Malware Analysis Report

2025-08-10 15:23

Sample ID 241103-e9ljtavlas
Target ForYouForFree
SHA256 8e9d5bf11385802c6a0d165c364026bffca5b96e184d927317ecc7089249c121
Tags
discovery execution
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

8e9d5bf11385802c6a0d165c364026bffca5b96e184d927317ecc7089249c121

Threat Level: Shows suspicious behavior

The file ForYouForFree was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery execution

Executes dropped EXE

Legitimate hosting services abused for malware hosting/C2

Enumerates processes with tasklist

Drops file in Windows directory

System Location Discovery: System Language Discovery

Browser Information Discovery

Program crash

Command and Scripting Interpreter: JavaScript

Modifies data under HKEY_USERS

Suspicious use of WriteProcessMemory

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Modifies registry class

NTFS ADS

Suspicious behavior: EnumeratesProcesses

Enumerates system info in registry

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-03 04:38

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-03 04:38

Reported

2024-11-03 04:47

Platform

win11-20241007-en

Max time kernel

515s

Max time network

517s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\ForYouForFree.js

Signatures

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A mediafire.com N/A N/A
N/A mediafire.com N/A N/A
N/A mediafire.com N/A N/A

Enumerates processes with tasklist

discovery
Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\tasklist.exe N/A
N/A N/A C:\Windows\SysWOW64\tasklist.exe N/A
N/A N/A C:\Windows\SysWOW64\tasklist.exe N/A
N/A N/A C:\Windows\SysWOW64\tasklist.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\CardOurselves C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\FoMidlands C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\DeclinedNecessary C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\DeclinedNecessary C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\MfVillages C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\CardOurselves C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\NameRetail C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\MfVillages C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\FoMidlands C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
File opened for modification C:\Windows\NameRetail C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A

Browser Information Discovery

discovery

Command and Scripting Interpreter: JavaScript

execution

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\cmd.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\cmd.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\tasklist.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\choice.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\findstr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\findstr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\findstr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\cmd.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\findstr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\tasklist.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\choice.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\cmd.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\findstr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\tasklist.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\cmd.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\tasklist.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\cmd.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133750823314057717" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-2584844841-1405471295-1760131749-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\NеwInsً.zip:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1028 wrote to memory of 2144 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2144 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 3804 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2400 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2400 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 1028 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\ForYouForFree.js

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x108,0x10c,0x110,0xe4,0x114,0x7ffe0499cc40,0x7ffe0499cc4c,0x7ffe0499cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1856,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1840 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1952,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2140 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2224,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2192 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3116,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3252 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3180,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3412 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4504,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4560 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4776,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4772 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4808,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4916 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4836,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4540 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4996,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5004 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5064,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4928 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5076,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4692 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3384,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5136 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5228,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5244 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=3200,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3804 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=3368,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5420 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5620,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5584 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5476,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5796 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=6204,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6192 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6336,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6328 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6132,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6460 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=5564,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5456 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=6500,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6508 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6004,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5984 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=5652,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5636 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=6776,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6792 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=3844,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1480 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004F4 0x00000000000004F8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=5996,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5628 /prefetch:1

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\jres\README.txt

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=5796,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5544 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=5840,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5548 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6656,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3000 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6256,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6548 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6636,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5816 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6596,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3848 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=6540,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5544 /prefetch:1

C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe

"C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe"

C:\Windows\SysWOW64\cmd.exe

"C:\Windows\System32\cmd.exe" /c copy Consultant Consultant.bat & Consultant.bat

C:\Windows\SysWOW64\tasklist.exe

tasklist

C:\Windows\SysWOW64\findstr.exe

findstr /I "wrsa opssvc"

C:\Windows\SysWOW64\tasklist.exe

tasklist

C:\Windows\SysWOW64\findstr.exe

findstr -I "avastui avgui bdservicehost nswscsvc sophoshealth"

C:\Windows\SysWOW64\cmd.exe

cmd /c md 423626

C:\Windows\SysWOW64\findstr.exe

findstr /V "indiecomparecompanyrings" Rd

C:\Windows\SysWOW64\cmd.exe

cmd /c copy /b ..\Dude + ..\Ser + ..\Yrs + ..\Delay + ..\Plants + ..\Huntington + ..\Taken + ..\Pci Z

C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif

Futures.pif Z

C:\Windows\SysWOW64\choice.exe

choice /d y /t 5

C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe

"C:\Users\Admin\Downloads\NеwInsً\NеwIns\NеwIns\NеwInsً.exe"

C:\Windows\SysWOW64\cmd.exe

"C:\Windows\System32\cmd.exe" /c copy Consultant Consultant.bat & Consultant.bat

C:\Windows\SysWOW64\tasklist.exe

tasklist

C:\Windows\SysWOW64\findstr.exe

findstr /I "wrsa opssvc"

C:\Windows\SysWOW64\tasklist.exe

tasklist

C:\Windows\SysWOW64\findstr.exe

findstr -I "avastui avgui bdservicehost nswscsvc sophoshealth"

C:\Windows\SysWOW64\cmd.exe

cmd /c md 423626

C:\Windows\SysWOW64\cmd.exe

cmd /c copy /b ..\Dude + ..\Ser + ..\Yrs + ..\Delay + ..\Plants + ..\Huntington + ..\Taken + ..\Pci Z

C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif

Futures.pif Z

C:\Windows\SysWOW64\choice.exe

choice /d y /t 5

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3300 -ip 3300

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -u -p 3300 -s 1648

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 1820 -ip 1820

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -u -p 1820 -s 1660

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=3380,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5272 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=4496,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3392 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5168,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5340 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5248,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5328 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=3340,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5284 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=5800,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5696 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=7064,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6728 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6752,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6660 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6716,i,384029316130281717,7000232784775265100,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3460 /prefetch:8

