Analysis Overview
Threat Level: Known bad
The file https://download.cnet.com was found to be: Known bad.
Malicious Activity Summary
Lumma family
Lumma Stealer, LummaC
UAC bypass
Drops file in Drivers directory
Manipulates Digital Signatures
Blocklisted process makes network request
Downloads MZ/PE file
Loads dropped DLL
Event Triggered Execution: Component Object Model Hijacking
Executes dropped EXE
Reads user/profile data of web browsers
Checks computer location settings
Drops startup file
Checks installed software on the system
Drops desktop.ini file(s)
Adds Run key to start application
Legitimate hosting services abused for malware hosting/C2
Obfuscated Files or Information: Command Obfuscation
Enumerates connected drives
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Checks whether UAC is enabled
Drops autorun.inf file
Drops file in System32 directory
Checks system information in the registry
Detected potential entity reuse from brand GOOGLE.
Detected potential entity reuse from brand MICROSOFT.
Drops file in Windows directory
Drops file in Program Files directory
System Location Discovery: System Language Discovery
System Network Configuration Discovery: Internet Connection Discovery
Event Triggered Execution: Netsh Helper DLL
Enumerates physical storage devices
Browser Information Discovery
Command and Scripting Interpreter: PowerShell
Checks processor information in registry
Suspicious use of AdjustPrivilegeToken
Modifies system certificate store
Modifies Internet Explorer settings
Enumerates system info in registry
Suspicious behavior: AddClipboardFormatListener
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SetWindowsHookEx
Modifies registry class
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
Views/modifies file attributes
Modifies data under HKEY_USERS
Checks SCSI registry key(s)
Suspicious behavior: EnumeratesProcesses
Suspicious use of SendNotifyMessage
Uses Task Scheduler COM API
Kills process with taskkill
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2025-01-25 17:27
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2025-01-25 17:27
Reported
2025-01-25 17:45
Platform
win10v2004-20241007-en
Max time kernel
1049s
Max time network
1049s
Command Line
Signatures
Lumma Stealer, LummaC
Lumma family
UAC bypass
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA = "0" | C:\Users\Admin\Desktop\Shortcut Virus Remover.exe | N/A |
Blocklisted process makes network request
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\syswow64\MsiExec.exe | N/A |
| N/A | N/A | C:\Windows\syswow64\MsiExec.exe | N/A |
| N/A | N/A | C:\Windows\syswow64\MsiExec.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\rundll32.exe | N/A |
| N/A | N/A | C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe | N/A |
Downloads MZ/PE file
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Drops file in Drivers directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\UMDF\en-US | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\gmreadme.txt | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\afunix.sys | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\uk-UA | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\UMDF | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\uk-UA\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\afunix.sys | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\uk-UA\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\gm.dls | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\gmreadme.txt | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\ja-JP\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\UMDF\en-US | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\UMDF | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\en-US | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\fr-FR\NdisImPlatform.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT\wfplwfs.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\es-ES | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\gm.dls | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\de-DE\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\it-IT\ndiscap.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\drivers\uk-UA | C:\Windows\SysWOW64\attrib.exe | N/A |
Manipulates Digital Signatures
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\wintrust.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\wintrust.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\Wave Browser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Wavesor\Temp\GUMDF8.tmp\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Shortcut Virus Remover\Shortcut Virus Remover v1.0.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
Drops startup file
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
Event Triggered Execution: Component Object Model Hijacking
Executes dropped EXE
Loads dropped DLL
Reads user/profile data of web browsers
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Web Companion = "C:\\Users\\Admin\\AppData\\Roaming\\Lavasoft\\Web Companion\\Application\\WebCompanion.exe --minimize " | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Web Companion = "C:\\Users\\Admin\\AppData\\Roaming\\Lavasoft\\Web Companion\\Application\\WebCompanion.exe --minimize " | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Wavesor SWUpdater = "\"C:\\Users\\Admin\\Wavesor Software\\SWUpdater\\1.3.135.0\\SWUpdaterCore.exe\"" | C:\Program Files (x86)\Wavesor\Temp\GUMDF8.tmp\SWUpdater.exe | N/A |
Checks installed software on the system
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Program Files (x86)\Wavesor\Temp\GUMDF8.tmp\SWUpdater.exe | N/A |
Drops desktop.ini file(s)
| Description | Indicator | Process | Target |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Public\Libraries\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Fonts\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Favorites\Links\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\SendTo\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..ini-systemtoolsuser_31bf3856ad364e35_10.0.19041.1_none_d69cbb4282e4fe2c\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..32-kf-commonstartup_31bf3856ad364e35_10.0.19041.1_none_b2014b56ea660ec9\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\3D Objects\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\WinX\Group3\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Public\AccountPictures\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Contacts\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Music\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..ini-accessoriesuser_31bf3856ad364e35_10.0.19041.1_none_d9f53b39b3834744\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-shell32-kf-commonmusic_31bf3856ad364e35_10.0.19041.1_none_2f07a4cad3dec315\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\3D Objects\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\SendTo\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Accessibility\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..2-kf-commonpictures_31bf3856ad364e35_10.0.19041.1_none_36436b821c9e7209\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Searches\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Fonts\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-ie-offlinefavorites_31bf3856ad364e35_11.0.19041.1_none_4b0e6b545bf0f4e7\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Desktop\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Media\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\WinX\Group1\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\WinX\Group2\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Burn\Burn\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Documents\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\WinX\Group1\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Web\Wallpaper\Theme2\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\WinX\Group1\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\$Recycle.Bin\S-1-5-21-4089630652-1596403869-279772308-1000\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-shell32-kf-commonmusic_31bf3856ad364e35_10.0.19041.1_none_2f07a4cad3dec315\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..i-accessibilityuser_31bf3856ad364e35_10.0.19041.1_none_19358785a81a86d6\Desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..-kf-commondocuments_31bf3856ad364e35_10.0.19041.1_none_04c252e5678f305a\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..32-kf-commondesktop_31bf3856ad364e35_10.0.19041.1_none_a81a33274fb1b624\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Local\Microsoft\Windows\Burn\Burn\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Admin\Searches\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-fontext_31bf3856ad364e35_10.0.19041.1_none_5476a60692fad199\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Public\Downloads\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Downloaded Program Files\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Users\Public\Music\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..32-kf-commondesktop_31bf3856ad364e35_10.0.19041.1_none_a81a33274fb1b624\desktop.ini | C:\Windows\SysWOW64\attrib.exe | N/A |
Enumerates connected drives
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | drive.google.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | drive.google.com | N/A | N/A |
| N/A | drive.google.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Obfuscated Files or Information: Command Obfuscation
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
Detected potential entity reuse from brand GOOGLE.
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Detected potential entity reuse from brand MICROSOFT.
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Drops autorun.inf file
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\BitLockerDiscoveryVolumeContents\autorun.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\BitLockerDiscoveryVolumeContents\autorun.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\x86_microsoft-windows-s..ccessagent-binaries_31bf3856ad364e35_10.0.19041.1_none_3802d0d85b60df4c\autorun.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\x86_microsoft-windows-s..ccessagent-binaries_31bf3856ad364e35_10.0.19041.1_none_3802d0d85b60df4c\autorun.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\c_tapedrive.inf_amd64_a3a36e8f2c921ed7 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\ja-JP\provplatformdesktop.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\qdv.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\DMAppsRes.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DirectPlay-OC-Opt-Package~31bf3856ad364e35~amd64~it-IT~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem0.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\Dism\it-IT\DmiProvider.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\mdmeiger.inf_amd64_05ca2a1836c16cab\mdmeiger.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\InstallShield\setupdir\0009\_setup.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\uk-UA\MFC40u.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Modules\PSDesiredStateConfiguration\DSCResources\MSFT_EnvironmentResource\uk-UA\MSFT_EnvironmentResource.schema.mfl | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OneCore-Containers-Opt-Package~31bf3856ad364e35~amd64~fr-FR~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\wudfusbcciddriver.inf_amd64_a084e687a06b255f | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\msaatext.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\termmgr.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\wsdscdrv.inf_amd64_416a5877e9180787\WSDScDrv.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\wpdfs.inf_amd64_1183fd0f13045f2e | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\HyperV-Worker-Package~31bf3856ad364e35~amd64~it-IT~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\Windows.AccountsControl.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\es-ES\volume.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\netathr10x.inf_amd64_2691c4f95b80eb3b\eeprom_ar6320_3p0_NFA344a_highTX_LE_9.bin | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\en-US\netbxnda.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\fr-FR\ts_wpdmtp.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Modules\NetLbfo | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\uk-UA\c_firmware.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Modules\PSDesiredStateConfiguration\Disable-DscDebug.cdxml | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\fr-FR\cmstp.exe.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Media-Foundation-Package~31bf3856ad364e35~amd64~uk-UA~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\secproc_ssp.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TerminalServices-CommandLineTools-Package~31bf3856ad364e35~amd64~es-ES~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\uiccspb.inf_amd64_18454ae612999870\uiccspb.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\it-IT\ivfsrc.ax.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\mgtdyn.inf_amd64_a6235e923dc4047c | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\ipoib6x.inf_amd64_ef71073a5867971f\ipoib6x.inf | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Modules\SmbShare\SmbShare.cdxml | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\UiaManager.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\es-ES\microsoft_bluetooth_a2dp.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\fr-FR\smrdisk.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\CloudNotifications.exe | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\en-US\sbp2.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\netathr10x.inf_amd64_2691c4f95b80eb3b\eeprom_qca9377_1p1_NFA425_olpc_L_LE_1.bin | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\it-IT\jscript.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\usbhub3.inf_amd64_6a68abcc31aaa333\USBHUB3.SYS | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\fr-FR\iepeers.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\HyperV-Virtio-Package~31bf3856ad364e35~amd64~uk-UA~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SmbDirect-Package~31bf3856ad364e35~amd64~de-DE~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\SystemPropertiesPerformance.exe | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\de-DE\sisraid2.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\ja-JP\stobject.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\Windows.Devices.Sensors.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\wincredui.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\fr-FR\CompositeBus.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\wbem\it-IT\netttcim.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\aeevts.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package02~31bf3856ad364e35~amd64~it-IT~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\MSDRM\MsoIrmProtector.ppt | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\Speech_OneCore\Common | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Modules\SmbShare\SmbServerCertificateMapping.cdxml | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Hyphenation-Dictionaries-es-Package~31bf3856ad364e35~amd64~~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\Dism\ja-JP\IntlProvider.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\HyperV-Feature-VirtualMachinePlatform-Package~31bf3856ad364e35~amd64~~10.0.19041.264.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\HyperV-UX-PowerShell-Module-HyperV-Package~31bf3856ad364e35~amd64~ja-JP~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\Modules\NetworkTransition\MSFT_NetTeredoConfiguration.types.ps1xml | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\HyperV-Primitive-VirtualMachine-Package~31bf3856ad364e35~amd64~es-ES~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\HxCalendarAppList.targetsize-64.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\scan-files\js\nls\en-gb | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Windows Defender\de-DE\MsMpRes.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\es\ReachFramework.resources.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Reference Assemblies\Microsoft\Framework\v3.5\fr | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsPowerShell\Modules\Pester\3.4.0\Functions\Assertions\BeLike.Tests.ps1 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\add-account\js\nls\sl-si | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.29027.0_x64__8wekyb3d8bbwe\MSASignIn.winmd | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\HxCalendarAppList.targetsize-32.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Common Files\microsoft shared\ClickToRun\C2RINTL.hu-hu.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\VideoLAN\VLC\locale\es | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe\Assets\Images\contrast-standard\theme-light | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\uss-search\js\nls\tr-tr | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\DSCResources\en-US\PackageManagementDscUtilities.strings.psd1 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\SwipeTeachingCalloutArchiveImage.layoutdir-RTL.gif | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\Outlook2019R_Retail-pl.xrm-ms | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Services.Store.Engagement_10.0.18101.0_x86__8wekyb3d8bbwe\logo.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Resource\Font\PFM | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Common Files\System\msadc\msdaprst.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp6-ul-oob.xrm-ms | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\VBA\VBA7.1\1033\VBCN6.CHM | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\OneNoteSectionGroupMedTile.scale-400.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Common Files\System\Ole DB\msdadc.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Windows NT\Accessories\WordpadFilter.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins3d\tesselate.x3d | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\Office16\ODBC Drivers\Salesforce\lib\LibCurl64.DllA\OpenSSL64.DllA | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.ScreenSketch_10.1907.2471.0_x64__8wekyb3d8bbwe\Assets\ScreenSketchSquare44x44Logo.targetsize-256_altform-unplated_contrast-black.