c04e14a52bef98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

MD5 dec32fc8ed9d80551dd624ca895258b7
SHA1 a01f755921889441382b6e444b12ebedbdd5560a
SHA256 bf4d4940552efeb60b8d36c77decb0f6c652552b50d252010ca67e59c2dc3254
SHA512 6adf71780dedda5091509e6ba16aad618863f2b241f8d45a04d26cd7a243961ce9ea9a8bd7f4a54068e10422b7e50bf9a8160345a4f0b3ac16b1167072f13d3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3

MD5 cc8e4b11f1581f6c1e9631743cde2c69
SHA1 0e86f2c2eef4295caed04f226476e3ccf2111181
SHA256 69ca6f9342557ce3914aee6aaa2e4e2b41386e97390efd86908bafa596835f39
SHA512 9fb89db0012d2b80fe4a464ab2641e5f85e94f11613399349e2936b69b3e4c63796ed348262f355d6a4e1d5f1336a6067329384fde369e29768b1e8ce7a0848e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log

MD5 bdfc7d14521107deb57b969d6dcf04b2
SHA1 823af0c53a56b18498403ac2a5bf6f49238292f7
SHA256 8e40fa1353766782020fb7ba23bf3d7ea95e72dbd194e8046d2ea09c295b2f8d
SHA512 770a36c6e1ec4a69f5d202f1822692debaf92dfc3607c7c8c913e413fb23909335fffa1f538e0b79d7789cc38e68f8f889bac599bcb35d8c2a9e314afdca996c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG

MD5 d2135c30e622d68a86fdb8874cb14d57
SHA1 d3d00cbbcd2799f4640e2c7539f4dff71dbb9020
SHA256 106e130d5a68e3caef60c32540e2868155ecb50be40ad8c6108055b9387c9d52
SHA512 d4e158ec54d55543f99acfacfe71de373f03f0548c40249e7503c3ddf08c4bc980a89303e38bd5b08640f4a571702a56f3c958f57e65b4e02cf1944874ae675c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG

MD5 1a53fe5b48c98411ae054807d5983ebe
SHA1 db674784f0f5b10ff25d39b90582345c5342b84d
SHA256 9456ec5d63a6511eeef988200777d96b1e078db4aabd172a0f7f336d15ff1424
SHA512 97c243a13e1b9a9839b97b68e0b7a56bf33179f5b4b119be0fe89d791efd45019ce39c6b0fdb59f2c5e0ad6b61bf7c174abdb03d1737d4be5a2457bf1b525e0a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_3

MD5 9951d476d413d8e24bab1bf25e447c1a
SHA1 8d4d34362c477400b3283dcaaa25584b779c243a
SHA256 eb1e53eb34be80275c2659c0e6a8edcb87fa26f04c55120b0cfb47371a0bb16a
SHA512 ff7c071c180304743912dad5a953f2c7699bab42637a9bc7ff918fa05485ee21a8e92b28e59e2c312893f3ac1e7fdebc31bb383e88c143fecc383db5c4c11750

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log

MD5 ee055beb3ad8536a4c02f348dc674a7e
SHA1 b45d1ac601311dde71e895a4e8e67df20d9676df
SHA256 e22838aa87480310af58ea4c1ce0072620d1c3a1c74d57c88933d95f6cfffc65
SHA512 ae806644ca3797ce19c53d2977f0303228495d3440a3a068e4508fba94033bc4f4539bee6bf6029145e0f54545ef38846682dfbde43cee02fee11816d2c6eaaa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1

MD5 9f8811adbc0d9fc333cef4d6d55918cb
SHA1 078c3e370310b318bf8b12d60fcc22724bf09980
SHA256 c49ca9a02e622e122e3151db177c67793ba4bb5ec27f64637bfd8febc0d17fdd
SHA512 da995a14232afe976ef25c853acfcd7c84532c3bb943d091f368152c5e994b70842d56cbb31b7becacbcdb18305a3da36a95a6ffe8b4a80e5a72bef80aad9f7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_0

MD5 64fb32ff14328979af07faa2c684241d
SHA1 18d9f90dd6996ee07f5f4effde6b43628def1998
SHA256 f2f68072935735a86a11e3f2f9eb7ee70e95b0453d6f3149d62b2742dfe27e74
SHA512 8514ec95b9456d40449896cc629927255eb1feb7efaccd127bb3f74609f671671e5685cab8df2c61c48031e259727881237b92b77a2a5a7cc6188b7bc4197449