Network

Country Destination Domain Proto
GB 142.250.180.4:443 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.178.14:443 translate.google.com tcp
GB 216.58.201.110:443 apis.google.com udp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 110.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
GB 172.217.16.238:443 play.google.com udp
GB 172.217.16.238:443 play.google.com tcp
GB 142.250.178.14:443 clients2.google.com udp
GB 142.250.178.14:443 clients2.google.com tcp
N/A 224.0.0.251:5353 udp
US 104.17.151.117:443 mediafire.com tcp
US 104.17.151.117:443 mediafire.com tcp
GB 142.250.180.4:443 www.google.com tcp
GB 216.58.201.106:443 content-autofill.googleapis.com tcp
US 104.17.151.117:443 mediafire.com udp
US 104.17.150.117:443 mediafire.com udp
GB 13.224.81.20:443 cdn.amplitude.com tcp
GB 163.70.151.21:443 connect.facebook.net tcp
GB 142.250.178.14:443 clients2.google.com tcp
US 35.164.60.138:443 api.amplitude.com tcp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
GB 216.58.212.234:443 content-autofill.googleapis.com tcp
GB 163.70.151.21:443 connect.facebook.net udp
GB 142.250.187.195:443 www.google.co.uk tcp
US 216.239.34.36:443 region1.google-analytics.com tcp
BE 66.102.1.154:443 stats.g.doubleclick.net tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 216.58.212.234:443 content-autofill.googleapis.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
US 104.21.42.32:443 the.gatekeeperconsent.com tcp
US 172.67.41.60:443 btloader.com tcp
GB 142.250.178.14:443 clients2.google.com udp
US 172.67.170.144:443 www.ezojs.com tcp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 104.21.42.32:443 the.gatekeeperconsent.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 104.21.42.32:443 the.gatekeeperconsent.com udp
US 104.21.42.32:443 the.gatekeeperconsent.com udp
US 104.18.159.164:443 cdn.otnolatrnup.com tcp
US 130.211.23.194:443 api.btloader.com tcp
FR 13.37.187.223:443 g.ezoic.net tcp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 223.187.37.13.in-addr.arpa udp
US 104.21.87.79:443 g.ezodn.com tcp
US 104.21.87.79:443 g.ezodn.com tcp
US 104.21.87.79:443 g.ezodn.com tcp
US 172.67.73.78:443 www.mediafiredls.com tcp
US 104.21.42.32:443 the.gatekeeperconsent.com udp
US 104.21.87.79:443 g.ezodn.com udp
US 172.67.142.121:443 g.ezodn.com tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
US 172.67.142.121:443 g.ezodn.com udp
IE 34.248.111.137:443 id.crwdcntrl.net tcp
GB 13.224.81.122:443 tags.crwdcntrl.net tcp
IE 52.16.238.77:443 id.crwdcntrl.net tcp
FR 13.37.187.223:443 g.ezoic.net tcp
US 34.120.133.55:443 api.rlcdn.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 104.22.5.69:443 id.hadron.ad.gt tcp
GB 87.248.114.11:443 ups.analytics.yahoo.com tcp
NL 79.127.227.46:443 c3.a-mo.net tcp
US 52.223.40.198:443 match.adsrvr.org tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
US 104.18.35.167:443 cdn-ima.33across.com tcp
US 34.102.146.192:443 oa.openxcdn.net tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 34.96.70.87:443 invstatic101.creativecdn.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 79.127.227.46:443 c3.a-mo.net tcp
DE 162.19.138.118:443 lb.eu-1-id5-sync.com tcp
US 34.120.107.143:443 oajs.openx.net tcp
GB 142.250.179.225:443 ep2.adtrafficquality.google tcp
GB 142.250.179.225:443 ep2.adtrafficquality.google tcp
GB 142.250.180.4:443 www.google.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
IE 34.250.238.41:443 ads.yieldmo.com tcp
US 34.120.107.143:443 oajs.openx.net udp
DE 18.157.230.4:443 tlx.3lift.com tcp
US 8.8.8.8:53 11.114.248.87.in-addr.arpa udp
US 8.8.8.8:53 118.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 46.227.127.79.in-addr.arpa udp
US 8.8.8.8:53 167.35.18.104.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 192.146.102.34.in-addr.arpa udp
US 8.8.8.8:53 87.70.96.34.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
GB 13.224.81.89:443 hb.yellowblue.io tcp
FR 163.5.194.33:443 prebid.a-mo.net tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
DE 51.89.9.254:443 onetag-sys.com tcp
US 174.138.117.240:443 prebid.cootlogix.com tcp
US 174.138.117.240:443 prebid.cootlogix.com tcp
US 174.138.117.240:443 prebid.cootlogix.com tcp
US 174.138.117.240:443 prebid.cootlogix.com tcp
US 174.138.117.240:443 prebid.cootlogix.com tcp
IE 52.214.200.33:443 ap.lijit.com tcp
US 34.98.64.218:443 google-bidout-d.openx.net tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
DE 51.89.9.254:443 onetag-sys.com udp
GB 142.250.179.225:443 ep2.adtrafficquality.google udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 240.117.138.174.in-addr.arpa udp
US 8.8.8.8:53 254.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 218.64.98.34.in-addr.arpa udp
US 8.8.8.8:53 33.169.217.172.in-addr.arpa udp
US 199.91.155.74:443 download2333.mediafire.com tcp
US 199.91.155.74:443 download2333.mediafire.com tcp
US 104.18.159.164:443 cdn.otnolatrnup.com tcp
US 104.18.159.164:443 cdn.otnolatrnup.com tcp
GB 216.58.204.65:443 2790e675aa16f468161a10fbbaee24d3.safeframe.googlesyndication.com tcp
US 104.18.159.164:443 cdn.otnolatrnup.com udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 142.250.200.33:443 cdn.ampproject.org tcp
GB 142.250.200.33:443 cdn.ampproject.org tcp
GB 142.250.200.33:443 cdn.ampproject.org udp
US 104.18.159.164:80 cdn.otnolatrnup.com tcp
US 104.18.159.164:80 cdn.otnolatrnup.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 172.64.151.101:443 dsum-sec.casalemedia.com tcp
GB 54.230.10.67:443 woreppercomming.com tcp
US 172.64.151.101:443 dsum-sec.casalemedia.com udp
GB 172.217.16.230:443 s0.2mdn.net tcp
NL 185.89.211.116:443 ib.adnxs.com tcp
US 172.67.141.135:443 www.chancial.com tcp
NL 185.89.211.116:443 ib.adnxs.com tcp
GB 172.217.16.230:443 s0.2mdn.net udp
GB 216.58.212.194:443 googleads4.g.doubleclick.net tcp
GB 54.230.10.126:443 check.analytics.rlcdn.com tcp
DE 3.124.78.70:443 www.opera.com tcp
GB 216.58.212.194:443 googleads4.g.doubleclick.net udp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 216.58.201.110:443 www.googleoptimize.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
DE 3.124.78.70:443 www.opera.com tcp
US 104.17.97.71:443 c.bannerflow.net tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 104.17.97.71:443 c.bannerflow.net tcp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 163.70.151.21:443 connect.facebook.net udp
GB 163.70.151.35:443 www.facebook.com udp
GB 142.250.180.2:443 ade.googlesyndication.com tcp
GB 142.250.180.2:443 ade.googlesyndication.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 104.21.87.79:443 g.ezodn.com udp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 163.70.151.35:443 www.facebook.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
PL 34.118.72.152:443 e2c12.gcp.gvt2.com tcp
CA 34.130.135.16:443 e2c21.gcp.gvt2.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.35:443 beacons.gvt2.com tcp
GB 142.250.187.195:443 www.google.co.uk udp
GB 172.217.169.35:443 beacons.gvt2.com tcp
KR 34.64.233.111:443 e2c5.gcp.gvt2.com tcp
KR 34.64.233.111:443 e2c5.gcp.gvt2.com tcp
KR 34.64.4.35:443 beacons2.gvt2.com tcp
KR 34.64.4.35:443 beacons2.gvt2.com tcp
GB 163.70.151.35:443 www.facebook.com udp
CO 142.250.78.3:443 csi.gstatic.com tcp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 163.70.151.35:443 www.facebook.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
GB 142.250.187.195:443 www.google.co.uk udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 172.217.16.230:443 s0.2mdn.net udp
GB 2.17.149.102:443 sync.teads.tv tcp
GB 2.17.149.102:443 sync.teads.tv tcp
US 34.98.64.218:443 us-u.openx.net udp
US 8.8.8.8:53 102.149.17.2.in-addr.arpa udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
GB 142.250.180.4:443 www.google.com udp
GB 163.70.151.35:443 www.facebook.com udp
GB 142.250.180.2:443 ade.googlesyndication.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 163.70.151.35:443 www.facebook.com udp
GB 142.250.180.2:443 ade.googlesyndication.com udp
US 8.8.8.8:53 www.google.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 104.21.87.79:443 g.ezodn.com udp
GB 142.250.187.195:443 www.google.co.uk udp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
CO 142.250.78.3:443 csi.gstatic.com tcp
CO 142.250.78.3:443 csi.gstatic.com tcp
US 8.8.8.8:53 bid.g.doubleclick.net udp
CO 142.250.78.3:443 csi.gstatic.com tcp
US 3.165.148.119:443 analytics.rlcdn.com tcp
US 3.165.148.119:443 analytics.rlcdn.com tcp
GB 64.233.166.154:443 bid.g.doubleclick.net tcp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 gcdn.2mdn.net udp
GB 172.217.169.46:443 gcdn.2mdn.net tcp
US 8.8.8.8:53 www.googletagservices.com udp
CO 142.250.78.3:443 csi.gstatic.com udp
GB 142.250.178.2:443 www.googletagservices.com tcp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 119.148.165.3.in-addr.arpa udp
US 8.8.8.8:53 154.166.233.64.in-addr.arpa udp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 r2---sn-4g5edns7.c.2mdn.net udp
DE 173.194.188.7:443 r2---sn-4g5edns7.c.2mdn.net tcp
DE 173.194.188.7:443 r2---sn-4g5edns7.c.2mdn.net udp
US 8.8.8.8:53 7.188.194.173.in-addr.arpa udp
DE 173.194.188.7:443 r2---sn-4g5edns7.c.2mdn.net tcp
DE 173.194.188.7:443 r2---sn-4g5edns7.c.2mdn.net tcp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 216.58.212.194:443 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 www.facebook.com udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 157.240.221.35:443 www.facebook.com udp
US 8.8.8.8:53 35.221.240.157.in-addr.arpa udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 142.250.180.4:443 www.google.com udp
US 104.21.87.79:443 g.ezodn.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 157.240.221.35:443 www.facebook.com udp
US 8.8.8.8:53 g.ezoic.net udp
US 8.8.8.8:53 ads.yieldmo.com udp
GB 216.58.201.98:443 ep1.adtrafficquality.google udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.187.195:443 www.google.co.uk udp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
GB 87.248.114.12:443 ups.analytics.yahoo.com tcp
CO 142.250.78.3:443 csi.gstatic.com udp
US 8.8.8.8:53 89.16.208.104.in-addr.arpa udp
GB 87.248.114.12:443 ups.analytics.yahoo.com tcp
US 8.8.8.8:53 12.114.248.87.in-addr.arpa udp
DE 3.125.202.21:443 1x1.a-mo.net tcp
US 8.8.8.8:53 21.202.125.3.in-addr.arpa udp
GB 142.250.180.2:443 ade.googlesyndication.com udp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.33:443 tpc.googlesyndication.com udp
US 104.21.87.79:443 g.ezodn.com udp
US 8.8.8.8:53 region1.analytics.google.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:443 www.facebook.com udp
GB 142.250.180.2:443 ade.googlesyndication.com udp
US 8.8.8.8:53 g.ezoic.net udp
US 8.8.8.8:53 prebid.a-mo.net udp
US 8.8.8.8:53 ads.yieldmo.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 www.google.co.uk udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 216.58.204.67:443 www.google.co.uk udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
GB 216.58.213.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 3.213.58.216.in-addr.arpa udp
US 35.212.207.78:443 e2c51.gcp.gvt2.com tcp
GB 216.58.213.3:443 beacons.gcp.gvt2.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 172.217.169.35:443 beacons.gvt2.com udp
US 8.8.8.8:53 78.207.212.35.in-addr.arpa udp
GB 216.58.213.3:443 beacons.gcp.gvt2.com udp
GB 172.217.169.35:443 beacons.gvt2.com tcp
GB 172.217.169.35:443 beacons.gvt2.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.180.4:443 www.google.com udp
GB 216.58.204.74:443 ogads-pa.googleapis.com udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.187.206:443 play.google.com udp
GB 92.123.128.139:80 java.com tcp
GB 92.123.128.139:80 java.com tcp
US 8.8.8.8:53 139.128.123.92.in-addr.arpa udp
GB 2.19.169.119:443 www.oracleimg.com tcp
GB 18.172.89.122:443 tms.oracle.com tcp
US 8.8.8.8:53 consent.truste.com udp
GB 2.19.168.132:443 s.go-mpulse.net tcp
GB 3.162.20.34:443 consent.truste.com tcp
GB 13.224.81.17:443 tags.tiqcdn.com tcp
US 3.165.148.2:443 consent.trustarc.com tcp
US 3.165.148.2:443 consent.trustarc.com tcp
US 3.165.148.2:443 consent.trustarc.com tcp
US 8.8.8.8:53 122.89.172.18.in-addr.arpa udp
US 8.8.8.8:53 132.168.19.2.in-addr.arpa udp
US 8.8.8.8:53 34.20.162.3.in-addr.arpa udp
US 8.8.8.8:53 17.81.224.13.in-addr.arpa udp
US 3.165.148.2:443 consent.trustarc.com tcp
US 3.165.148.2:443 consent.trustarc.com tcp
US 3.165.148.2:443 consent.trustarc.com tcp
GB 23.39.224.128:443 c.go-mpulse.net tcp
IE 54.246.210.167:443 dpm.demdex.net tcp
GB 142.250.179.234:443 content-autofill.googleapis.com tcp
GB 3.162.20.77:443 consent-pref.trustarc.com tcp
IE 66.235.152.156:443 oracle.sc.omtrdc.net tcp
US 3.165.148.62:443 consent-st.trustarc.com tcp
US 8.8.8.8:53 77.20.162.3.in-addr.arpa udp
US 8.8.8.8:53 156.152.235.66.in-addr.arpa udp
US 3.165.148.62:443 consent-st.trustarc.com tcp
GB 2.19.168.132:443 0217991c.akstat.io udp
GB 216.58.213.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 opposezmny.site udp
US 8.8.8.8:53 goalyfeastz.site udp
US 172.67.145.203:443 goalyfeastz.site tcp
US 8.8.8.8:53 contemteny.site udp
US 172.67.166.6:443 contemteny.site tcp
US 8.8.8.8:53 203.145.67.172.in-addr.arpa udp
US 104.21.59.84:443 dilemmadu.site tcp
US 8.8.8.8:53 faulteyotk.site udp
US 8.8.8.8:53 authorisev.site udp
US 172.67.209.143:443 authorisev.site tcp
US 8.8.8.8:53 g.ezoic.net udp
GB 216.58.213.3:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 6.166.67.172.in-addr.arpa udp
US 8.8.8.8:53 84.59.21.104.in-addr.arpa udp
US 8.8.8.8:53 143.209.67.172.in-addr.arpa udp
US 172.67.145.203:443 goalyfeastz.site tcp
US 172.67.166.6:443 contemteny.site tcp
US 104.21.59.84:443 dilemmadu.site tcp
US 172.67.209.143:443 authorisev.site tcp
GB 216.58.213.2:443 googleads.g.doubleclick.net udp
GB 216.58.213.3:443 beacons.gcp.gvt2.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 216.58.204.67:443 www.google.co.uk udp
GB 142.250.179.234:443 translate.googleapis.com udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
GB 142.250.180.4:443 www.google.com udp
GB 216.58.204.74:443 content-autofill.googleapis.com udp
GB 172.217.16.238:443 play.google.com udp
GB 128.116.119.4:443 www.roblox.com tcp
GB 128.116.119.4:443 www.roblox.com tcp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 3.165.148.94:443 css.rbxcdn.com tcp
US 3.165.148.94:443 css.rbxcdn.com tcp
US 3.165.148.94:443 css.rbxcdn.com tcp
US 3.165.148.94:443 css.rbxcdn.com tcp
US 3.165.148.94:443 css.rbxcdn.com tcp
US 3.165.148.94:443 css.rbxcdn.com tcp
GB 13.224.81.3:443 js.rbxcdn.com tcp
GB 13.224.81.3:443 js.rbxcdn.com tcp
GB 13.224.81.3:443 js.rbxcdn.com tcp
GB 13.224.81.3:443 js.rbxcdn.com tcp
GB 13.224.81.3:443 js.rbxcdn.com tcp
GB 13.224.81.3:443 js.rbxcdn.com tcp
GB 3.162.20.44:443 static.rbxcdn.com tcp
US 8.8.8.8:53 44.20.162.3.in-addr.arpa udp
GB 128.116.119.4:443 locale.roblox.com tcp
GB 2.19.252.73:443 apis.rbxcdn.com tcp
US 3.165.148.94:443 css.rbxcdn.com tcp
GB 54.230.10.108:443 images.rbxcdn.com tcp
GB 54.230.10.108:443 images.rbxcdn.com tcp
GB 54.230.10.108:443 images.rbxcdn.com tcp
GB 54.230.10.108:443 images.rbxcdn.com tcp
GB 54.230.10.108:443 images.rbxcdn.com tcp
GB 54.230.10.108:443 images.rbxcdn.com tcp
GB 142.250.179.234:443 translate.googleapis.com tcp
US 8.8.8.8:53 108.10.230.54.in-addr.arpa udp
GB 142.250.178.14:443 chrome.google.com tcp

