Malware Analysis Report

2025-06-16 00:54

Sample ID 241031-zz4b4avngj
Target https://ytmp4.io/en11/
Tags
defense_evasion discovery persistence privilege_escalation
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file https://ytmp4.io/en11/ was found to be: Likely malicious.

Malicious Activity Summary

defense_evasion discovery persistence privilege_escalation

Downloads MZ/PE file

Event Triggered Execution: Component Object Model Hijacking

Executes dropped EXE

Checks installed software on the system

Drops file in Windows directory

Drops file in Program Files directory

Subvert Trust Controls: Mark-of-the-Web Bypass

Enumerates physical storage devices

Browser Information Discovery

System Location Discovery: System Language Discovery

Program crash

NTFS ADS

Suspicious behavior: GetForegroundWindowSpam

Modifies data under HKEY_USERS

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

Enumerates system info in registry

Suspicious use of SendNotifyMessage

Suspicious use of FindShellTrayWindow

Modifies registry class

Suspicious behavior: EnumeratesProcesses

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-10-31 21:10

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-10-31 21:10

Reported

2024-10-31 21:20

Platform

win11-20241007-en

Max time kernel

600s

Max time network

597s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://ytmp4.io/en11/

Signatures

Downloads MZ/PE file

Event Triggered Execution: Component Object Model Hijacking

persistence privilege_escalation

Checks installed software on the system

discovery

Drops file in Program Files directory

Description Indicator Process Target
File opened for modification C:\Program Files\7-Zip\Lang\ru.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\pl.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\7z.exe C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\sr-spc.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\uk.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\va.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\7-zip32.dll C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Uninstall.exe C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ca.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ne.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\sl.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\az.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\co.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\zh-cn.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\7zG.exe C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\7zFM.exe C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\hr.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\tt.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\it.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\kk.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\si.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\af.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\gl.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\7zG.exe C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ast.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\be.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ro.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ku-ckb.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\nl.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\cs.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\io.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\vi.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ps.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\7z.sfx C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ka.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\it.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\lij.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\lt.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\hu.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\sk.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ug.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ky.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\uk.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\co.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\gu.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\tr.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\License.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File created C:\Program Files\7-Zip\7-zip.dll C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\nb.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\License.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\fr.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ar.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\hi.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ru.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\zh-tw.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\eo.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\ba.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\fur.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\mr.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\tk.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\History.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\History.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\fr.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A
File opened for modification C:\Program Files\7-Zip\Lang\tt.txt C:\Users\Admin\Downloads\7z2408-x64.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Subvert Trust Controls: Mark-of-the-Web Bypass

defense_evasion
Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\winzip76.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\winrar-x64-701.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\7z2408-x64.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates physical storage devices

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\winzip76.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\e608cb4\winzip76.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\winzip76.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\e6069ba\winzip76.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133748826894388530" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32 C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2584844841-1405471295-1760131749-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Content\CachePrefix C:\Windows\system32\BackgroundTransferHost.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2584844841-1405471295-1760131749-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\History\CachePrefix = "Visited:" C:\Windows\system32\BackgroundTransferHost.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2584844841-1405471295-1760131749-1000\{2763B626-60DA-4F74-80E5-6941E86B0CE6} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000} C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ = "C:\\Program Files\\7-Zip\\7-zip32.dll" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ThreadingModel = "Apartment" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ = "C:\\Program Files\\7-Zip\\7-zip.dll" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ThreadingModel = "Apartment" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\DragDropHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Drive\shellex\DragDropHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2584844841-1405471295-1760131749-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoftwindows.client.cbs_cw5n1h2txyewy\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:" C:\Windows\system32\BackgroundTransferHost.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000} C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\ = "7-Zip Shell Extension" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32 C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ThreadingModel = "Apartment" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ = "C:\\Program Files\\7-Zip\\7-zip32.dll" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32 C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\DragDropHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2584844841-1405471295-1760131749-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2584844841-1405471295-1760131749-1000_Classes\Local Settings\MuiCache C:\Windows\system32\BackgroundTransferHost.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Drive\shellex\DragDropHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32 C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ThreadingModel = "Apartment" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\ = "7-Zip Shell Extension" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\ = "7-Zip Shell Extension" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\DragDropHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32\ = "C:\\Program Files\\7-Zip\\7-zip.dll" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Drive\shellex\DragDropHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{23170F69-40C1-278A-1000-000100020000}\ = "7-Zip Shell Extension" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\7-Zip C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Directory\shellex\DragDropHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Drive\shellex\DragDropHandlers\7-Zip\ = "{23170F69-40C1-278A-1000-000100020000}" C:\Users\Admin\Downloads\7z2408-x64.exe N/A

NTFS ADS

Description Indicator Process Target
File created C:\Users\Admin\AppData\Local\Temp\e6069ba\winzip76.exe\:Zone.Identifier:$DATA C:\Users\Admin\Downloads\winzip76.exe N/A
File created C:\Users\Admin\AppData\Local\Temp\e608cb4\winzip76.exe\:Zone.Identifier:$DATA C:\Users\Admin\Downloads\winzip76.exe N/A
File opened for modification C:\Users\Admin\Downloads\Loader.zip:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\winrar-x64-701.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\7z2408-x64.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\winzip76.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files\7-Zip\7zFM.exe N/A
N/A N/A C:\Program Files\7-Zip\7zFM.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 5116 wrote to memory of 728 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 728 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 4732 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3372 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 5116 wrote to memory of 3196 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://ytmp4.io/en11/

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffe945b3cb8,0x7ffe945b3cc8,0x7ffe945b3cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1988 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2528 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3292 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3256 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4992 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4048 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4064 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5172 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5176 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5392 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe8134cc40,0x7ffe8134cc4c,0x7ffe8134cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1776,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1772 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1780,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2100 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2216,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2256 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3088,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3112 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3120,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3152 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3772,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4448 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4624,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4636 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4640,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3560 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4576,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4860 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4628,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5008 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4780,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5144 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4872,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4968 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5176,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5172 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4612,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4948 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5196,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5316 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4904,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5172 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5472,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5316 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5448,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5360 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=3496,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3448 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=3260,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3176 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=4932,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4952 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004DC 0x00000000000004D4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5240,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5212 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4592,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3412 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5320,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4616 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=5924,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4924 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1984,2192102868269328092,7542800605645092963,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1704 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6092,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6068 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=5340,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5904 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6236,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5292 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=5628,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=5700,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4960 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=5208,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6332 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6460,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6484 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6864,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6824 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=5416,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7036 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=6772,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6408 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5560,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6892 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=5916,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7040 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5824,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5804 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=7172,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6564 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7224,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6480 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7384,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7420 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7372,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7532 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=5912,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6472 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=6888,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6664 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=7412,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6892 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=6704,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7732 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7220,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7656 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=4696,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6732 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7136,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6700 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=7112,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7764 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2276,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6956 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6380,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5212 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7424,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5300 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=7420,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5020 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=7272,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6720 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7040,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7760 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7288,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6872 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=7388,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5660 /prefetch:8

C:\Users\Admin\Downloads\winrar-x64-701.exe

"C:\Users\Admin\Downloads\winrar-x64-701.exe"

C:\Windows\system32\werfault.exe

werfault.exe /h /shared Global\2b32b1778cd04ff08277a4ff83ef44a3 /t 5988 /p 2332

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=8068,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6904 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8480,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8488 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=8512,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8624 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8776,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8784 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8920,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8752 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8892,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8880 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=8320,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8164 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8452,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8204 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8056,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7260 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=7592,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5444 /prefetch:8

C:\Users\Admin\Downloads\7z2408-x64.exe

"C:\Users\Admin\Downloads\7z2408-x64.exe"

C:\Windows\system32\BackgroundTransferHost.exe

"BackgroundTransferHost.exe" -ServerName:BackgroundTransferHost.13

C:\Users\Admin\Downloads\7z2408-x64.exe

"C:\Users\Admin\Downloads\7z2408-x64.exe"

C:\Users\Admin\Downloads\winrar-x64-701.exe

"C:\Users\Admin\Downloads\winrar-x64-701.exe"

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe"

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe"

C:\Program Files\7-Zip\7z.exe

"C:\Program Files\7-Zip\7z.exe"

C:\Program Files\7-Zip\7z.exe

"C:\Program Files\7-Zip\7z.exe"

C:\Program Files\7-Zip\7z.exe

"C:\Program Files\7-Zip\7z.exe"

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe"

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe"

C:\Windows\system32\werfault.exe

werfault.exe /h /shared Global\2f9d1df19b144dd4a10115ca5b5fe74a /t 1096 /p 4624

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=8216,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=8236,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6728 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=7564,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8380 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=8200,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8432 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8824,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8816 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8772,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9116 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=9416,i,14854480789884538269,8894463389127552665,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9392 /prefetch:8

C:\Users\Admin\Downloads\winzip76.exe

"C:\Users\Admin\Downloads\winzip76.exe"

C:\Users\Admin\AppData\Local\Temp\e6069ba\winzip76.exe

run=1 shortcut="C:\Users\Admin\Downloads\winzip76.exe"

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -pss -s 484 -p 3712 -ip 3712

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -u -p 3712 -s 2108

C:\Users\Admin\Downloads\winzip76.exe

"C:\Users\Admin\Downloads\winzip76.exe"

C:\Users\Admin\AppData\Local\Temp\e608cb4\winzip76.exe

run=1 shortcut="C:\Users\Admin\Downloads\winzip76.exe"