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG

MD5 4f97b745c60b8b46c982346bb9af1998
SHA1 ab6b2e9cd1e9334d74e30a34839721ecd56b6716
SHA256 79b9c934172a2b5e249d135e19d80a4e88a2b4a6aa0a5eebc0e15ec8f9bba5d9
SHA512 2400157bde063336501c8c22830c161414fb012381644209884f9f40600dafa5d7e2a45ad9d1577d53520a5fd86c860853205a3cb8c81b7c28b0b86da92c3467

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log

MD5 6e1e6d1b31be1f055fe32d3b19c84313
SHA1 488d381974b196307fbd461e17f07dda9af34a75
SHA256 8f8bc80b477324d52c788d2b852bd6abd57f45bb2027d0a7424f9196d4703738
SHA512 171ce36d712faaca42feb203da063f21d2b1e05ed22b67fb1cff310b70127442a2e6d7a53efd1c9a56b76d885a0568b0dfe2f520499885c0e0b54968672a6444

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG

MD5 767de930f966c1a69f30f3354ca2f071
SHA1 5668bddedea4c6272aeede2585cdcdefeba380e4
SHA256 74ba55f3ac81ccb9327a8e4a79c551eaf6df55385c9005dc4cd82eae032c58cc
SHA512 7445c96f2285d47a3678e472376be8fdf6200aa054adeb61f0efddf5a0fd4a509dab5597d7613bf54f254cb9604bf397846306945c76b1653b43bd2f550dcf65

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\QuotaManager-journal

MD5 3d9119dfc76903b59e1a5598822a6750
SHA1 065584e925743a1a145b5d6afcfdf0cc42e1b5f4
SHA256 f244560412787168448ae0b1b7fd7638ccbcf454dc4fa0e63d9fe5187378e576
SHA512 3eba6ce3978152b925063e67c8dc4ea04a9ef9ac4542641248b6f089f63fcf039071b977e485a112193f9ab76f74ffea1ccb8816a6415422588c3ff8a31c3df8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\QuotaManager

MD5 c401d61f1cf86a11ce389fe291d78cd6
SHA1 a5a1f6a374fd125a17fadd9cd56afee17d4f686b
SHA256 97a8edb3a5b3f8391a13f90fbc8fb1f367c19e14b7d70faca11c572e35db39be
SHA512 4413dfe873bc026d6279f025251ad650056bc6053a0dbda718c9f6b57afd14833f25adc74f349bfe626ad32cc43549fc285f859ed6cb2f3fe91936e736b25f82

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2

MD5 5d327a6d88237737fed0c47ca318721f
SHA1 c8a244b8f7f6ac4788c7de1703a9af3b51f227c6
SHA256 227c9d95fee5293ea17816b7a93a27d81c9577b3b80c19cdd70a43b655c90fd2
SHA512 adde106949314e1fad139d3f99c93dd331e254ddffc21ddfa6523fd5ad20592c86b76055bce06747c815f43c1b3a1a2ae4b766cad939150821a78a122cdb1d3b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

MD5 e616fcc24a1d81d3f6745a35de1ad29a
SHA1 83e889d1bae60376a4711eaf5039a0e3a38f94c4
SHA256 6ae95aa122aedd9763ff57d98e0f87f2441185c2010e3abb550ec81b24fc3862
SHA512 1ba7898e41e9dcb5a3b7786bc7301cb952946ab0c265f4c8d0d4938bf26afba85ad28cf568607b2a41e16f4ca8c0f59c6d475bee4e6cbb17866a64e1283a6a3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0

MD5 4d9aa8f9add9eec555bba3f13e0fdc1e
SHA1 d65cfb65947452cc3b441629a7155fb7fa0a3005
SHA256 3385aabeeaaa583c7b093d684a33098df13b50125fedbc7068d406afc1ccf4a2
SHA512 ac3582d020bca62f9001812258e343b02aaaf7b99cadc69c34c2aefa13bee9e4757d6897ed04d297329fadfbc345114edb932db72e50f1d2f7e83e92566d7183