Files

\??\pipe\crashpad_1028_AOXPGQYWYDPAQMGM

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 1ba816418e17f7b1852158bf78a6eefe
SHA1 972630c2e35e8a01d41ba66802fc4eb003610b7c
SHA256 6e610697e09e5308a23a062f569abdebed9c23b2dccfc5b326989474a2ac550f
SHA512 5fef509d39b40caa1ca5d3aa2871be53424e1d09f639580f28466522ed9da701c1397663663a04526a7a7569e97b5cd26f12f6b10298c31df3c386d6cc901810

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ca0afc71dc88880ac6b200a386771e0f
SHA1 75c1b413c2a1b98275145fb252556176fd6e2420
SHA256 040c4f2c91a759f8e9f0fa4671d7a71af1e82d13efaf3b647b33e7043e7b7788
SHA512 b776224e849a2c58a2bbfd5879c87c66c38230dc24d3903593000d6c1505d597f2149e77d069321850f33876254de06007a68cdd42b2986952c6481155bbaeda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 070a366a6c046a70363ee87f3d78ca13
SHA1 ad833a7e1b28ac3513ac47f85c3b3d84a841278f
SHA256 56c0b36987bc558b0680dd86cd51dd2f8f8d47201a65c97895ea7b5cc32b8851
SHA512 6686849212a6a283e048e5c4ccfea76b249125ff5cc0bd0bcc03cbaa3be65ed0bec076129a95612d1a8672a914652ca75eb9bcd9a08f4f4960cd56aa4a9c34ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9beeecf27362756b0970e679f6fc18c5
SHA1 bd026824b8e0c0fd407f9f5b8ab8e31c000108c4
SHA256 84cafc9decb53168a2f4452a8be2fa2caf76ce07ff9c6cc8a965499d70a56778
SHA512 146510dd4c5b6e846cde9d2320d1b7718317bc5b8876bb035b66adb4e356fe7b1063b85e238bca9112edcabbdfb292825859aa2121ea8b3a7ed3c0ece6964c10

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 56dffa3a9a996e2d11dfa130d3341d18
SHA1 9f5fd858c46242823040f753222741e8359bc99b
SHA256 75fe17efa6c8dd96246a5fb97486b2f7a8b8763f7f19644d47d20a321af87dd6
SHA512 63db7cc8396dc20b57b4388b6343ab6fb22deb6a52ef2083f05313e248e66e996618c0be5feab5727afc871aae840b3a605c12d303066fe5edd695bb588691df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7732c04eb23681b419778bccac103dd4
SHA1 b61266f8e3421a1db58d0a936fa24a053bb89d99
SHA256 58ce7d7f2f015c8cfed250e1d9f29e5a3286eaaa7b76884bb2aa32bd22282c00
SHA512 32c036df99c52943d76cee6126dc53c21f61f4557f9909a97e1f2217cd25ae8b52070d4b646114324d9407fb9bd9bab9528da9eba78ae4a84f915a739eed77ac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\39308f04-52aa-462c-af81-e49de970611d.tmp

MD5 955b20b47318b10180e2b43d54c0a907
SHA1 83bdb3d7d8829a2a14b2009d9b557737ac5a91c1
SHA256 12ca42bd3dfcecc728b770fad4219cf5db5192ab0ee57f57ecf9c8ef30a2c78f
SHA512 e4ccb2b36dea7cf07cb2f452dc89fde4b42bf43193af7676b7ecb18a1db44862055990e4285f65a62b1a9436c93d9bab5be189f578bc3effd346b700e22610e2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 01cadc32366d4731e4c30c61e7ca78a0
SHA1 16a5738f461f0c6abdd979d660a4969cb806313c
SHA256 2ebdf41955d49539324a3e62ab763dc0b902d0a6206d388b7bbbe743e7067745
SHA512 4e4c340451385f6e0f461f1256df236cd585206e9b9188f67f2871b92b157eb03dae6d7832a9a01f7d2c00b0c8ac3d37c7100d2d39c13f5d831517e3f50a355b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8a80f2a5a08b9b57fdbfec579cb3058a
SHA1 1d05a57a631c0ccc72e57567e0c69be5db88e2bb
SHA256 4e890757bdcd9d29732c231fb1d2134da41b0e8b16b6087afee384cdc7cc0530
SHA512 5b5e78a9bef567797988d1874b21666d76c3863ebb26c7bd9b1ff5384695c04c7099721f0717623a9641b107970a1ae1aa43663788cd8ea675af30324ddb6712

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 aa7ad199000c20283c52fda89b095c88
SHA1 85260a9a03c4435437019d336615a716d89efc92
SHA256 1090e9baa56056db1c10fb947363db4546a7615d062cff92dc618741e5030ae9
SHA512 d9e6c66cc7a06de9a0e4fb7eee7a1a3764b7f035d7a447f4292069bfcad9371cc7813b784fa694ba1708f0fcec564aa3a1599916cec42a935f60dda256012a65

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9ccd12927ed4b548ad8ad397b63f74a6
SHA1 1524e3b551fb5cc86084667602c4b1597ef2e55e
SHA256 c1b3bcfda2afa8b38631a12e9511959c63ffa6594fde82e772c8de9a4bce530d
SHA512 827d1b03953a77c4484ea95f2ae57f6584f10472487877a2d0f42a43c6820c2a338de0536a649659e24d17a9c216db81a8bef527f262e3e38849ed130a81c3d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9dc26c1de8560c3f8638f364c66d46aa
SHA1 e6e5e6a99b9b3284b39089fdaa9ce4ae3e53d617
SHA256 34993b5bd937d5d93a674fe58f2344eed68174b9c78d02eb8ac36318681e7fc5
SHA512 7ba76a71b589989028cdb187a09eea494323d4512a21f45d479564a9f3a12da09680d35656dc6ff7f60af982ae302f4daea6356e2116becc562513ec967719b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000043

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 79e90b79849ab24f7077995c4e45f1d5
SHA1 3dae744f25bcaa1b690d61b789a8b1e58a790953
SHA256 3d2a7a2b6c89618f30d26fd5dac9ff7d52d6cf1d3651fd7aaa1d1229464b1507
SHA512 6169379e245102bc4b1ff74bc2c7cf356f24fdef55e5f3f8a7323da36f6ca92f1ec38bf230cacecc89c33e12e1b201de417a570a998f31cb281bed3ae8f8deb1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a82e86a786d68602e2adcb04e66c9c73
SHA1 e38919ab7f57d444c4a3f472dd6e1e9766b00932
SHA256 389c26a1318f5fdf8ab354f63e30e5628877c3bebb74813a0ffc044e957da5c1
SHA512 67ea74e2de789fff9acd485cde8dd3a48f573e2c8a643b3237be4eee232fa4b218cfa0c029dcc1ac8080001a57aa652a66ea178659f620e9ac5b232208a15292