Network

Country Destination Domain Proto
US 8.8.8.8:53 ytmp4.io udp
US 104.21.43.82:443 ytmp4.io tcp
US 104.21.43.82:443 ytmp4.io tcp
US 104.20.95.138:443 www.statcounter.com tcp
NL 18.239.94.91:443 platform-api.sharethis.com tcp
NL 18.239.94.91:443 platform-api.sharethis.com tcp
US 104.20.95.138:443 www.statcounter.com tcp
US 8.8.8.8:53 113.39.65.18.in-addr.arpa udp
US 8.8.8.8:53 138.95.20.104.in-addr.arpa udp
US 8.8.8.8:53 l.sharethis.com udp
US 8.8.8.8:53 buttons-config.sharethis.com udp
IE 54.73.173.86:443 l.sharethis.com tcp
NL 18.239.94.112:443 buttons-config.sharethis.com tcp
N/A 224.0.0.251:5353 udp
NL 18.239.36.71:443 count-server.sharethis.com tcp
NL 18.238.243.108:443 platform-cdn.sharethis.com tcp
NL 18.238.243.108:443 platform-cdn.sharethis.com tcp
NL 18.238.243.108:443 platform-cdn.sharethis.com tcp
NL 18.238.243.108:443 platform-cdn.sharethis.com tcp
NL 18.238.243.108:443 platform-cdn.sharethis.com tcp
NL 18.238.243.108:443 platform-cdn.sharethis.com tcp
IE 54.73.173.86:443 l.sharethis.com tcp
US 8.8.8.8:53 108.243.238.18.in-addr.arpa udp
US 8.8.8.8:53 86.173.73.54.in-addr.arpa udp
GB 142.250.179.228:443 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
US 8.8.8.8:53 228.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
GB 142.250.187.234:443 ogads-pa.googleapis.com udp
GB 142.250.187.206:443 apis.google.com udp
GB 142.250.187.234:443 ogads-pa.googleapis.com tcp
GB 142.250.200.14:443 play.google.com udp
GB 142.250.200.14:443 play.google.com tcp
GB 142.250.178.14:443 clients2.google.com udp
GB 142.250.178.14:443 clients2.google.com tcp
GB 216.58.204.65:443 clients2.googleusercontent.com udp
GB 142.250.187.234:443 ogads-pa.googleapis.com tcp
GB 142.250.187.234:443 ogads-pa.googleapis.com udp
GB 142.250.200.14:443 play.google.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.14:443 play.google.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 172.217.16.238:443 www.youtube.com tcp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com tcp
GB 216.58.212.238:443 www.youtube.com udp
GB 172.217.169.86:443 i.ytimg.com tcp
GB 172.217.169.86:443 i.ytimg.com tcp
US 8.8.8.8:53 238.212.58.216.in-addr.arpa udp
GB 142.250.179.228:443 www.google.com udp
US 8.8.8.8:53 accounts.google.com udp
BE 108.177.15.84:443 accounts.google.com tcp
BE 108.177.15.84:443 accounts.google.com udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 84.15.177.108.in-addr.arpa udp
GB 216.58.204.74:443 jnn-pa.googleapis.com tcp
US 172.217.131.170:443 rr5---sn-q4fl6nss.googlevideo.com tcp
US 172.217.131.170:443 rr5---sn-q4fl6nss.googlevideo.com tcp
US 172.217.131.170:443 rr5---sn-q4fl6nss.googlevideo.com tcp
US 172.217.131.170:443 rr5---sn-q4fl6nss.googlevideo.com tcp
GB 142.250.179.228:443 www.google.com tcp
GB 142.250.179.238:443 youtube.com tcp
US 172.217.131.170:443 rr5---sn-q4fl6nss.googlevideo.com tcp
GB 142.250.179.228:443 www.google.com tcp
GB 142.250.179.238:443 youtube.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
GB 142.250.200.14:443 www.youtube.com udp
GB 216.58.204.74:443 jnn-pa.googleapis.com udp
US 172.217.131.170:443 rr5---sn-q4fl6nss.googlevideo.com tcp
GB 172.217.169.86:443 i.ytimg.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
GB 142.250.179.238:443 youtube.com udp
GB 142.250.180.6:443 static.doubleclick.net tcp
GB 142.250.187.206:443 suggestqueries-clients6.youtube.com tcp
GB 142.250.187.206:443 suggestqueries-clients6.youtube.com udp
GB 142.250.187.206:443 suggestqueries-clients6.youtube.com udp
GB 142.250.179.228:443 www.google.com udp
GB 142.250.187.225:443 yt3.ggpht.com tcp
NL 74.125.8.72:443 rr3---sn-5hneknee.googlevideo.com tcp
NL 74.125.8.72:443 rr3---sn-5hneknee.googlevideo.com udp
GB 142.250.187.225:443 yt3.ggpht.com udp
NL 172.217.132.230:443 rr1---sn-5hne6n6e.googlevideo.com udp
US 8.8.8.8:53 230.132.217.172.in-addr.arpa udp
NL 74.125.8.198:443 rr1---sn-5hneknes.googlevideo.com udp
NL 74.125.8.198:443 rr1---sn-5hneknes.googlevideo.com udp
NL 172.217.132.199:443 rr2---sn-5hnednss.googlevideo.com udp
US 8.8.8.8:53 199.132.217.172.in-addr.arpa udp
US 8.8.8.8:53 rr1---sn-5hnekn7l.googlevideo.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com tcp
NL 74.125.100.6:443 rr1---sn-5hnekn7l.googlevideo.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 rr1---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 rr4---sn-5hnednsz.googlevideo.com udp
GB 172.217.169.86:443 i.ytimg.com udp
NL 74.125.8.233:443 rr4---sn-5hnednsz.googlevideo.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com tcp
NL 74.125.8.102:443 rr1---sn-5hne6nzs.googlevideo.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
GB 216.58.204.74:443 jnn-pa.googleapis.com udp
GB 216.58.212.238:443 www.youtube.com udp
BE 108.177.15.84:443 accounts.google.com udp
BE 108.177.15.84:443 accounts.google.com tcp
BE 108.177.15.84:443 accounts.google.com tcp
GB 142.250.200.14:443 www.youtube.com udp
NL 74.125.8.102:443 rr1---sn-5hne6nzs.googlevideo.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
GB 216.58.212.238:443 www.youtube.com udp
GB 142.250.187.206:443 www.youtube.com udp
US 8.8.8.8:53 www.mediafire.com udp
US 104.17.151.117:443 static.mediafire.com tcp
US 8.8.8.8:53 ajax.googleapis.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
US 104.17.151.117:443 static.mediafire.com udp
US 104.17.150.117:443 static.mediafire.com udp
NL 18.239.18.117:443 cdn.amplitude.com tcp
GB 163.70.151.21:443 connect.facebook.net tcp
GB 142.250.178.14:443 translate.google.com tcp
US 52.43.54.228:443 api.amplitude.com tcp
US 8.8.8.8:53 117.18.239.18.in-addr.arpa udp
US 8.8.8.8:53 8.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
GB 216.58.204.74:443 translate-pa.googleapis.com tcp
GB 163.70.151.21:443 connect.facebook.net udp
US 52.43.54.228:443 api.amplitude.com tcp
GB 172.217.169.10:443 translate.googleapis.com tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
BE 142.251.168.154:443 stats.g.doubleclick.net tcp
GB 216.58.204.67:443 www.google.co.uk tcp
GB 157.240.221.35:443 www.facebook.com tcp
GB 216.58.204.74:443 translate-pa.googleapis.com udp
GB 142.250.180.10:443 translate-pa.googleapis.com tcp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 172.217.169.10:443 translate.googleapis.com udp
GB 142.250.180.4:443 www.google.com udp
US 172.67.199.186:443 the.gatekeeperconsent.com tcp
US 172.67.41.60:443 btloader.com tcp
GB 142.250.178.14:443 translate.google.com udp
US 104.21.63.106:443 www.ezojs.com tcp
US 104.21.42.32:443 the.gatekeeperconsent.com tcp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 104.21.42.32:443 the.gatekeeperconsent.com udp
US 172.67.199.186:443 the.gatekeeperconsent.com udp
US 104.19.208.227:443 otnolatrnup.com tcp
US 8.8.8.8:53 32.42.21.104.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 8.8.8.8:53 227.208.19.104.in-addr.arpa udp
US 104.26.3.70:443 ad-delivery.net tcp
US 104.26.3.70:443 ad-delivery.net tcp
FR 13.37.187.223:443 g.ezoic.net tcp
US 172.67.199.186:443 the.gatekeeperconsent.com udp
US 104.21.87.79:443 g.ezodn.com tcp
US 104.21.87.79:443 g.ezodn.com tcp
US 104.21.87.79:443 g.ezodn.com tcp
US 130.211.23.194:443 api.btloader.com tcp
US 104.26.2.173:443 www.mediafiredls.com tcp
US 130.211.23.194:443 api.btloader.com tcp
US 104.21.87.79:443 g.ezodn.com udp
GB 142.250.180.10:443 translate-pa.googleapis.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 172.67.142.121:443 g.ezodn.com tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
US 172.67.142.121:443 g.ezodn.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
IE 54.194.72.83:443 id.crwdcntrl.net tcp
NL 18.239.18.12:443 tags.crwdcntrl.net tcp
IE 79.125.104.96:443 id.crwdcntrl.net tcp
US 8.8.8.8:53 121.142.67.172.in-addr.arpa udp
US 8.8.8.8:53 12.18.239.18.in-addr.arpa udp
US 8.8.8.8:53 83.72.194.54.in-addr.arpa udp
US 8.8.8.8:53 96.104.125.79.in-addr.arpa udp
GB 172.217.169.78:443 fundingchoicesmessages.google.com tcp
GB 172.217.169.78:443 fundingchoicesmessages.google.com udp
US 172.67.23.234:443 id.hadron.ad.gt tcp
DE 79.127.216.47:443 c3.a-mo.net tcp
FR 13.37.187.223:443 g.ezoic.net tcp
DE 141.95.33.120:443 id5-sync.com tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
US 34.120.133.55:443 api.rlcdn.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
GB 87.248.114.11:443 ups.analytics.yahoo.com tcp
US 35.71.131.137:443 match.adsrvr.org tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
US 34.96.70.87:443 invstatic101.creativecdn.com tcp
US 34.102.146.192:443 oa.openxcdn.net tcp
US 172.64.152.89:443 cdn-ima.33across.com tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
NL 178.250.1.3:443 static.criteo.net tcp
DE 79.127.216.47:443 c3.a-mo.net tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 141.95.98.65:443 id5-sync.com tcp
US 34.120.135.53:443 oajs.openx.net tcp
GB 216.58.212.225:443 ep2.adtrafficquality.google tcp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
GB 216.58.212.225:443 ep2.adtrafficquality.google tcp
GB 142.250.180.4:443 www.google.com tcp
US 34.120.135.53:443 oajs.openx.net udp
DE 3.124.64.248:443 tlx.3lift.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
IE 52.214.64.178:443 ads.yieldmo.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
DE 51.89.9.253:443 onetag-sys.com tcp
NL 18.239.50.87:443 hb.yellowblue.io tcp
FR 163.5.194.30:443 prebid.a-mo.net tcp
IE 18.203.163.82:443 ap.lijit.com tcp
IE 34.250.191.127:443 hb.minutemedia-prebid.com tcp
US 34.98.64.218:443 google-bidout-d.openx.net tcp
GB 172.217.169.65:443 tpc.googlesyndication.com tcp
GB 172.217.169.65:443 tpc.googlesyndication.com udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 216.58.213.1:443 f0e0c75e2845eb5e116a2ed25f20cf04.safeframe.googlesyndication.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 199.91.155.19:443 download2278.mediafire.com tcp
US 199.91.155.19:443 download2278.mediafire.com tcp
US 104.18.159.164:443 otnolatrnup.com tcp
US 104.18.159.164:443 otnolatrnup.com tcp
GB 172.217.169.65:443 tpc.googlesyndication.com tcp
GB 172.217.169.65:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 253.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 82.163.203.18.in-addr.arpa udp
US 8.8.8.8:53 127.191.250.34.in-addr.arpa udp
US 8.8.8.8:53 218.64.98.34.in-addr.arpa udp
GB 142.250.180.1:443 cdn.ampproject.org tcp
GB 142.250.180.1:443 cdn.ampproject.org tcp
GB 142.250.180.1:443 cdn.ampproject.org tcp
GB 142.250.180.1:443 cdn.ampproject.org tcp
GB 142.250.180.1:443 cdn.ampproject.org tcp
GB 172.217.169.65:443 tpc.googlesyndication.com udp
US 104.18.159.164:443 otnolatrnup.com udp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
GB 142.250.200.14:443 play.google.com udp
US 104.18.159.164:80 otnolatrnup.com tcp
US 104.18.159.164:80 otnolatrnup.com tcp
NL 13.227.219.49:443 check.analytics.rlcdn.com tcp
GB 54.230.10.104:443 woreppercomming.com tcp
GB 216.58.212.225:443 ep2.adtrafficquality.google udp
US 172.67.141.135:443 www.chancial.com tcp
DE 3.126.30.43:443 www.opera.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
GB 216.58.201.110:443 www.googleoptimize.com tcp
GB 104.123.95.139:443 cdn-production-opera-website.operacdn.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
DE 3.126.30.43:443 www.opera.com tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 163.70.151.21:443 connect.facebook.net udp
GB 157.240.221.35:443 www.facebook.com udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.187.234:443 translate-pa.googleapis.com udp
GB 142.250.200.14:443 play.google.com udp
GB 142.250.187.234:443 translate-pa.googleapis.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 172.217.169.86:443 i.ytimg.com tcp
GB 172.217.169.86:443 i.ytimg.com tcp
GB 172.217.169.86:443 i.ytimg.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.187.206:443 www.youtube.com tcp
GB 142.250.200.14:443 play.google.com udp
GB 142.250.187.206:443 www.youtube.com udp
GB 172.217.169.86:443 i.ytimg.com tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
GB 142.250.180.6:443 static.doubleclick.net tcp
GB 142.250.200.42:443 translate-pa.googleapis.com tcp
GB 142.250.200.42:443 translate-pa.googleapis.com udp
GB 142.250.200.14:443 play.google.com tcp
GB 142.250.200.14:443 play.google.com tcp
GB 142.250.200.14:443 play.google.com udp
US 74.125.34.46:443 www.virustotal.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
GB 142.250.200.3:443 recaptcha.net tcp
GB 142.250.200.3:443 recaptcha.net tcp
GB 216.58.204.74:443 translate-pa.googleapis.com tcp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.200.3:443 recaptcha.net udp
US 74.125.34.46:443 www.virustotal.com tcp
US 216.239.32.36:443 region1.google-analytics.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
BE 108.177.15.84:443 accounts.google.com udp
US 104.21.87.79:443 g.ezodn.com udp
GB 172.217.169.65:443 tpc.googlesyndication.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 157.240.221.35:443 www.facebook.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com tcp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
NL 216.58.208.99:443 beacons5.gvt3.com tcp
GB 142.250.180.4:443 www.google.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
NL 216.58.208.99:443 beacons5.gvt3.com tcp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.187.234:443 translate-pa.googleapis.com udp
GB 142.250.200.14:443 play.google.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.187.234:443 translate-pa.googleapis.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.14:443 play.google.com udp
DE 51.195.68.163:443 www.win-rar.com tcp
DE 51.195.68.163:443 www.win-rar.com tcp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com tcp
NL 142.250.179.195:443 beacons.gcp.gvt2.com tcp
US 34.1.16.64:443 e2c78.gcp.gvt2.com tcp
NL 216.58.208.99:443 beacons5.gvt3.com tcp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.200.3:443 recaptcha.net udp
GB 172.217.16.243:443 bigfiles.virustotal.com tcp
GB 172.217.16.243:443 bigfiles.virustotal.com tcp
GB 172.217.16.243:443 bigfiles.virustotal.com tcp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 142.250.187.206:443 www.youtube.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.187.234:443 translate-pa.googleapis.com udp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
GB 172.217.16.238:443 play.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.187.234:443 translate-pa.googleapis.com udp
GB 142.250.180.4:443 www.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 172.217.16.238:443 play.google.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn0.gstatic.com tcp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
DE 49.12.202.237:443 www.7-zip.org tcp
DE 49.12.202.237:443 www.7-zip.org tcp
DE 49.12.202.237:443 www.7-zip.org tcp
US 8.8.8.8:53 237.202.12.49.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 objects.githubusercontent.com udp
US 185.199.110.133:443 objects.githubusercontent.com tcp
GB 2.18.66.177:443 tcp
GB 92.123.128.135:443 r.bing.com tcp
GB 92.123.128.135:443 r.bing.com tcp
GB 92.123.128.135:443 r.bing.com tcp
GB 92.123.128.135:443 r.bing.com tcp
GB 92.123.128.135:443 r.bing.com tcp
GB 92.123.128.135:443 r.bing.com tcp
GB 142.250.187.206:443 www.youtube.com udp
US 8.8.8.8:53 135.128.123.92.in-addr.arpa udp
US 20.189.173.11:443 browser.pipe.aria.microsoft.com tcp
US 8.8.8.8:53 11.173.189.20.in-addr.arpa udp
GB 92.123.128.183:443 www.bing.com tcp
US 8.8.8.8:53 222.197.79.204.in-addr.arpa udp
GB 142.250.180.14:443 www.youtube.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
NL 142.250.179.195:443 beacons.gcp.gvt2.com udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.10:443 ogads-pa.googleapis.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.14:443 play.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
FR 23.206.201.196:443 www.corel.com tcp
FR 23.206.201.196:443 www.corel.com tcp
US 104.18.66.57:443 a25968344087.cdn.optimizely.com tcp
US 104.18.66.57:443 a25968344087.cdn.optimizely.com tcp
US 104.17.249.203:443 unpkg.com tcp
US 104.18.86.42:443 cdn.cookielaw.org tcp
FR 23.206.201.196:443 www.corel.com tcp
US 104.18.86.42:443 cdn.cookielaw.org tcp
US 172.64.155.119:443 privacyportal.onetrust.com tcp
US 8.8.8.8:53 119.155.64.172.in-addr.arpa udp
US 8.8.8.8:53 42.86.18.104.in-addr.arpa udp
US 216.239.34.36:443 region1.google-analytics.com tcp
GB 2.18.63.13:443 download.winzip.com tcp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 2.18.63.13:443 download.winzip.com tcp
US 104.18.32.137:443 privacyportal.onetrust.com tcp
US 8.8.8.8:53 137.32.18.104.in-addr.arpa udp
US 35.174.196.205:80 www.ssl.com tcp
NL 18.239.36.9:80 crls.ssl.com tcp
US 35.83.82.206:443 www.installportal.com tcp
US 35.83.82.206:443 www.installportal.com tcp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 02a4b762e84a74f9ee8a7d8ddd34fedb
SHA1 4a870e3bd7fd56235062789d780610f95e3b8785
SHA256 366e497233268d7cdf699242e4b2c7ecc1999d0a84e12744f5af2b638e9d86da
SHA512 19028c45f2e05a0cb32865a2554513c1536bf9da63512ff4e964c94a3e171f373493c7787d2d2a6df8012648bbefab63a9de924f119c50c39c727cf81bdc659f