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log

MD5 b625b26145c06c7add1f6d11104794cd
SHA1 eb751bd761e1862b8222dab4372ba7255cc985f4
SHA256 3a6102f6de405fa2ae1ecf29e619245756db071e2bc0bc8154e1e01e179639f7
SHA512 f5df30689482d9d47099791e1b1bce5eccfe8803cb39a8eacaabbf8b67a7b03beaa611b315bd9675ce7215a7083edb8ebae6f64017d4940643ebaf67407779fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG

MD5 d907371949afb855ddd5c39a225a3889
SHA1 f6fab9917401be43192de4efc0088fe3922c198b
SHA256 51ac5928c35a86be1d1ce1d31680d2a5c42b6f80fa2af4b39971124fa7368f26
SHA512 989dfb4d8976512ec6c4229af5350b30e3bee70e1d5925bfca69d57c6b11b41d6e71e86d60e7e6197dafc814a4d78714612e635b13f3cdcfc1230f1e13dfc462

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Reporting and NEL

MD5 a16db570a39a9001b79f1bb5845068af
SHA1 bbd7eeb778e8dbdffe05eefe48fe1caa172b6966
SHA256 fe974988a43ea5b7c6ce916dd14c740fe2803ddc192c8a4362c63be8b9c1a8c0
SHA512 97bdaf7a255e35ba3775ca6edace84acbc39d51cad736a7f466aedb048831636a99ce1e357379dc15828cbbad9e3034dbc6ebb462541a37bb4ef3064d9f08175

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies

MD5 746e4daaf8a76549e98c710e13061495
SHA1 7ddb3d3f4f1229c6c7fb325113d2c9c4b707d022
SHA256 f718c6dd129132c100e7f1ed2b7dcdb589232c9532d01cd527c1f608f058d07e
SHA512 5ea6a777debc8a8765bf61dc37dc06736bbb83c8f70fe0c9ce5ba152c27cb768a8a3a53bf348f7fbe7a23c3bbce668476ea29d3972a6817196f1438ad4324c49

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links

MD5 793557fcf5979e02fbbb69af731612f4
SHA1 5a422f5cb5931ed87b4bb264c2bb8e38926a4561
SHA256 08e934051ce637a6db8e73a2cfcc3f3fb31a3c7f34602726ae78288055a66d0d
SHA512 ef62e6a10c8db5e75385b796a370b50b6698fc209885184e5c72a6bbb935c333836ab8932f14cb478bf9db15eafd89c1c74f2ce140c6235963299cd8a5d1b292

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data

MD5 ea93cde0efd0162a03dad5abe4fab26e
SHA1 bff7e2a767b2c9cc63c904d740836959ea317f56
SHA256 07d7887c098b2f2a1292d808aad25ed196f9446e0081b169b4e9cfbbc37261f4
SHA512 ac81715bddd88e908ca7fe347e7e1e1b8a543dd8f1ba79f9c93d59294520111e51adf8706208dc6f37d74c5114422355717dd64a148d6bbe47607b72ebddf6e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG

MD5 79f3833227aa1acd9ad69c0688296ea5
SHA1 9895a954ac9418d61c1a218da49d3a2e8bcf9908
SHA256 908645f55aaa3dce1c7367a82d31f72b80f2d0e6293c44781053c1007ad756e5
SHA512 c6c652cd350c3e7693d7f74c56875ee02da260b3d0378a74e5d302087b137f93642d29ea91c9d477c097c98dc21c743545f12c49ae982f8c4cd5db521adcfcca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002

MD5 c594a826934b9505d591d0f7a7df80b7
SHA1 c04b8637e686f71f3fc46a29a86346ba9b04ae18
SHA256 e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610
SHA512 04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons

MD5 43262279546070546761850adf60e2f8
SHA1 98811445a14da3d0a7ef82e981740150811b543e
SHA256 0eee53b1b8fc7af777aac8fb4d860258934a5d74f287fa56fb6b130893d6c85d
SHA512 88034e09fce2adf54a3c1ecc308a55cb0c74e56c496bde49027864d78e8db9216ce2b6949be11a1df106cf7505fce06bb848831843a562128cdc35f8cf402f4c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

MD5 87e2f5ae82fb97e3c24606748e70ceab
SHA1 1dc1b87079ec528add1752317deda01e13f72596
SHA256 0b3ec014018b170b3a551a08a342cf6c2940e0a9037e1f5cc7775f46f42cc9df
SHA512 9297d395db96e7785002a223eacb3bdf7b47c818f7d9be9cc15732e57b96d2cf85ad13c4159630693b4e01e1997d0297460f44b5db688502f94f30217337aebe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2