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8e1f0385731d140e4de0860dbc633c04
SHA1 faa9feeb895b86022f793b0e3eebebeb617377fe
SHA256 85b968fecb6970a52cc52b53408e6a7573cbb431c64d40503eb44e06ec45cd40
SHA512 0d0ba8665902d0624e280c90bbb1197ba7855f6359fa8a60e0b38be3d7e90d79222afc72707d146b9844449d72b4d7ebade3512cbff1f668b34c5210eb5c1cb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 330e45781402ebdc6b865c74d46e67e7
SHA1 c237bae710d354d36b31b7256157dffd9dc23dbb
SHA256 ee7c5f93e1c8a3ad70af7861176e492658e8986d82aa330b664eb97909ccfd8c
SHA512 5d8fe384ce9b986badfe2d996257d009b9aa1d4d4a14410af3a469d6d0f33156ee0e89bda53462da2f511f7e155d1b7c559c3ee18df50169873d57ce8f84cada

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cc0c809f19f77b6f887b7fbd448e63ea
SHA1 2df47a79077cc14c65ac028e050f43f4c1822853
SHA256 a743a2a2edc67389bf871d7a5c066029205b37e9f38497488f2f7e185c41b890
SHA512 835beaaff28d2e7a1071ffc9d6f2153121fa0743200c8b3fc54e59d7daf3a9a6c7e4592d7e0d08e84b4ab16ea715b805d12d22c6f770921809bf5296def5f17b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 692038508ec86c73ae0589097e47aeb7
SHA1 d1682c366bd6a88a5066b8ed10a75f50dce9ebc5
SHA256 75a12d00720a6b0c0cbd907ca129383f148cbc2f88fb83a639bb61ddc46c9bf6
SHA512 51834ebf00dfdf9c7beb5433463e22531effea19d70f4d801e67527a7d1eac24eb36414b6317232ede0ed3d60a4012b914aa81af97ba8a5d627cc8880f03796f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 b38576ae9c998cee4ae57ce88fd53ddb
SHA1 f94177fb57dd0092ce742f66aa40622cdcd1a1cf
SHA256 ecfa9085b9c5f89b39d1f1e3a1ed8480732b2144c9fd8b88047f2346c2eecd2b
SHA512 7961097f794bf79622d71b9f0b9c361b880b02bb58f9b6701ba53622fabd67d98f29c2842960ca66aa57aa6ce2e89bbe4243fe76801639638ef22d96cd4761a5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 dbe55405c86f43b62e6bd95cf7925fca
SHA1 87e6e0c4e9326d4614e027f7f738df2b224fe0a6
SHA256 3d222e9e19447fd1a31ad2631db20e5da49b273b5026f847e2f1e1ce4ecac4c5
SHA512 b891f47ef81d5637e8f6ec2c2760fa4480f8c0db16272bc4114b1f4472210a56cee14b07ee938e2144e2f6b898707e23fb5c22b3334cd9835260b132b6ec50ab

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002b

MD5 01ad880ee50b786f74a5e4fae9ba3d71
SHA1 111387dbe885b7f3af44cdbbeea17eeb04bbf803
SHA256 9368f2d586a1d2727921605892048bf5201ef8caa044f2e939ef431aa881d83e
SHA512 d8dc47e5d55e6598988281539205936c56b716eb02b4e643fc917a68ba4407ece36a9d4115d5d0e32ac630d44eadb94ad2607330de082629fea82a9bd35fb83c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c

MD5 13d4f13cd34f37afc507ac239d82ddbd
SHA1 6d500935a441d438ed052e90de0443bccc8c6d17
SHA256 76464e77d22532976bbe5d1829e97854d5c37ed5a46ff300ad9680876ec81d01
SHA512 152e6449d09a7b544cf6f986c9695ae07c330f4b13068cca028ab56ffdad6ff2467f371ea4385ad71da023f3beb83fe0ba1d6d413f1ddde14372efe82ae36b6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fd2207da048c4a72fb06e4a6ea3a5dbc
SHA1 a113ad2006467cc3ff9258aba104b929e9f1d137
SHA256 5b429a02235610e6fffd39aca6656e105d79a9591c7c3dafd770f15fe137f9ea
SHA512 cda79f9dc7c489e6db8c76ddd6a00f63fd1324f300aedff6ec75fc75b27b6bf276a3cd8c106a606a9785288c31938701a2a1677e20d9bb5c620ac9c23785afef

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 633e06f8db28b90b35ad4d0a7774e7de
SHA1 464005b408ce33fc3e3eedaa0bd8542f3e1be972
SHA256 b5461b8371ff1899204f1dfc56ff6dc21ae61ae400374b3f8735859af3e5b4a3
SHA512 76823f4416036dc0e98d78c621c4e19c36249ff0cbaea39d974638b51ebf8e700a1f216b12999e202b8748a2ba0b233f7d75cc66b4d5e4fcef5925726ffe3cef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 69c9578199d14665884c08709572e118
SHA1 9239851e85228b321b3b12fe97cf541a25f07c67
SHA256 bdbe068236c3218a719f9404464ace935da87750fd738c22271581822e2666c8
SHA512 c90026d4d9c26087376b6a87852daff6b84a4d8fde072587e323296e43c11f7ad7f513598d5fbd190f204e51b3ae850d318fa5c45512023fe204f5afa162118e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 03841c312dddab1e3a04ab67eab8ac5f
SHA1 ea192681f0000d533dea7c054133df8322d2b51b
SHA256 d6ed38475de8ba67b32599350d82803902851fcd1170ec81e435e9b57434130a
SHA512 a473700f1fbccd1fad7fa1e22cc8a9236696909f513dcf6b88680062a160fa1ffab263bcaea03f26509190de6e61b4157297d1cc54edd5a5f6d2e69f76e13ba9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 d450d09aa149551f90cb586898e3345d
SHA1 d270351984ae63b354e67aa74832637e349244c8
SHA256 a0982fb83894be6b7950c72d289127b62efc9ad98ad6d896f05cd6b6a4901203
SHA512 7beda95324faedd93786ae8922feb164d57483a269b3e5c8ed8bd61dc6425738198c3a8e2a5cd6377248f8f179bd42e613d60efdc675c26566e0acf9010fceae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ed439f5a972f02d4f7fecbae9da2e570
SHA1 0657e90c856c3795491aaf59fd38f4c645ed9c62
SHA256 3266ecb8209845e5a7eb80dc07920a7941f31ca8edd70ceb22cfe0aea91e275c
SHA512 68aa801b8d4b50035be69b2b6ad39f052382319cf7a4df77c7ce902211a2b6b1439c04fd55349fce9d96a661a52fae0f4eda729d7013e4848097afad70b6ef06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 14342e5cea86e3b37ff4d2a322cdaa10
SHA1 240f6da619d85ab9fcdd8d2a6d2761684fda3ef5
SHA256 2547335fcdfc0bdd2e17ea23d79323cee745be30b34dd7530bc15f78d8aebcb9
SHA512 613e4ed0763258fb1d783fa0e07f093c2297d28b423c92037cb551a85ca5bbe5c0c0578d0154aa22887f495aedc15e8c510381db3b8a49c0fdd9c2450ec03ad1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 0981c825374b61083dc96c9be71b54d8
SHA1 32b77f8b906afb9a3edd4b85594b6f7a1062dce2
SHA256 ecf18196a576f6e748d0c1313417a40ad010fe5dc72bd3dbb56be3fc28142018
SHA512 340b640a807b9412a14b209c63006fc7cf6ac47ef3c523054644e407a09cb0f5873f4e89973abd1390c1e29bed40687c0c212489324d28d7e1486e477d51ac31

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 05764645d9a30aa6418e3db2099b201b
SHA1 dc3156d39c5b17188658424b339ade0142f9ac8b
SHA256 0bd885bc50e7379e84ba11013701bf2d6f049bf5e7b07e7a048fe1207e888dda
SHA512 d5dfaffc9610ce5df6b340cda6b05fd7a745fc0de0fed76c056f95d2307524ba5e88fcf6e991755c5c38fc483e1f8e81d4ef85396ea8b9b29d6f0d2c1bc304a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 dee46781c0389eada0ac9faa177539b6
SHA1 d7641e3d25ac7ac66c2ea72ac7df77b242c909d3
SHA256 35f13cf2aef17a352007ab69222724397e0ec093871ff4bd162645f466425642
SHA512 049b3d8dcfb64510745c2d5f9e8046747337b1c19d4b2714835cc200dc4ba61acaa994fec7c3cd122ba99d688be6e08f97eb642745561d75b410a5589c304d7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004f

MD5 3a8ad551ebf9122274a160d7a22100ac
SHA1 1bd2fcd6b86c37a717b387186e510de5c8a2ef2c
SHA256 4c1ee3e726da9b0dd3dae0c2ba58824daaf0e132d9ede9721a8c7dc190a4c099
SHA512 7d6f1986a535b21a45399d13024f28298fd74c4e0e08737b47df6050fdee324ebd7f86b912615287a4cf6d71597ac78805b3aed16c1da0f561c724648ed9e98e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000051

MD5 3f8e48f141d27915a0e20f64f80bd4ac
SHA1 c9b35b9da4361ac8f2743ed451c955dc7c29958f
SHA256 37247d0c5913f541b20baba97af10738e130502b0a89a1f25ea0d2a9d70d709c
SHA512 5ac57c17b520ec0baffbf7e63231230d84f7a9f6019a83a59f31b3820966b0de37bbf0bb4eb76acb96c0d9d79f9eba807398c938b67d4c52ff09396039cc5e78