\??\pipe\LOCAL\crashpad_5116_VANAUHTXCNFYVUER

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 826c7cac03e3ae47bfe2a7e50281605e
SHA1 100fbea3e078edec43db48c3312fbbf83f11fca0
SHA256 239b1d7cc6f76e1d1832b0587664f114f38a21539cb8548e25626ed5053ea2ab
SHA512 a82f3c817a6460fd8907a4ac6ab37c2129fb5466707edcfb565c255680d7f7212a5669fe2a42976150f16e4e549ea8310078f22ed35514ee1b7b45b46d8cc96e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b66efab9c9620be8bd46f7a68b86198d
SHA1 03be64352195b0741d3f931f38f2ad161e3e94f3
SHA256 110aefee4ade7ce73736470c82376da5f36b671148323bba92494c28a219b79c
SHA512 30db4fffe2b53dfd532d6eaee893ffd63597aa651c94d577c996488df4d90ee50175550e260b95b27417f5cc59c111d2d6518c462dbaa25719a4f7cfb6dc3d3f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 dfc7ed3622b6c852b38c88e7b2dd94d9
SHA1 73b27ccb4c6c50de9cf7649d4bc9fe8d130ac157
SHA256 e8b38cd54b01db06c7d6ea16cf4d5ad7e0bcaac5e5209d862b3d1efba10b1a16
SHA512 30410ba8ab26379ccb817d38f63331822b4f6ac3b7633aacd082391be7d4861d8d2f56b0984941a4970a8a49d44cf103328c4babb588008d74b0c0302c3f3833

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 798f4f9c21a8a28a6f32f0791de218ef
SHA1 ad52a6edf707750c6943f2ef0684bb5e886b42f0
SHA256 d90c4a09b89ec031837a5f66528f6f0d744d5f966288eff75115015288392320
SHA512 fb06cd23f9096aedefa63fa37662783d1d8529b9fd301c3caf58005508738a942429d63d1f54e2e3a52fe8df3bf7ad4eb968a94687c715f66545b259f312db25

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 206702161f94c5cd39fadd03f4014d98
SHA1 bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA256 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA512 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 d4b9c38f2e7dc03ca6dc0fb1987630d9
SHA1 e655737c47f605773fde35c4353a88975c7c1308
SHA256 d44e9eb59242f9752a5810674a080501ccce3f0ced48c8b5a7256182688a034c
SHA512 aa50a84b2e15c806da8aa55acc10b6ce2383aa32d434da973c78098e1bc57fe8bd2434ccf04652a57d6b0733102514b2f35e1ecc4f38d5bfea3a31cc937c530a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 354ca138af242757a7584bfbae95537d
SHA1 8b51f19d888e0ac7c7e009e3d13a5104b895a287
SHA256 2009577e193ccef83b079f5789d6c1538a623ba1c99d63d873df38fd72e1d56b
SHA512 1ed37c6cf67bcdc4370d513a051b60fb8814a8f3acc8609424e84f4a45cf808385a8bf6a6732bf4aeed5d86b449d3fbe6412012075e18abb460b6d36b9a155d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Temp\ca6e6d61-89b6-4715-a200-da831fefba31.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Temp\scoped_dir2664_880216347\f58f198e-3b9f-4011-a650-f9bc29295879.tmp

MD5 da75bb05d10acc967eecaac040d3d733
SHA1 95c08e067df713af8992db113f7e9aec84f17181
SHA256 33ae9b8f06dc777bb1a65a6ba6c3f2a01b25cd1afc291426b46d1df27ea6e7e2
SHA512 56533de53872f023809a20d1ea8532cdc2260d40b05c5a7012c8e61576ff092f006a197f759c92c6b8c429eeec4bb542073b491ddcfd5b22cd4ecbe1a8a7c6ef

C:\Users\Admin\AppData\Local\Temp\scoped_dir2664_880216347\CRX_INSTALL\_locales\en_CA\messages.json

MD5 558659936250e03cc14b60ebf648aa09
SHA1 32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825
SHA256 2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b
SHA512 1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.83.1_0\dasherSettingSchema.json

MD5 4ec1df2da46182103d2ffc3b92d20ca5
SHA1 fb9d1ba3710cf31a87165317c6edc110e98994ce
SHA256 6c69ce0fe6fab14f1990a320d704fee362c175c00eb6c9224aa6f41108918ca6
SHA512 939d81e6a82b10ff73a35c931052d8d53d42d915e526665079eeb4820df4d70f1c6aebab70b59519a0014a48514833fefd687d5a3ed1b06482223a168292105d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.83.1_0\_locales\en_CA\messages.json

MD5 07ffbe5f24ca348723ff8c6c488abfb8
SHA1 6dc2851e39b2ee38f88cf5c35a90171dbea5b690
SHA256 6895648577286002f1dc9c3366f558484eb7020d52bbf64a296406e61d09599c
SHA512 7ed2c8db851a84f614d5daf1d5fe633bd70301fd7ff8a6723430f05f642ceb3b1ad0a40de65b224661c782ffcec69d996ebe3e5bb6b2f478181e9a07d8cd41f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 9cb35bb85d7df9266c61b0d883556339
SHA1 a388ab6c29693097f7cd2fff8643e9549c4f0e1c
SHA256 b3d4196cc08edd1081b6ccefb648d65c38661f3b196c79a8560a8f7062c0e434
SHA512 72d31e814bec54ff45dcaa1a5b87f95855c9ff118eb3da66821e1e7241262eaed7dab40ecf1caec4b79be24dfbf688faf7a9c3c361dba8124a357f296944cf06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 d5dd737c0e50a95ae4f6bb1419b5a93d
SHA1 489a24b0bd32a4a5986ad8f0fa4e86d5d4b4abf2
SHA256 2c2f015d022d71dc682e31ff937bb7111f494fd8ac9f319cc278e9199289261b
SHA512 ce00e2bf436240a2807d762a16b007863a47f3878e8383b1e74f4f4dedc73ddeef701f726853871642ed159af4f08ad6100f45528b229b78e0f957c57ffb462f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bcaeff29bf17f1173e028c7ba97fadf6
SHA1 31a57c0a341f93197c3a73edd5f4127b60488e1f
SHA256 899cb746cbd44c05e9e78cef7a281c4eab307e7b9ed66ff2dba5bd4e2c408bfb
SHA512 5f157ce08d36932e3bd153231b4c213940cb11eb10ee27c77d122ca5a544418166e8ee2f3b07fceabb4c459f667a8e2b857c7ea1ce47a0eedff03d0d6f5df3a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 39ca1097e3d85af1d3aef57310e63426
SHA1 290624531f0dba05dcd655fb813046f71dd9925e
SHA256 a1d3543d201093fe5cb8ed998f842e979181bf9209aefa40142512826c12d9eb
SHA512 4dff982e4b9a65f38e35d1eae0c78b645ffababdc896adb2b739d978addb1a2eb14384cb4d6fb833a4e851bf351efb17438e8d21ddf383137819d2bf1f82d5ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 7f3c704ec4a87bac87f4b80f0e4967a7
SHA1 f7f7c19183d5b5e8fbfb2e8c852b83ebb00103f6
SHA256 e30e1f29cab06551a2a46aea45e3a105e2e41037cc58385d2c4e3cee9c5d0398
SHA512 504045876ad64cc47d3d7c2ee275c85fe4c2020c86351586869e5f065616266f1e9c7389f2d314c1fbc0c08a09ebba87d3e2871a25bea0522f79b36fa8672f83

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7672e9a40bc1b8563641a79721e1adaf
SHA1 f338680f786cb7ee6b8b0ee5e86e3fb810cd2be8
SHA256 2e22adc382e2a5c0d625cea39a1b55547497d0a4df6d2e6c3633a1cebe92927e
SHA512 67d258e3475d7812db2edf4fb06b7a8dc69c82a147410b94d4807cbce4e258146c1ee8840e4e67ff14f67ec50d0b50fab82a22cb0b51cd58289ce925ebbd7adf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 08c058d8dbe002f1343a8abe6a51d0e2
SHA1 1e498ccbd3b4efb9abc9848f0ea490a1711d6a0c
SHA256 04e9f57450bb0b6d1bebfed146c98123f769cacbea796f22465d7ed3550d8120
SHA512 3bb1ee834e72f796df28b1ca25eae25f4588e7f4bcf4463183dfa1629600086913a22f59191f1053921aa48367fdad48a1a5da50da747608962c7568ebc57495

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe584958.TMP

MD5 13b25408d100178754b735ee1e8c0695
SHA1 9e39cb02e1d75af7587013677e5562e27a9d51a9
SHA256 eb6e7d2adc5ae2ccb8bf2974ada8afbbf1371957278caacfa5f0528b9b2eecfb
SHA512 fd800f21373736244a4f98e8d48679fcdabe22d9b18dec08a6bd06378b3c93cb164f70c94792ec772442ca99cd669d1bcaf49d7b1773371e4e2671ee98c3fb08

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 76b577dc561c6aeeef1d3a68c1193ae4
SHA1 1814a1984c5fb179f000641baac219f177d2a593
SHA256 0987e10532c5421d4141fd018c9c7a26866af5878612a91eb27ffe35e924a258
SHA512 39a3ae13223fa458ea138b570953ec4b96cb9733d27b1411e205edb79ce87c2c843651f433ad7ed0405919bbace538da9593a29dbdf39d49d22527dc2bc9d7f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2664_13183733\Shortcuts Menu Icons\Monochrome\0\512.png

MD5 206fd9669027c437a36fbf7d73657db7
SHA1 8dee68de4deac72e86bbb28b8e5a915df3b5f3a5
SHA256 0d17a989f42bc129aca8e755871a7025acb6292ce06ca2437e95bedbc328fa18
SHA512 2c89878ec8466edf1f214d918aefc6a9b3de46d06ffacff4fdb85566560e94068601b1e4377d9d2eabefdc1c7f09eb46b00cf4545e377cc84a69edf8e57e48b2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2664_13183733\Shortcuts Menu Icons\Monochrome\1\512.png

MD5 529a0ad2f85dff6370e98e206ecb6ef9
SHA1 7a4ff97f02962afeca94f1815168f41ba54b0691
SHA256 31db550eb9c0d9afd316dc85cdfd832510e2c48e7d37d4a610c175667a4599c6
SHA512 d00e2d741a0a6321c92a4aab632f8f3bafd33c0e2875f37868e195ed5e7200a647b4c83358edcef5fc7acbc5c57f70410903f39eac76e23e88a342ac5c9c21cd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\45522dce-2698-4cc5-82a7-521b7e0a6a1a\index-dir\the-real-index

MD5 390aa3843e816167b1f9e7e7f4baec54
SHA1 153efab2099744ee23f4070649ae77bc20d9da1c
SHA256 2068b5e43aeff8cac47ec55b9570cfaf694a7020076d72f48bd7e01a7a5aace2
SHA512 e375d3754d2495ab0d491f81b45a976c8eff291044e635e790b78c2d69d0b864851f47788f8d25b39590b91fabce0158ec4267efac6ea66ae5813b10e2f8a3af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\45522dce-2698-4cc5-82a7-521b7e0a6a1a\index-dir\the-real-index~RFe5858aa.TMP