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\send-for-sign\js\nls\ko-kr\ui-strings.js | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1906.55.0_x64__8wekyb3d8bbwe\Assets\CalculatorAppList.targetsize-64.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\Voices\en-IN\en-IN_female_TTS\platform_format.lua | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Buffers.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\PersonalR_Trial-ppd.xrm-ms | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\156.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\VideoLAN\VLC\locale\ka | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\my-recent-files\js\nls\ja-jp\ui-strings.js | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\unified-share\js\nls\sl-sl | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\1033\README.HTM | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\ReactAssets\assets\RNApp\app\uwp\images\pstn | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\WebResources\Resource0\static\js\plugins\home\js\nls\nl-nl\ui-strings.js | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\LanguageNames2\DisplayLanguageNames.en_GB.txt | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Common Files\Adobe\Reader\DC\Linguistics\Providers\Plugins2\AdobeHunspellPlugin\Dummy.aff | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Text.Encodings.Web.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Java\jdk-1.8\bin\jrunscript.exe | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Java\jre-1.8\legal\jdk\unicode.md | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Common Files\Microsoft Shared\ink\it-IT\rtscom.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\PackageManifests\AppXManifest.90160000-001F-040C-1000-0000000FF1CE.xml | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\Licenses16\Professional2019DemoR_BypassTrial180-ul-oob.xrm-ms | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1906.1972.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\MapsSplashScreen.scale-200.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\AppList.targetsize-80.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\OneNoteAppList.scale-400.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\HxCalendarWideTile.scale-125.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\Microsoft Office\root\Office16\1033\PowerPointNaiveBayesCommandRanker.txt | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Locales\es.pak | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsFeedbackHub_1.1907.3152.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxManifest.xml | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.513.0_neutral_~_8wekyb3d8bbwe\AppxMetadata | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.YourPhone_0.19051.7.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-black\SmallTile.scale-200_contrast-black.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19071.19011.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppList.targetsize-60_altform-unplated_contrast-black.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\WindowsPowerShell\Modules\PackageManagement\1.0.0.1\DSCResources\MSFT_PackageManagementSource\es-ES\MSFT_PackageManagementSource.strings.psd1 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\System.Diagnostics.EventLog.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.WindowsCamera_2018.826.98.0_neutral_split.scale-200_8wekyb3d8bbwe\resources.pri | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\ExchangeBadge.scale-150.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Windows Photo Viewer\PhotoAcq.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_eventviewersettings.resources_31bf3856ad364e35_10.0.19041.1_ja-jp_7bf34831f087e546\eventvwr.exe.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-c..onentpackagesupport_31bf3856ad364e35_10.0.19041.746_none_3db5b5ee37a4dee7\r\CompPkgSrv.exe | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-n..2provider.resources_31bf3856ad364e35_10.0.19041.1_es-es_c90df4daa6641ae7\NetEventPacketCapture.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-m..c-results.resources_31bf3856ad364e35_10.0.19041.1_de-de_620e3428f741e2cb\MdRes.exe.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_windows-gaming-input-winrt_31bf3856ad364e35_10.0.19041.264_none_f0c536c3925dcb28 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\wow64_microsoft-windows-mlang_31bf3856ad364e35_10.0.19041.1_none_1725034eb7bc96b5\mlang.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-t..torserver.resources_31bf3856ad364e35_10.0.19041.1_it-it_fd0fa0f6840753c4 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\assembly\GAC_MSIL\System.Resources\2.0.0.0_de_b77a5c561934e089 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-eappcfgui.resources_31bf3856ad364e35_10.0.19041.1_de-de_d7c588a0fa6655d7\eappcfgui.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ja\System.Net.resources.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-onecore-c..ilityaccess-manager_31bf3856ad364e35_10.0.19041.746_none_df3c22d6a04a589d\r\CapabilityAccessManager.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\wow64_microsoft-windows-security-aadauthhelper_31bf3856ad364e35_10.0.19041.1266_none_372bc0ff9dd13e05\f | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-spp-main.resources_31bf3856ad364e35_10.0.19041.1_de-de_cdb5720c0a469d6a\sxproxy.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-a..ence-infrastructure_31bf3856ad364e35_10.0.19041.928_none_b321f2c2ab7710a2 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-w..mcore-dll.resources_31bf3856ad364e35_10.0.19041.1_de-de_e4c0159ada5b88ea | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\System.IdentityModel.Selectors.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\servicing\Packages\HyperV-UX-UI-merged-Package~31bf3856ad364e35~amd64~uk-UA~10.0.19041.1.mum | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_whvcrash.inf.resources_31bf3856ad364e35_10.0.19041.1_ja-jp_940511bdfb1e6bdc\whvcrash.inf_loc | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_10.0.19041.1_es-es_1fb9b17ec579a5e1.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft.powershell.dsc.proxy.resources_31bf3856ad364e35_10.0.19041.1_uk-ua_fd02813c9782ff3d.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\wow64_windows-id-connecte..nt-provider-wlidcli_31bf3856ad364e35_10.0.19041.1_none_612ec0b68d2fa977.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\fr\System.Numerics.resources.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\servicing\Packages\Microsoft-Windows-MSPaint-FoD-Package~31bf3856ad364e35~wow64~en-US~10.0.19041.1.cat | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-o..layfilter.resources_31bf3856ad364e35_10.0.19041.1_en-us_fb4aaced1e956418\wof.sys.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_wwf-system.workflow.componentmodel_31bf3856ad364e35_10.0.19200.101_none_b79c204dd637ebbb | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..ngshandlers-startup_31bf3856ad364e35_10.0.19041.746_none_522701f930d0ca36\f\SettingsHandlers_Startup.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_percsas2i.inf.resources_31bf3856ad364e35_10.0.19041.1_it-it_74eec2b4598d3b35.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\x86_netfx4-mscorrc_dll_b03f5f7f11d50a3a_4.0.15805.0_none_2bcf3bebebf1c695.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_ksfilter.inf.resources_31bf3856ad364e35_10.0.19041.1_de-de_87ac69ab754cd577 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-wmpdmc-ux.resources_31bf3856ad364e35_10.0.19041.1_ja-jp_cafbee037e2ee68a | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-rasbase_31bf3856ad364e35_10.0.19041.746_none_ebd9b2add93e89de\pppmenu.scp | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft-windows-d..efinition-bitlocker_31bf3856ad364e35_10.0.19041.1_none_e20515f6812c916a.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft-windows-g..licy-admin-admfiles_31bf3856ad364e35_10.0.19041.1_none_18a8183799464d62.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-g..-base-mof.resources_31bf3856ad364e35_10.0.19041.1_it-it_e34601080d6ee057 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-i..eprovider.resources_31bf3856ad364e35_10.0.19041.1_fr-fr_ee959566895e935f | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Net.Http\82c3e57819b51d2f1356fb07c91dc768 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-m..oolsclient.appxmain_31bf3856ad364e35_10.0.19041.423_none_9de80b9d881a1ebd\deleteAllBreakpoints.png | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\servicing\Packages\Microsoft-Windows-WMPNetworkSharingService-Package~31bf3856ad364e35~amd64~fr-FR~10.0.19041.1.mum | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-a..core-base.resources_31bf3856ad364e35_10.0.19041.1_en-us_201c821693305023\winmmbase.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft-windows-content-filter-rtf_31bf3856ad364e35_7.0.19041.1_none_b966db02f9ad5206.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-m..nsors-api.resources_31bf3856ad364e35_10.0.19041.1_de-de_d640c58ba467b193 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..y-webauth.resources_31bf3856ad364e35_10.0.19041.1_fr-fr_02c31fa634755a6c\AuthHost.exe.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-wincal-adm_31bf3856ad364e35_10.0.19041.1_none_d33b467d6873b8bc\WinCal.admx | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-i..ernelmode.resources_31bf3856ad364e35_10.0.19041.1_de-de_9b38e0b35785b52d | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-s..ntsbroker.resources_31bf3856ad364e35_10.0.19041.1_de-de_246d410b0c7787ce\SystemEventsBrokerServer.dll.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-e..reportingpowershell_31bf3856ad364e35_10.0.19041.1_none_2fc9857a91205630\WindowsErrorReporting.psd1 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\FileMaps\program_files_x86_windowspowershell_modules_packagemanagement_1.0.0.1_dscresources_fr-fr_77c694b9efe31a92.cdf-ms | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft-windows-h..oyment-languagepack_31bf3856ad364e35_10.0.19041.1_it-it_b8385c115319466a.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_microsoft-windows-n..2provider.resources_31bf3856ad364e35_10.0.19041.1_fr-fr_69b8f75c871ea8e3.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-n..2provider.resources_31bf3856ad364e35_10.0.19041.1_de-de_1e454e80a5479517 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_system.activities.presentation.resources_31bf3856ad364e35_4.0.15805.0_es-es_7497fc17f8b2ba43 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\wow64_microsoft-windows-npiv.resources_31bf3856ad364e35_10.0.19041.1_uk-ua_c74f6ea053cfbe7d.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-ie-feedsbs.resources_31bf3856ad364e35_11.0.19041.1_ja-jp_612cbf2e9fb3c08a\msfeedsbs.mfl | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-client-licensing-licensingcsp_31bf3856ad364e35_10.0.19041.906_none_297134dcbccb889a | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-onecoreuap-wlansvc_31bf3856ad364e35_10.0.19041.1266_none_b7a58d8ba78355f3\wlanhlp.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-utilman.resources_31bf3856ad364e35_10.0.19041.1_en-us_15aa2f5322441fe6\Utilman.exe.mui | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\Manifests\amd64_tpm.inf.resources_31bf3856ad364e35_10.0.19041.1_fr-fr_597793100b99c168.manifest | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-onexschema_31bf3856ad364e35_10.0.19041.1_none_0b333e5de5b48e52 | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\fr\Microsoft.Transactions.Bridge.Dtc.Resources.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-i..l-keyboard-00000453_31bf3856ad364e35_10.0.19041.1_none_9e15ce430303c938\KBDKHMR.DLL | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\wow64_microsoft-windows-networkbridgenetsh_31bf3856ad364e35_10.0.19041.1_none_8087b80438f3d43f\hnetmon.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-powercpl_31bf3856ad364e35_10.0.19041.423_none_3fecd70fd2fa0d37\powercpl.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
| File opened for modification | C:\Windows\WinSxS\amd64_microsoft-windows-speech-userexperience_31bf3856ad364e35_10.0.19041.746_none_fa033ad7aa9be481\f\SpeechUX.dll | C:\Windows\SysWOW64\attrib.exe | N/A |
Browser Information Discovery
Command and Scripting Interpreter: PowerShell
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
Enumerates physical storage devices
Event Triggered Execution: Netsh Helper DLL
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\syswow64\MsiExec.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Shortcut Virus Remover\restart.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Wavesor\Temp\GUMDF8.tmp\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Desktop\setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\7zSCF2204AC\WebCompanion-Installer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\taskkill.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Shortcut Virus Remover\Shortcut Virus Remover v1.0.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\attrib.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\Install\{EB1EB5DB-710C-4A5C-8858-23941AF91806}\WaveInstaller-v1.5.20.2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\syswow64\MsiExec.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Desktop\setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\attrib.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Desktop\Shortcut Virus Remover.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\cmd.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\rundll32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
System Network Configuration Discovery: Internet Connection Discovery
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| N/A | N/A | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Kills process with taskkill
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133822996942609350" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{068FAC78-4F23-4F74-99A0-F7C4797D5ECA}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{730EBDF4-7AD2-4516-BF1A-6C6F28C60CF9}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WavesorSWUpdater.OnDemandCOMClassUser\CLSID\ = "{1BE9D40C-2307-4213-830E-7E3CE9EDF0C2}" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\ | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{894ADE70-1E5F-4520-A281-CE3BF0309CE6}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{E44DDEE0-3097-499E-9DD5-7D5D5DCC401D}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\CLSID\{F6994161-37C3-47C9-BE83-C84C33A1CF2A}\InprocServer32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{0D311A22-BD24-4C7A-8FC1-117F8D62A781} | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{44367D77-92C0-45E8-840D-0C098E650CE8}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{D3C865DD-E36B-432E-9E47-554925B86737}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{617E37E1-AC79-4162-BACC-C797A1D31D3E}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{DA4EFC2D-B243-4BA8-8A14-8937D867B699}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{3BE77C6E-0029-4F24-B677-32C9E15CD8F1} | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{50363C3E-2FB2-4EC0-A827-CD3314F526C5}\NumMethods\ = "10" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WavesorSWUpdater.PolicyStatusUser\CLSID\ = "{3C41B0C4-B5B6-4293-BED4-C927CCFDB909}" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{CEF9DF20-AE5B-4A54-B479-9C2AFC1C2683}\ = "IPolicyStatus" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{E44DDEE0-3097-499E-9DD5-7D5D5DCC401D} | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{97518FC7-7CA2-4921-BC40-F4A07E221C1C} | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{D3C865DD-E36B-432E-9E47-554925B86737}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{62A51DF2-CCB8-4DD9-9069-34B8461617FC}\ = "IPackage" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WavesorSWUpdater.Update3WebUser\CurVer | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\CLSID\{1BE9D40C-2307-4213-830E-7E3CE9EDF0C2}\VersionIndependentProgID\ = "WavesorSWUpdater.OnDemandCOMClassUser" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{CEF9DF20-AE5B-4A54-B479-9C2AFC1C2683}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{E4E159E0-7B9C-4D75-AC11-A80628173DE3} | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{62A51DF2-CCB8-4DD9-9069-34B8461617FC}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{D669BD5D-A9B6-47FD-B558-81508AEF48C4}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E053F7BD-D525-49F4-9ADE-5D7E6FCEE775}\ = "IGoogleUpdateCore" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E44DDEE0-3097-499E-9DD5-7D5D5DCC401D}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\wavebrowser\shell\open\command | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WaveBrwsPDF.RC2CSCYBZBGJJIWPXAM6S2CBS4\Application\ApplicationIcon = "C:\\Users\\Admin\\Wavesor Software\\WaveBrowser\\wavebrowser.exe,0" | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{CFDE680E-8700-4808-BAAF-8B1F50F2CC87}\ = "IPolicyStatusValue" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{64A19E70-BCFF-4808-A320-774FD11571E5} | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{E4E159E0-7B9C-4D75-AC11-A80628173DE3}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{730EBDF4-7AD2-4516-BF1A-6C6F28C60CF9}\ = "IProcessLauncher" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{894ADE70-1E5F-4520-A281-CE3BF0309CE6}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\CLSID\{9CD78CBC-FD21-4FFF-B452-9D792A58B7C4}\LocalServer32\ServerExecutable = "C:\\Users\\Admin\\Wavesor Software\\WaveBrowser\\1.5.20.2\\notification_helper.exe" | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{0D311A22-BD24-4C7A-8FC1-117F8D62A781}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{068FAC78-4F23-4F74-99A0-F7C4797D5ECA}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\CLSID\{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}\ = "PSFactoryBuffer" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E053F7BD-D525-49F4-9ADE-5D7E6FCEE775}\ = "IGoogleUpdateCore" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WaveBrwsPDF.RC2CSCYBZBGJJIWPXAM6S2CBS4\DefaultIcon\ = "C:\\Users\\Admin\\Wavesor Software\\WaveBrowser\\wavebrowser.exe,4" | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{97518FC7-7CA2-4921-BC40-F4A07E221C1C}\NumMethods\ = "10" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\CLSID\{DB982438-E7B9-46E1-AF0F-CFD8947957E8} | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{97518FC7-7CA2-4921-BC40-F4A07E221C1C}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{2C53B9D4-A718-4972-B28E-2E7AF1055602}\ = "IAppVersion" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{C0151E6C-8D24-485D-BEC8-B6C6C82E26E8}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WaveBrwsHTM.RC2CSCYBZBGJJIWPXAM6S2CBS4\DefaultIcon\ = "C:\\Users\\Admin\\Wavesor Software\\WaveBrowser\\wavebrowser.exe,3" | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\wavebrowser | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E4E159E0-7B9C-4D75-AC11-A80628173DE3}\ = "IRegistrationUpdateHook" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{C0151E6C-8D24-485D-BEC8-B6C6C82E26E8}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E4E159E0-7B9C-4D75-AC11-A80628173DE3}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{D3C865DD-E36B-432E-9E47-554925B86737}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E44B162B-4287-40B0-8E7A-6E251D80B3DF}\NumMethods\ = "17" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WavesorSWUpdater.Update3COMClassUser | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{6130C56B-9B2C-4D5D-8160-C7A583B5DC3B}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{C0151E6C-8D24-485D-BEC8-B6C6C82E26E8}\ = "IPolicyStatus2" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\WOW6432Node\Interface\{92333BDA-3022-4A7F-8858-081260EA85DE}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{E44DDEE0-3097-499E-9DD5-7D5D5DCC401D}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\wavebrowser\shell | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\CLSID\{DB982438-E7B9-46E1-AF0F-CFD8947957E8}\InprocHandler32\ = "C:\\Users\\Admin\\Wavesor Software\\SWUpdater\\1.3.135.0\\psuser_64.dll" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\CLSID\{F87D77DF-DEF2-4294-9F4B-A92E5A6725DE}\InprocServer32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{2C53B9D4-A718-4972-B28E-2E7AF1055602}\ProxyStubClsid32\ = "{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\Interface\{6130C56B-9B2C-4D5D-8160-C7A583B5DC3B}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000_Classes\.xhtml | C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8 | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 040000000100000010000000e94fb54871208c00df70f708ac47085b0f0000000100000030000000c130bba37b8b350e89fd5ed76b4f78777feee220d3b9e729042bef6af46e8e4c1b252e32b3080c681bc9a8a1afdd0a3c0b000000010000004200000047006c006f00620061006c005300690067006e00200043006f006400650020005300690067006e0069006e006700200052006f006f007400200052003400350000006200000001000000200000007b9d553e1c92cb6e8803e137f4f287d4363757f5d44b37d52f9fca22fb97df8653000000010000001f000000301d301b060567810c010330123010060a2b0601040182373c0101030200c01400000001000000140000001f00bf46800afc7839b7a5b443d95650bbce963b1d00000001000000100000005467b0adde8d858e30ee517b1a19ecd909000000010000000c000000300a06082b060105050703030300000001000000140000004efc31460c619ecae59c1bce2c008036d94c84b81900000001000000100000005d1b8ff2c30f63f5b536edd400f7f9b4200000000100000076050000308205723082035aa00302010202107653feac75464893f5e5d74a483a4ef8300d06092a864886f70d01010c05003053310b300906035504061302424531193017060355040a1310476c6f62616c5369676e206e762d73613129302706035504031320476c6f62616c5369676e20436f6465205369676e696e6720526f6f7420523435301e170d3230303331383030303030305a170d3435303331383030303030305a3053310b300906035504061302424531193017060355040a1310476c6f62616c5369676e206e762d73613129302706035504031320476c6f62616c5369676e20436f6465205369676e696e6720526f6f742052343530820222300d06092a864886f70d01010105000382020f003082020a0282020100b62dc530dd7ae8ab903d0372b03a4b991661b2e5ffa5671d371ce57eec9383aa84f5a3439b98458ab863575d9b00880425e9f868924b82d84bc94a03f3a87f6a8f8a6127bda144d0fdf53f22c2a34f918db305b22882915dfb5988050b9706c298f82ca73324ee503a41ccf0a0b07b1d4dd2a8583896e9dff91b91bb8b102cd2c7431da20974a180af7be6330a0c596b8ebcf4ab5a977b7fae55fb84f080fe844cd7e2babdc475a16fbd61107444b29807e274abff68dc6c263ee91fe5e00487ad30d30c8d037c55b816705c24782025eb676788abba4e34986b7011de38cad4bea1c09ce1df1e0201d83be1674384b6cffc74b72f84a3bfba09373d676cb1455c1961ab4183f5ac1deb770d464773cebfbd9595ed9d2b8810fefa58e8a757e1b3cfa85ae907259b12c49e80723d93dc8c94df3b44e62680fcd2c303f08c0cd245d62ee78f989ee604ee426e677e42167162e704f960c664a1b69c81214e2bc66d689486c699747367317a91f2d48c796e7ca6bb7e466f4dc585122bcf9a224408a88537ce07615706171224c0c43173a1983557477e103a45d92da4519098a9a00737c4651aaa1c6b1677f7a797ec3f1930996f31fbea40b2e7d2c4fac9d0f050767459fa8d6d1732bef8e97e03f4e787759ad44a912c850313022b4280f2896a36cfc84ca0ce9ef8cb8dad16a7d3ded59b18a7c6923af18263f12e0e2464df0203010001a3423040300e0603551d0f0101ff040403020186300f0603551d130101ff040530030101ff301d0603551d0e041604141f00bf46800afc7839b7a5b443d95650bbce963b300d06092a864886f70d01010c050003820201005e2bba749734445f764828408493ee016ee9a1b3d68025e67be4bc09913d0ffc76add7d43020bb8f60d091d61cf29cef781a2b943202c12496525202d0f3d1fcf29b396e99e11f8e43417d9a1e5bc95d9a84fc26e687f3747226ada41bd93d3b6a52a03c091e2f1e7bb333b445c7f7acb1af9360ad76aeb8b21578eb836aebffdb46ab24e5ee02fa901f59c02f5dd6b75da45c10b77253f8414eccfa781a254acafe85624361c3b437aa81d2f4d63a0fbd8d597e3047de2b6be72150335fd4679bd4b8679f3c279903ff85438e7312ca20cde861d5b166dc17d6396d0fdbcf2337a182894e1c6b3fd6a0cdaa079d3e4226aad70ceefa47bf1a527ed17581d3c98a62176d4f88a021a0263eaf6dd962301fe99828ae6e8dd58e4c726693808d2ae355c760679042565c22510fb3dc4e39ee4dddd91d7810543b6ed0976f03b51eb22373c612b29a64d0fc958524a8ffdfa1b0dc9140aedf0933abb9dd92b7f1cc91743b69eb67971b90bfe7c7a06f71bb57bfb78f5aed7a406a16cd80842d2fe102d4249443b315fc0c2b1bfd716ffccbbc75173a5e83d2c9b32f1bd59c8d7f54fe7e7ee456a387a79de1595294418f6d5bbe86959aff1a76dd40d2514a70b41f336323773fec271e59e40887ed34824a0f3ffea01dc1f56773458678f4aa29e92787c619dbc61314c33949874da097e06513f59d7756e9dab358c73af2c0cd82 | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\8CF427FD790C3AD166068DE81E57EFBB932272D4 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\8CF427FD790C3AD166068DE81E57EFBB932272D4\Blob = 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 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\8CF427FD790C3AD166068DE81E57EFBB932272D4\Blob = 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 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\8CF427FD790C3AD166068DE81E57EFBB932272D4 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\8CF427FD790C3AD166068DE81E57EFBB932272D4\Blob = 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 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8 | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 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 | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 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 | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 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 | C:\Users\Admin\Downloads\Let's Compress.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\8CF427FD790C3AD166068DE81E57EFBB932272D4\Blob = 0400000001000000100000004be2c99196650cf40e5a9392a00afeb20f0000000100000020000000fde5f2d9ce2026e1e10064c0a468c9f355b90acf85baf5ce6f52d4016837fd94090000000100000054000000305206082b0601050507030206082b06010505070303060a2b0601040182370a030406082b0601050507030406082b0601050507030606082b0601050507030706082b0601050507030106082b06010505070308530000000100000041000000303f3020060a6086480186fa6c0a010230123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c07f000000010000002c000000302a060a2b0601040182370a030406082b0601050507030506082b0601050507030606082b0601050507030762000000010000002000000043df5774b03e7fef5fe40d931a7bedf1bb2e6b42738c4e6d3841103d3aa7f3390b000000010000001800000045006e00740072007500730074002e006e006500740000001400000001000000140000006a72267ad01eef7de73b6951d46c8d9f901266ab1d0000000100000010000000521b5f4582c1dcaae381b05e37ca2d347e000000010000000800000000c001b39667d6010300000001000000140000008cf427fd790c3ad166068de81e57efbb932272d4190000000100000010000000fa46ce7cbb85cfb4310075313a09ee052000000001000000420400003082043e30820326a00302010202044a538c28300d06092a864886f70d01010b05003081be310b300906035504061302555331163014060355040a130d456e74727573742c20496e632e31283026060355040b131f536565207777772e656e74727573742e6e65742f6c6567616c2d7465726d7331393037060355040b1330286329203230303920456e74727573742c20496e632e202d20666f7220617574686f72697a656420757365206f6e6c793132303006035504031329456e747275737420526f6f742043657274696669636174696f6e20417574686f72697479202d204732301e170d3039303730373137323535345a170d3330313230373137353535345a3081be310b300906035504061302555331163014060355040a130d456e74727573742c20496e632e31283026060355040b131f536565207777772e656e74727573742e6e65742f6c6567616c2d7465726d7331393037060355040b1330286329203230303920456e74727573742c20496e632e202d20666f7220617574686f72697a656420757365206f6e6c793132303006035504031329456e747275737420526f6f742043657274696669636174696f6e20417574686f72697479202d20473230820122300d06092a864886f70d01010105000382010f003082010a0282010100ba84b672db9e0c6be299e93001a776ea32b895411ac9da614e5872cffef68279bf7361060aa527d8b35fd3454e1c72d64e32f2728a0ff78319d06a808000451eb0c7e79abf1257271ca3682f0a87bd6a6b0e5e65f31c77d5d4858d7021b4b332e78ba2d5863902b1b8d247cee4c949c43ba7defb547d57bef0e86ec279b23a0b55e250981632135c2f7856c1c294b3f25ae4279a9f24d7c6ecd09b2582e3ccc2c445c58c977a066b2a119fa90a6e483b6fdbd4111942f78f07bff5535f9c3ef4172ce669ac4e324c6277eab7e8e5bb34bc198bae9c51e7b77eb553b13322e56dcf703c1afae29b67b683f48da5af624c4de058ac64341203f8b68d946324a4710203010001a3423040300e0603551d0f0101ff040403020106300f0603551d130101ff040530030101ff301d0603551d0e041604146a72267ad01eef7de73b6951d46c8d9f901266ab300d06092a864886f70d01010b05000382010100799f1d96c6b6793f228d87d3870304606a6b9a2e59897311ac43d1f513ff8d392bc0f2bd4f708ca92fea17c40b549ed41b9698333ca8ad62a20076ab59696e061d7ec4b9448d98af12d461db0a194647f3ebf763c1400540a5d2b7f4b59a36bfa98876880455042b9c877f1a373c7e2da51ad8d4895ecabdac3d6cd86dafd5f3760fcd3b8838229d6c939ac43dbf821b653fa60f5daafce5b215cab5adc6bc3dd084e8ea0672b04d393278bf3e119c0ba49d9a21f3f09b0b3078dbc1dc8743febc639acac5c21cc9c78dff3b125808e6b63dec7a2c4efb8396ce0c3c69875473a473c293ff5110ac155401d8fc05b189a17f74839a49d7dc4e7b8a486f8b45f6 | C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe | N/A |
Suspicious behavior: AddClipboardFormatListener
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\AppData\Roaming\Let's Compress\lets_compress.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\AppData\Roaming\Let's Compress\lets_compress.exe | N/A |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\Shortcut Virus Remover.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Views/modifies file attributes
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\attrib.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\attrib.exe | N/A |
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://download.cnet.com
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7fff5756cc40,0x7fff5756cc4c,0x7fff5756cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2064,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2060 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1796,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2144 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2248,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2264 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3112,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3120 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3136,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3300 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3860,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4500 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4688,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3504 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4788,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4796 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=5040,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5088,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5160 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5288,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5328 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5336,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5296 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3508,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3752 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=4680,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6108 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5560,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4012 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5776,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5816 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5188,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5296 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=6000,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5200 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5716,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5660 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5812,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6372 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6360,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6396 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6508,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6604,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6588 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5700,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5672 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6588,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6624 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=5484,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6556 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5824,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5540 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=6264,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5772 /prefetch:8
C:\Users\Admin\Downloads\Let's Compress.exe
"C:\Users\Admin\Downloads\Let's Compress.exe"
C:\Windows\system32\msiexec.exe
C:\Windows\system32\msiexec.exe /V
C:\Windows\syswow64\MsiExec.exe
C:\Windows\syswow64\MsiExec.exe -Embedding 5C1F5CBB85A688B34F317F8351DC6328 C
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\MSID724.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240703265 284 RequestSender!RequestSender.CustomActions.Start
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\MSIE218.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240706078 670 RequestSender!RequestSender.CustomActions.NextWelcome
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\MSIE768.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240707453 771 RequestSender!RequestSender.CustomActions.NextEula
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\MSIEAF4.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240708359 874 RequestSender!RequestSender.CustomActions.NextInstalFolder
C:\Users\Admin\Downloads\Let's Compress.exe
"C:\Users\Admin\Downloads\Let's Compress.exe" /i "C:\Users\Admin\AppData\Roaming\Let's Compress\Let's Compress 1.4.0.0\install\32515FD\Let's Compress.msi" AI_EUIMSI=1 APPDIR="C:\Users\Admin\AppData\Roaming\Let's Compress" SECONDSEQUENCE="1" CLIENTPROCESSID="3556" CHAINERUIPROCESSID="3556Chainer" ACTION="INSTALL" EXECUTEACTION="INSTALL" CLIENTUILEVEL="0" ADDLOCAL="MainFeature" ACTIVE_WINDOW_NAME="ready_installation" PRIMARYFOLDER="APPDIR" ROOTDRIVE="C:\" AI_SETUPEXEPATH="C:\Users\Admin\Downloads\Let's Compress.exe" SETUPEXEDIR="C:\Users\Admin\Downloads\" EXE_CMD_LINE="/exenoupdates /forcecleanup /wintime 1737585476 " TARGETDIR="C:\" AI_SETUPEXEPATH_ORIGINAL="C:\Users\Admin\Downloads\Let's Compress.exe" AI_INSTALL="1"
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\MSIEE02.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240709171 968 RequestSender!RequestSender.CustomActions.NextReadyInstallation
C:\Windows\syswow64\MsiExec.exe
C:\Windows\syswow64\MsiExec.exe -Embedding CA89B7EFB640B087370580C513FEC189
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
-NoProfile -Noninteractive -ExecutionPolicy Bypass -File "C:\Users\Admin\AppData\Local\Temp\pss691.ps1" -propFile "C:\Users\Admin\AppData\Local\Temp\msi68E.txt" -scriptFile "C:\Users\Admin\AppData\Local\Temp\scr68F.ps1" -scriptArgsFile "C:\Users\Admin\AppData\Local\Temp\scr690.txt" -propSep " :<->: " -testPrefix "_testValue."
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Windows\Installer\MSI1444.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240718921 1920 RequestSender!RequestSender.CustomActions.Finish
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=984,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6788 /prefetch:8
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
-NoProfile -Noninteractive -ExecutionPolicy Bypass -File "C:\Users\Admin\AppData\Local\Temp\pss108F.ps1" -propFile "C:\Users\Admin\AppData\Local\Temp\msi108C.txt" -scriptFile "C:\Users\Admin\AppData\Local\Temp\scr108D.ps1" -scriptArgsFile "C:\Users\Admin\AppData\Local\Temp\scr108E.txt" -propSep " :<->: " -testPrefix "_testValue."
C:\Users\Admin\AppData\Roaming\Let's Compress\lets_compress.exe
"C:\Users\Admin\AppData\Roaming\Let's Compress\lets_compress.exe"
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
-NoProfile -Noninteractive -ExecutionPolicy Bypass -File "C:\Users\Admin\AppData\Local\Temp\pss1BDE.ps1" -propFile "C:\Users\Admin\AppData\Local\Temp\msi1BDB.txt" -scriptFile "C:\Users\Admin\AppData\Local\Temp\scr1BDC.ps1" -scriptArgsFile "C:\Users\Admin\AppData\Local\Temp\scr1BDD.txt" -propSep " :<->: " -testPrefix "_testValue."
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\MSI21C3.tmp",zzzzInvokeManagedCustomActionOutOfProc SfxCA_240787890 1843 RequestSender!RequestSender.CustomActions.FinishInstall
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
-NoProfile -Noninteractive -ExecutionPolicy Bypass -File "C:\Users\Admin\AppData\Local\Temp\pss21DE.ps1" -propFile "C:\Users\Admin\AppData\Local\Temp\msi21DB.txt" -scriptFile "C:\Users\Admin\AppData\Local\Temp\scr21DC.ps1" -scriptArgsFile "C:\Users\Admin\AppData\Local\Temp\scr21DD.txt" -propSep " :<->: " -testPrefix "_testValue."