MD5 55c1dd8240457c56907255cd086a7bf3
SHA1 4cec7f24361ac554e8a521bb3b067973c68986f0
SHA256 f290f03028d8897ed18c6bcf59699a8d682706ffdcb617c10697872e7282c617
SHA512 9c2470a458b8ddd2e04a0ff0626e47dcd1baf3212538f5dcc4d7640d04707fc29f5e9ac91db5bb6622a5c50138930e3a80cfcb3cbd82a703232b603de61eedd1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db

MD5 a8ed4a5c68fe95941c467f1ffc353149
SHA1 10d05132f27ba98b2d77784249c9cdaefbfc520b
SHA256 c4d352b957a5c35f3459848ee94771ba998a7e776431ba3b8b1080dca2966b59
SHA512 0c4d98ae6ebaf43bde4ae93f35a913a3c04f4c96e967c1c47ac66fb528ca31dbdb68145bcf8edea94347f13d2a71e9898a88c323f26ff0b51e13186f589159ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9c4c50c35cb6262c19ed50ab32d7f1b3
SHA1 1c39ed64fe2a1160a4d4a11b926308d736c02330
SHA256 7bf0d42a467fc8df11248c8013e724a32fd480cb970e4fc427cf2bdf55a91c9f
SHA512 e4248c5ca89f4255624d824eb5a0d9741b2ab3b38cd36c3334eacbc2af39367154bb7d088cc9eb4f80ce811cf2c81b3b75257e809faa221891bb8a6616aec7e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

MD5 9e8ed30626ddb91e49103cf3e672cd29
SHA1 aba734eabd5b2a93ae5e7cec1316e9d182d5ebc6
SHA256 e3e58972c5760b741092ca153a59ef300620d4e11f76ca0a450c4bb579fdd9c0
SHA512 32305fb903f0cac95a395be100a68da4d079c57887bf87ca26908e3a545ff41d945f194727cf3979581450d75dfbf1c8b39e85a9b7aff8c3480ae216c8868596

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

MD5 5606d77d3cd520a6f8253f2ab856ec4b
SHA1 089f0f725f2b6f6cc91881e1757d4a1583fed590
SHA256 80e688b725f664a7dad65a0410e6f6c11865fd70cbba102a62b166e3e0d8d753
SHA512 11749535428552b6fc2ee57a64baa3034a37682ac9c89ac22c0a52653ed5a7b0d6bb0346324258a24118cf9f79321ba4d27abf6c73b49aa8432d86211fc4eae7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

MD5 a7be054865b415b3e450c6db91e97609
SHA1 e3dc5e4a137fb8ffce2dd57d27e4246109e7753e
SHA256 e10df5c8f6fbe87b70a46a6ca3865a6f3d024e32b2ef63d396602f0a0f80fe05
SHA512 a53bcc629ac42616a878e6d025d1aa4179b1447609f9ea23e066ccab72eb411f5b76d943bc7ae21d2a4f465dc02f40739b52d06962308c850be1076f85f72369

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e978e97865d6dad9ffd4b0d0070b6332
SHA1 2ff3351e4a4296c9ce0f7f35fd4b5c022b5c1e5a
SHA256 2d6364690ef5d796bc638f4d6a9d2922e2373ab3d521039fc63a0e30be78b109
SHA512 6145e33de4484a396347741e449c79f9b1e1d28e0c990758310a7bdcec4a6b99d6d6bf3f08e1d8b86764604f7eb82622a809acb0406adba1d8e3edd991d423ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 359cd3d1becfd0455b3ce336dda457d5
SHA1 a516ed842f433a43eb1c3ff4cef89c2597027a91
SHA256 daeb3ee471127b43e09787981a37b4687c136f1ade610bc6299086bcde5ed5e1
SHA512 f6dd477cc658addaa6ef81b7b1ce6ed6e1195b57fa06ec0a9fa78f9940ba623a394ff7eac6911e6e988b5163f8f75bdba770d21df4a1c70d481d5ec3f7ff64dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6d730a74d0ae3f098d18c581b98cc056
SHA1 8c232a054e95bce709076a5a7873356084ca3732
SHA256 c61b5697dda3598058f56920102d882b06dfc02f08866619c710ad765435f036
SHA512 72e13d0a09c5f8990c60db06b07813743e1da21598f7af5c2b72f357ce54169172dcdeb07c8941041edc7f2ab309bc6a8acedcbd363117dfd04c62805d77b070