MD5 1053bc58a7bc99270420a458f5b1fd70
SHA1 b62fdc35c6a011bb95b0ef3777fd0498b206dfd8
SHA256 aaf183a4d91aa3317512b1449a9606ebe539f0cd02b740df1c7279e9411a5630
SHA512 b0ac1b5d4d0b2e50c7226d4810037e98270366b3ba0ab8878aa5194bc8ad7d3c23cae756f00fe4c2e5360867734ef2c44831f89520c8ec90231568901bece4aa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 40977511facddbbf7db44f9db9af4fa2
SHA1 9692cef496c2002814523350ef825a807407e915
SHA256 c41d33ab3ccb500f50c15349d7d3d92c683b07781b4bb21b78965fd9b8d303d3
SHA512 de7524c80e75809f94e6757832163078b7dec3476f20aea59bb75467b18aaf5d7b8c42a5d7e3b80d4b9204ffeccc6d7fb40aa19d3a0277cb901950cd2d3d466d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 d660514f915687d2a4e13f3289915e1d
SHA1 4a895eb1e16e89fce10413a722147d909edd024d
SHA256 956177501a448845ca8e5749d8e006b027e4236bda0bdf970fd73d6ab54eb592
SHA512 ea1c1044c62f3c94c6c25b8b34464d58e5b118acc952ef4e4219dc3a12eb54146a5bc99e428c4fcb024b45b679cd9d3d9181a4eede50254909c9a46874a43e2c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 2d0c9b133814a2beac23c22827b03198
SHA1 ccbbb0d38a5d3a66bcbc05e672175351b40df058
SHA256 2c7ac056762a2ba671722be50da2cbd164a73fc41601719b9790cc9874ddf8cf
SHA512 8d572710c6c1adc5a6d16954dd30fa3837506c1f1184ba0c118eef82e175893eba89c92961df5c3a5073ee481bbd8c9a954a25adbb576b03ffde1f25f82a7ade

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\708d9e81-d6ef-4462-aea3-63e7718cf595\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 e1d772a0434aac90a2629fa146e401db
SHA1 c0d14b8584557e8be6c9cdeae26521d8845dcf4f
SHA256 d848d3c243a473b309dac3714e7b2499c14ab1a2f6e8a23dd75bbe035f93ce9a
SHA512 21e262bc228a7ce8763192bc8328b8a82fd28c47d509e0d0fa781323a0673a3440b88ca0354a8e23016a98e05dcac041ecee2d7d185258143556a46354196f89

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d

MD5 c13a4abe06af6a47d5e62517fcd4915b
SHA1 a2ae312b8e96890ae55f56c73e4e4c1afa96685c
SHA256 c0e700686718ba247defdde0846e7e45f7c2afe880e4ac520373094089cf2d36
SHA512 442b611fb1a9b330e15ef1c37ea42b1479861668a9e4233f27d6faa135ed8a20dbe9dc600cca519167897994cd03669dd2d980e3aca6f75bb3498be0917a3545

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

MD5 27d28e1ca9ba29c9692d527d8c9d5b38
SHA1 45470fd64bc00570d10b2baa537e82c4b6a177b5
SHA256 18eac61511697a508351592171e09505fa5fdd7eb1d4bd963a60aa493c15dd58
SHA512 8605fd6bbb6b714cafc33d05c02fe91f7b292013e53a84e15f4a1a75f5680f1b10d7abba900134860ad0f3b2d4f82a95b22caaad4f6421b5438ffa956ca22580

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

MD5 62648e6e3910199480832b555c8418a8
SHA1 870b6a7bb756b92f3499a20f3d3fea6b320b25ab
SHA256 8631d292e0c4e26adb84ef6a8635aac042ca4615b3fb2c610c66581093ccf274
SHA512 196bfbbd286b7567480513201df291e2295eaaa361ad77620a63fb97b2e657dcac50b34ddbda274a8070385d15359b58b8140f72e38e77ad78e01b543168c401

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 c516fc64c2ce2da54e42fa31bd5e663a
SHA1 91323242547fb20ba7c4751ba23469907dcf38e3
SHA256 23625b65966e0e7aee05db5af64384107139cfb3b23783e51e2d98bd6b7c8921
SHA512 69b802c19e43c72d0ba03b12ea31b9a4034073ef7cd9db7c6bf1ba649a927abc99ad08655c78bc9ce380a6ee48442533ad23ac44e2728252f040a20b598f7296

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b88fb57fa524f4c975bdc1b600a7b6ac
SHA1 dc8e5abf3a96b1d25f4f60a1464727d37a602a0e
SHA256 21b0aeaafbfc4c9b25ffb8d23a5ed7021e9136447cc9984dea335f4a5c8c6fba
SHA512 d1c9245ba98f867a28e6d566d7d475ab94fe4ad1fa11d34d527874fd473099fc4bfdbb93dfcf3b7219a1536770ddaab74c49f6072cbd3567f4b8c1a21e466c6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5bdb7ade184d08a5c56b0fd6bd28597a
SHA1 5934bc8714471c84b26c25ae1e80e6ed904be6b9
SHA256 dcafd9a3df2c09fe211e41b1fe936774dd10203c5859695de513900577f06c9e
SHA512 389b8cf55f42cb659fae2960f457f55439cdc75858bb52e5c9fac8450e71aea1431df5683a3e7361d99e3c6746164f409031936d5dfebb7b6a5e9c0a912e0e36

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8376740bf774ea68f839304a6c52af3f
SHA1 81f46cdecb2fd029a0671f7c12117f4496793c88
SHA256 52c82e951fe8d3aecdeadcf3592afe1101740eceebdd0a4a0e52e00b1f5ab5ab
SHA512 5f11116f3d5287930aafa2bd269c308298dd9e8fcc278dd98ecc32bf6054fa6f466253631f69bf775277e51e67eb9afab424a756614cd5873146e9079034d582

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 78cbdeff4e5c0c85880119d27395ee3d
SHA1 7d94c68493d58b0473e2acd94899534daa491721
SHA256 8a5e16595e963f9cbb486c392f6f4526f856848c6613dfc2584dcd884ce6cfcf
SHA512 f39d9841a9aa3b353790b032c04e1d7e888dee7ae1e8135b95469eb1958eca9734d93dd4c016c38286e4e93f32a952666636daaec520cdbc6850ec309f68d19b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 0db2f03c61d6ef365f5dc690de31bc84
SHA1 0628fd420821cabeb00445653ca0a0f2229ef36a
SHA256 6479d2630dda7e8ebb75f73036bbede956f03f509f8a04f1a048e60239898706
SHA512 82de14c7f61dcf4161598d381b81d50c4783d0c477faec353a5931207ad410aa5038646ee0b152f052a7932c3e0b71f7582ce4714101b22055b517658d45f53b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c58df6b33515f9c91c79d81fa0b53e82
SHA1 54db3e526b28cce08495ec806160aab9a59460e4
SHA256 9c0b367d8645a6e86b21737eefddf04d3d71b9ee5f49c99892b2304ad0a69c9f
SHA512 4b93e9237ee2cc7f57d00c646601e388b4f386b9cf9c599f806592ecb5734ad3f6bbead9d8ad85f989f249085089ab2db9e0e30a47e39ef29022bf607abe9c1a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\708d9e81-d6ef-4462-aea3-63e7718cf595\index-dir\the-real-index

MD5 bdcfa73238e6c7259084924f017c2d87
SHA1 51d00e6d8d55385a482b8a14e6c9345906240b2c
SHA256 db66fef8b946618ccdf6617c54476e15930afac044e42f2ae72196b2afb97467
SHA512 0bc958313d62585e48fbace028a7b6c70bb7e5b158009915077877c8e3a3af99534249207862e5b8a7a9bc0e18ef0587a7073292c5852d5f41363da6e9ac1ef5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\708d9e81-d6ef-4462-aea3-63e7718cf595\index-dir\the-real-index~RFe58b793.TMP

MD5 992191e9404457e9868ff6d8504a6106
SHA1 549a7a371c2314596169992b0206350903700bf9
SHA256 53019f2db3b18a928d1208a1a688ff50656d510af7d5973faf0d06d57b9f7fbd
SHA512 3fe9fef6d786486eba594013549f14a489972e9effb5324d4047496544e04f28e79c9164a8a79f4e5bfd45feaa57133b1c2b3847872916af1a7dd72c7a0efeba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 abf8e07a6bdd2fd34cc49d4a36a50d52
SHA1 05f7844a8b2ce3ff72dd12c6ab0d1fa141877f3d
SHA256 056e2565ac0497e4b989ae6ec50bf62c36b5dc625acbf86d9e69818bac37b682
SHA512 735c3d5efc4aae1336579eda8e84388409ef01ce437fd96f50e0efa2cc630c102b36fb62f019fd7340a0c554cbd67570ca174a0fc475137833bf68d3d516ad24

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\45522dce-2698-4cc5-82a7-521b7e0a6a1a\index-dir\the-real-index

MD5 ca19766fb3eb6fc22805baab0b61add4
SHA1 c9d6892e628db7c74a1faa708a86fe98c02e40af
SHA256 0d91b5075c5003f1c216617906368acdb32e4bb5ee4d333616e6de79b2005413
SHA512 c18e3fe2cd9c2849e54bc4e307af6f730ab66810551ed3d9d8220554832ca5cc1709f86a8cde662c2d8a8ab0842df89ca4a4f33cfeaca88b29360325dabd829b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 dfd30de231fac91380b9406fbb133e09
SHA1 8bfe370497c9919fd1464462f29862249d953915
SHA256 561e4f82df237f798d298441c18dcac026d4da15b49137f953a880b47eaeaab3
SHA512 939c494935663c677b79c1c3c7d20476ef5672e5dd72206398fb32981322fe366d5239f951da9a5e9178a254b92a6319cb7c8c0be73133c0d6cb92b293edc121

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 5aa3ddeebc8e534550417019b82edff3
SHA1 3061d5d387b7b2ba547a0731fda8532793d3d6df
SHA256 1c8af3e74193fd0f993551d705a8a547a9f82d4904fa914f9fc966602000dafa
SHA512 b26fc5348a65b7c9d81523e39dff390f49fba29b08bae21cba3c5ded08664959af7c7c7ed912aa77f08e66312657e5875f3f3a7925288132ad283a49db60de4c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 6ede0aafaf97c491e9bf624a7d81997f
SHA1 f30b072feff7a2d5da2a870370a84f65f29f916e
SHA256 7c2ceb7222044058d77ad38dee47adbdcdff9664630bc2787a0ebb999a6a8b89
SHA512 54d6f6e0524f6b0eecbdbc3e74515db300c6e04ca95eccf76e345bf6d937e9cec67a961d29755b44533177ce2e80f95da7e33f13efa268a5ff9b7d051eab207e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 dc3857233804e978905a47e141bf7ed0
SHA1 89bddd45768ffe42415c315b14b87d84782fed94
SHA256 ca864a2fe370c97ffd16e5b61a816a03bc41b47f17f7fd5c89f9aa5242607540
SHA512 3900ca3e0127427d8d2b2c0a86f301e7b30da29b0fde87e3ff81f9e42e7e313cff0480e7eea73ee3cc0f41bd74e4c673add047bd0b3581076a23b39bc868ab44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\708d9e81-d6ef-4462-aea3-63e7718cf595\ceef8fb853a0cb41_0

MD5 0555d44428fb096a6ab403f662dbd809
SHA1 c8ff01b997e6ab472a849b0e5acf1eadf5c99528
SHA256 9cf944824952749e7c0d247dbdd313d40ece46f28932cb033e8b6937fe44878a
SHA512 953c877fe64a4c26e720a23f78a1e13a80ce848b9beefe30f3b5f2089d8e7fe9cd78e1bd504c4b918249d83b3b2ad3cce8049f2fc6148e113076762ec6e86fd9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c

MD5 d184fafd758c0c9ff2d264c230fb0f18
SHA1 5a28ea145347a6b33550dbf35a851d3e854dcde1
SHA256 79ec09835122cf102d1eefa09ad5c467b3231c821f1f1d9fbc4f1b6f00ea823a
SHA512 1339d4aa69870ab3e05eb9eb27cdd3e9cc2926466ce84bc803768f2203c5687a8271d1fe0f283da2a2d637c2e1904abf7cfb985bed86183e3f29696fad67e011

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 af4f6fd3b2d982f0139bf0486b95f0a9
SHA1 719deef7e2d1aae64627231ce1cb015647b796f1
SHA256 677ab60301365c4814c38408fce7a00211521ba3885afa8d0f0b81c56426fd6e
SHA512 4cb6b29e2200864b4e249370f862aaa539ce26ce2a2665cb27f9f8a299a16e9a92ddb5bf2a86d142abc19ed00057d820ce92d24ec4c35a2aa3b5cf959c60f717

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 08de2176c72ffd35355c5763ead70011
SHA1 697878ed401477cf0e37ddb53edf78a19f3f52cd
SHA256 6afa750e54554a6ed9d51acff516a544a7705edef32e41807b1d7dd128f5c3e4
SHA512 8c8c406b38c3ba38197c6ca5c85b75be718afa972d058533775263fcf2e78eec74efd52a3ed413956b9b90b91b190302a17ab467d2f48d5d280531e6d5026180