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c1f3c093b2217bfdafa90dfb016f266d
SHA1 d4efbb6d486ab4bdc0be2cc9dcf3c08c98be2336
SHA256 1dd2f059b7b2e0b4a3bff914d2d3e53aa085f2b2b990bcf7bcc21e7ffb7d52fe
SHA512 65d1dcb21a1308c4dbb9ad96d99c5f139fb233d3ce0e17e524e3c6e11225616ec9f5605c1511c7a51f85345855f815d0310886e4d3dc3f400dada61aadae694b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4821641b64ab76d9cfc5f33383a57e34
SHA1 9e7d72495ed4532492b843aed8abdbb05bde38d4
SHA256 c73370daf35e7f806bc247b40adac79c80afec102713bcfb8756c8b5483a42f0
SHA512 71fae40cca31511136ff6b72ff72d76b351b5bd251837d888a5a27c650b2275231cc31bd6fb328daf9383899ee71f10f83af6711151aca99d1cb7b4b77680e4a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b2b2eb365c3148c4def213955c88b1c1
SHA1 d7b5e9b2efad4da9ee914a86afe94b652df335bd
SHA256 6fb1a19ca69b032fdef1235abb691b2b50176e3ab8a0442c11b97f56a902815e
SHA512 3c1cbb431116efaf6d495c674fd1efbdc7c664a42dc479e976214ee90cce1a1176558e12bd869315334f095b82a7746f4b5655c5281067c11acdf53f1ddb3ded

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e148d1312409ea98c239ba047d8a6aa4
SHA1 53fd9aa4a12ad350fdaf2d3c1bb7ca560e26afa1
SHA256 b024a1797802daa723a4fdd9dd220a802e974dea30035b00f81a8b696f1c4cf0
SHA512 f84acb7ccfe17736da4cb57ef7a357b4cc5412b1d051c0d0433d74adfb2541bb68f0b3c3fbab2a0f8596af3e416bfb620a0bbb5519309f44598f76fd8935909e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\da019b0e58482a9a_0

MD5 b05155c92345f5ff41a6c373e718d769
SHA1 5d9e35e43c8d50bad50d0e291fd16dd1a431b6de
SHA256 7ff507835c2e54e13f051a810bf9c15326f12ec7505994f09f7d3187d3586aa6
SHA512 4f8450f91b1056231dce32ee7d0b064e4e1dacddf0ef3911fb25d2df207299120eb7b839bef1fe6262145604a3b8aeda6fc856398feae4c694773c590d56adcf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bf15e95252273036_0

MD5 3bedcec65a3e3c3adcc1391bb2cd1a7a
SHA1 67d41e40e9e603cf0e1ddc39400ed2cf7570c9c2
SHA256 ac20ce53b56dd44056960ccf8040e7aee0cbdb3d8d2242c49612b28aab045e02
SHA512 39130c116d43ec796397dfa883a6aaddfcec5886bdd6d76800910ff5adda2bf7f38acede5a33e262d4597884498c2aef6674f6a739d8991c10232595432538e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034

MD5 faadcf8e5560b92714ce7b761dde2589
SHA1 5d9c9821f596422ae8578944708f3e28d77f29f1
SHA256 0640afcd97e6533478c36a8e0b03c79d0e5f144ac5debe63e4dab8df67447740
SHA512 f810ab293e402c384576ef1688d6b6604323f050774cec3188a76e5cb1d724753611945ba3a4da95bdd3ea29c52f6a6935201d168dc6923b808f689b2e3df5fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 d4884e230f651ee0f6c2fce932e4452a
SHA1 7ff50b4c082063ed3e7ac9e7362cf5da9187a80d
SHA256 100a78d00090c9d6a163bfebcbc318fc08160e5c2a983479c0a9f0e2ff16b118
SHA512 77d9066e86822e264b9dd3cddb00ce60d339edaf3a18aa7983b67a092db72c03711ef7a7e60f66f4219b9c6ec2aee4f372662e053c833eb0d14dfa00c44f985e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 5cb3b1cb85eadcb426a55e8a9f4b31bd
SHA1 31373247891bebe394a9bf543a3f7c2a3070b821
SHA256 7c7e4dd4d19d4006302c7702424df656258da20831781e72409123951d95b77c
SHA512 28bcc8607ac3303c030c9e4c8442302209fcd70abd72c26213cbd18633a0073d1798509ff2d1e8772633ae88527fcb8aa309f7ca7cc67bfadd72de28ea44b909

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 75dad2c28ce35efe9114c1132bfde7ac
SHA1 bc422dece0cab0016a27218cbf82a58b84f712ca
SHA256 f166b2ede576452f832c6d6189d8189a6168ea20a49de1c7aefaae9855d75087
SHA512 feab566b246929a6c5b592195fa8afc5a63a82af24cd77fa0b5c77a8560e2bc1538c191f379c59cd2a38a63992e3b285c3f9fe0f9b51dd6a97bbf062bc32356c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3e58dd35053ec45e42ef4c9be1b4421f
SHA1 d9590badd20bcd94d7f803f7362ff0e57f6d9c87
SHA256 bd399fd1763c9ac9e3ccebd68188a06201ec4b7ea507800d68328baaaaa97183
SHA512 f11d81077daa0af4b6d7c9edf532315001e60058120e406af872264dc30e09a4366582a238e8a30fec84ba45f7e3f9eacbec42a88f0c627a8675a731dfca1c61

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ca2ff5512574d064d8c11d41d824ea3c
SHA1 5ed68ef7ed4e831435190d2a6c4d2eee7cd00a6a
SHA256 dcd430eb55d355a1d1bc1b338342e9a2466a17dc49ddde52a5257ed238ef6a5a
SHA512 f1bf4704bc496c94c2ea088c188750cd54f6ee7d5f99c66d48fc5500340013627f79639236921ef51edf30d0e14ebb2f4dc5351283ecb921123fd713cfaec0b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fae3157e39831da3_0

MD5 361d4c6bc68404f67e38ab18d61861e3
SHA1 b93f914529474a47cee094a59e4ab384f4c43432
SHA256 8b6ba65eefd50dc929f21c5ec4dc283ad3bed8a70886a7fb7d93802dcd8b1f36
SHA512 cf68aed7bc8bd2dd8e5e4af64643b799b66310778634582551ee8498f869752855df52d6a8093f1c4ec7553b1b35d12c62585f7fa7e3e013b66b45ff52df2527

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e5b999651d48bcdc_0

MD5 4dc2fbf4edfda797c433c792312929f3
SHA1 f076a24368a68bd456d32cbd3da76409b75ff888
SHA256 e1d6ce30688a2ec47005e46f65e59def02d02010c5fd1e8da359c7ee553d6f3d
SHA512 64a45d3a5b597d83a663bb84b209b52f036b47ae94a6ae175d20b39116b56980ad67f6a1e5017b1e6e94ec2866f8189260984341953e3b04691b22af52e47b38

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fa5eeae00480f442_0

MD5 426e6177282168bb46375b989e47a725
SHA1 59b36981e4e004756a3b8aba0cccc0c6c55e2bae
SHA256 78e27cebbee232c7bf265db5cd0c7c8bd9cdab1187374e8223e6068acf50f032
SHA512 87d362e095b65cd9b3c15064dc4df1e9c6329eb258e3e085765e12427772f303b3c3d14cbc8ed8713030b5797396dd16191be1d4592c7cc68e27570b686c9e2c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\474f4ddf2170e23b_0

MD5 08bca1b5c90751a99436f4d35a7c3469
SHA1 dd7b8564cceb49c26a950b4dd574dabf5ad275a7
SHA256 1a8cffa1e486c368e46ae9195fe9b869ca2bd03e7c124a4e06047798ce95023c
SHA512 28ae4016ee69d7756bef8038b92f2a398d8fc09101520deacdbe164d18ed4740e60e6c8a0c4ee12d3f8dedfcdde11bf8139f0e259adf3080a0d53f66c2f6b567

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e780356ac3446c876d1c3c418cf91a05
SHA1 56fde2e5659df1fc421c7bdd260bc1e3bd1eac33
SHA256 01b52e9cb94930be16458ed48d6642559510200c62386539a029f1f8caaf919e
SHA512 367c6bdf0ded0be1f79d5d04ef9187add87acb3aad5771e1b7b47a090b803be50e6cbc901781e6385a0a3ba2ff0d5fb9b97895e2b66e666fb7460a5976ee1db1

C:\Users\Admin\Downloads\NеwInsً.zip:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b2301e843b7a9dda51aa3898c47b0e76
SHA1 5ca86b8aeb8f63a6e4b0489542995b5e8907d895
SHA256 62c3ec16950cdc9bb449214d1af4ea3b72630bc2cc8b0625db2b1ea33b08f999
SHA512 92715789029d5ff75ddf4e19e3bdd775385e6bdf409712329ad0fa38f9d69b392a799d047154d12a38bb685508421e9f8670c8a0cd2395ab471247d24644728e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a34a5e2cc8a39ec2dda07477457f1c42
SHA1 61793be16c085c8bc856f5d0659e9a67d2c1e47c
SHA256 bf7a858a1e34c79bea9649594ce8a488e393d77e58fa9cecdab6efddb548e5a1
SHA512 2d07c67b56b3f17512ee5202b094f1fc1b18359b33121fa1ea204cbd1ea6cb49d112c96f56cbc5744e1ac0c984bfd3cfe553e653affeb34979b13dd66c9a6e1b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5ee1d8593716e0ad8c321179db5e315b
SHA1 d704d4f18be7e912d0f72fccf585070c6d6e68d6
SHA256 b0927c98105dbf8b2a0c6779010cba67ca5bfc648893eaf34b8808f8d6516b17
SHA512 8eb60f62dd1ee680e4f43e0013de08088067fd5bbb19e62039208247661562311b423bdcb8f6f9d77a38e36841a14e0792edb79f538423f53aa35d4cc5e25a58

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9821d746162bf623_0

MD5 463a230924a80913aadc2463fe46c0cd
SHA1 4478ade17909872e05f95de74fe24b3376091df2
SHA256 25a75a765403ce8c02a974d7f1953ffa70fa175f9c7420e93ea4d1a1d0ba2bd8
SHA512 ffbf447e50dc81a4f1f3874896f8b4d54292b090bcae0ac4387f0259f68e657a64462dcaba5dd078ee048c250752291ecee88ffa61b3a6369db368a58f42e5f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\13fe510d2a9c1602_0