C:\Users\Admin\AppData\Roaming\Let's Compress\upd.exe
"C:\Users\Admin\AppData\Roaming\Let's Compress\upd.exe"
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
powershell -encodedCommand "JABtAGEAYwBoAGkAbgBlAEcAdQBpAGQAIAA9ACAAJAAoAEcAZQB0AC0AQwBpAG0ASQBuAHMAdABhAG4AYwBlACAALQBDAGwAYQBzAHMAIABXAGkAbgAzADIAXwBDAG8AbQBwAHUAdABlAHIAUwB5AHMAdABlAG0AUAByAG8AZAB1AGMAdAApAC4AVQBVAEkARAAKACQAaABhAHMAaABBAGwAZwBvAHIAaQB0AGgAbQAgAD0AIABbAFMAeQBzAHQAZQBtAC4AUwBlAGMAdQByAGkAdAB5AC4AQwByAHkAcAB0AG8AZwByAGEAcABoAHkALgBTAEgAQQAxAF0AOgA6AEMAcgBlAGEAdABlACgAKQAKACQAaABhAHMAaABCAHkAdABlAHMAIAA9ACAAJABoAGEAcwBoAEEAbABnAG8AcgBpAHQAaABtAC4AQwBvAG0AcAB1AHQAZQBIAGEAcwBoACgAWwBTAHkAcwB0AGUAbQAuAFQAZQB4AHQALgBFAG4AYwBvAGQAaQBuAGcAXQA6ADoAVQBUAEYAOAAuAEcAZQB0AEIAeQB0AGUAcwAoACQAbQBhAGMAaABpAG4AZQBHAHUAaQBkACkAKQAKACQAdAByAHUAbgBjAGEAdABlAGQASABhAHMAaAAgAD0AIABbAFMAeQBzAHQAZQBtAC4AQgBpAHQAQwBvAG4AdgBlAHIAdABlAHIAXQA6ADoAVABvAFMAdAByAGkAbgBnACgAJABoAGEAcwBoAEIAeQB0AGUAcwApAC4AUgBlAHAAbABhAGMAZQAoACIALQAiACwAIAAiACIAKQAKACQAcwBoAG8AcgB0AFYAYQBsAHUAZQAgAD0AIAAkAHQAcgB1AG4AYwBhAHQAZQBkAEgAYQBzAGgALgBUAG8ATABvAHcAZQByACgAKQAKACQAYwBsAGkAIAA9ACAATgBlAHcALQBPAGIAagBlAGMAdAAgAFMAeQBzAHQAZQBtAC4ATgBlAHQALgBXAGUAYgBDAGwAaQBlAG4AdAA7AAoAJAB1AHMAcgBBAGcAZQBuAHQAIAA9ACAAIgBsAGUAdABzAGMAbwBtAHAAcgBlAHMAcwAvADEALgA0AC4AMAAuADAALwAiACsAIAAkAHMAaABvAHIAdABWAGEAbAB1AGUACgAkAGMAbABpAC4ASABlAGEAZABlAHIAcwBbACcAVQBzAGUAcgAtAEEAZwBlAG4AdAAnAF0AIAA9ACAAJAB1AHMAcgBBAGcAZQBuAHQAOwAKACQAYwBsAGkALgBEAG8AdwBuAGwAbwBhAGQARgBpAGwAZQAoACcAaAB0AHQAcABzADoALwAvAGwAZQB0AHMALQBjAG8AbQBwAHIAZQBzAHMALQB0AG8AbwBsAC4AYwBvAG0ALwB1AHAAZABhAHQAZQAuAHQAeAB0ACcALAAnAEMAOgBcAFUAcwBlAHIAcwBcAEEAZABtAGkAbgBcAEEAcABwAEQAYQB0AGEAXABMAG8AYwBhAGwAXABUAGUAbQBwAFwAXAB1AHAAZABhAHQAZQByAEkAbgBmAG8ALgB0AHgAdAAnACkACgA=
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.booking.com/index.html?aid=935088
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7fff41cd46f8,0x7fff41cd4708,0x7fff41cd4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2120,9797094819763007006,9589754729841183386,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2136 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2120,9797094819763007006,9589754729841183386,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2224 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2120,9797094819763007006,9589754729841183386,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2716 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,9797094819763007006,9589754729841183386,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3384 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,9797094819763007006,9589754729841183386,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Users\Admin\Desktop\Shortcut Virus Remover.exe
"C:\Users\Admin\Desktop\Shortcut Virus Remover.exe"
C:\Program Files (x86)\Shortcut Virus Remover\restart.exe
"C:\Program Files (x86)\Shortcut Virus Remover\restart.exe"
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" restart -s -t 0
C:\Program Files (x86)\Shortcut Virus Remover\Shortcut Virus Remover v1.0.exe
"C:\Program Files (x86)\Shortcut Virus Remover\Shortcut Virus Remover v1.0.exe"
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /k attrib -h -r -s /s /d C:\*.*
C:\Windows\SysWOW64\attrib.exe
attrib -h -r -s /s /d C:\*.*
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /k attrib -h -r -s /s /d C:\*.* >test.txt
C:\Windows\SysWOW64\attrib.exe
attrib -h -r -s /s /d C:\*.*
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /k del /S C:\*.lnk
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /k del /S C:\*.vbs
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /k del /S C:\*.inf
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /k Taskkill /IM cmd.exe /F
C:\Windows\SysWOW64\taskkill.exe
Taskkill /IM cmd.exe /F
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6688,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5844 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=6908,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6620 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=7016,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5172 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6692,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6676 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7024,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7000 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=5312,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5544 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=3480,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4448 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6124,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3524 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=6828,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5748 /prefetch:8
C:\Users\Admin\Downloads\Setup.exe
"C:\Users\Admin\Downloads\Setup.exe"
C:\Users\Admin\AppData\Local\Temp\7zSCF2204AC\WebCompanion-Installer.exe
.\WebCompanion-Installer.exe --savename=Setup.exe --partner=IN250101 --nonadmin --direct --tych --campaign=20925055911 --version=13.900.0.1080
C:\Windows\SysWOW64\cmd.exe
"C:\Windows\System32\cmd.exe" /C netsh http add urlacl url=http://+:9007/ user=Everyone
C:\Windows\SysWOW64\netsh.exe
netsh http add urlacl url=http://+:9007/ user=Everyone
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe
"C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe" --install --geo=
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=6284,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6892 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=6920,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4992 /prefetch:1
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe
"C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe" --afterinstall
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" https://webcompanion.com/en/install.php?partner=IN250101&campaign=20925055911&
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7fff5756cc40,0x7fff5756cc4c,0x7fff5756cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=3516,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=5756,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6304 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=6204,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6316 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x2fc 0x2c8
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5280,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6860 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5660,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6852 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5868,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6620 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6856,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7224 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7396,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7388 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=7512,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7020 /prefetch:8
C:\Users\Admin\Downloads\Wave Browser.exe
"C:\Users\Admin\Downloads\Wave Browser.exe"
C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe
"C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe" /install "bundlename=WaveBrowser&appguid={EB149AD2-CE4E-4F51-B7FC-A149FAA4CCAF}&appname=WaveBrowser&needsadmin=False&lang=en&usagestats=1&installdataindex=1"
C:\Program Files (x86)\Wavesor\Temp\GUMDF8.tmp\SWUpdater.exe
"C:\Program Files (x86)\Wavesor\Temp\GUMDF8.tmp\SWUpdater.exe" /install "bundlename=WaveBrowser&appguid={EB149AD2-CE4E-4F51-B7FC-A149FAA4CCAF}&appname=WaveBrowser&needsadmin=False&lang=en&usagestats=1&installdataindex=1"
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /regserver
C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe" /user
C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe" /user
C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\1.3.135.0\SWUpdaterComRegisterShell64.exe" /user
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ping 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-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /handoff "bundlename=WaveBrowser&appguid={EB149AD2-CE4E-4F51-B7FC-A149FAA4CCAF}&appname=WaveBrowser&needsadmin=False&lang=en&usagestats=1&installdataindex=1" /installsource otherinstallcmd /sessionid "{577F0265-82C8-4E6B-BA07-3082C9E50CBC}"
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" -Embedding
C:\Users\Admin\Wavesor Software\SWUpdater\Install\{EB1EB5DB-710C-4A5C-8858-23941AF91806}\WaveInstaller-v1.5.20.2.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\Install\{EB1EB5DB-710C-4A5C-8858-23941AF91806}\WaveInstaller-v1.5.20.2.exe" /installerdata="C:\Users\Admin\AppData\Local\Temp\gui4D05.tmp"
C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe
"C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe" --install-archive="C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\wavebrowser.packed.7z" --wid=6r76kp77 --installerdata="C:\Users\Admin\AppData\Local\Temp\gui4D05.tmp"
C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe
C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.20.2 --initial-client-data=0x278,0x27c,0x280,0x254,0x284,0x7ff6b9e48980,0x7ff6b9e4898c,0x7ff6b9e48998
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe"
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=10246537B49F2FDD7957D7067E0E6E72 --mojo-platform-channel-handle=1748 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=59CD2D3F9FC9E728B3C80A00C0C98660 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=59CD2D3F9FC9E728B3C80A00C0C98660 --renderer-client-id=2 --mojo-platform-channel-handle=1756 --allow-no-sandbox-job /prefetch:1
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=1B2C2E209AB064509209ADE9FB6C623D --mojo-platform-channel-handle=2340 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=661CFE993829DE6079CDD8E48B5E483D --mojo-platform-channel-handle=2444 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=C181BF75739660F4F859D46FFBEA25EF --mojo-platform-channel-handle=2576 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe
"C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe" --verbose-logging --installerdata="C:\Users\Admin\AppData\Local\Temp\gui4D05.tmp" --create-shortcuts=0 --install-level=0
C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe
C:\Users\Admin\AppData\Local\Temp\nso4FA5.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.20.2 --initial-client-data=0x278,0x27c,0x280,0x254,0x284,0x7ff6b9e48980,0x7ff6b9e4898c,0x7ff6b9e48998
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" https://gowavebrowser.co/thank-you?tid=6r76kp77&src=d-cp21976981197-lp0-obgc-wav-igkQsxtUESyheCJRgQ-ab51-w64-brwsr&cid=21976981197&iid=wav&uid=1bae5e18-2696-4d2f-bea7-b13473d4fe0c
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --install-type=1 --from-installer
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7fff5756cc40,0x7fff5756cc4c,0x7fff5756cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=7080,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5224 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\WaveBrowser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\WaveBrowser\User Data" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.20.2 --initial-client-data=0x108,0x104,0x110,0x128,0x10c,0x7fff3c0c6cf8,0x7fff3c0c6d04,0x7fff3c0c6d10
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=gpu-process --string-annotations=is-enterprise-managed=no --start-stack-profiler --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=2108,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=2104 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations=is-enterprise-managed=no --start-stack-profiler --field-trial-handle=1904,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=2156 /prefetch:3
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations=is-enterprise-managed=no --field-trial-handle=2424,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=2576 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3116,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3444 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3140,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3692 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --string-annotations=is-enterprise-managed=no --field-trial-handle=3500,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4072 /prefetch:8
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ping 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-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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc291cmNlX3VybF9pbmRleD0iMCIgdXBkYXRlX2NoZWNrX3RpbWVfbXM9IjYwOSIgZG93bmxvYWRfdGltZV9tcz0iMTMyNTIiIGRvd25sb2FkZWQ9IjEwNDA2NTgwMCIgdG90YWw9IjEwNDA2NTgwMCIgaW5zdGFsbF90aW1lX21zPSIxMDM3MSIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=4644,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3132 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=3684,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4508 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=4756,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4972 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4800,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4980 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --start-stack-profiler --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4824,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4808 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --start-stack-profiler --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4840,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5148 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=4760,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5360 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4864,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5384 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4880,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5496 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=4896,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5612 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=4908,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4996 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --instant-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4916,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5952 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6532,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4920 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6524,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6696 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6520,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6720 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6576,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6864 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7144,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7140 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7124,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7292 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7444,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7316 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7484,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7604 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7596,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7628 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7640,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7888 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --start-stack-profiler --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=8392,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8416 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=8680,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8684 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=8696,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8836 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=8668,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8656 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6432,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9108 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9268,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9280 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9272,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9404 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9556,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9572 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9560,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9256 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9716,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9848 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9728,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10004 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9996,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10152 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6228,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4740 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7624,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7920 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=9116,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9864 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=9964,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10064 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9992,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10120 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9976,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10084 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10116,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9656 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9112,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9604 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9140,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10216 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9872,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6916 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10140,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6920 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10128,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3008 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10032,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4072 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10012,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7912 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9292,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8704 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9320,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4828 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6492,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7172 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=8640,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10132 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6660,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7092 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9884,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7332 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10100,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7384 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7136,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6636 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6848,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10644 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10628,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10668 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10928,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10788 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=10924,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10940 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=11224,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11260 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=11396,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11412 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=11376,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11372 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=11704,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11716 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=11708,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7344 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12000,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12016 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12164,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10620 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12152,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12168 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12320,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12616 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12624,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12004 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6728,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10476 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6672,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12924 