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 38189c9af78657ae2a7555642bed6508
SHA1 bde51644e8f8105f46ac39b0a9fc28730928c156
SHA256 79a1474ff523210c67bbb5715aafc6639a96d9cf33ec1b34b69eabde70edc57d
SHA512 36c657d9f4e2fbb1c3de510536ceef9fd4cd8c05f5a85854a2cee9d08b01f90a7323e7e60b209a7a7a9563481f108f68052e5963612c18ba9f79eeeabbdbc130

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 349bf7ca48eb12d1de948b1930168a12
SHA1 9ffae658a000614180402bc9a5c61410b9d15bc0
SHA256 9cf0fd6effcff86e7f10ef1895d19ecab1e2715b2a27d331e573f46570629460
SHA512 f789ed6361d3e39d55c58e1b17d21e466eb0c624d024adb9f5cf0a48c52890afd38f327b209b9b6aeacae83210689ce22b0d1e74d0925fbcdb8da19112d8803a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a1e5efc649cfc12e869b321de120d92f
SHA1 712210e4647fbf344a0683e212cce760ec0cac2c
SHA256 49dca951f4cf9ee46e8ef3059040bac3fb0d9ddbf5ef244bc3c9ba3cbb978e51
SHA512 2f2e5a465dcab4c51ea303a981b8277073a1090597da3c0b5ac2839eb8a8512cbfd2e1cdec75c9b5c8e1977d5a81945e2e98000c8ce9b6abc58c078add94a8e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\45522dce-2698-4cc5-82a7-521b7e0a6a1a\index-dir\the-real-index

MD5 b4c1ca026613ddd318599f4bc21b9052
SHA1 53790a991f158169b81f3227f152aa494dc9488f
SHA256 d0f59ecf135ef93324d0d22d4415cc4582df3b270d7e003bb7b8a233b4e45248
SHA512 d3d889f72fbec4eaa47230288285863cffd8c3c63c30d6411961924e2a29ae0d0495c248a040605ab6d2e185d62f6f1edbe5de8227ec6e5a13c3819d71016f3a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 41ab7cc1e506f8cc81623660e45807e6
SHA1 9606a1a3f1b43e1dfcb3c26e9d28e31d29943c46
SHA256 7e05c09ed4195657812d2d17508d3aa540a6eb53e24138ac8dcc8a012ce0f34e
SHA512 9c453f085a53e10b1785c402a8a3f96c17c6590fc247dbfcce0dd94c5dcfc942215e5fcec64caeb0b2b78931b1c25593d55b2ccd99c13007eee2782de965acfb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dbcce0893dd859945047144188a6b3a1
SHA1 83ec9c9a0313f9cbd37f631028c5f92c765e98a4
SHA256 fa358a2698d05c78d1b18aa7897c9e64adf1c629a44eb2f82a47894b7a5a31f3
SHA512 034d320a68158647c483e50d9347bcc89d87eddfa57c2f8a894bfd7c9d8ee9c2d1951473cf364b4dee33271a68d85b726576859b5230aacd41ae7353ecff5c5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8f3bdf45618229e3d33be4afcfbcf9d6
SHA1 a030a3b719eaa9431b5a45c0c94851fd3fa90b92
SHA256 8b5fa580010290da771571267f0597cf28cca0794fc1768072c5af3665ded1d1
SHA512 913e1159ff6398f64d939882e1cf1d60fa9d96fa78e4566065d8dbe7e062504bd8e4b9464c8adaffe057100aa4c19a27a55aa7cc50fbb3a0d4d6707d350a83f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f7a258be579cb3f2106b925fa0f8f645
SHA1 3813a05276dfbd8401b58d2aac3a75da332b1244
SHA256 15d7d8e329a520a7b098e150c29d36440427d2e9259354075b9dc96c7cc78566
SHA512 54d46bd9e12148b0b3d0a6f09c064a50791f5513cda77740a6828062d372ab4a6698659cb78032c6124e769e037e9a70f9ce50d04eb3252d5cee5628477c6aca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 79e90b79849ab24f7077995c4e45f1d5
SHA1 3dae744f25bcaa1b690d61b789a8b1e58a790953
SHA256 3d2a7a2b6c89618f30d26fd5dac9ff7d52d6cf1d3651fd7aaa1d1229464b1507
SHA512 6169379e245102bc4b1ff74bc2c7cf356f24fdef55e5f3f8a7323da36f6ca92f1ec38bf230cacecc89c33e12e1b201de417a570a998f31cb281bed3ae8f8deb1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ee2e3e755b003eb7c5a8c0cf6c71f675
SHA1 e0bcfb0878178e228b839534bd63fdf281ec38f7
SHA256 3787a1febe1ef2243245d1b9cb50e074a90b4a6b4004bcaa6da2436ac1297b4e
SHA512 d7fa1f3f966357aa5460974a6958fe3b6138a215d463a67b5f269031f4b29267116ee7a75bf674bf93bf0113f7e0434e817f49bd966f0321fb64eba2936b4c4d

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4a4089258f8aa4c74b54471259e0f10a
SHA1 97179923cd781cc4ac37c477c1563afa3eab5e93
SHA256 2536826bca6d18da54fb6b1840d7787ee0fbca9ecb61da3d7a559b87b650bd2e
SHA512 6a80d73ca6d69eddb2c43cf8e2de8cacd4ed759debff2118bc309b478e0d7a0394d06873ad33ca186f68b7007f26a8f88f22d52d865c658efa5ad604c7274809

C:\Users\Admin\Downloads\Loader.zip:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1d4d6316bfca81cc3ae3436863977d18
SHA1 10f2be3f2ba38b927e29f5fc103cac719ca8bf07
SHA256 e8533851d3a9a7afab042f64b6fe5a674964a800a2f79d03ba575d95266a2963
SHA512 ea1aa6850bf6fe731c1d7ba6266263ff83a866c7dcad77ac40c5a0aa021884b7ae0b0d95fe51ef2c4c6f72ea6d6901e84d4cc25d41f9002cc17b6bd62d171770

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 568e7e61523398473af556dae2918fb7
SHA1 4091b1e52408b3ab3d34683f0b442fa35e661f9c
SHA256 5a4c156e40caf101ec0a0cc726e631af8baee8c05a74c2822d16a4d9d824f541
SHA512 e58b30b6b81c7992eb7754974941b789b465e9caced2cb4fc27709c77da9eb0ec6375f1f4294ed2d3419abb7d13224dbb96bb93008ef94308670f2daa580cbb5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt~RFe59e555.TMP

MD5 4848e538d7c4be1bd6090b9961062f39
SHA1 7f31c61a58f5a5b130aa6f832a3925fde3f10e73
SHA256 4652559bf0d0e53e54422b3eb0a52d13bfd6f62575f1a534f0d416256655334a
SHA512 0321098d2ee4722c477cb4ef265f41677e5656473a7136633eedc88a9770c416c74d8cd1e34db6913478d8341329ae3d9d7683edab1c47f1e5031e9310a9b491

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000098

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00009c

MD5 e579aca9a74ae76669750d8879e16bf3
SHA1 0b8f462b46ec2b2dbaa728bea79d611411bae752
SHA256 6e51c7866705bf0098febfaf05cf4652f96e69ac806c837bfb1199b6e21e6aaf
SHA512 df22f1dff74631bc14433499d1f61609de71e425410067fd08ec193d100b70d98672228906081c309a06bcba03c097ace885240a3ce71e0da4fdb8a022fc9640

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 20abd198d549e2a6b1fe9348acd0a96f
SHA1 fcde4124cad9a57a4afe33607e67f40d2e923ecd
SHA256 20464e95e7615ea310bb56a65e5cd2c4c7b37c15d9b5eb8bc85540b33d48bf7c
SHA512 df9cc8f5c175693b964f08e5a772c72e621395f046f0ac60795302c2c481c770fa5fc01eadb79dd62edcc2e0bea26558a19196d92ecfdfc70cc0d27969e96905

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 07b95897cf979c0ebad0452029e23516
SHA1 c9ddd9609524843912dbe3b8644f0815c8766d2f
SHA256 582646056cec12110458e75f7e2c2556b705e7470c561100992cbe5e664c943d
SHA512 4432f787caa932856e5146658ad88da3e86afe5d677a97fb2994a1358e909d6e7e63a9b0e4c77d2d642a96f59052f165e17d41c916d337e250d87ca0464a4353

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 6ddeb1e6fca51cd3c336d7093e99ccf9
SHA1 5216a5b8a92f8083d0df6b65bc44b170caba4de4
SHA256 c604693b108cb3b826e571ec653db7cd99a4eae2ffe19ac92eda8ce168562823
SHA512 8459c264268e5d1a44406865f5083dd3a592f3406799aec7cec7e75d2328d276a1bf115cc447caa1f5a8af557ab5705eda4de30fc02a8e5669ff6a4996191ade

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

MD5 01ad880ee50b786f74a5e4fae9ba3d71
SHA1 111387dbe885b7f3af44cdbbeea17eeb04bbf803
SHA256 9368f2d586a1d2727921605892048bf5201ef8caa044f2e939ef431aa881d83e
SHA512 d8dc47e5d55e6598988281539205936c56b716eb02b4e643fc917a68ba4407ece36a9d4115d5d0e32ac630d44eadb94ad2607330de082629fea82a9bd35fb83c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006b

MD5 13d4f13cd34f37afc507ac239d82ddbd
SHA1 6d500935a441d438ed052e90de0443bccc8c6d17
SHA256 76464e77d22532976bbe5d1829e97854d5c37ed5a46ff300ad9680876ec81d01
SHA512 152e6449d09a7b544cf6f986c9695ae07c330f4b13068cca028ab56ffdad6ff2467f371ea4385ad71da023f3beb83fe0ba1d6d413f1ddde14372efe82ae36b6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f5aba59162d3546f34be9290225076f0
SHA1 0fc7a34275793486310e76fba85681d0e4e7e1c3
SHA256 32c98e63781b7b31bf9656a73298617fa03964d99fa727b728dd3bac83701e9d
SHA512 3425ccfce6f9c241d30311e0489e0e93f665151e3d6f8cf1c13dfbcb0f0754368a4faffafb1b07da2b47de1ea7e4df1253723ef9b07a9a5b29b9bdccb7b728cc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 de1524e4ddeb4ff3a720e7db8c9b75a8
SHA1 2a269b3771605f55a4a0c2939053ad995d641e99
SHA256 8c5b12b4a31c800bfbc577e9d094d328b865587e9caf4ad38784cd9690a5de52
SHA512 81add4b2fb36413e7cb6a11a5c1ece4f47f46efb7a751fff8882f0e65b7fea82b8490e42102eced01fa91c8e01ec1930cf7a1030ba5077598c90eccbec82aa13

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 690f98a35c3bd7a421ced1ae318e0aff
SHA1 6feac82e3b1ca1566f6e105535635b445a01f52e
SHA256 995bfb392346bf7cdf0ef71bba5b3cc555ce18209ed4459f3634b3298b902710
SHA512 8fd97240109495b69a5645d566358c700ee4d974642111996b1f71d3e9747f692cd44287afbb80899c0a76393252f59cf04c660261e8d24b935a67db9b92bae0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 90e8de941a97b141303d9811240100b2
SHA1 c1d13aad41b9837312674b421d9aab2c2c9f55a7
SHA256 a5ca7c78992671b0d51555a45fabcc29f0420eb1db6b053acaae0ba93bc6ca3c
SHA512 12a961ba98b461e094c6e2d022bb87df40d66f9b3dd82710a89925a6eaedc696a415c29bdbeb9a8883185dcaa10b1fc29486019f7049fcaead7d8b15c9851054

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5761015fefd80d4443afd722d52a6357
SHA1 5d277024e3b88b57b45f663c9f0f26a42ced19d3
SHA256 c594a5d695bdda67d9b02eb5c8441b2a59a68a639fca644daf948aeacd017add
SHA512 b48e5328c9db45afbb8d6c947d93e83252297ff53591dcf00674ade69cfbaa73e6531dac3ddacd1741355917a197bf2b4a6b8d1e7cff0d4ff8b6a7acabc9bcbd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1fd97b87cb81ed354cd6deb3aaeba311
SHA1 bbf52f8608bb303b72914ddbcf6afce7b20b8551
SHA256 47e1d7b4ad90ecb72cd5b790e4c379785e0f082d45f0201f51de9d5b68a3b9cb
SHA512 944e22b3f67a5c626b707c97f869fdcb22f48509863934d02810291824f53cef4281f466803827a10b841fbd67505e99219f701abc53830b754497cfcf4960d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9257ad19c8133c3b72722811a7669b20
SHA1 a2bb6cb8c05f7fee226abf36f8ac7f303bf87ca9
SHA256 821a5b029b4c34864d6247e3efbc6034b9c28d22e12bf46fbec762a6a3818770
SHA512 9442f99434b1cbf200f82650969d5fbf9a59f1103159d4ec4f25ee4b87eeab6f787d50a161b66fca81e382a85130d7e65b6e8b5b7c7fc174e028ad4522081dc5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 e5fc91cbce096df1d36191f9eedd3c64
SHA1 1a8076bf524b6d2b8a44c18fa8afb199a60dc1c9
SHA256 0e111dba5797ec182bf4af537a2c928ebd3957b99ed291610fbf322d6c2c9e19
SHA512 c9b064fbcb2df48dcf5bfa4387c164acb2bae075af013e6c39166dddc7e91ce993caaa0fdfac3ba1c3a12ca6c21577d99776fb1445f3009c7359b926a173f668