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7bbd0e3c570f517d637e57530dc18720
SHA1 dac5f1f9a2ff62cc639cde7f290f30cdee968972
SHA256 7ab5349cf4a9489222ab19fda921370e72a9ab779478297138029f83236a9538
SHA512 4048b509fc4d847486d259602d53844a88c15b19528ed5d9181109d6bbb6934cdd2110251a071120eb861ab50b5de0c22b2d7d0412fdb0294183f1ebc45bb641

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1d46a7dd7ff581ddcd0d3d378767ecf9
SHA1 4eea9e1cb7700f0eb52c3c5fd3c15395e0c42b6e
SHA256 13135c6bae3c02e9df002f586b83240f1af9670d1e6907078f314b7af5cf2e09
SHA512 cf105968ee20ce7e6d1a637de74294c314dddd31b88758ebd61ce33829dc67c1a8d2a0a6388c7bd0ea6637b4de9e0ec66bbfe601618b7fd24711ad198c7dfe10

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8ced714e090130588e7d86957ec755de
SHA1 a60912149a6e2f86f858ed26cb291cb5b00bf270
SHA256 fb964f370fdad68e48bbe8983cd6ac5c1e8268497af5b941bc8705491ab4b438
SHA512 f59ec0ed5114d62ebc5a72e00410bf401802a7e3654d8444429db084d5cb959ed6a8c6f58a88d91533815a7437c50e98f503042d206413de18897282a51d2805

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ae8ec1dfac2cafbeada0ec745fac9490
SHA1 f8d78ae5c44be958a2be30eaa2307564a7ed9438
SHA256 9aa78e1d3f8dc01b42c9a421b323767dc4a28f2c425b1c8e614855437eec89d9
SHA512 47bc9f70f68fa530e8f6606772ca3e12d5ec401e3b20f3550b19f3bebee5666eae9bb03f719ddfcede912a00293f47b131d55b0fd4ff1575f421a963116356c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

MD5 2cbd6ad183914a0c554f0739069e77d7
SHA1 7bf35f2afca666078db35ca95130beb2e3782212
SHA256 2cf71d098c608c56e07f4655855a886c3102553f648df88458df616b26fd612f
SHA512 ff1af2d2a883865f2412dddcd68006d1907a719fe833319c833f897c93ee750bac494c0991170dc1cf726b3f0406707daa361d06568cd610eeb4ed1d9c0fbb10

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a8a371469dcbce79db8215fdd58ffa11
SHA1 307f021886b66a1376b96c2c9e5f05e67bc54e32
SHA256 67699713b27020514ce6d53ab1a67c9da3380054293dbb6324629a9beecfa7ed
SHA512 b253583188b13d02b6657413eddf4bc164f0fe7676a95877a7c389571181355b771a2008cf7b6e31a41e09fdd2ee56a91ae3c9759b0059442d88a579394d8736

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 513b19319c2a3db09e71db9bf2821145
SHA1 bc4efbbead862bc26e56b1cbf3dcc9c61013ea30
SHA256 de51e1753d4b0e9e72bc32c3448b029161b97c766a85a31b962ee428d97f28ca
SHA512 3902f9ff7dde5dfafc95ee089a110b832d8ea3ed39dfc02c4f1441b6c08fc65bae88ddfd9e3ff470a231dfb9547cb82d423b3b615fc8b064c34017f7daeb1ffe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b8b48a28c3d128c6c916868611a77005
SHA1 4a3704a34a7e8b73cdae936b624b64537c632da8
SHA256 6d654ee07e5e5ed79efe258c6d19f2cf3a34a268beccc77f93f2203965f51ddf
SHA512 dbdb4d367b059163cb12fbb832e845ad1b4e55ddcad0f389785ef02a99e365b740b37402299d8b140f56eb5c8e0dd95c697b6d46d02e45e7a22916abd259f49e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 61eeb7beec8f77524728d9498eab097b
SHA1 794db082e483c095a8a244077b93f84b39fa8419
SHA256 5e3bc2a76c65a27c968b4f29dc57cdd7e0a74af9cdd4304556f5048bf5bb8e5a
SHA512 d1b630a5558315fcf7998b70f1c11c6a92e8fff4173bcc256e8ededdb526db0b1ead22b0562aa007f1068590d6bf2435806072098cd0e63d6382a2e65baad5f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 7aa1264b9d5547fda5b2212f76243e47
SHA1 bc032f0c7d32eb27038fc0cf359a1d48e4fe713c
SHA256 8e3e0052c187449643a73cc553daecda60dc79b092f2e65f1f3528da05c6ae3f
SHA512 c1d3cef6c66b5c56ca56facdfb4fa131d7a304f72db303ad5aa68ac2dfbe78beb78244510e6692d7e4c29a23fdf70bf736964211a7de8c486101b8025b36a8d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 923349e9904fce30cfbe17a68bc5834a
SHA1 0bfcf1baba2ea2e34bd56dc03f080e78cc64d8be
SHA256 9a6efa9cd733f89179da05d68a874a2cd847839bae1da6a5b1adcc7e65af1136
SHA512 df27bc82f74a55486e4226b696feb8d5c978867e885c4d2858ba32a984d507ba4e87d1a9ee408503867b0dbd261ca2b68ee19aec50b8b56061686aedce471578