MD5 1f1e5f0998979a2c976545858a1f31c1
SHA1 36cb1282e7d80a38d344a316e187d6a170c7fc82
SHA256 56f1c0e2bfb7c95fb9e246745f3419d49d53327eaeae6c8e26f1863a4ab394e2
SHA512 c682ad063af71862290f804d4d9e47a9d06b9f6aa93f52b8f8d784147a6c7ca6b7219408905837713584f63ff5ba00a5ce6de0c80782e8cb7d6dfc794e283336

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 31790118ed522a320ec2bf9a8a6e3030
SHA1 59710b207a5add6ec1171e7f668d40d848cdfdf1
SHA256 5b932b3f4e78d5df6b5ee94c5f1197023f31b6239ef86037123b34d56bc9cc9f
SHA512 624a101b352764d8dffd2a4c4f383f55c09aaa04d9325950987ef32585f86550b8118340f3fbe7a3fab200be5678dbe9e561ae78bc39a0e49d7c95adc1b9e06b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0de50ce56afea4c9c36908e3e0774788
SHA1 9874c1243108ef827d880a6a332e1d772df5535d
SHA256 c4f706f574afa79a88511171b103ed48fe9c7ae82efeec8db9e3520a1df2f05e
SHA512 ccebb554df5e8975aba238aaf664a5f3a59c9cab2eff68055309e8e15911b859a7522bca924491b64dbfcffdbc3b340b6a612819d2b67ded057065310b90ccc1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 30f85b22bba6ed451ae778ce0911d94e
SHA1 42a985940397df0fc10a0733fed1d561fad7bec9
SHA256 cb9fa07e5e374fb0d6888d8300628ccbb24ae30e2665a4f2334920e5b3ca0c2c
SHA512 41b9961ac9929320f12b674bf335557fd0685a77b175226e4eb45a227ce3d78a38f8b99f208c437bd9cd6bf2f3cb7bed424f3040d37e5ac9fbab923812999327

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c12954df119a80130346ea632296b3c5
SHA1 2853b3f5e7ac5e1138268fcdb794ca1404987757
SHA256 9660922b496dbf8467af31ee8a1fa19a8da5dabd936a9b40aa186c9cbd26665b
SHA512 b37afb596d95e5f8243217ed9f118b0f6b238115e440e180e80444d6c2d2261ebf16436eaa979c4293dd59fb6ebb51d9b15a2c0bb83edde466d8200adbd98b68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 1c74f7cb161039c289abf1d14596b082
SHA1 966589ad091c0b57f7a4df2e76896e38ae69f26e
SHA256 0d04a615d2714a2270f64dcfff84bcdefd8a348a0f811e0e3988056169b9cdd9
SHA512 cff146ecaad8d9f9b50217c7d4bd6e881107191dbb81a05801f4267158c97e30d64fc547977c6165955b7be8f29cfd58337fd4c839bb36c4bd02ba0ea22ba507

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8608a54f03e841751253d778b918a505
SHA1 39df2f88048bdde96fa8b89ec58c7006c2a68089
SHA256 f1864bd14568c4291abeb24d8d271b20bc6454df05b124a4a5ab5cc53c8bb9c6
SHA512 a983079e9c715c943f80659c9253d5a2e96a5b4e621125d2c8e1a16d36cbeca5fc080e0f589d1ab38b16bac926fc56572e612f3ba4b4314d5023bb861ae09469

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ad6a28968a17b74eeca2319ea4abc58d
SHA1 44fd966ebec4e9894bd1e09c30dbf3ed09463d97
SHA256 90ee79afc61ff3b89eaef7839b2008471e75708399614296b80bd9dc62f332ef
SHA512 d39a5536fc0f9c152c27003cf147f9b32876c64ae4b6e50418de2092571a03acdff5f00c60ff6efe978e9bbf3ef03b2c8b7dd27e4b2a9adf69b406438e50318c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 007a70072cb43d40cec4c25940f966ce
SHA1 25d5928d6ec0ce39d968941eec86d6c58cb845c6
SHA256 4459bd97026274fa5092611c038a9e6ab96f97dea9d2d641509c4e5c80dd974a
SHA512 6d249648fcaaf32f8d88ebf791ddddaa36acf70efd0eb2b1e1d530e1e0a95bda914964bf33c4b7a342dd19be1735e7c655ff5ec6127329a577862ea2e344de17

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2cc1baa7e8540980a0b439a27474004f
SHA1 5a83cc922f497cae49805b8351ef96446604a8c3
SHA256 fb6c74ff556fc6dc40deb865e3b26d1e3816dfd7218688dfb14367f168f29976
SHA512 72164fa5a3a88fdc166567bb92b9f903bb7a417c7107589c659b8de0511d3c717bee97d24d76fce2326879dafb307a7afadf66ca400ad4d5221a3470388fc720

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033

MD5 230ab95d87a717be265134072eb17c25
SHA1 71a3d3dd6f952057ba0c6025d39c9792ff606828
SHA256 3fdfeaa675697f08f1c7c0fd6b77512f4bf9465e670637e8e332e65ebb9db068
SHA512 9b0636421ad14161f211e846521149ab0a7c866e77db309dba79718487835204cee3821c9f4678e48e134614be6a02421c155a34b7c9bc424012137705960b11

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 997bbae4d32f7122037d674332184b4f
SHA1 2f35288caf80d89aa7e22b8b6eeb117b986b8c5b
SHA256 483b3e9d3e5afde62d84fc397de4a5e6d5391c637e3cbae14f3ae9e352e04b34
SHA512 7c0b4437388838a82b1d57200a05db927075460edd3b833b9052be9011d64f7242d70d31a566c2ae22afa8d62a4db561f6317c13e9a07b6df23bf215b0147dc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ae72f6f6adf2fa7f4b0046a43fec3eee
SHA1 fbbca2dd83c16eaee2439cc789f9ba58abf017dd
SHA256 efa2f1d8cc38c3486cfb27d1a403f34ec3b319033014ef3ddf6a0648a69a0bae
SHA512 a4dfa605c0e21350e9f1ccea3fa3d18bce8d25fc11e434b2b29db182e94857047291094307636bd07362b4f9726b384eda41dbb81413fb0b713b3b2ea8e2ace1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f301c3e5e07ab7cddbf53975c006b2ca
SHA1 eb142ec76487b94726229765aff6ab499d8e096b
SHA256 f6e1899c1c0f4a8558d5236e0f885967bddd1344d7d3a18f69233b82257e6f48
SHA512 c512ff567c58e569c0ad449d8bb1910819663fe853ab1f0e2b23af441a093a7615b00a675f31a01aee1d82a9950a1f938df409f77e403b56365ac3b87e9bae06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 61ac9a76458890bba4d1b08a96298e93
SHA1 058369732e30c6b7c9a572c908c7ed72a8c6fedf
SHA256 75e469161e1d7dca601a09486d1ea117466810ee8310835f2ce1cad77a66ad52
SHA512 e20b14cdfcfefc45794a2b4c27828cd73c10fbbe097e11551807392dcba92b45c59590a9f7c5a469df1434a297750a9ac97b5c614712d6b240f6042a56d99bc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a814ca705007cedb116d794da410c9dd
SHA1 504bee34e8b370d9d675f86b1a4a6c46e74adbc2
SHA256 85f0766c4e5efa93154de6b9c53dd37cb192226450cae993e18d118bcb4af7bd
SHA512 c004ebde71d4833c73cda4f3871f2c639fc73b0a6f2c681ec7e46afa7de707eb831017da0bda27c66a6ac52ad4b78407263aaad7c25cabc4e02530bece44a0a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 85936651eeb963b3e3a6f1893e2dacc9
SHA1 bfb4ef895fa145c7ded8c09473fc51ba65967ac0
SHA256 e15f6bf08f8b33fecca9bb0733890ebe8d528c0080d261f6c813c2d4f89cedbc
SHA512 9d6ce555e6681fd513694e7dcc68a9106e989ab8321a6538a4cdda5d0c0a13e19e4da9badc3d010c8fda8a3ae1226ac00294c6a85d1d56a1e8cd378cc82a9d50

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 52aadb35437829f01993b524a7b71b29
SHA1 02ca47912edc2570466a545ad881ee658814541f
SHA256 1e82d97dcd253a1669bab26e9f85d14cc0aa8fcb5d4200f6927853bdad53b178
SHA512 b563a23d62107e07e02621350947730bd4b9c4532cc19409450a4bae4e3db9496dfb3ef6c58e098352247e8c3c60b814838c9d9ea5f5a94f5a30c1d21a52977d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a66856c3bbaa60a88c8fc62137086b4b
SHA1 cccce8d0da723c3877369511ad01dc77eb7ab72c
SHA256 4cffd18108ee05e7df63e8ad125274d70ae52f7bab8186b4ca15e8b05b43236d
SHA512 216ea695730d5c8a8cd0e3c2f13e661854a141c657960054d7de5dd1cb22b1561a87a043e7c14fc67cd02b784d0048f6f661bd37d19e6c2b5136c80c8e452889

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2ae089470dccc650fff66c10072e4970
SHA1 572f2033d877cdb8c243ada185d7e90a419cd22e
SHA256 5e53ec58db6852bde6a68a780cdb11e2244a4f4eb1ba0bdbc3ffd9ead172fc51
SHA512 a54219a24adc0a64d0412ebcbb517d1ab19db0031f0e0bfb51db04f4af858dcf6d0ebfec88e0820b80217aba4c6d2fbc78ef3e1e121e6e78ef3f3534f501d107

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 a5ab6bc9c5c2f3ae0192ad135e1138f7
SHA1 f977d150722971211e1a154f37d2503c66fc99d2
SHA256 74f063b5ca71ddebc4e647dbc9f7704f52a3899efc66b927d6ad74c14d93b3f3
SHA512 751691f27895f336ca7740024e1cb013443e69cdb45aaa501fcacd46f786ab5cada40c60665f78e3cb768a55f8824271dcac4b49c0922d8c4f38d49c12929293