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 d4586933fabd5754ef925c6e940472f4
SHA1 a77f36a596ef86e1ad10444b2679e1531995b553
SHA256 6e1c3edffec71a01e11e30aa359952213ac2f297c5014f36027f308a18df75d2
SHA512 6ce33a8da7730035fb6b67ed59f32029c3a94b0a5d7dc5aa58c9583820bb01ef59dd55c1c142f392e02da86c8699b2294aff2d7c0e4c3a59fce5f792c749c5ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000085

MD5 e905a9be581b8c837c48020af6c606a0
SHA1 e00c1833f1c65b812094c149b314800350f54685
SHA256 58180e3cba5a736e1875c690b3a756dabc7ee19960f4c66a692d42e5679c13d0
SHA512 bcaf31fab00b69fc58aef04efc77c1e3786cd46e294b67ae862eb6e9d29fa4515e884ba6e105907d1e50593ad8220ddcda428125cae5118383a9bb6ceae2549b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 87c2b09a983584b04a63f3ff44064d64
SHA1 8796d5ef1ad1196309ef582cecef3ab95db27043
SHA256 d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0
SHA512 df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

MD5 7c244372e149948244157e6586cc7f95
SHA1 a1b4448883c7242a9775cdf831f87343ec739be6
SHA256 06e6095a73968f93926a0a5f1e7af9d30ecca09c94c8933821ca0e45732161ed
SHA512 4ce4d73b785acde55a99f69ea808a56dec69df3bb44ac0d049c243fc85544db4c020412634da52a069b172e2484a6f2c36799e38adbfb988bcb5703fd45b3601

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6ea874ecc42b6724a527783ff6129107
SHA1 9e7cad1a8f0d3c289f3df9d7e588cb4dc773d1cc
SHA256 41171177370f00e567dda4598790fe9afbcd844d070c050686da1e8a299eaeb3
SHA512 f63c725e776bb15cdf0896b2e1d2a2838a20e50c919bd087dd63e9a2d706a374945833a93133c12c20a4116e4cd675f7b2f83f1bbeb0c21b40e7fbedd7ff16b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a931cd519db2f79ec4b0c9471a10e338
SHA1 5e83e12325086667dd2e7ee11c7ad931a774626d
SHA256 8e00f78447904de724bc5c32e2b82813f4a690c63c2f8cf569781adc8d4d8141
SHA512 d7c59a59f47812dbde8896a60c164504e572fc069bbec434f31a3321235a6c2f84e50f4869f1ef86da1490816faef5c513669693632ad6da43e12649afa9ce9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 762666d7af07765191d2b82c1bd33e90
SHA1 dc02354dc91095e61b5d57d085b5cc3a8b8d2e6e
SHA256 6d6196dc022be9a55f92a3918472a867a074f52037eb5c06ef03c996fb835c95
SHA512 cda9b957aa21030b246609a16778f5ef8b9a7fc328e5b9ab606e2903e2cb0c2af6f93b65b2d68b4e6c3e1a44af59549904b666637e0bc97e4d8ddf9c5c6d4114

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 2a64c7ce8f6abc8e2d239d6ea0549046
SHA1 d6201850fc18ce76cba539714ae1180c9a342652
SHA256 ffd7da24db93540662ab4c0a75a75f09bd4e2ca9b957ff20946cb1e2674d8128
SHA512 d20b4c8957854c07282b37237408c2ec353eb5d254efa4c8d9d0f86154f698c45325f9326d1ff0bfeaea3385899c1be9f30bedb33aea6d534b94b8430a458893

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

MD5 6d384fd1b0a2b7bf0e9e3911ed9737f8
SHA1 48789728fb6eae370757afc36b3ce8b09e208cd9
SHA256 04feb34ba64beb3e7694f0763aed980ca8884b3379bcdc01fefb3d2c3254f3de
SHA512 7f1d8e9c95062417b551a7dd4cc7033f0969e39ae97e8c682503abca716528459ed890ea500789b13865d72827a8521bce0d7d31def074a156beeb3727be61c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9fc1c77430469fec93dc3269279902c2
SHA1 f69d77075cfec9550dd76703e659dacbfd6a95bb
SHA256 f6665865c73fc2b0232714ff3240479bc0fc116fcea041e6bd0493a42ff19f7d
SHA512 69f7754ec51a98353dc03fd91c802cacb2b63e6c185c9350821bf8f45f7725453cb1b264ca4d441465f5bca552fbfc942f9ab3861dddc578404d52100cce0ccf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8438a734be805d7aecf49818c5f246fb
SHA1 1739efc8504655a2155828dc3347d5e9f9409729
SHA256 b36903859aee7e9316061057e95df351cc5592ca9566287eaa1841742f68748d
SHA512 d5c9eff6515606ae01b4f2ddc60fdcc1bf22239047084db492aec8a21be942f9bb3a1ad144b12eeaf67d3a68e1223cd3d457b37a01d7de32e64d71b627d92663

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8ed28c9602665fa57f6879033a1cc44d
SHA1 539eae3429afff26a5838e8865a578426c2c9311
SHA256 bade30b85c1e9479b577474a2630574fc98bcd1473bb280e99f0c716bdeac7e5
SHA512 9893ecbf1d8cdd9b717b4b705bbf0bf1cd4e3ba12ca3d60a610cbe3424b85ee398218dd907fc39e02849be75ad905e2f2bf07b6fae1f7a6713c14b9a3d61f931

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dc37fd02888c8bd6890d3ab16bf8cdf2
SHA1 3eae9c943952a965e369b058b8d7f17e187d4fe3
SHA256 9603ad65f838ca8b7ad5a45e1e959bf47f34cfa23bb4dfd2daaf2fd57886dcb8
SHA512 5f3ab2f323b4c932a68551d099e55fa3579376c61d212e0609d784dd5f287ab8a63b12f17b95715a581948f4657cbdf51e7f87e2ebd7bc89a1f2ea55d5b5b852

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 70b040862d4648baf74b672644849363
SHA1 4d25aca04e9bdb596694f580ac65a4e55186e246
SHA256 3f60fa750a765dfd4a3fc6785214728afda1ff8100234cea7ecf9bddf728766a
SHA512 ffc4cd037db49a57efe57b4658c6b24e72fbecf54cc841eee34e7f9c96ad46495ad221c6c239c9318ec8784b39c6335277d9820f0e3b2eb2af69a4259fe87439

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3b8222bcce81144fe07fe950bec2a390
SHA1 c05dc9264c34a5a9576fa0d7f4d2d280ea390812
SHA256 2666fcec73503abc92c9c77cf1918a12f7d88aeed7e8d415f47e002dbbf1953f
SHA512 f99b493a8ac4d1b442f7bc116ffea2ddf5fde65fc7362c3ebc2c6e1bf7bb9f53ca9881a31caa677c03569bc988a50db9c519a834069489692d4af33f1ced545c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 82bdec68521db0b590d6fe90efea2789
SHA1 523f0eb7e529029ebf6e26eeb73d9fe6a63b10a1
SHA256 e8e5fab638e8b3017571846c93a4eb00027ece4cde9b95686ff6c541d6d9d3b9
SHA512 ccd15a921df5f7f86a4167dd9b9d30628919b0b7c5b14b1d08f7a1c7c69bed99f9605c5440d48bbfa875937aa26612248b118948cc97bf8e3a3cc7f4c99d0ab9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 de66b122c0782abe70bc01dafa71b91c
SHA1 0433f0cb00b4352d887826f0873fd59a3c45d153
SHA256 c4aa0af4aa2fdb7f9fec5feca9809768506487460958cb74085c8f999e342f45
SHA512 453389426130cdaff8912a4d8cc298d223900b135d647f84f31b3c725ef02f8312c128f4bd73ee7f53d9d2e2fa52fbc975f7dde0b4a9c0982892b7bac61e3894

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 538a12611a6cd3380b4a552e0d50a89c
SHA1 2cecb98b10bc072c9b48c14528d49e7a29196ac2
SHA256 8d1260250250f6957107a07c04532167c38de3fa051b5f10008dd99531ca8032
SHA512 99c710114c55479e58c99fc937e9966dbd6c3c728e1b12c3d3001bf6b90d710ccc27e725a875d9ee7607026e6027651b423cd1acabf396585669d5d15551ec38

C:\Users\Admin\Downloads\Unconfirmed 374446.crdownload

MD5 46c17c999744470b689331f41eab7df1
SHA1 b8a63127df6a87d333061c622220d6d70ed80f7c
SHA256 c5b5def1c8882b702b6b25cbd94461c737bc151366d2d9eba5006c04886bfc9a
SHA512 4b02a3e85b699f62df1b4fe752c4dee08cfabc9b8bb316bc39b854bd5187fc602943a95788ec680c7d3dc2c26ad882e69c0740294bd6cb3b32cdcd165a9441b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 800b98f6221764998c3a8ac23b476deb
SHA1 2b1c6c58a154de1f5b59079c87be3eff27a7b58b
SHA256 a9b2db239f8c547c2e767405c1c2c9dc85ef58177d984a587305cd6c07912900
SHA512 1bbdadcce10690fb8fe747020372bf19243fab225a8b484be33bb8c5862f80773f2952da8bb341dc0c1405c10587f10b3c8ea4b4d5c662bb443e4b9df196bdcb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fe9451990a2915af9febae6bd461870b
SHA1 6f196137ddb6a3bb70e5f0de4d2a04023f88924e
SHA256 5b768177ca9c99e7bce4dba80947acfdff1c4fb3fb3d3db664e32500d234b2c6
SHA512 df9645818a7ede9c5301943e827c39b2928667829232bc66b63c8483dfb7e0915fdef0ff55e2e6b9a5572fbb0a5928b75908d1df76704e974367faf7efce3684

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a4a2c375bdc61256ee1c4d3ee0939cee
SHA1 f7d50d8f8f03882f13f0a6f5dff4726e1df685ff
SHA256 34646c4b6935c8c657b7a5b34def403368ed9396f2ac4be5ef37a1e46a2c7042
SHA512 ab582576cd1f5a1e236ca37de137743acf4e94ed1169b99e76a7a61e40029c9b66666a40053112d806d4736c848060ea355036f976988d5d01159333b4a1f11b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6454b108351a64a264ae9f0e7355fecf
SHA1 0c0597642cf16484a69b928a99e5d9dd7e702526
SHA256 97fa70c368dde0243243fd2024d5dc9bf751a798a6910c1a20415fe6cfa602f3
SHA512 025dedc8ddf1b7963123ebd99d532b99aa09299f7dc557f88e171fe0a7555a5f49ccfe481d493dfb884345bfcfb0582f546fa9a74fbb314d5a04d915adf5f125

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000082

MD5 ced19501a9f990530db90ae861935090
SHA1 ba953c1351e75d80a1d893794bbe1d6a2b133635
SHA256 0b22620e424715205fe8f97cc8c045cf2a71bbccfe4f11e7890629213d85ea4c
SHA512 406923d85fb1e1fcda316d1311ffad3d6c3c0296bf34c6fae2104b4e521cd691417bbe8cc1416cfd224f7e2fe8a99fd29a25838ccb1511010c00899ec1c3f37d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000086

MD5 b348caf31f0a044c982295abe31308d5
SHA1 4c654b11af7c4c60383e4ca73f42a27cbec26663
SHA256 dae35ea200994f4d0871b2a0fa9e74492a64f0b0afe741af7efc5da4437e2715
SHA512 66ee38fcba9d81a3cccfa82a0082a0d340a019343b64eb4c4066079510f0efb03ca3e5b474eff09c33387ff55918e4eb6b0502c8323ca74dbab2f59bbe0e088e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000084

MD5 039d363bc3bc073dd72997284690f1f2
SHA1 2724e837c8164d9f7072bcd9bb5a1063de6c3ad8
SHA256 be08176b2d894400b087919b81450af753a51a268bd46fc2046eb1425802d41e
SHA512 2fbb2dff8884492c0a229fd41b57c08c8b5ba81a628cb29d5df6abedc3a5fc7ff08e27427f0fd5a6d5edf8a84a6baa906ccb712a1764ad859bc8441c803b7499

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000083

MD5 b75d4a6c7683a6221f741aff2abc797f
SHA1 4219cc6f3003c0541847b88578e37a09c206640c
SHA256 7574d78344181db62f3fcbf2753cfd6d3e8c865426654d79378834ad66db90af
SHA512 8fccf374f3d09765d9f03baac69f69d391bbbaf4b17868292bfe13b49456d5eac75350d61a9a3ef9a237c26876a34e83d9145408d3ce1dd8e007d9b7c0669558