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 40ac47f87b074e74c4a2ba2731e12090
SHA1 06ebd7ff59eda54a1c4dda33b41d9a5a58f45eff
SHA256 4ea014ddaa944e16c0547104b267f17ab0a469bc46fddf586e72be90a02f15bf
SHA512 4e4c7c62b5b12e47db310acf8df7b82434830d6c31733b95412be1ab422d0734fb6b8587919e576795731d98b4bc89d158f04de3c3403d0eef9318265e2e838e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d62c82b0cde5fb17caa9c81266f33ad4
SHA1 a793ab1ddab0920e7ff54ae2e5a1b27cf7cb2aaf
SHA256 fdcf6113bbf1f06a53a3699945411eebdc55c27dab58f617702a734e424365a5
SHA512 912b83dd3899e95327f9d11fb72aedf6462fe21c9089f32602da2aa57c17fcf6ce13b631e78eccda0cc233b961365f0485120fa158b951d87a60f227af2ab0a0

memory/4520-654-0x00000000744B0000-0x00000000744CA000-memory.dmp

memory/4520-649-0x00000000745C0000-0x00000000745D7000-memory.dmp

memory/4520-655-0x0000000073F50000-0x0000000073F78000-memory.dmp

memory/4520-656-0x0000000073DC0000-0x0000000073F42000-memory.dmp

memory/4520-674-0x00000000744B0000-0x00000000744CA000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 83aa63aa8edfdf3b0a96f4763bd8ec92
SHA1 33d0004e64770eb6e00c0b1a3d48d508ce6b3d9b
SHA256 75d70a4209899e3a72ee60d75c89ebd7bcad926f5d2348e041833013a7422a01
SHA512 4cc6f12807f374541a6cd3efb0800ee68aeaa7c9e72c82ee4821bdabd215a45ce23c25f45aba532fbd8053cbc58e6c466f6977ae67556d761fcadedefe2785b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 590bdb02fc81242a399a1682bcdb8fc8
SHA1 3e2e4bd17456c2a50e150e5810fd95992bbe3fdb
SHA256 5e0f7c0108e88a81e50aa57d53109851a29c0af5c542e4dfb1d9cebbd50ffcbf
SHA512 0c268eadf9dc37dd7f2c09249d061ed1e0dce97e510b83cf2925878bcef8445d808e0bacdba090114ab7fa43cbd5107e31917cf41175711ef10f33f840bb0d27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4fea63a94e7ff804dd2fc82f89b6dcce
SHA1 41bc5387cb509311752399c16718c23d838e7d1f
SHA256 2407abd1aeefbd5485227ecd992912151398357c55b32b8054902ec2fdde661a
SHA512 f7c2287f205e4a4bed218460edabf52526cfe6a8864420b3a3ae46847c1fe3aaea84f6113c73d0077549bacddf6106a23cd55980873eb4b8dfd58b4b45dedac6

memory/4520-741-0x00000000744B0000-0x00000000744CA000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ef3fb946484606fa7ad694b71fcd8b45
SHA1 15231277c429cd031dd86efb3b782692d316341a
SHA256 ec07b38602999d3f6303c58edc378546433833a464851a997a94f55525f12e49
SHA512 d455a4262a1358e18d967cebf88ea0221d11b1c2353198181210bb0fc1d21c22630dc839f99d17de29a9e9f400035fdbf6e54be2fec5fbf1073165f994315960