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6704,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12948 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6712,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13208 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6564,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13352 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6556,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13384 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12336,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13640 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=6792,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13784 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12900,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13936 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12488,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12596 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=7288,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7000 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=7260,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12492 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=6940,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9612 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=7340,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9592 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=6988,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7812 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=7588,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8756 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=6684,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10224 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=8820,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8860 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=8684,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9572 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=8672,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9744 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=8708,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12484 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=14324,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14344 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=14488,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14500 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=14636,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14868 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=15208,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15220 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=15400,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15420 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=7232,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15652 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=8956,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9580 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=14992,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7228 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=15440,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14848 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=5840,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5836 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=5972,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6140 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --strtl=ti
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\WaveBrowser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\WaveBrowser\User Data" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.20.2 --initial-client-data=0x10c,0x108,0x114,0x12c,0x110,0x7fff3c0c6cf8,0x7fff3c0c6d04,0x7fff3c0c6d10
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=4924,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14856 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=5876,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5892 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --field-trial-handle=5912,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5028 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --field-trial-handle=5916,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4808 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --field-trial-handle=5836,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4636 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --field-trial-handle=6112,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15176 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --field-trial-handle=15024,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14312 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --field-trial-handle=5952,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8856 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --field-trial-handle=5336,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9056 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=6092,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13292 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --start-stack-profiler --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --field-trial-handle=5948,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5492 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --field-trial-handle=6048,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6736 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --field-trial-handle=15088,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13372 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --instant-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --field-trial-handle=15104,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13804 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=13068,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12984 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=13000,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13016 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --field-trial-handle=9652,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15072 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --start-stack-profiler --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --field-trial-handle=13064,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14816 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --enable-dinosaur-easter-egg-alt-images --start-stack-profiler --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --field-trial-handle=7564,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12308 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=7244,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7444 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=7252,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7352 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=130 --field-trial-handle=784,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9516 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=9800,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14104 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=7448,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1476 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=6852,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6712 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=3484,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14176 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=6392,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7192 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=5852,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=7484,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6720 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=6104,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5836 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=7552,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6396 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=6496,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7528 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --string-annotations=is-enterprise-managed=no --start-stack-profiler --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=9776,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7204 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=6720,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6372 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=7204,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15368 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=3512,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7188,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6540 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=1572,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12552 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=6888,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5004 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=136 --field-trial-handle=15376,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=1576 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=6468,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5668 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=6868,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5880 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=7416,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6628 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=7148,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3756 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=15792,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15424 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=3452,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=244 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=15380,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9876 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --instant-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=5820,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7420 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=4816,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7208 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=7840,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7884 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14904,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15508 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=141 --field-trial-handle=3488,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14952 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=7832,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8036 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14140,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14476 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14132,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9516 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=7376,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6052 /prefetch:1
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /c
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ua /installsource scheduler
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /cr
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ua /installsource core
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /registermsihelper
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=6628,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7604 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14156,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15796 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --instant-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=7536,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7052 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=7364,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7132 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6976,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7164 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=145 --field-trial-handle=9792,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14248 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14136,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=15196 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\" -an -ai#7zMap15626:116:7zEvent7729
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=147 --field-trial-handle=14096,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14204 /prefetch:2
C:\Users\Admin\Desktop\setup.exe
"C:\Users\Admin\Desktop\setup.exe"
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14188,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12484 /prefetch:8
C:\Users\Admin\Desktop\setup.exe
"C:\Users\Admin\Desktop\setup.exe"
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=149 --field-trial-handle=15560,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9580 /prefetch:2
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=15632,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=1576 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=7632,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6684 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=7060,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7900,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=724 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=7644,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7908 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=14968,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9868 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=152 --field-trial-handle=15552,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7796 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=15548,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=1576 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=5528,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7472 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=7912,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7068 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=5804,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5076 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=7052,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7940 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=6056,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8104 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=6996,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7500 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=8132,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5796 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=8220,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8212 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=8252,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8472 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=8604,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=8812,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8608 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=8984,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8224 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=9092,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9104 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=9260,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9272 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=9396,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9408 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=9584,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9548 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=9728,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9712 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=9708,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9864 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=10024,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10016 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=10020,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=9996,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=10460,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10500 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=10468,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10624 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=10744,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10728 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=10768,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --field-trial-handle=10772,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9344 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=6684,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=6512,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3408 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=10524,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7696 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=10476,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9788 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --field-trial-handle=10248,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10724 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --field-trial-handle=10664,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10496 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --field-trial-handle=10804,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10728 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --field-trial-handle=11324,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11284 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --field-trial-handle=11144,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11344 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --field-trial-handle=6500,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --field-trial-handle=11848,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12032 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --field-trial-handle=11964,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11912 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=11828,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10492 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --field-trial-handle=11904,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12144 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --field-trial-handle=12308,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12324 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --field-trial-handle=12416,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12428 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --field-trial-handle=12272,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12608 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=126 --field-trial-handle=12604,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12632 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --field-trial-handle=12656,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12792 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --field-trial-handle=12744,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=13028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --field-trial-handle=11752,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12924 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=130 --field-trial-handle=10816,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10204 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=15260,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8704 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --string-annotations=is-enterprise-managed=no --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=155 --field-trial-handle=12244,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10652 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --instant-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --field-trial-handle=11984,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9308 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --field-trial-handle=11900,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11268 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12200,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12192 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=134 --field-trial-handle=12280,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11916 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=135 --field-trial-handle=10712,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10452 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations=is-enterprise-managed=no --field-trial-handle=12992,i,2768779750789945163,6900799026168957876,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7700 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=136 --field-trial-handle=12000,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9308 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --field-trial-handle=12220,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12184 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=138 --field-trial-handle=12196,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11404 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=138 --field-trial-handle=13096,i,2489843251331551253,16275625442407811628,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10740 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | download.cnet.com | udp |