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000088

MD5 0bde77164b46a3486268bfdd1ef97fc4
SHA1 e5d03f9c046b653ce47a898e29ceb455478c16c7
SHA256 98e0633d722b3cbe8fa673293facc0d3c3965aa6fb7dc1670d96c840359c9615
SHA512 7c65e2ac37f6c68303f7c63c0f043761da84abaa88c5bb4001b16d9fa837dbc2047b77e71f77c2660a5ac04d54faecd876f97667b5e8f2676dfefcb90b4b74a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0d63fdc87c9eee349dc45440cfe1da7b
SHA1 d875acdacf9bbcf124a7adb2f3fb393a17b69906
SHA256 f2c2c9b5b8a2307f04eb8b8a139e7bf56a998b167090e440fe3026b82905908a
SHA512 a5086bb28b36399451b9a34da3c3e26d4b8cbea291aa7281932ac378c60b54de33660165b36097720700ee2d9aa7cf8b82a147877a73a91dfd2ed93ef35f850b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f07a8d6eb1be59d69f607323b3d27df2
SHA1 ade5a808b0badc8861b0b9eb300390b55e5a83da
SHA256 244b087f4d2591da7cf89c880a3f17c8625d2ce198688e9c22576495815ed56d
SHA512 869bfe1d9e31e455eb7dd111eb892014c99749065beee149314f865263fb3d52e651064f9d28f7cdcc9888be3fc1e37ae20bd5cf70890692b0b26d07beb482b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 60ca26ed9810ea1336c00af94bbf3cf2
SHA1 fb63a526992ac4548f10c2b28516f8e09296dab5
SHA256 98de308e2b197319f84000224249ae279d5d2dfe773a6d82de1392ae82cfceb2
SHA512 dbdd2f77ec36fe18207415628ec1049ad39c73d805548a28a87dc7f4b05fe1b73ffd990e9152cc0bafa530517b0afb2f665b22b7b3621fd738c0c3cd24810d07

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 54f49e38c9815ab52cce32d325b3786d
SHA1 06a954ac2afeff300c6c9bc56c72d70bb3d965e7
SHA256 42a25691f1117f05b28e21d919505d6e4acbc2137de2e8da36a35bd9fac7dc85
SHA512 6d33a8f31ddc6b8b1d6f006cff911beadfb452aeee5fe62db8798575c8b8c5ed24406b7c52ee179953754b900a5739988e957f7e1bc417a418f7ae9861033257

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ce37715cd8a0c52eca2a7abc3c18b28d
SHA1 c66a18e09e95f4d580491fe93febd97df28fbab2
SHA256 f008c1826afcadeb7c280d98016662e3959596dcb9657d82b2b3af88088f06ee
SHA512 519473e00e89ed462815dc455c1a0919c1bfb04c3cf5d359dbddd0046b3eafe070345a571b701e14a17a56e7cf95b8fe2a1fa4aef3e7f052ee4f0b0a3914b855

C:\Users\Admin\Downloads\Unconfirmed 419280.crdownload

MD5 0330d0bd7341a9afe5b6d161b1ff4aa1
SHA1 86918e72f2e43c9c664c246e62b41452d662fbf3
SHA256 67cb9d3452c9dd974b04f4a5fd842dbcba8184f2344ff72e3662d7cdb68b099b
SHA512 850382414d9d33eab134f8bd89dc99759f8d0459b7ad48bd9588405a3705aeb2cd727898529e3f71d9776a42e141c717e844e0b5c358818bbeac01d096907ad1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 093b20d2fbc578ea18d0243cef62f792
SHA1 41ffd169803e4a109007329c1c6a7d762f66cf64
SHA256 2e8c324d02a99cb4ed7b3f5d91a42e098dce293ee493ff908a9c2a73de96cd3a
SHA512 f3335dba5d28bb8a923644ddf30dac60284514843e47667d49b0822b347a1234219645e11e363f46ede6f089f89f33bcde8284a8e7b19bfd6904ded7b9b587da

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7d8ae9110393ebdfa7235965b2ceb84d
SHA1 df903a3ff8d09a39f4f386e628ed3d9b1adfc626
SHA256 f7fa88f001cea7191ab5268300ad116d03be27dd820fac81ef0951f2c6597256
SHA512 5924d293cd45f834e63e03f9b530be0a521913c8b7b84e50a898168977a00a0a350d907e4d15dd16a9e37996fc50dade8cb7216043e142b4c67f05b927cc1b26

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5881259da430f91561bbef0cd65879a6
SHA1 69d576cbcd55721f405bce58ba73ca7ca0a4bb49
SHA256 36c98f60f52eb41c0022f2e08df67a13507dc777fe49f25ea7e6c7187f005cba
SHA512 9802e0fc4e3f4ba383be6c68f0c5a1f0969f911038977d4860bff54ed3c2d2ec2bc9d8967499e98048851e8b574c80f371a7a62bf15fb7ee77d6e31772b8d9b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ef25f01046298a9e7f11408cecadf606
SHA1 fb71c19052c8fdfcdb1ba98065e70872a691d0b0
SHA256 36488404555d61bf7d3113d28a2d36abda802cab24a29f8b5583d5a4a206db9a
SHA512 1b6c10e2cb14c767dfd6e67bab67c3dc9ad86b403178c8340300c616c14de893b89ed1238a6afe4e171d1ec964034b7c83b0b4734a03d2bdfda21ad9264b6ada

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0be5814145776d53ecfbe4adcfa89554
SHA1 3bcebdd76b5ce990de003481d5bdf73321638ab6
SHA256 b79baa451c6028ae839b6741fe070223211a0fcb101381d29892eef320f896ff
SHA512 a70cc945ffe1c02a98dc35c41dbb4b5ac18f1b9cbb44671d093feb0b84c71722233b1f047e2e76afce7fa52625a4fd45945e0e981db6d5a4fe385e849dad27c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7f4f0a4e6307c1a2565c1fbec0f1cb0f
SHA1 fa5138cf075081079cc0ae52bfaa2d7c8dd8a1fd
SHA256 be21ad4cb8fb0edd60eb0284676cb2b20bb4f8f19fbfc8702791c2d99ce66dce
SHA512 e51447970f651ee905af10cb023a011864eaeed076e13e95684a74451532abdfdc8dce0b1e859ec1720527e60bcd88784b3a9c7e5acdf444316b80bffc5b5953

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\BackgroundTransferApi\c1588330-4c15-47b3-bb03-4d86069db380.down_data

MD5 5683c0028832cae4ef93ca39c8ac5029
SHA1 248755e4e1db552e0b6f8651b04ca6d1b31a86fb
SHA256 855abd360d8a8d6974eba92b70cbd09ce519bc8773439993f9ab37cb6847309e
SHA512 aba434bd29be191c823b02ea9b639beb10647bbe7759bbffdaa790dfb1ec2c58d74c525ef11aacda209e4effe322d1d3a07b115446c8914b07a3bce4d8a0e2c3

C:\Program Files\7-Zip\7-zip.chm

MD5 99b88f4d6d13713053db06b449ed6a9f
SHA1 f718e09a42e9ec49db060589d24135ca6929e8e0
SHA256 f830ddc5280d00e1cb160f9e5dd114292d5efef66c23c3c03c224894250bac2f
SHA512 9f1cb9ad8023b340c82e987bab33cddd817e3ece892aca7350650343396d4dc5d00cfd99c0718a862280c81d7d525c5e870390e1cdfdb4987b6663b1394cf1fc

C:\Program Files\7-Zip\7-zip.dll.tmp2

MD5 d346530e648e15887ae88ea34c82efc9
SHA1 5644d95910852e50a4b42375bddfef05f6b3490f
SHA256 f972b164d9a90821be0ea2f46da84dd65f85cd0f29cd1abba0c8e9a7d0140902
SHA512 62db21717f79702cbdd805109f30f51a7f7ff5f751dc115f4c95d052c5405eb34d5e8c5a83f426d73875591b7d463f00f686c182ef3850db2e25989ae2d83673

C:\Program Files\7-Zip\7zFM.exe

MD5 004d7851f74f86704152ecaaa147f0ce
SHA1 45a9765c26eb0b1372cb711120d90b5f111123b3
SHA256 028cf2158df45889e9a565c9ce3c6648fb05c286b97f39c33317163e35d6f6be
SHA512 16ebda34803977a324f5592f947b32f5bb2362dd520dc2e97088d12729024498ddfa6800694d37f2e6e5c6fc8d4c6f603414f0c033df9288efc66a2c39b5ec29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ee86963b18f0c07691e515dc704c58dc
SHA1 7e906835473733483e5dad7da9bbef7949692f2a
SHA256 fb28c1e14fe1e4e38e0aeba7ef22eb3aac9522657fc0aec7914d41a3645957cf
SHA512 ac46bf37c9a5d9ca04390850b1b9d213a50034d77e02066d76da023fa9c7bcfd61a328c3fdaf3d8430412b435036aea7bb1fe2bf13055c964c63d45b3aba12b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 412fa61443c6e46a683cb1e197fde5ca
SHA1 ce00d22ddbb41aa782732edb3fbb107c8d37cbad
SHA256 bf23514e24fe07b00a66dc3d65f95f901449051c5511290bb4c533b2a990b1e8
SHA512 1a5b939dc0f29f89d21d060a089c012727e63f85577a680b5b653026ede018beb33df7769ae9fd3c8e9d14090d83ea537d813ff6013be37fe195526e75614758

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ec250c7d83a796db5936883de94eae52
SHA1 614dbf6f800a970ff121bd614938cd8bb192d720
SHA256 0c5e755af4f9117d1aec765cda64ec17ba800947c07e8daaeacaf8f5389eceaf
SHA512 78cf61f8bde79f864ad849127643ed2fcb904adb084365993aec069756b4272160a5a1b6dbf5aeed9e9b9c1990855b3db895124a58484d4abe0092d679fcfb05

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b1eba0e03ab93b608310f2da5d206ebe
SHA1 630bf1ee4ea6385a137a69f760eb736ddb781eee
SHA256 eb5d5752257c416aa71580c9afcc783a6d080b93411e1345c7b872883d8e7cd7
SHA512 77f7a2474ee28d17c187244d5318ae6e450a23defbc8c18cae375556851a14e9542396722cf469847e45bf1bb493c29b8f04e8837dc5707a7b7947654f8595d9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f5f13bc95c5dc32ff2fc1c35f11212dc
SHA1 831c91828562003500271204f4645a7d88559dce
SHA256 ffaf82039e6f567f2c4224e10055086e25fb2ab132f5748a0da044e3e435ee08
SHA512 da40bbfd24c451cbc363a39238f387522c697fab5156a5bd6107ac5ae81b7a551c0a7f612c0dbe34b1d93f2a653859d6e1582fe4323681f07170159eeede3704

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 122e35f8aebe4c229ea45d1b671f3e72
SHA1 a6aeb4187c4b7c92df26890c34046a69df961f59
SHA256 3b020c20a5651c83319d56a8c1444a60fe60cfa1266358b368746d9e92331128
SHA512 929c79a66a5257493ff9f3ba58a7ffa502743cfb7ce7f0a740b6f32405c04d7ce63c6d0a47ab8b28ae9575f1692d57602b8e23c2588282c36c349ec98ff121c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d76d0bc23d29433f27db58e3ec3f407f
SHA1 e2d52d56e921ac603f7b7546d736d622bd33bcc4
SHA256 3fbaef8db9547f9eb6445dbc2f958362de460d60daf3db53658823fbf2dfbecc
SHA512 5495fafa27e0397ff4fe2e448f89ba52b8fbb62a956886edaf83ac4fac8fd857c66ca36270f937a5adb60f9e64c972037a325f9069b828d157bdb852f7ba8f53

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 566ec33f3b1131cd0c746a7fd531ecdb
SHA1 50fb3a355055ca05a95c0809a72fd3ad15c27011
SHA256 659919cceab313777aafb4bf1389a24e5d1ebc249a1c64eeac8390cb632504fb
SHA512 983732d3a507deaada7f93e9cbea3a1f2affe63ec2d2443d0309bd65ed7dc10e0791aae3e3c2f4a6ddd8257fb805ac44761cf7b8bb415a31f18187dd73ab186b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 90ea9e813d483e269eea5fd821ce9c10
SHA1 dd0e6eadf1a594b3e5e4bb87710b32e6abb82cd8
SHA256 48f2039820fa09a6cf3c4f4fe0b5a47e2e13db2d2449707840462f3b60fda0af
SHA512 fdc56447d37dc96f46fdb840d8edff3b182f91f6aeec2aad635494d2fa145acac70fa2039a075f4786a3165b0fd6b00630e52e028d36d516889dfd42ecf6928c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\67a473248953641b_0

MD5 1c503f2e9ea962108b123854aa7b98fe
SHA1 8f69de072996703e31df626e7746e3543a946416
SHA256 9f6dfbcb9e6fb299eb09ffbabf53ce39bed6467447abb183ebc1661648a9eb61
SHA512 ec38d66cade157af86a875f517436c2321afcf0cfb129f42582ca0e19584fc530ee2be59424386b5530293131132ad30a0cc4049549e222cc6e4b207def635cc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\fa813c9ad67834ac_0