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7faeaba1a44f1f301a63e088b3e5ac77
SHA1 28b0ba69655aaa8995abe9983e0586b6181c60ad
SHA256 64f721079fdc8a0348583710ddae17076e67b625b34ae42989e3f039df41b4c2
SHA512 78a22bb2be9b289bcfaab57ad5fc1f31045d326b6fcbe2995f094a5669662e2ed8c26af9b5b0b726f328d93deed3e0ac9796f7e76f8cb87c5b221da97537ab7e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f36ede1528a9b48a2a74b98e768ac928
SHA1 1febb0d38ceadd4afd788c7bc5e7a8daceb0c0c3
SHA256 20f7d267971640a22eb2ac207b5d4845ae9a6d78914d18834d6be055cbb86fec
SHA512 fb7db269ca741d29f8b5dd3dafda39873f80c2c044a8f1a870a6cb8f91d69461275bc1530937de266f0a538b3635d5959b4d4a7d9258640a328acb06a66890bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 71616faaf1f2fc40d05956ed5b28972f
SHA1 f30f0954ca030ed296d462376f9e6c4a70ef7423
SHA256 8fccf1e4ddb9e5f0eeb23575452ee642aefa77c39b8c7753e7f915f61cb0173c
SHA512 42c40ff342d660d8773c50a200c1e1db8711b871534ca27c82331adf7d4b2475da3c988f46108bdfde64818d6953abd65f1fc3bb2c7c65dc6593cd61ead5025b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 da5ca2650030b3c947670326f3e8f4d5
SHA1 2eaac9b27815daa62692f1d8159b2128e5582051
SHA256 d236530de204e3e15c5a1050ff4e9955c5588962105b2b473e9b02c11bd5aa30
SHA512 f3f4a730b268245db103e8c6d29690fd4c3ccdba9e9d29f2c4fb8dd605bb3691262947835012368a6436fa1d67c4d1eba47b4ad49e293a7b921afe03aabb459e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 66547375b1d5c72186d97fdac5c365ac
SHA1 627fc1578a2587e0a30a2fed80dd0e79ba74ce84
SHA256 9cafc2b28ed8f9b8c39a35d5efb6e984ad8983f7745ed55cf38bb54ca12abd91
SHA512 fb61a4db7b2bad779bd6364afa0c47847d9478510885adb2c23965ae334b3faa5bd71d51b37c631e5958bef625c0a7f36b6eeabffa13fe179a120af846a3a619

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 83316c3788f6242a6398f11b4db2b3d0
SHA1 2697937dbf05b6aa5342d8288b63c73c3034aa01
SHA256 c2a4e25b21fb630bc40989c84872c9b011d3f7a49c2ff453b4aa6fba19d1e10d
SHA512 5745ec766835c9553bdab3f3f8fe5776d4ff60244cfe476f5137b9f081b378d79e1c2aa9b36a547684f998244531638e551b0f17f3eb78459ed8b11023360dd9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 aebbb768e48220e4b64ad635309d82f2
SHA1 32e41b90340ccb3769eaf20630305059578e86ee
SHA256 0362cfba563bb3ed7a9c1c7baf369897bf3f63a91a64009a05233feec74e0714
SHA512 dd8acbf07c036feddf0fc5440c3fe86bb919976eab22fed879c92fe86cb3b9c264a10536216f92fe971cf64197ef90e204178101c7d7780bb02780d88967d63a

C:\Users\Admin\AppData\Local\Temp\Consultant

MD5 96045ea9189085db115b090ee72efc3b
SHA1 c494d1b10ce8740e6fe7bbfb0cdc14ddeac78f5d
SHA256 d2a595711742f50bae0f89adfacc39e6b3b548cbb74f775cecf48adafb93bde4
SHA512 32870b33b53d2ec76719a31b3068df0689db5bf48b914762a161ef22f3d3de2e1698ec9a39616f6b38de4b01d8d1fe223836a4de10a2410fec45e3ab3edf3ddb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 621bc02797905b1b57ee22beb131950f
SHA1 db4154762fca1dfb25511330145f9e390b1d8445
SHA256 19fb6c5338b5438e40c23e7df0a12a6f9161d0ef06816cc74cc9b441966c0be4
SHA512 680768b5da95a60715a1b3f0434e7377bd9dd2ae2af44b1801344aaa1544e6a0213d8829081275baabe22d18dd0106a6e80df0ad5992088db2286a926f7d763c

C:\Users\Admin\AppData\Local\Temp\Rd

MD5 11a712aef7587f3f91619ea531cb9eb5
SHA1 ccfcf8a15eac16a1a23691bbbabd207d4e58da09
SHA256 cbc58998cbf06422b704e6598672f0b679e3343107bfcac21c3d7cdfcc7ee166
SHA512 1ad0640f032c6473c1c21acde6fa9be297360b2873a513924ce5d0f6bc38d09ca7530629d1b771f52f015964caaedff6ca41b666871d626b16195b14868a716c

C:\Users\Admin\AppData\Local\Temp\Obtaining

MD5 186ab6ce1513e1388acebb376a88c4f9
SHA1 b5e9df459f520861d56b35513fe5e2f8dfa01cf9
SHA256 bcac642054fa21e3daef18c895a83d0ccc67474e317fce67d0bc84b8d37d70bb
SHA512 2ddc572518196b687649fdd8df8cb91cc165dd7f3b2a7e6abc7e8742eb2820e06399f2e64f961f91c77dfb0ff3d038c2974c8cbc62c9c4c1b9ee6db3098de4d0

C:\Users\Admin\AppData\Local\Temp\Delay

MD5 8cb54154790558062d9ab59789a91d72
SHA1 632219dfa81d611cbf55fb4b40d0f47942c26f7c
SHA256 70ad3cd3cbb3b1e835c6bc65a7e7079dc9e4829021f12facacd576589508166d
SHA512 fbc3f6db1c3f32ce0e3f249e039868e23ba94d4eb8109210c3ae4f6e930aed7b856f860629aa3683f24ffca8cf0c21f3b11126e6c9023941b073867cbedb8105

C:\Users\Admin\AppData\Local\Temp\Pci

MD5 814b3f2db7dc70172858abb3f9f85bcd
SHA1 2a36226424f0e750f8e4de75f721a3f6883dc71f
SHA256 5061a63fb7a77a8a8e5d0591e02afdce0fc4a7a6e8cbf623a70784f69bf264f7
SHA512 640c5787ca78cb4b7125c25b1d0164640fc65863e1206911f5300979b5488c6bc5b887e9be8b11fa0c1f19403f6166042b9df8b97c32d66b483ec4c47edbe0f9

C:\Users\Admin\AppData\Local\Temp\Taken

MD5 7b4bb8fea894b7ead38be47dff32616c
SHA1 5344944601757632fc01c3aecb9eaf1a2748471c
SHA256 187db23a1214fe2a9e38a1a30f10164f6376df374febf584594a8a87482bb313
SHA512 d8929f832785df13171cc821631b19572cf9d60f5fb21b550f467d0aab78f891a0c0e808b5feb92f3d871b9d6dea1f7d16420b3266915ecf3edbe4e2f2350d59

C:\Users\Admin\AppData\Local\Temp\Huntington

MD5 1305a95e1be6e6bbd52d23c2199d9a74
SHA1 137ffe2fcfd92325d4ebb3ed47b0d25565e51cbf
SHA256 635a7ac8e72005cd1e5395d74f8c6e16d338a370c80197b44ecd377b3196ea06
SHA512 1aa2faa4ffe3b85022df8359aef87ae5ebc14a0fdd719019456efc24d807b43c5e04eb3248415d8197be0bc6d11c5ab1909e730a77bc821b1e017628467d0530

C:\Users\Admin\AppData\Local\Temp\Plants

MD5 12888911d5d928e1038e2dc14697b94e
SHA1 4cd214ccabfb63eb7b7afabba5bfce4a8034015f
SHA256 901b091c790c66af21b416969dd7bf9c12119fa3dd48f6cc1f8dd21cc11a30ef
SHA512 95c0f5c7246dc756fa41e276288075bf59606c97c1239a565d8b2c7669854046b4eba60c9d9c1b86cf31bd0f20ddd2b26deda2f937fab7f027b59a15b1b139f5

C:\Users\Admin\AppData\Local\Temp\Yrs

MD5 e8ed9a86174bd12e0b8577efaf6d14ba
SHA1 9c06cfdf66748ab7b3c610b7c61bdbc152ca0bbb
SHA256 9f511626000d2ada2327bc29818f3f497d0e2863e773418e6455e846ae6235ee
SHA512 269df03178a45ea39fc72d82141b0968c067970e2d284c19d2e7160c167788e3588e43516837fc6a4a0b1d8421bd0055c3ab1d7beb224d6e56a062e3db13d6cf

C:\Users\Admin\AppData\Local\Temp\Ser

MD5 ced959eb7c35ca7268a7508f2f750cd2
SHA1 8abd4c813595f3a5af635630bd85e22838a92dca
SHA256 9a4b9c9f6ccde77624d6e4f4d5e51d6f052924e45a468be03f70811b4c23f690
SHA512 ccc95975532bed212c3d8f60e5dd29edcdb08bd2c871168f8ebef45156b32a9c130fea15483aa7e48d97f65da8ffb8b3b2344eabf10ff7cdd3ab915f4533485b

C:\Users\Admin\AppData\Local\Temp\Dude

MD5 e8739bffff0a5bea34463b66bb3bf80e
SHA1 bcf96b1d203ab1e544f218a166c4397842112f8d
SHA256 a9214033f556e1e5fc555729f22a9e4ede85a168541695d413cc4a4660202425
SHA512 87487fad694c1b95bcbdea79bb7a828872287b764fde3ef06d224995b9f7bbeafe01855a1ddd55356a3519ef8313a15263977249188ff97909b66d2be7a1db79

C:\Users\Admin\AppData\Local\Temp\423626\Futures.pif

MD5 18ce19b57f43ce0a5af149c96aecc685
SHA1 1bd5ca29fc35fc8ac346f23b155337c5b28bbc36
SHA256 d8b7c7178fbadbf169294e4f29dce582f89a5cf372e9da9215aa082330dc12fd
SHA512 a0c58f04dfb49272a2b6f1e8ce3f541a030a6c7a09bb040e660fc4cd9892ca3ac39cf3d6754c125f7cd1987d1fca01640a153519b4e2eb3e3b4b8c9dc1480558