| US | 151.101.193.91:443 | download.cnet.com | tcp |
| US | 151.101.193.91:443 | download.cnet.com | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.220.183.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.cnet.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 151.101.193.91:443 | www.cnet.com | udp |
| US | 8.8.8.8:53 | assets.dwncdn.net | udp |
| US | 8.8.8.8:53 | cdn.cookielaw.org | udp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 8.8.8.8:53 | images.dwncdn.net | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| US | 151.101.193.91:443 | images.dwncdn.net | tcp |
| US | 151.101.193.91:443 | images.dwncdn.net | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| US | 151.101.193.91:443 | images.dwncdn.net | tcp |
| US | 151.101.65.91:443 | images.dwncdn.net | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | syndicatedsearch.goog | udp |
| US | 151.101.65.91:443 | images.dwncdn.net | udp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | tcp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| US | 151.101.193.91:443 | images.dwncdn.net | udp |
| US | 151.101.193.91:443 | images.dwncdn.net | udp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| DE | 23.88.8.123:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | bt.dns-finder.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 104.21.16.1:443 | bt.dns-finder.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 91.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.129.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.87.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.225.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.8.88.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.16.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | 119.155.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.6.141:443 | cdn.btmessage.com | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| DE | 23.88.8.125:443 | uidsync.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| DE | 23.88.8.125:443 | uidsync.net | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.6.141:443 | api.btmessage.com | tcp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.6.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 125.8.88.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.114.82.104.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | 154.239.44.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.15.177.108.in-addr.arpa | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | 66ffe30324ff75afa2696b4d52d01c19.safeframe.googlesyndication.com | udp |
| US | 75.2.33.117:443 | sb.scorecardresearch.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 104.18.29.101:443 | cdn-ima.33across.com | tcp |
| GB | 142.250.179.226:443 | ep1.adtrafficquality.google | tcp |
| GB | 216.58.201.97:443 | 66ffe30324ff75afa2696b4d52d01c19.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 117.33.2.75.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | tcp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | tcp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | 101.29.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.249.227.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.212.58.216.in-addr.arpa | udp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 42.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.179.250.142.in-addr.arpa | udp |
| GB | 142.250.179.226:443 | ep1.adtrafficquality.google | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.163.245.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 151.101.65.91:443 | images.dwncdn.net | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 151.101.193.91:443 | images.dwncdn.net | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 151.101.193.91:443 | images.dwncdn.net | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | di-images.sftcdn.net | udp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | tcp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | tcp |
| DE | 23.88.8.125:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| DE | 23.88.8.125:443 | uidsync.net | tcp |
| GB | 216.58.204.66:443 | partner.googleadservices.com | tcp |
| US | 8.8.8.8:53 | 70a9a19f6050cf38f0fdd918989d4792.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| GB | 142.250.179.226:443 | ep1.adtrafficquality.google | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | cdn.bidbrain.app | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 172.67.176.164:443 | cdn.bidbrain.app | tcp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | g.bidbrain.app | udp |
| US | 8.8.8.8:53 | serve.bidbrain.app | udp |
| US | 172.67.176.164:443 | serve.bidbrain.app | tcp |
| US | 172.67.176.164:443 | serve.bidbrain.app | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| US | 104.21.80.92:443 | serve.bidbrain.app | tcp |
| US | 172.67.176.164:443 | serve.bidbrain.app | tcp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.80.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.176.67.172.in-addr.arpa | udp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | udp |
| US | 172.67.176.164:443 | serve.bidbrain.app | udp |
| US | 8.8.8.8:53 | gcm.ctnsnet.com | udp |
| US | 8.8.8.8:53 | a.c.appier.net | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | dsp.adkernel.com | udp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | tg.socdm.com | udp |
| US | 8.8.8.8:53 | sync.inmobi.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 174.137.133.49:443 | dsp.adkernel.com | tcp |
| US | 35.186.193.173:443 | gcm.ctnsnet.com | tcp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| JP | 124.146.153.164:443 | tg.socdm.com | tcp |
| IE | 79.125.16.71:443 | match.prod.bidr.io | tcp |
| US | 20.33.55.12:443 | sync.inmobi.com | tcp |
| JP | 172.105.203.31:443 | a.c.appier.net | tcp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | g4.bidbrain.app | udp |
| US | 8.8.8.8:53 | g6.bidbrain.app | udp |
| US | 172.67.176.164:443 | serve.bidbrain.app | udp |
| US | 34.8.123.242:443 | g4.bidbrain.app | tcp |
| JP | 124.146.153.164:443 | tg.socdm.com | tcp |
| JP | 172.105.203.31:443 | a.c.appier.net | tcp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | udp |
| GB | 142.250.179.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.133.137.174.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.16.125.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.55.33.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 242.123.8.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.153.146.124.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.203.105.172.in-addr.arpa | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | lens.google.com | udp |
| GB | 142.250.179.238:443 | lens.google.com | tcp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | udp |
| US | 8.8.8.8:53 | download.letscompress.online | udp |
| GB | 143.244.38.136:443 | download.letscompress.online | tcp |
| GB | 143.244.38.136:443 | download.letscompress.online | tcp |
| US | 8.8.8.8:53 | letscompr.com | udp |
| GB | 79.127.237.132:443 | letscompr.com | tcp |
| US | 8.8.8.8:53 | 136.38.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.237.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 81.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | download.cnet.com | udp |
| US | 104.26.6.141:443 | api.btmessage.com | tcp |
| US | 8.8.8.8:53 | assets.dwncdn.net | udp |
| US | 104.21.16.1:443 | bt.dns-finder.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | images.dwncdn.net | udp |
| US | 8.8.8.8:53 | bd178a51bc00cf85d85b985eafc45e34.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 34.8.123.242:443 | g4.bidbrain.app | udp |
| US | 8.8.8.8:53 | g6.bidbrain.app | udp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 8.8.8.8:53 | 7f3677634f5e2706b96bda173d07c8d8.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | dclk-match.dotomi.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | a.rfihub.com | udp |
| US | 8.8.8.8:53 | gtrace.mediago.io | udp |
| NL | 35.214.168.80:443 | gtrace.mediago.io | tcp |
| US | 54.144.155.220:443 | sync.srv.stackadapt.com | tcp |
| NL | 89.207.16.204:443 | dclk-match.dotomi.com | tcp |
| NL | 193.0.160.130:443 | a.rfihub.com | tcp |
| NL | 188.166.17.21:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.17.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 220.155.144.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.168.214.35.in-addr.arpa | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | prod.downloadnow.com | udp |
| US | 8.8.8.8:53 | sub.pretty-fly4.com | udp |
| US | 151.101.193.91:443 | prod.downloadnow.com | tcp |
| DE | 23.88.8.123:443 | sub.pretty-fly4.com | tcp |
| DE | 23.88.8.123:443 | sub.pretty-fly4.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 133.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.49.80.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.243.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | lets-compress-tool.com | udp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| US | 8.8.8.8:53 | compressing-lets-1.com | udp |
| GB | 143.244.38.136:443 | compressing-lets-1.com | tcp |
| US | 8.8.8.8:53 | r11.o.lencr.org | udp |
| GB | 2.18.190.203:80 | r11.o.lencr.org | tcp |
| US | 8.8.8.8:53 | 128.177.206.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.190.18.2.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | 104.116.69.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | lets-compress-tool.com | udp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| GB | 79.127.237.132:443 | lets-compress-tool.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | www.booking.com | udp |
| GB | 13.224.222.108:443 | www.booking.com | tcp |
| US | 8.8.8.8:53 | cf.bstatic.com | udp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| GB | 108.138.233.62:443 | cf.bstatic.com | tcp |
| US | 8.8.8.8:53 | 108.222.224.13.in-addr.arpa | udp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| US | 8.8.8.8:53 | t-cf.bstatic.com | udp |
| US | 8.8.8.8:53 | q-xx.bstatic.com | udp |
| US | 8.8.8.8:53 | 62.233.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | account.booking.com | udp |
| GB | 108.156.39.58:443 | account.booking.com | tcp |
| GB | 108.156.39.58:443 | account.booking.com | tcp |
| US | 8.8.8.8:53 | accommodations.booking.com | udp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 142.251.173.84:443 | accounts.google.com | tcp |
| GB | 143.204.68.8:443 | accommodations.booking.com | tcp |
| US | 8.8.8.8:53 | 58.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.68.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.173.251.142.in-addr.arpa | udp |
| US | 142.251.173.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | r-xx.bstatic.com | udp |
| US | 8.8.8.8:53 | d8c14d4960ca.edge.sdk.awswaf.com | udp |
| GB | 18.244.140.115:443 | r-xx.bstatic.com | tcp |
| GB | 18.244.140.115:443 | r-xx.bstatic.com | tcp |
| GB | 18.164.68.31:443 | d8c14d4960ca.edge.sdk.awswaf.com | tcp |
| US | 8.8.8.8:53 | crt.rootg2.amazontrust.com | udp |
| GB | 3.166.49.106:80 | crt.rootg2.amazontrust.com | tcp |
| US | 8.8.8.8:53 | 115.140.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.68.164.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.49.166.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d8c14d4960ca.1d24cd76.eu-west-2.token.awswaf.com | udp |
| GB | 18.245.218.66:443 | d8c14d4960ca.1d24cd76.eu-west-2.token.awswaf.com | tcp |
| US | 8.8.8.8:53 | booking-privacy.my.onetrust.com | udp |
| US | 8.8.8.8:53 | web-perf.booking.com | udp |
| US | 172.64.155.119:443 | booking-privacy.my.onetrust.com | tcp |
| GB | 18.172.153.113:443 | web-perf.booking.com | tcp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 61.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.218.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.153.172.18.in-addr.arpa | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | download.cnet.com | udp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 151.101.193.91:443 | download.cnet.com | udp |
| US | 8.8.8.8:53 | assets.dwncdn.net | udp |
| US | 104.26.6.141:443 | cdn.btmessage.com | tcp |
| US | 8.8.8.8:53 | bt.dns-finder.com | udp |
| US | 8.8.8.8:53 | cdn.cookielaw.org | udp |
| US | 151.101.129.91:443 | assets.dwncdn.net | udp |
| US | 104.21.16.1:443 | bt.dns-finder.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | images.dwncdn.net | udp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 151.101.1.91:443 | images.dwncdn.net | udp |
| US | 8.8.8.8:53 | 91.1.101.151.in-addr.arpa | udp |
| US | 151.101.129.91:443 | images.dwncdn.net | udp |
| US | 8.8.8.8:53 | syndicatedsearch.goog | udp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | c48003cce4b9658f2f014e6c4fd5ce7e.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| US | 75.2.33.117:443 | sb.scorecardresearch.com | tcp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| GB | 216.58.201.97:443 | c48003cce4b9658f2f014e6c4fd5ce7e.safeframe.googlesyndication.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| DE | 157.90.33.122:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | 122.33.90.157.in-addr.arpa | udp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| GB | 216.58.201.98:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | 98.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | udp |
| GB | 216.58.201.98:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | free.webcompanion.com | udp |
| US | 45.63.66.114:443 | free.webcompanion.com | tcp |
| US | 8.8.8.8:53 | 66.169.217.172.in-addr.arpa | udp |
| US | 45.63.66.114:443 | free.webcompanion.com | tcp |
| US | 45.63.66.114:443 | free.webcompanion.com | tcp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 45.63.66.114:443 | free.webcompanion.com | tcp |
| US | 45.63.66.114:443 | free.webcompanion.com | tcp |
| US | 45.63.66.114:443 | free.webcompanion.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | 114.66.63.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.25.17.104.in-addr.arpa | udp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | cloud.webcompanion.com | udp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | udp |
| CA | 20.48.202.165:443 | cloud.webcompanion.com | tcp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| US | 8.8.8.8:53 | 165.202.48.20.in-addr.arpa | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 216.58.201.99:443 | www.google.co.uk | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | privacyportal-eu.onetrust.com | udp |
| US | 172.64.155.119:443 | privacyportal-eu.onetrust.com | tcp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | webcompanion.com | udp |
| US | 104.19.208.152:443 | webcompanion.com | tcp |
| US | 104.19.208.152:443 | webcompanion.com | tcp |
| US | 8.8.8.8:53 | 152.208.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | geo.lavasoft.com | udp |
| US | 104.16.149.130:80 | geo.lavasoft.com | tcp |
| US | 8.8.8.8:53 | featureflags.lavasoft.com | udp |
| US | 104.16.148.130:443 | featureflags.lavasoft.com | tcp |
| US | 8.8.8.8:53 | 130.149.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | flwadw.com | udp |
| US | 104.18.27.149:443 | flwadw.com | tcp |
| US | 8.8.8.8:53 | 130.148.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.27.18.104.in-addr.arpa | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 172.64.155.119:443 | privacyportal-eu.onetrust.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | wcdownloadercdn.lavasoft.com | udp |
| US | 104.16.149.130:443 | wcdownloadercdn.lavasoft.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 104.16.149.130:80 | wcdownloadercdn.lavasoft.com | tcp |
| US | 8.8.8.8:53 | 54.177.206.23.in-addr.arpa | udp |
| US | 104.16.148.130:443 | wcdownloadercdn.lavasoft.com | tcp |
| US | 104.18.27.149:443 | flwadw.com | tcp |
| US | 8.8.8.8:53 | wc-partners.lavasoft.com | udp |
| CA | 64.18.87.82:80 | wc-partners.lavasoft.com | tcp |
| US | 8.8.8.8:53 | 82.87.18.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | webcompanion.com | udp |
| US | 104.19.208.152:80 | webcompanion.com | tcp |
| US | 8.8.8.8:53 | gowavebrowser.co | udp |
| US | 54.204.228.242:443 | gowavebrowser.co | tcp |
| US | 8.8.8.8:53 | api.wavebrowser.co | udp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| GB | 2.18.190.208:443 | p.typekit.net | tcp |
| US | 34.202.55.69:443 | api.wavebrowser.co | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 34.202.55.69:443 | api.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | app.termly.io | udp |
| US | 72.44.40.189:443 | api.wavebrowserbase.com | tcp |
| US | 104.18.30.234:443 | app.termly.io | tcp |
| US | 8.8.8.8:53 | 242.228.204.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 208.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.55.202.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.30.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.40.44.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 104.16.148.130:443 | wcdownloadercdn.lavasoft.com | tcp |
| GB | 142.250.179.234:443 | ajax.googleapis.com | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | cdn.inspectlet.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | udp |
| US | 150.171.28.10:443 | bat.bing.com | tcp |
| US | 172.67.10.172:443 | cdn.inspectlet.com | tcp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | hn.inspectlet.com | udp |
| US | 104.18.27.149:443 | flwadw.com | tcp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 8.8.8.8:53 | 172.10.67.172.in-addr.arpa | udp |
| US | 34.238.206.53:443 | api.mywavehome.net | tcp |
| US | 104.18.30.234:443 | app.termly.io | udp |
| US | 8.8.8.8:53 | partners.webcompanion.com | udp |
| US | 104.19.208.152:443 | partners.webcompanion.com | tcp |
| US | 8.8.8.8:53 | 53.206.238.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sg-bitmask.adaware.com | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 104.16.213.94:443 | sg-bitmask.adaware.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 64.233.184.155:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 94.213.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.184.233.64.in-addr.arpa | udp |
| US | 104.18.30.234:443 | app.termly.io | udp |
| GB | 216.58.201.99:443 | www.google.co.uk | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 72.44.40.189:443 | api.mywavehome.net | tcp |
| US | 8.8.8.8:53 | wav-installers.s3.amazonaws.com | udp |
| US | 3.5.2.167:443 | wav-installers.s3.amazonaws.com | tcp |
| US | 3.5.2.167:443 | wav-installers.s3.amazonaws.com | tcp |
| US | 8.8.8.8:53 | 167.2.5.3.in-addr.arpa | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 52.70.207.234:443 | api.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | 234.207.70.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | swupdater.com | udp |
| US | 44.199.149.204:443 | swupdater.com | tcp |
| US | 44.199.149.204:443 | swupdater.com | tcp |
| US | 8.8.8.8:53 | 204.149.199.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.swupdater.com | udp |
| IE | 13.224.68.72:443 | cdn.swupdater.com | tcp |
| US | 8.8.8.8:53 | 72.68.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 8.8.8.8:53 | dct.wavesecure.net | udp |
| US | 52.201.92.148:443 | dct.wavesecure.net | tcp |
| US | 8.8.8.8:53 | ocsp.r2m02.amazontrust.com | udp |
| GB | 143.204.67.183:80 | ocsp.r2m02.amazontrust.com | tcp |
| US | 8.8.8.8:53 | 148.92.201.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.178.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.214.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.67.204.143.in-addr.arpa | udp |
| US | 52.201.92.148:443 | dct.wavesecure.net | tcp |
| US | 8.8.8.8:53 | gowavebrowser.co | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.co | udp |
| US | 72.44.40.189:443 | api.wavebrowser.co | tcp |
| US | 104.18.30.234:443 | app.termly.io | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | s2.googleusercontent.com | udp |
| US | 8.8.8.8:53 | s2.googleusercontent.com | udp |
| US | 8.8.8.8:53 | swupdater.com | udp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.net | udp |
| US | 142.251.173.84:443 | accounts.google.com | tcp |
| GB | 172.217.16.225:443 | s2.googleusercontent.com | tcp |
| US | 107.21.1.208:443 | swupdater.com | tcp |
| US | 34.202.55.69:443 | api.wavebrowser.net | tcp |
| US | 52.201.92.148:443 | api.wavebrowser.net | tcp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| GB | 172.217.169.68:443 | t2.gstatic.com | tcp |
| US | 8.8.8.8:53 | 208.1.21.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dct.wavesecure.net | udp |
| US | 8.8.8.8:53 | dct.wavesecure.net | udp |
| US | 8.8.8.8:53 | seed.wavebrowser.co | udp |
| US | 8.8.8.8:53 | seed.wavebrowser.co | udp |
| US | 8.8.8.8:53 | ntp2.mywavehome.net | udp |
| US | 8.8.8.8:53 | ntp2.mywavehome.net | udp |
| US | 52.70.207.234:443 | dct.wavesecure.net | tcp |
| US | 52.70.207.234:443 | dct.wavesecure.net | tcp |
| US | 52.70.207.234:443 | dct.wavesecure.net | tcp |
| US | 52.70.207.234:443 | dct.wavesecure.net | tcp |
| US | 52.70.207.234:443 | dct.wavesecure.net | tcp |
| US | 52.70.207.234:443 | dct.wavesecure.net | tcp |
| GB | 18.239.236.123:443 | seed.wavebrowser.co | tcp |
| IE | 3.162.140.40:443 | ntp2.mywavehome.net | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| IE | 3.162.140.40:443 | ntp2.mywavehome.net | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | t0.gstatic.com | udp |
| US | 8.8.8.8:53 | t0.gstatic.com | udp |
| GB | 142.250.178.4:443 | t0.gstatic.com | tcp |
| GB | 142.250.178.4:443 | t0.gstatic.com | tcp |
| GB | 142.250.178.4:443 | t0.gstatic.com | tcp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| US | 8.8.8.8:53 | t3.gstatic.com | udp |