MD5 e0e1937326abbc0f0beb9f30dfb1164b
SHA1 0bb74609047e5ad10d338bec69f06a02f90f34de
SHA256 0ecd1136010773978270ad3310f436f725a937d0372c964d55c0b7b67e93f7bb
SHA512 e9348ab7b095db23188ae1280c65dc6dee89fb2e50a2f40857d44409008511fbb830c4ca0a33f683edbf728e4c51d9ef13718fe9d5fe36b0d355601e9790b39e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d79d0d01fade7f6abec5ee85aa9241fd
SHA1 b3d45359bb898201091ffc781367d6081bb65a85
SHA256 d470ac1ace3a243cf8deb588e0c75d677ece7d6be0ef275b50aef4e18a81f485
SHA512 c34371f75e450d0b0641794cc88c672b4dfe360c93908bd80b4e78b3bdbf58caaefb2c1b00a6ffdfd4f91819def7a834c494e1d165c8f2b8987292bbe38c6a53

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cc731ba57c925f2ceaf0b7902e6c935e
SHA1 6ef8579237b4bdfbcbf84e3837fe03aa2f2147e1
SHA256 2c850033b377cb28e014714a1cb6f24ecb010c3a46e4b375caa1cf7ce61e9263
SHA512 4a97b7f6df9004b945ba46e960ef12ac32c41c74ea771d80bd1cd6a624241421ec0531dd175ec930ca803e2373f179efe1d2fa01c78c3ac9a06f25ed40b0d3b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fb939a9f1f0c5b5e_0

MD5 97b66fdf7647c22e1ee51c97d89aae99
SHA1 dc9f9869def76541baa4020e24b7f979dea73845
SHA256 e4543f4255727d0c70544f9271a8e7b2a88e53e3003ed7db19df349b50b66660
SHA512 9112a4a69d4cbda6af9bf0334b110307f928e54c052191f3affef4204431c3b9a6bac3200d880fdffa7d639534ed58d6ea45aaa1f7f2e8c3a36b06c610783cd5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4cc8da8a0ce69bb715708039cee7bbb1
SHA1 8d8efadc034b5bbb984b2cc146a3afa55d325500
SHA256 97e51a30f56b6f70ba9c1284821cbe8f10342b0d6efccd01f6dc7351bef35c4a
SHA512 79a5fa0f6426ad4424db3d2ccbc4423da6621447cb45cc28c7a63e5308567054d87144e8dbf45984865e1051119fe14f3755d7a8e23e5673091d6a8f3ab41938

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fc8614135f89c857423526b50b95c3c9
SHA1 047af9c9c16676c3ed38be251de4c2199b820fea
SHA256 f34ca01e5cd72b58c9d6961c3490495f89ec0245d802d33b150cb68ce1001e08
SHA512 84f802c250f589927501a0e9657c5899f20604a5a41a11c705ebce7c0c1c70ebc1d0432791aa79015c5cce4a422c6bd6cdfc89145e94e39fdbcba85d9d5c1ce3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f34e68f89c3168e6_0

MD5 071e84af265d5c29641ec3e3487343d7
SHA1 9ff73aedbcd873e13854beb779dc0335fa068d96
SHA256 9aabf05c2671b0acd45637e7615fde6cc60c5c9577b634bebdcabe8cab917f79
SHA512 7ffa8a9e8422798826d9cf4893fb8cf9e407cdb63a323c1b6059d3dbd8166b22e7b1a858d736ca59974777ee171828f24448c04c1421f07c6c94ee5fb63a575c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000cb

MD5 7c05d8faeb45c410e965f3ac98d31300
SHA1 9847d9c73951c78dabc74ae5e21c2e6ab90327f1
SHA256 b9c54457a260a168fa0eb60f2ae1a5c7a5b7072a8120e37e9561fad6f914e298
SHA512 771dc6ed55c5d7531830d09b5a5864b2917149954fcde2c45ca037486c20e6ddf597c0c1cd3644c8eab66d7d8c1eee31cb8364e8ccb0921633ef7a2b8392b3d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 76730ad66e5f9805b057ad8db97cc68b
SHA1 1352a4842aaadaa46c7a5e1dbd0dd89f04e0514f
SHA256 6d2b7afad62a931c51f17b74c8567d0017cc7c27f5dba5173bdbe0a3c1c24f19
SHA512 b66d847c9cde83cd06df8ffafc641256594ed52971cc0a4c1ef3d6ffb43f572e8a0ae014f694e235d43398e9a0191f1b2d9653835f438535ed145aefcd045f8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 733ecaf4183176bc31cc66afda36afb4
SHA1 0a472b4eb02615b58fbc059dddb404d511b26b4d
SHA256 158e61b571af0b14582bc99080c6be0a54947eb0be2831301add00aa190a400b
SHA512 2bb9b95c5a2155ed2b3c77435a286c131ec64c2b65e176c723306926feba7659fbd979143253a50d13edb78abe7b1cb1e6a69b4c6040ac633c9f75abb17bdc74

C:\Users\Admin\AppData\Local\Temp\e606af3\Load.html

MD5 1757c2d0841f85052f85d8d3cd03a827
SHA1 801b085330505bad85e7a5af69e6d15d962a7c3a
SHA256 3cf5674efaaf74beccd16d1b9bcf3ffb35c174d6d93375bc532b46d9b4b4ed35
SHA512 4a12a55aac846f137c18849302e74d34df70ea5aaff78d57fce05b4776bedcde9e1b1032734e29650bcbac3e6932dfef75d97931443446a23e21cf5b3072dd9a

C:\Users\Admin\AppData\Local\Temp\e606af3\common\js\jquery-1.11.2.min.js

MD5 9aecea3830b65ecad103ee84bd5fe294
SHA1 47ecdf62eb3cf45ba4867846cb61afa70369d23a
SHA256 a271a3f9e3cae897ced669d6652699e947928ef095e56384c4f9dd04bbb942ec
SHA512 754c25b5fc6a3e5d2027326c6814f229f9131396ea026a407dd16d092da6116bb0ee8971417463ba68268098dedc182b6fa10060ddda6ce063a5eca94be3c152

C:\Users\Admin\AppData\Local\Temp\e606af3\config\stubparams.js

MD5 91f6304d426d676ec9365c3e1ff249d5
SHA1 05a3456160862fbaf5b4a96aeb43c722e0a148da
SHA256 823f4f8dfe55d3ce894308122d6101fed1b8ef1eb8e93101945836655b2aed1b
SHA512 530f4fad6af5a0e600b037fcd094596652d2e3bf2f6d2ce465aae697ea90a361a0ffcc770c118102a0dd9bf12ab830ac6b459e57a268f435c88c049c127491f4

C:\Users\Admin\AppData\Local\Temp\e606af3\common\js\common.js

MD5 87daf84c22986fa441a388490e2ed220
SHA1 4eede8fb28a52e124261d8f3b10e6a40e89e5543
SHA256 787f5c13eac01bd8bbce329cc32d2f03073512e606b158e3fff07de814ea7f23
SHA512 af72a1d3757bd7731fa7dc3f820c0619e42634169643d786da5cce0c9b0d4babd4f7f57b12371180204a42fec6140a2cff0c13b37d183c9d6bbaeb8f5ce25e5f

C:\Users\Admin\AppData\Local\Temp\e606af3\config\config.js

MD5 34f8eb4ea7d667d961dccfa7cfd8d194
SHA1 80ca002efed52a92daeed1477f40c437a6541a07
SHA256 30c3d0e8bb3620fe243a75a10f23d83436ff4b15acb65f4f016258314581b73d
SHA512 b773b49c0bbd904f9f87b0b488ed38c23fc64b0bdd51ab78375a444ea656d929b3976808e715a62962503b0d579d791f9a21c45a53038ed7ae8263bd63bc0d50

C:\Users\Admin\AppData\Local\Temp\e606af3\common\js\external.js

MD5 140918feded87fe0a5563a4080071258
SHA1 9a45488c130eba3a9279393d27d4a81080d9b96a
SHA256 25df7ab9509d4e8760f1fdc99684e0e72aac6e885cbdd3396febc405ea77e7f6
SHA512 56f5771db6f0f750ae60a1bb04e187a75fbee1210e1381831dcc2d9d0d4669ef4e58858945c1d5935e1f2d2f2e02fe4d2f08dd2ab27a14be10280b2dd4d8a7c6

C:\Users\Admin\AppData\Local\Temp\e606af3\config\installparams.js

MD5 b2bbe6521456b9d9654b7fe6e9400460
SHA1 d5e9c0303cca5d795213dde8ffea4900ed9162dd
SHA256 0c9e17900f039de274597d9669adc6d0945ec12406eb613f92235946f4714257
SHA512 f29a90c8770d5b28dbd0fb2abcd88208618259da5052e1c4a8bebd41a9ddfcf2ba86d365778bb126b323bfae3c558c02fc7662dfb81c12c79292968248dbaaa6

C:\Users\Admin\AppData\Local\Temp\e606af3\pages\Initialization\page.html

MD5 b23411777957312ec2a28cf8da6bcb4a
SHA1 6dd3bdf8be0abb5cb8bf63a35de95c8304f5e7c7
SHA256 4d0bdf44125e8be91eecaba44c9b965be9b0d2cb8897f3f35e94f2a74912f074
SHA512 e520b4096949a6d7648c197a57f8ce5462adb2cc260ccac712e5b939e7d259f1eee0dfc782959f3ea689befce99cddf38b56a2cc140566870b045114e9b240dc

C:\Users\Admin\AppData\Local\Temp\e606af3\pages\Initialization\page.js

MD5 50c3c85a9b0a5a57c534c48763f9d17e
SHA1 0455f60e056146082fd36d4aafe24fdbb61e2611
SHA256 0135163476d0eb025e0b26e9d6b673730b76b61d3fd7c8ffcd064fc2c0c0682a
SHA512 01fb800963516fd5b9f59a73e397f80daba1065c3d7186891523162b08559e93abf936f154fc84191bbadec0fa947d54b5b74c6981cebc987c8e90f83ddf22c4

C:\Users\Admin\AppData\Local\Temp\e606af3\pages\Initialization\features.js

MD5 7e20d80564b5d02568a8c9f00868b863
SHA1 15391f96e1b003f3c790a460965ebce9fce40b8a
SHA256 cba5152c525188a27394b48761362a9e119ef3d79761358a1e42c879c2fe08cc
SHA512 74d333f518cabb97a84aab98fbc72da9ce07dd74d8aab877e749815c17c1b836db63061b7ac5928dc0bb3ffd54f9a1d14b8be7ed3a1ba7b86ee1776f82ba78e7

C:\Users\Admin\AppData\Local\Temp\e606af3\config\installerlist.js

MD5 f90f74ad5b513b0c863f2a5d1c381c0b
SHA1 7ef91f2c0a7383bd4e76fd38c8dd2467abb41db7
SHA256 df2f68a1db705dc49b25faf1c04d69e84e214142389898110f6abb821a980dcc
SHA512 4e95032c4d3dbd5c5531d96a0e4c4688c4205255566a775679c5187422762a17cbca3e4b0068918dbf5e9bf148fc8594f8b747930e0634d10cc710bea9e6ff5d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2272a1ba743edda0f210589f83b98299
SHA1 1ebd85dab85425bc7efd60ad6f6424d6441fc3f3
SHA256 d58f2789e559b293d4f4ede8dcd5b0c63acc413c9d38499b06267643b3b13123
SHA512 c0550c464bf353bb64f3249812c0f23f08ebae7c4281302078272717419e4969fcb388a8931dadc7553353a19d86daf5affa065d158c1e9266f72cba322ad0c1

C:\Users\Admin\AppData\Local\Temp\e608d7f\common\css\common.css

MD5 33b1c68fff898cbf19c44e486c856282
SHA1 4bcae82469404701498583903ccad307c64e2aa5
SHA256 265d280bad44060c22a6caef0140bb8085b994cdd8d76789f3a43a6e7f2a16ea
SHA512 e8ee2691c3b5c6542873e804f6ba7b13b9230de0bd28944a18bc25c529afe1a11d452988387aa3edddfd2bf65b02e293e549415b0a6a961285d50b3cd2d46a7f

C:\Users\Admin\AppData\Local\Temp\e608d7f\pages\Initialization\page.css

MD5 ec8deaebe3216ee6e101d73981db11f7
SHA1 217c2e5e81447b70388883d8c1c77e3dfc00e6fa
SHA256 cd804f5b34e9f8d0a7b085a0d9337b864e83d286b1408210343997f029fcc628
SHA512 370d6ab807b175973165f1de8b682c7c111d38c25cba5abf11aad73eea4312f0b1f33304b276edde5e290553900e0b701e41097bc96a07d8dfd3e6164dec4042

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9d113c3beead298b6dc5b685311a4dc5
SHA1 fa35f10fd82afd371c0472869620f386c4b9884f
SHA256 ca1b5f88f1ccf0bea853db4f36da875b22923dad168ca0bc835b8816bc6d34af
SHA512 d3e0e2eaafb57f4c6e79ac072d8b5fadea9b3e803476c82c168333cd93793709c769a93f4cf7e38f28e2f9052ec0dfc751b7373c065d8ce48010bdb99726c79e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 bcd2ffdabb4c3fa090d6a96425abf2e8
SHA1 fdd91b3b38087fc17b91a5425171dc1c1d5a3a1a
SHA256 f4093a245e7a842c352534b06039c0a5936af3ef221cc7db50d67c8a693ce6c0
SHA512 6c245e13c91363d37011de3b61fa827579f24318cea5b314a8fd2a1eed43683e26fa6574187c77663ce665168d507232878910ab39351d8a23d60d67d37e4a09