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 93aaa189b7068cfbdf0cfc98167c6ff3
SHA1 935e1762fa104a747bd55976ec948c66aa914937
SHA256 ed113dacfc6e9c73dd825d83f6360bc5104cc17d74f2e26881d31e5dfdf72db5
SHA512 39d7029267e3714f708fa3456490941739c9b9e2d67f7163ace3b1f07d28ca3673c4ae01b1fad41dbe497d6ee7bab9aba2ee8becae09a1e7d15893ad589710a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9bfb69fd577485f167f1fd23dadc16f8
SHA1 dfa6d77a3c12e6498473c53b6cc7f64f024e5674
SHA256 41541886d7646ddb2924f4de7a9b73f74b54776e0802644a26af58d62c4ffdfa
SHA512 346f481349d16700f3c3f42fa6492cf81ecb0d4e2de00945ea49be3c3f6b16baa950f699b3fcb63af38d1aabe5f6b76c8d7117232e9c9d66ce8bebd7336fff0d

memory/4520-814-0x00000000744B0000-0x00000000744CA000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 32ccbf89ea9142c733da6aabdafffe28
SHA1 e30b941f5b27d26405f816376d42c6ed3ee19a53
SHA256 10d6b1f056faef406c124949521998ba698ffe167f483c8c77eef8ee28423a79
SHA512 2b6f752c767a0252e9cab2713237775a7e22e1f33db3e9e2b9595e4958e5545e146ecf3f77fb189e926f9bdc6ffef74a1f77dc9069f9bb5bd85190e40c34982d

memory/4520-846-0x00000000744B0000-0x00000000744CA000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 648a8ac334c8b184c582690ee8c1f453
SHA1 5c318203420772ee7b1a0d6e07c0e296e3a80001
SHA256 956f0023117e8e53af6167dec3324ae6c5e223e40488b7157f577a8b5c60583b
SHA512 4cc13300683e588a8530f5e0ffcb3136e26d87d13e56bd2bbd674e0456e98971767c2c562c7ad2df1e42e415c57a4460340561dc1775811cdb420e51b6e0a208

memory/4520-875-0x00000000744B0000-0x00000000744CA000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7bad2cbe61df4877e424b34bb6b98b59
SHA1 6cd466119a2950d3414cee874b7a0448e1454f27
SHA256 99ad0c5ad4fc3787805363cc1853bb41b4a9814847e837fd3b1a53c9bdbbf4e7
SHA512 9d985c5e0a55abd8a12a0492d337b158ca6504bfd6a3c1a645fe3cc87c0d608171aeb3de6bbe40aed6534677c90a6a83a40666a915958baad49b7dce2e7812df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3cbe0d3465799e74ad353870c1f9b06d
SHA1 250359418ff260244224e812bd9a4ab0bd0267cd
SHA256 b2dc22eab6d60f1de97678e8d937ce87e09200ea6aa615d1d251aae3510e6f6f
SHA512 1af2ec32a8290c3c30f688a880e98ba76a6c7c28992b86311cfb8dd0cf0502264a760f657ed44cbfc33f604ff7164223f2063b5374d09fa75824a4cb9a8639d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ab4ff25a98ea4f76277b22c4bcaacea0
SHA1 35ba7bff9ab0401f1ced47051a5308b8a015c3eb
SHA256 90cc48f2d63048d634a29d2f87fd29a1b5dbb87760676ad431c79e0f72c57ec3
SHA512 df7e8dfc10a24fb3bc4a1bc6d5193f63ff84ead9e31760af68913560d9c993f6f451f43c295dc6eb601c51f91169693bea096d8fa36e55df112d19df7b36a823

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3a5690fc6870979979bc8ffdfd5b5f38
SHA1 561009227fe26d82d3fba70dc676c9032fee8f77
SHA256 047383033f407250a5472a2d45bb5547532611a9272eff00fb9d797f808a359d
SHA512 74a5c85978f3d13ab7e469cdeb7a0423738f07bbe73a7ceb70ed2e615ee5a54c670bca00283462cf8fc7be5c0f6eb9d47aa9f0a864b242d456b1b643ca2273c4