C:\Users\Admin\AppData\Local\Temp\423626\Z

MD5 918379ccba74df3385c50ddba8477981
SHA1 9800ba511ec97f54b52500d106778712c8b7423a
SHA256 8ee77d244defcb9405a38488c5504a2f23ff1ba84bfe7317a08fd834a5620679
SHA512 59a1f469a03b046b70fa5c4e22ea0fc312b188a1679d78b2bf812f02516165d46af5329873612ada414075a984c8e5b94eb491a279dafb75a72408136cb5f516

memory/3300-2156-0x0000000004CE0000-0x0000000004D3E000-memory.dmp

memory/3300-2157-0x0000000004CE0000-0x0000000004D3E000-memory.dmp

memory/3300-2158-0x0000000004CE0000-0x0000000004D3E000-memory.dmp

memory/3300-2159-0x0000000004CE0000-0x0000000004D3E000-memory.dmp

memory/3300-2160-0x0000000004CE0000-0x0000000004D3E000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 97b6b5d2ddb9ca5e2318cda59fe665d2
SHA1 87e91a74c644768fbf7f890b617d31acdc43a191
SHA256 c7f81c750c2e8de57b286d26461802c337cd4ea7ba65065f386e8ea9407fdda0
SHA512 572d4afeedfcb55a1bc24013b019b7ccd139dbfaaa0879ed07be455a5c08e0312950108e40265e35c6e31418a1691e3e6fecdbb2802017d58a746db422b84515

memory/1820-2174-0x0000000003E20000-0x0000000003E7E000-memory.dmp

memory/1820-2175-0x0000000003E20000-0x0000000003E7E000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 e5fc91cbce096df1d36191f9eedd3c64
SHA1 1a8076bf524b6d2b8a44c18fa8afb199a60dc1c9
SHA256 0e111dba5797ec182bf4af537a2c928ebd3957b99ed291610fbf322d6c2c9e19
SHA512 c9b064fbcb2df48dcf5bfa4387c164acb2bae075af013e6c39166dddc7e91ce993caaa0fdfac3ba1c3a12ca6c21577d99776fb1445f3009c7359b926a173f668

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 d4586933fabd5754ef925c6e940472f4
SHA1 a77f36a596ef86e1ad10444b2679e1531995b553
SHA256 6e1c3edffec71a01e11e30aa359952213ac2f297c5014f36027f308a18df75d2
SHA512 6ce33a8da7730035fb6b67ed59f32029c3a94b0a5d7dc5aa58c9583820bb01ef59dd55c1c142f392e02da86c8699b2294aff2d7c0e4c3a59fce5f792c749c5ce

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 469803146d9ba6206cc2fdb4f8393621
SHA1 1334f98684b44842370bc5d494278f65685b96ea
SHA256 8017e1f26e77e2f9bdbc526664ede715a7cb531bf4f7528e2dadd24d42e2793d
SHA512 4b2d5fc2c92f8f3a4b70ddda9890778aade99d1a9d2764daea7064c5fab378923c2af367a7f2d107db9f205e134889551c6d554e85a023a4b666ea6d25e05cb2

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 ef128056489aea06295c32ec46fda76c
SHA1 be32c23b77fbab0dc80cfa7553d7eeb05fa63e3e
SHA256 e2610f79be30900b14fb24b9b934ba4ef7cc51d8e87edeb732db2355ca74842c
SHA512 17d1ad0755849d378c606f30db38135ad157af230ade5bfed05ad6b497112a1170d0572e50c426837d4ce49ec005818826711807d84ad9ea91a4e029b34feca1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b75126d18fec24a213b81b6032f8a10b
SHA1 a31cab3368d9724e3f2ac2657d0084e39a9c58b2
SHA256 64e197132b1d24ae15529848bcb31f524a550d0323ca6fbca5716aaf6607242f
SHA512 0903979608a99a5ed8046ca66561c376d51d9a11b2fb3fd691da97f7f57f812561f3fc8c9350322caffa20de1ac53dc9799b510018cb701e81b3ed66c2945fb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 bea2c8d78e77be9b51027b86905e335a
SHA1 b36feec7da896c3c4cfacdb32b0a6694cc4a1972
SHA256 5305afe99598f17b2f59af4a6ad0f54133c0cdc70c7eea20f742244998b930fe
SHA512 6277fdb303e80e6c517810a9d901eb7ec337b0247f4b72061cba1d6bf3dab09eb5de4ea36c5e8da667a9f47b20fa1ac45510d3c87c9fac84fa9cb07413ccaa57

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5dbcfb747b7cc6297514c6cb937eac6d
SHA1 25d383edbad70c85984998b24f5decfff36613cb
SHA256 e2dc992d1a0af36c75e26f9620e7e41db4b667855087652a7b3315f8d604ad95
SHA512 97294aa006323156e68b32e507de607c7c6b0d70903c762d621441c8a80bf332bf27d9381c60d22518604488ecfaacadf386fd72b077c2f7e1ab9796618260df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fa845629f7559b5973afce34938c09f9
SHA1 a0e812ca3f406f28c8d01feb7d374f6b33e4a95f
SHA256 bba95f8bb3f395b4319ce3c2845127cdb34b391ed6d625c7cb12a22f5d1d4eb0
SHA512 39a92ba3cd6a5ef10d1d6f12cb0c1d43e6baca9edaf97ab82daae8c0410154723b9f411d4d505fb4a945b91264a3822e95054e6596d0549d63f5ec41f654141f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 69fe84c986822cc04f51c10e4de4babd
SHA1 c5d19f26aa119047629ddcadd068cbd0ed3782a1
SHA256 787cc2283ce4180637e44c2a7c9cf30403931795876ef6d2a2103db59a9b5a24
SHA512 3c15c1701dc2a12186f6a73fc67b2f52f8a23881da611e8d78344d36acdce3b5f18a8afdbfe3db455a417f7bc44d719fa4fabccab84ecfd88c621bd9fe3a771c

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 4c4f32e97979243f6655f5d0b65fa384
SHA1 b91e602b0597e3745655211d3731ded100b86e81
SHA256 7c53255bfc143d0cc9ae0d521dff503e57ce0e557e1d5274f4cc0c6b64a833c0
SHA512 7c11378d300cc48d0bfe04d5117163ce3e6a84d2c12807f3a4377a50332b0fff3b2268c8e95cb1fa0318da849fb0edba722750105eb0b1fea78c759ca079e0fd

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 603979c6d902d2505274140969779a3e
SHA1 2410c606a86031bc78d298d37887770a07f35e61
SHA256 8fe2d29770a1909de847519b950abade376d49d1c90de41a382e93fc0ac15e6b
SHA512 eb3d83d742403f6d62572192c8a2ab1805e171f6f2079c4cefc240580587018c9d15e21ac4eee7091552346542d7fb99fcdf56daf9480307c96275c4b8a65db4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b71ecf5739fc47b9f689eb920e394b20
SHA1 37bab0cfa2eebfca4a1ee449d6d7982f0bb9500e
SHA256 975611b2249b6396ddbc22511178c8a362acfe7aad53bca275221dfc15774a8d
SHA512 430f100ebf0430725d7031f039294f305423744ac77bee42a67a2e8b4f75728cd73d3d6c0a27116612f7214334fc7b62da8266595f8fed6a2236cf3af10adb67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 f45b1d043000828b02701dcb189cd2bd
SHA1 95589a0230f3775e1ee3ccd3905d44ef31d3c5c5
SHA256 eb2b37b5e0483b16ec9ead4f1479033f93d931e335152b61921d1a2a5f07cbc2
SHA512 1bf5ca4e7257ac80f7278e4b935cd328a2aaec8c1cdadfd8d6a17a4f54ae5de69916224ed626ce346727185cd945ba0f460ac35dd9fd6fff32070d88a0dc689c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5d1799a54c86380c1e44df4aba049bac
SHA1 fce2c0ca50d4e7e97f9fa11c16f494367a5a676a
SHA256 7e5a0cf0ece08f9be704aa25d2d94119c101a547879f2dea03c905a334741b99
SHA512 8ef0fad01cb7d107178eebbc106aed3b40d9b819ffb070eadf2fb08edea251dc074c247830260508dfee313fb10ea76e4598e8311f9b19b023890685edc82849

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 be8542fabdc23d94369c88c78efdbe5d
SHA1 3269939e27f356230647346ecb01748accaf92cd
SHA256 516a936fd00861479bfb1827a474afc6e3d6858464cf1f9402109400f48d52d0
SHA512 3e7985f5784ab3fb2cb6972a49f21b5d51a0260941885f26b64a99d98e8fe2d07e3d0b93140dcc1ab7f02374cc84a985a309eb5be8a6f18fbd031e1ad53ced4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1caf1db907434ae3afd18d36d99dd87d
SHA1 bc7663252b15a8de8c2d26287f209e27e6619a06
SHA256 75fbaf862b04568cbb4a755865f09f8e9e2c6cc824ce5ac246a3656f37d3124f
SHA512 e3b2d7ba727ad2bef54ee585f5403c9aad4af95c6486f87203832be36295ec07943f61d8e69428129426995b1013ec5a9aab4b307d06468ffda6eb0a7d41859d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5ea62747d20583c3f21fe7064303b05e
SHA1 0bdc475c65e83e7fec0bd46d5b0a5be3c3cb7b7e
SHA256 0cdd9e9711711057ed7e6b02e681c36bf29c4672584c8a6bc8a48ece65e6962b
SHA512 371def8404e95ddea5c814cb506ff2cc5309989da2cb87b730062cf1dee0d10370ac3f0f85fab05b79abdcbcc55748a1593116d66cbe2a027244832f627df614

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

MD5 e48e018fad0174ed7889c789506ddb8a
SHA1 824c747ca049dd49919e3e6d45a7d5ed81e1cba9
SHA256 d1c8ccbab2bea073788e23f128d688b478a89062a9d6d5d47f1f74ccfb053221
SHA512 d053d9191d6fee279a388389e4022101e7796a267e4a3e6b0f2fedfb5a5b11c304ffd96d27a6390129adcf8a134179b996d7507bbad6c33153c793a156deab0a