| US | 8.8.8.8:53 | t3.gstatic.com | udp |
| US | 8.8.8.8:53 | t1.gstatic.com | udp |
| GB | 142.250.178.4:443 | t3.gstatic.com | tcp |
| GB | 172.217.169.68:443 | t2.gstatic.com | tcp |
| GB | 172.217.169.68:443 | t2.gstatic.com | tcp |
| GB | 172.217.169.68:443 | t2.gstatic.com | tcp |
| GB | 142.250.187.228:443 | t1.gstatic.com | tcp |
| US | 8.8.8.8:53 | 123.236.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | js.recurly.com | udp |
| US | 8.8.8.8:53 | js.recurly.com | udp |
| US | 8.8.8.8:53 | widgets.outbrain.com | udp |
| US | 8.8.8.8:53 | widgets.outbrain.com | udp |
| IE | 3.162.140.40:443 | ntp2.mywavehome.net | udp |
| US | 34.98.107.242:443 | js.recurly.com | tcp |
| US | 34.98.107.242:443 | js.recurly.com | tcp |
| GB | 23.192.17.241:443 | widgets.outbrain.com | tcp |
| US | 8.8.8.8:53 | static-02.veve.com | udp |
| US | 8.8.8.8:53 | cdn.mywavehome.net | udp |
| US | 8.8.8.8:53 | cdn.mywavehome.net | udp |
| US | 104.18.30.15:443 | static-02.veve.com | tcp |
| US | 104.18.30.15:443 | static-02.veve.com | tcp |
| US | 104.18.30.15:443 | static-02.veve.com | tcp |
| GB | 18.165.242.27:443 | cdn.mywavehome.net | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | widgets.outbrain.com | udp |
| US | 8.8.8.8:53 | widgets.outbrain.com | udp |
| US | 8.8.8.8:53 | tcheck.outbrainimg.com | udp |
| US | 8.8.8.8:53 | tcheck.outbrainimg.com | udp |
| US | 8.8.8.8:53 | widget-pixels.outbrain.com | udp |
| US | 8.8.8.8:53 | widget-pixels.outbrain.com | udp |
| GB | 216.58.201.106:443 | content-autofill.googleapis.com | tcp |
| GB | 23.192.17.241:443 | widget-pixels.outbrain.com | tcp |
| GB | 23.206.178.141:443 | tcheck.outbrainimg.com | tcp |
| US | 8.8.8.8:53 | d2k9tf79qa7e23.cloudfront.net | udp |
| US | 8.8.8.8:53 | d2k9tf79qa7e23.cloudfront.net | udp |
| US | 8.8.8.8:53 | api.recurly.com | udp |
| US | 8.8.8.8:53 | api.recurly.com | udp |
| US | 34.98.107.242:443 | api.recurly.com | tcp |
| GB | 99.86.105.188:443 | d2k9tf79qa7e23.cloudfront.net | tcp |
| US | 8.8.8.8:53 | log.outbrainimg.com | udp |
| US | 8.8.8.8:53 | log.outbrainimg.com | udp |
| US | 64.74.236.95:443 | log.outbrainimg.com | tcp |
| US | 8.8.8.8:53 | 228.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 242.107.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.17.192.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.30.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.242.165.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.178.206.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.105.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | native.digitalnetics.us | udp |
| US | 18.214.184.46:443 | native.digitalnetics.us | tcp |
| US | 8.8.8.8:53 | 95.236.74.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.184.214.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | extapi.wavebrowserbase.com | udp |
| US | 8.8.8.8:53 | extapi.wavebrowserbase.com | udp |
| US | 100.29.47.232:443 | extapi.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 52.201.92.148:443 | api.wavebrowserbase.com | tcp |
| US | 52.201.92.148:443 | api.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | mv.outbrain.com | udp |
| US | 8.8.8.8:53 | mv.outbrain.com | udp |
| US | 8.8.8.8:53 | a57.foxnews.com | udp |
| US | 8.8.8.8:53 | a57.foxnews.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | d2mo1rxrhn4e6y.cloudfront.net | udp |
| US | 8.8.8.8:53 | d2mo1rxrhn4e6y.cloudfront.net | udp |
| US | 8.8.8.8:53 | hips.hearstapps.com | udp |
| US | 8.8.8.8:53 | hips.hearstapps.com | udp |
| US | 151.101.194.132:443 | a57.foxnews.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 151.101.194.132:443 | a57.foxnews.com | tcp |
| US | 151.101.0.155:443 | hips.hearstapps.com | tcp |
| GB | 18.165.251.94:443 | d2mo1rxrhn4e6y.cloudfront.net | tcp |
| US | 8.8.8.8:53 | t1.gstatic.com | udp |
| US | 8.8.8.8:53 | t1.gstatic.com | udp |
| US | 8.8.8.8:53 | t3.gstatic.com | udp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| US | 8.8.8.8:53 | t2.gstatic.com | udp |
| GB | 172.217.169.68:443 | t2.gstatic.com | tcp |
| GB | 142.250.187.228:443 | t1.gstatic.com | tcp |
| GB | 142.250.178.4:443 | t3.gstatic.com | tcp |
| US | 8.8.8.8:53 | mcdp-chidc2.outbrain.com | udp |
| US | 8.8.8.8:53 | mcdp-chidc2.outbrain.com | udp |
| US | 8.8.8.8:53 | images.outbrainimg.com | udp |
| US | 8.8.8.8:53 | images.outbrainimg.com | udp |
| US | 64.74.236.159:443 | mcdp-chidc2.outbrain.com | tcp |
| US | 64.74.236.159:443 | mcdp-chidc2.outbrain.com | tcp |
| US | 8.8.8.8:53 | 232.47.29.100.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.194.101.151.in-addr.arpa | udp |
| GB | 23.206.178.141:443 | images.outbrainimg.com | tcp |
| US | 8.8.8.8:53 | 155.0.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 94.251.165.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | td.doubleclick.net | udp |
| US | 8.8.8.8:53 | td.doubleclick.net | udp |
| GB | 216.58.201.98:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ext.wavebrowserbase.com | udp |
| US | 8.8.8.8:53 | ext.wavebrowserbase.com | udp |
| GB | 3.166.65.87:443 | ext.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| GB | 216.58.201.106:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | extdl.wavebrowserbase.com | udp |
| US | 8.8.8.8:53 | extdl.wavebrowserbase.com | udp |
| GB | 143.204.176.76:443 | extdl.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | 159.236.74.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.65.166.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.176.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.16.192.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | www.messenger.com | udp |
| US | 8.8.8.8:53 | www.messenger.com | udp |
| IE | 31.13.73.18:443 | www.messenger.com | udp |
| GB | 216.58.204.78:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | consent.youtube.com | udp |
| US | 8.8.8.8:53 | consent.youtube.com | udp |
| GB | 216.58.204.78:443 | www.youtube.com | udp |
| GB | 172.217.16.238:443 | consent.youtube.com | tcp |
| GB | 172.217.16.238:443 | consent.youtube.com | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| GB | 142.250.200.10:443 | optimizationguide-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | 18.73.13.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.200.250.142.in-addr.arpa | udp |
| GB | 142.250.178.4:443 | t3.gstatic.com | udp |
| US | 8.8.8.8:53 | rock.defybrick.com | udp |
| US | 8.8.8.8:53 | rock.defybrick.com | udp |
| US | 34.98.107.242:443 | api.recurly.com | udp |
| GB | 18.244.140.126:443 | rock.defybrick.com | tcp |
| US | 8.8.8.8:53 | 126.140.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | flint.defybrick.com | udp |
| US | 8.8.8.8:53 | flint.defybrick.com | udp |
| US | 3.227.190.204:443 | flint.defybrick.com | tcp |
| US | 8.8.8.8:53 | 204.190.227.3.in-addr.arpa | udp |
| GB | 95.100.153.156:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | amplify-imp.outbrain.com | udp |
| US | 8.8.8.8:53 | amplify-imp.outbrain.com | udp |
| US | 50.31.142.127:443 | amplify-imp.outbrain.com | tcp |
| GB | 95.100.153.163:443 | www.bing.com | tcp |
| GB | 95.100.153.163:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | widgetmonitor.outbrain.com | udp |
| US | 8.8.8.8:53 | widgetmonitor.outbrain.com | udp |
| US | 64.74.236.31:443 | widgetmonitor.outbrain.com | tcp |
| US | 8.8.8.8:53 | 163.153.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.153.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.236.74.64.in-addr.arpa | udp |
| US | 64.74.236.95:443 | log.outbrainimg.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | download.cnet.com | udp |
| US | 8.8.8.8:53 | assets.dwncdn.net | udp |
| US | 104.26.6.141:443 | api.btmessage.com | tcp |
| US | 104.21.16.1:443 | bt.dns-finder.com | udp |
| US | 104.18.87.42:443 | cdn.cookielaw.org | tcp |
| US | 151.101.65.91:443 | assets.dwncdn.net | udp |
| US | 151.101.1.91:443 | assets.dwncdn.net | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | images.dwncdn.net | udp |
| GB | 13.32.171.213:443 | c.amazon-adsystem.com | tcp |
| GB | 172.217.16.238:443 | consent.youtube.com | udp |
| GB | 13.32.171.213:443 | c.amazon-adsystem.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 151.101.1.91:443 | images.dwncdn.net | udp |
| GB | 172.217.16.238:443 | consent.youtube.com | udp |
| US | 8.8.8.8:53 | d6b540097574fd8b7bd4378bd4a960b3.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 76.223.106.145:443 | sb.scorecardresearch.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 213.171.32.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.106.223.76.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | encrypted-tbn2.gstatic.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | www.temu.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| GB | 172.217.169.14:443 | encrypted-tbn2.gstatic.com | tcp |
| BE | 35.210.130.15:443 | pm.w55c.net | tcp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| GB | 142.250.180.2:443 | cm.g.doubleclick.net | udp |
| US | 172.64.144.50:443 | www.temu.com | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| BE | 35.210.130.15:443 | pm.w55c.net | udp |
| NL | 35.214.136.108:443 | x.bidswitch.net | udp |
| GB | 216.58.201.98:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.144.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.130.210.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.136.214.35.in-addr.arpa | udp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | udp |
| DE | 157.90.33.122:443 | push-sdk.com | tcp |
| GB | 216.58.201.98:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | tcp |
| US | 8.8.8.8:53 | 35.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.35.104.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 8.8.8.8:53 | 874b3cbe4f761e2cf8518984bcd75e91.safeframe.googlesyndication.com | udp |
| US | 172.64.144.50:443 | www.temu.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| IE | 54.75.102.248:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.102.75.54.in-addr.arpa | udp |
| DE | 157.90.33.122:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | dct.wavesecure.net | udp |
| US | 8.8.8.8:53 | dct.wavesecure.net | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | api.wavebrowser.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.net | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| GB | 87.248.114.11:443 | mail.yahoo.com | tcp |
| US | 8.8.8.8:53 | 69.169.217.172.in-addr.arpa | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | 11.114.248.87.in-addr.arpa | udp |
| US | 104.21.16.1:443 | bt.dns-finder.com | udp |
| US | 8.8.8.8:53 | b543a936aa2f6c7e79b7767b7ff4a908.safeframe.googlesyndication.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| DE | 157.90.33.122:443 | push-sdk.com | tcp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | browsingwithwave.com | udp |
| US | 44.194.23.242:443 | browsingwithwave.com | tcp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.co | udp |
| GB | 2.18.190.208:443 | p.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| US | 52.201.92.148:443 | api.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | 242.23.194.44.in-addr.arpa | udp |
| US | 52.201.92.148:443 | api.wavebrowser.co | tcp |
| US | 104.18.30.234:443 | app.termly.io | tcp |
| US | 52.201.92.148:443 | api.wavebrowser.co | tcp |
| US | 104.18.30.234:443 | app.termly.io | tcp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 52.201.92.148:443 | api.wavebrowserbase.com | tcp |
| US | 52.201.92.148:443 | api.wavebrowserbase.com | tcp |
| US | 104.18.30.234:443 | app.termly.io | udp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 18.205.102.74:443 | api.mywavehome.net | tcp |
| US | 104.18.30.234:443 | app.termly.io | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| GB | 2.18.190.212:443 | use.typekit.net | tcp |
| US | 8.8.8.8:53 | 74.102.205.18.in-addr.arpa | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 142.250.180.10:443 | optimizationguide-pa.googleapis.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c67.gcp.gvt2.com | udp |
| DE | 34.32.10.90:443 | e2c67.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 90.10.32.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 142.250.178.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 215.124.142.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.54.223.20.in-addr.arpa | udp |
| GB | 142.250.178.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 222.125.142.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | devpost.com | udp |
| US | 34.205.0.75:443 | devpost.com | tcp |
| US | 34.205.0.75:443 | devpost.com | tcp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | 1723d2289425.us-east-1.sdk.awswaf.com | udp |
| US | 8.8.8.8:53 | kit.fontawesome.com | udp |
| US | 8.8.8.8:53 | d2dmyh35ffsxbl.cloudfront.net | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 104.18.40.68:443 | kit.fontawesome.com | tcp |
| GB | 108.138.233.101:443 | 1723d2289425.us-east-1.sdk.awswaf.com | tcp |
| GB | 18.239.238.42:443 | d2dmyh35ffsxbl.cloudfront.net | tcp |
| GB | 18.239.238.42:443 | d2dmyh35ffsxbl.cloudfront.net | tcp |
| GB | 18.239.238.42:443 | d2dmyh35ffsxbl.cloudfront.net | tcp |
| GB | 18.239.238.42:443 | d2dmyh35ffsxbl.cloudfront.net | tcp |
| GB | 18.239.238.42:443 | d2dmyh35ffsxbl.cloudfront.net | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| GB | 18.244.164.54:443 | 1723d2289425.de5cd2e4.us-east-1.token.awswaf.com | tcp |
| US | 8.8.8.8:53 | 68.40.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.0.205.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.238.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.233.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.gravatar.com | udp |
| US | 8.8.8.8:53 | ka-f.fontawesome.com | udp |
| GB | 18.239.238.42:443 | d2dmyh35ffsxbl.cloudfront.net | tcp |
| US | 192.0.73.2:443 | www.gravatar.com | tcp |
| US | 104.21.26.223:443 | ka-f.fontawesome.com | tcp |
| US | 104.21.26.223:443 | ka-f.fontawesome.com | tcp |
| US | 8.8.8.8:53 | cdn.mxpnl.com | udp |
| US | 35.186.235.23:443 | cdn.mxpnl.com | tcp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| IE | 31.13.73.22:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | i1.wp.com | udp |
| US | 192.0.77.2:443 | i1.wp.com | tcp |
| US | 104.21.26.223:443 | ka-f.fontawesome.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | cc.cdn.civiccomputing.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| IE | 31.13.73.22:443 | connect.facebook.net | udp |
| US | 8.8.8.8:53 | 54.164.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.73.0.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.26.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.235.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.73.13.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.77.0.192.in-addr.arpa | udp |
| US | 172.67.8.54:443 | cc.cdn.civiccomputing.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| GB | 142.250.178.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | apikeys.civiccomputing.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| GB | 18.244.164.54:443 | 1723d2289425.de5cd2e4.us-east-1.token.awswaf.com | udp |
| US | 104.22.38.92:443 | apikeys.civiccomputing.com | tcp |
| US | 8.8.8.8:53 | js-agent.newrelic.com | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 162.247.243.39:443 | js-agent.newrelic.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| GB | 172.217.16.225:443 | lh3.googleusercontent.com | tcp |
| GB | 172.217.16.225:443 | lh3.googleusercontent.com | tcp |
| GB | 172.217.16.225:443 | lh3.googleusercontent.com | tcp |
| GB | 172.217.16.225:443 | lh3.googleusercontent.com | tcp |
| GB | 172.217.16.225:443 | lh3.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | bam.nr-data.net | udp |
| US | 162.247.243.29:443 | bam.nr-data.net | tcp |
| US | 8.8.8.8:53 | 54.8.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.243.247.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.38.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.243.247.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | techjbc.com | udp |
| US | 104.21.112.1:443 | techjbc.com | tcp |
| US | 104.21.112.1:443 | techjbc.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 162.247.243.29:443 | bam.nr-data.net | tcp |
| US | 104.21.112.1:443 | techjbc.com | udp |
| US | 8.8.8.8:53 | securefilelink.info | udp |
| US | 8.8.8.8:53 | secure.gravatar.com | udp |
| US | 8.8.8.8:53 | 1.112.21.104.in-addr.arpa | udp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 172.67.154.221:443 | securefilelink.info | tcp |
| GB | 142.250.178.10:443 | optimizationguide-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | 221.154.67.172.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 8.8.8.8:53 | usersdrives.pro | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 104.21.96.1:443 | usersdrives.pro | tcp |
| US | 104.21.96.1:443 | usersdrives.pro | tcp |
| US | 104.21.96.1:443 | usersdrives.pro | tcp |
| US | 104.21.96.1:443 | usersdrives.pro | udp |
| US | 8.8.8.8:53 | 1.96.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | weeklyuploads.click | udp |
| US | 104.21.93.16:443 | weeklyuploads.click | tcp |
| US | 104.21.93.16:443 | weeklyuploads.click | tcp |
| US | 104.21.93.16:443 | weeklyuploads.click | udp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| GB | 142.250.178.10:443 | optimizationguide-pa.googleapis.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | 16.93.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.24.17.104.in-addr.arpa | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| GB | 142.250.178.10:443 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | mega.nz | udp |
| LU | 31.216.144.5:443 | mega.nz | tcp |
| LU | 31.216.144.5:443 | mega.nz | tcp |
| GB | 142.250.178.10:443 | optimizationguide-pa.googleapis.com | tcp |
| LU | 31.216.144.5:443 | mega.nz | tcp |
| US | 8.8.8.8:53 | eu.static.mega.co.nz | udp |
| LU | 89.44.169.134:443 | eu.static.mega.co.nz | tcp |
| LU | 89.44.169.134:443 | eu.static.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 5.144.216.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | g.api.mega.co.nz | udp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 134.169.44.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.125.203.66.in-addr.arpa | udp |
| LU | 89.44.169.134:443 | eu.static.mega.co.nz | tcp |
| US | 8.8.8.8:53 | g.megaad.nz | udp |
| LU | 89.44.169.132:443 | g.megaad.nz | tcp |
| N/A | 127.0.0.1:6341 | tcp | |
| N/A | 127.0.0.1:6341 | tcp | |
| US | 8.8.8.8:53 | 132.169.44.89.in-addr.arpa | udp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | bt1.api.mega.co.nz | udp |
| LU | 66.203.125.11:443 | bt1.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | safebrowsing.googleapis.com | udp |
| GB | 172.217.169.10:443 | optimizationguide-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| GB | 87.248.114.11:443 | mail.yahoo.com | tcp |
| US | 8.8.8.8:53 | 10.169.217.172.in-addr.arpa | udp |
| LU | 89.44.169.134:443 | eu.static.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | gfs270n074.userstorage.mega.co.nz | udp |
| LU | 89.44.168.241:443 | gfs270n074.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.241:443 | gfs270n074.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.241:443 | gfs270n074.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.241:443 | gfs270n074.userstorage.mega.co.nz | tcp |
| LU | 31.216.144.5:443 | mega.nz | tcp |
| GB | 142.250.178.10:443 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 241.168.44.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.179.228:80 | www.google.com | tcp |
| GB | 142.250.179.228:80 | www.google.com | tcp |
| US | 104.16.148.130:443 | wcdownloadercdn.lavasoft.com | tcp |
| US | 8.8.8.8:53 | flwadw.com | udp |
| US | 104.18.27.149:443 | flwadw.com | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | e2c27.gcp.gvt2.com | udp |
| US | 35.227.159.135:443 | e2c27.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 135.159.227.35.in-addr.arpa | udp |
| US | 104.21.96.1:443 | usersdrives.pro | udp |
| US | 8.8.8.8:53 | clients2.swupdater.com | udp |
| US | 104.21.93.16:443 | weeklyuploads.click | udp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| GB | 87.248.114.11:443 | mail.yahoo.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | swupdater.com | udp |
| US | 44.199.149.204:443 | swupdater.com | tcp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| GB | 142.250.187.202:443 | optimizationguide-pa.googleapis.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | quilterribe.top | udp |
| US | 8.8.8.8:53 | guardeduppe.com | udp |
| US | 172.67.182.222:443 | guardeduppe.com | tcp |
| US | 8.8.8.8:53 | toppyneedus.biz | udp |
| US | 104.21.29.142:443 | toppyneedus.biz | tcp |
| US | 8.8.8.8:53 | flockefaccek.org | udp |
| US | 104.21.67.154:443 | flockefaccek.org | tcp |
| US | 8.8.8.8:53 | 222.182.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.29.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | babberstalek.org | udp |
| US | 172.67.194.49:443 | babberstalek.org | tcp |
| US | 8.8.8.8:53 | classyhelped.net | udp |
| US | 104.21.80.1:443 | classyhelped.net | tcp |
| US | 8.8.8.8:53 | carrystuppeder.net | udp |
| US | 8.8.8.8:53 | 49.194.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.67.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.21.104.in-addr.arpa | udp |
| US | 104.21.77.244:443 | carrystuppeder.net | tcp |
| US | 8.8.8.8:53 | rebuildhurrte.com | udp |
| US | 172.67.221.141:443 | rebuildhurrte.com | tcp |
| US | 8.8.8.8:53 | climepunneddus.com | udp |
| US | 104.21.88.148:443 | climepunneddus.com | tcp |
| US | 8.8.8.8:53 | 141.221.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | steamcommunity.com | udp |
| GB | 104.82.131.75:443 | steamcommunity.com | tcp |
| US | 8.8.8.8:53 | 148.88.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.131.82.104.in-addr.arpa | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | quilterribe.top | udp |
| US | 172.67.182.222:443 | guardeduppe.com | tcp |
| US | 104.21.29.142:443 | toppyneedus.biz | tcp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| GB | 87.248.114.11:443 | mail.yahoo.com | tcp |
| US | 104.21.67.154:443 | flockefaccek.org | tcp |
| US | 172.67.194.49:443 | babberstalek.org | tcp |
| US | 104.21.80.1:443 | classyhelped.net | tcp |
| US | 104.21.77.244:443 | carrystuppeder.net | tcp |
| US | 172.67.221.141:443 | rebuildhurrte.com | tcp |
| US | 104.21.88.148:443 | climepunneddus.com | tcp |
| GB | 104.82.131.75:443 | steamcommunity.com | tcp |
| US | 8.8.8.8:53 | yuriy-gagarin.com | udp |
| US | 172.67.199.224:443 | yuriy-gagarin.com | tcp |
| US | 8.8.8.8:53 | 224.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | gist.github.com | udp |
| GB | 20.26.156.215:443 | gist.github.com | tcp |
| GB | 20.26.156.215:443 | gist.github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | camo.githubusercontent.com | udp |
| US | 185.199.109.133:443 | camo.githubusercontent.com | tcp |
| US | 185.199.109.133:443 | camo.githubusercontent.com | tcp |
| US | 185.199.109.133:443 | camo.githubusercontent.com | tcp |
| US | 185.199.109.133:443 | camo.githubusercontent.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.109.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.109.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| GB | 142.250.178.10:443 | optimizationguide-pa.googleapis.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.113.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | www.kmspicoofficial.com | udp |
| US | 172.67.213.205:443 | www.kmspicoofficial.com | tcp |
| US | 172.67.213.205:443 | www.kmspicoofficial.com | tcp |
| US | 172.67.213.205:443 | www.kmspicoofficial.com | udp |
| US | 8.8.8.8:53 | 205.213.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 64.233.184.156:443 | stats.g.doubleclick.net | tcp |
| GB | 216.58.201.99:443 | www.google.co.uk | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 8.8.8.8:53 | 156.184.233.64.in-addr.arpa | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | secure.gravatar.com | udp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 192.0.73.2:443 | secure.gravatar.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | s.w.org | udp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 8.8.8.8:53 | 48.77.0.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 192.0.73.2:443 | secure.gravatar.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | mega.nz | udp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 5.145.216.31.in-addr.arpa | udp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | udp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 89.44.169.132:443 | g.megaad.nz | tcp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | drive.google.com | udp |
| GB | 216.58.213.14:443 | drive.google.com | tcp |
| GB | 216.58.213.14:443 | drive.google.com | tcp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| GB | 142.250.178.3:443 | ssl.gstatic.com | tcp |
| GB | 216.58.212.206:443 | docs.google.com | tcp |
| GB | 142.250.178.3:443 | ssl.gstatic.com | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | en.softonic.com | udp |
| US | 151.101.193.91:443 | en.softonic.com | tcp |
| US | 151.101.193.91:443 | en.softonic.com | tcp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 151.101.65.91:443 | images.sftcdn.net | tcp |
| US | 151.101.65.91:443 | images.sftcdn.net | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| IE | 3.162.140.120:443 | sdk.privacy-center.org | tcp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | tcp |
| US | 151.101.65.91:443 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | 120.140.162.3.in-addr.arpa | udp |
| US | 151.101.65.91:443 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | rv-assets.softonic.com | udp |
| US | 151.101.129.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.129.91:443 | rv-assets.softonic.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | articles-img.sftcdn.net | udp |
| IE | 3.162.140.120:443 | sdk.privacy-center.org | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | bt.dns-finder.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| GB | 52.84.90.126:443 | config.aps.amazon-adsystem.com | tcp |
| US | 104.21.64.1:443 | bt.dns-finder.com | tcp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.7.141:443 | cdn.btmessage.com | tcp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| NL | 139.45.197.108:443 | notix.io | tcp |
| US | 104.26.6.141:443 | api.btmessage.com | tcp |
| US | 8.8.8.8:53 | 60.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.90.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.64.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.3.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.7.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.197.45.139.in-addr.arpa | udp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| US | 104.26.7.141:443 | api.btmessage.com | tcp |
| US | 8.8.8.8:53 | api.privacy-center.org | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| IE | 52.210.86.129:443 | id.crwdcntrl.net | tcp |
| GB | 18.172.158.4:443 | aax.amazon-adsystem.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 13.224.68.4:443 | api.privacy-center.org | tcp |
| US | 104.18.26.193:443 | htlb.casalemedia.com | tcp |
| IE | 18.203.9.109:443 | ap.lijit.com | tcp |
| US | 104.18.29.101:443 | cdn-ima.33across.com | tcp |
| DE | 136.243.39.49:443 | shb.richaudience.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| IE | 54.171.54.61:443 | ad.360yield.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| IE | 13.224.68.4:443 | api.privacy-center.org | udp |
| DE | 157.90.33.68:443 | push-sdk.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| BE | 64.233.184.156:443 | stats.g.doubleclick.net | tcp |
| GB | 216.58.201.99:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | ampcid.google.com | udp |
| GB | 216.58.201.99:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| GB | 216.58.201.110:443 | ampcid.google.com | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| BE | 64.233.184.156:443 | stats.g.doubleclick.net | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | df7dc5dd791c803e27b9e8a9c9571d61.safeframe.googlesyndication.com | udp |
| GB | 172.217.169.34:443 | ep1.adtrafficquality.google | tcp |
| GB | 216.58.201.97:443 | df7dc5dd791c803e27b9e8a9c9571d61.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | 4.158.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.26.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.86.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.68.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.9.203.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.54.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.39.243.136.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.169.217.172.in-addr.arpa | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | tcp |
| GB | 142.250.179.228:443 | www.google.com | tcp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| IE | 52.212.43.139:443 | rtb.gumgum.com | tcp |
| GB | 142.250.200.33:443 | ep2.adtrafficquality.google | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 52.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.43.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 63.32.176.50:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| DK | 37.157.6.231:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | 137.131.71.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 35.214.241.197:443 | csync.loopme.me | tcp |
| GB | 172.217.169.34:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| DE | 148.251.40.147:443 | sync.richaudience.com | tcp |
| US | 104.18.24.18:443 | js-sec.indexww.com | tcp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| GB | 23.192.16.30:443 | contextual.media.net | tcp |
| GB | 23.192.17.43:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 50.176.32.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.241.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| DE | 148.251.40.147:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| DE | 37.252.173.215:443 | secure.adnxs.com | tcp |
| DE | 37.252.173.215:443 | secure.adnxs.com | tcp |
| DE | 37.252.173.215:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 104.18.26.193:443 | ssum-sec.casalemedia.com | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| NL | 35.214.241.197:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 100.29.26.188:443 | api-2-0.spot.im | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| GB | 2.18.190.173:443 | player.aniview.com | tcp |
| US | 34.198.75.8:443 | sync.srv.stackadapt.com | tcp |
| US | 52.206.247.226:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 104.18.26.193:443 | ssum-sec.casalemedia.com | udp |
| US | 67.202.105.23:443 | ssc-cms.33across.com | tcp |
| DE | 51.89.9.254:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| FR | 51.178.195.212:443 | ssbsync.smartadserver.com | tcp |
| US | 151.101.193.91:443 | articles-img.sftcdn.net | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 23.206.176.30:443 | hbx.media.net | tcp |
| IE | 18.203.9.109:443 | ap.lijit.com | tcp |
| IE | 18.203.9.109:443 | ap.lijit.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | sync-service.net | udp |
| GB | 104.82.143.163:443 | secure-assets.rubiconproject.com | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | medianet-match.dotomi.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| IE | 34.240.170.212:443 | jadserve.postrelease.com | tcp |
| US | 204.62.12.209:443 | sync-service.net | tcp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 34.98.64.218:443 | us-u.openx.net | tcp |
| NL | 63.215.202.137:443 | medianet-match.dotomi.com | tcp |
| DE | 51.89.9.254:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| GB | 23.192.16.30:443 | contextual.media.net | udp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| IE | 52.50.172.136:443 | match.prod.bidr.io | tcp |
| NL | 89.149.193.89:443 | rtb-csync.smartadserver.com | tcp |
| BE | 35.210.130.15:443 | pm.w55c.net | tcp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| DK | 37.157.6.231:443 | c1.adform.net | tcp |
| DK | 37.157.6.231:443 | c1.adform.net | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| FR | 54.38.113.3:443 | pixel.onaudience.com | tcp |
| IE | 52.94.220.185:443 | aax-eu.amazon-adsystem.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| IE | 52.208.153.163:443 | pr-bh.ybp.yahoo.com | tcp |
| GB | 87.248.114.12:443 | ups.analytics.yahoo.com | tcp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| GB | 23.192.17.145:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | bc-sync.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| DE | 18.184.206.66:443 | match.sharethrough.com | tcp |
| DE | 18.184.206.66:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 18.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.16.192.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.17.192.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.40.251.148.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.173.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.26.29.100.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.75.198.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.247.206.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.195.178.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.176.206.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.143.82.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.170.240.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| US | 8.8.8.8:53 | 137.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.220.94.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.153.208.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.154.82.98.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.17.192.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | track.adform.net | udp |
| GB | 172.217.169.74:443 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| NL | 163.5.194.31:443 | prebid.a-mo.net | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| DE | 18.184.206.66:443 | match.sharethrough.com | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| BE | 35.210.130.15:443 | pm.w55c.net | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| NL | 64.158.223.140:443 | pubmatic-match.dotomi.com | tcp |
| IE | 54.154.145.233:443 | sync.crwdcntrl.net | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.206.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.145.154.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| IE | 54.77.46.199:443 | cs.yellowblue.io | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| GB | 13.224.225.87:443 | c.amazon-adsystem.com | tcp |
| US | 104.21.64.1:443 | bt.dns-finder.com | udp |
| US | 104.26.7.141:443 | api.btmessage.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| GB | 172.217.169.10:443 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | syndicatedsearch.goog | udp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | tcp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | 199.46.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | tcp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | tcp |
| GB | 216.58.204.66:443 | partner.googleadservices.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 8.8.8.8:53 | 56352cd7bc963e0f03aa442ac335b398.safeframe.googlesyndication.com | udp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| GB | 172.217.16.238:443 | syndicatedsearch.goog | udp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| DE | 157.90.33.68:443 | uidsync.net | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.179.228:443 | www.google.com | udp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| DE | 23.88.8.123:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| DE | 37.252.171.52:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| DE | 91.228.74.159:443 | cms.quantserve.com | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | dsp-cookie.adfarm1.adition.com | udp |
| US | 104.26.7.141:443 | api.btmessage.com | tcp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 34.198.75.8:443 | sync.srv.stackadapt.com | tcp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| GB | 185.64.191.210:443 | image2.pubmatic.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | dsp-ap.eskimi.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| NL | 35.214.183.184:443 | a.sportradarserving.com | tcp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| IE | 52.50.172.136:443 | match.prod.bidr.io | tcp |
| GB | 172.217.169.10:443 | optimizationguide-pa.googleapis.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 35.214.183.184:443 | a.sportradarserving.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | 159.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.210.82.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.183.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.63.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dsp.360yield.com | udp |
| IE | 54.76.179.192:443 | dsp.360yield.com | tcp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| SE | 13.53.196.230:443 | d5p.de17a.com | tcp |
| NL | 35.214.241.197:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| IE | 54.154.145.233:443 | sync.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| GB | 172.217.169.34:443 | ep1.adtrafficquality.google | udp |
| NL | 139.45.197.108:443 | notix.io | tcp |
| US | 8.8.8.8:53 | 192.179.76.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.196.53.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | update.googleapis.com | udp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| US | 8.8.8.8:53 | mail.google.com | udp |
| GB | 172.217.169.69:443 | mail.google.com | tcp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| GB | 87.248.114.12:443 | mail.yahoo.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| DE | 51.89.9.254:443 | onetag-sys.com | tcp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| GB | 216.58.201.99:443 | www.google.co.uk | udp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | www.kmspico.cx | udp |
| US | 172.67.132.158:443 | www.kmspico.cx | tcp |
| US | 172.67.132.158:443 | www.kmspico.cx | tcp |
| US | 8.8.8.8:53 | 158.132.67.172.in-addr.arpa | udp |
| US | 172.67.132.158:443 | www.kmspico.cx | udp |
| US | 8.8.8.8:53 | mc.yandex.ru | udp |
| RU | 77.88.21.119:443 | mc.yandex.ru | tcp |
| GB | 172.217.169.10:443 | optimizationguide-pa.googleapis.com | tcp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 192.0.77.48:443 | s.w.org | tcp |
| US | 192.0.77.48:443 | s.w.org | udp |
| US | 8.8.8.8:53 | 119.21.88.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mc.yandex.com | udp |
| US | 8.8.8.8:53 | u.clarity.ms | udp |
| US | 4.227.249.197:443 | u.clarity.ms | tcp |
| RU | 77.88.21.119:443 | mc.yandex.com | tcp |
| RU | 77.88.21.119:443 | mc.yandex.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| DE | 136.243.39.49:443 | shb.richaudience.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 104.18.26.193:443 | dsum-sec.casalemedia.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| IE | 54.77.213.65:443 | ap.lijit.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| GB | 18.154.87.214:443 | aax.amazon-adsystem.com | tcp |
| IE | 52.49.56.233:443 | ad.360yield.com | tcp |
| US | 8.8.8.8:53 | 65.213.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.56.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | e2c2.gcp.gvt2.com | udp |
| HK | 34.92.53.177:443 | e2c2.gcp.gvt2.com | tcp |
| HK | 34.92.53.177:443 | e2c2.gcp.gvt2.com | tcp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 172.217.169.33:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 177.53.92.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| RU | 77.88.21.119:443 | mc.yandex.com | tcp |
| GB | 142.250.200.35:443 | update.googleapis.com | udp |
| RU | 77.88.21.119:443 | mc.yandex.com | tcp |
| US | 8.8.8.8:53 | dereferer.me | udp |
| RO | 45.15.23.147:443 | dereferer.me | tcp |
| RO | 45.15.23.147:443 | dereferer.me | tcp |
| US | 8.8.8.8:53 | 147.23.15.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.indexmental.com | udp |
| US | 104.21.32.1:443 | www.indexmental.com | tcp |
| US | 104.21.32.1:443 | www.indexmental.com | tcp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| GB | 172.217.169.10:443 | optimizationguide-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 1.32.21.104.in-addr.arpa | udp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
Files
\??\pipe\crashpad_1448_RKIMISECOSCAJITW
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 7be79ba2664cbd27c01df641d8ef4d3e |
| SHA1 | 9ea766596328e5ec0ba9eb13b1f292a01a716132 |
| SHA256 | 0444ffe4806b049836ab5c87d02618ef9246b5816221414a3513e73f225b6b6c |
| SHA512 | 7c098f799ca3c1a61bc761147dd43a04802b4785f042b2458c24b10c5521e3b541babbfe554c4ab7099fc2175415b4696b77c38f53f468006a7a8bca7021d1d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | bd1ce534ab717b72d7fb2bb12d1fb967 |
| SHA1 | c404807b3a643c3879372c996b0c519e035f963c |
| SHA256 | 1248122ec4d8d361bc80b7b2159a7501f6b64bf10d6b9529c219c168c928e90d |
| SHA512 | e6a5b7645de691bc4920df429025db23fcd6b3aa761a5e2a1b18a9c31ae4741c4b477b5cccc2b9166711a28c8af9182a55b06c4771c1554053c96d9ce672c0f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 53e02304768e22f609e5df8e64be3577 |
| SHA1 | 761297c1a3414dfa598c735ae9372a5fb8f50beb |
| SHA256 | e1bfe94d03f3fdc1aa1a7ec9252fec21f8d9f4e92bfca59f0ed173459e0c0005 |
| SHA512 | 5c8174c4b51f1ac4c72ff1f43df70ee747779b34d9918af861f1d978db6d318a9d2d407178665ef823eaf308ceda1d300dd70b90c532856e8f7ffcbb7ea347b3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 60c15a12a15a1132b9dbd3f6642f057f |
| SHA1 | e3217ec58a8b1b9a79eddcdf857200410afc60dd |
| SHA256 | 0a183db5b18455a0c4df2858632769adee0f21edc54a9d6a0b0a2296a07bb69f |
| SHA512 | d33781497da5f8d34d0c0929e8ef06b9838797d579a3c7a4b245b1609ce4559fb74c728ad4a0fc7585b7e5ca9b9d5ed62ae5816cee44b264f7a7bd62137d5cdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8cf7824d8f29353b3c82e76c0bf7cc5e |
| SHA1 | 759b3a3ea2e703ea14f8904690c0e376d7db0c0f |
| SHA256 | d261313df345795b113122c73f55fe19ef60ca5db1d2af3f03f392f5285f690b |
| SHA512 | 19f5867ee1e672f022df846e6f273d3741eeec5a9e12174dd753fd461111760bbf80bf8b291e4b785751d218aeb36b8126f586128729d7e9027f80fa016351c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 133a2a4a6ee1ca0246907c7bbd46af86 |
| SHA1 | 01bf49317b193de8b31b7447365f1a71faf49b2a |
| SHA256 | 55b7bb57370a44679252c29a1ae3856b390f1c0af744073e962a98e0d6fa82af |
| SHA512 | 4ff476e3d9d4887752bcedec33470e1a39333c85a24731e9cc675b68aac0f33219decdf01e3aaef121fabf00f09ab47952e4471f2f45be1359cf8b08b28862de |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 5e6d192650d48d2cf42081e275b81608 |
| SHA1 | 712d1cf4d471688b2b804c0b05bc9773fb0a3a59 |
| SHA256 | bc7835fa8c4aed23c9b49b587ea92d314219d66574ea4e294654df34916b196a |
| SHA512 | 729961fd320d1521892464b9478c4fbc846db4e53e7b16cff9e55fde117cffb4dfd8cdeaf8e5098b662e2ba71600434a612d18b15ea1672b29e93498de479626 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f1c0bfbb8adcaacfc12d92c36151d5bd |
| SHA1 | a24ccc6fc96fad68c422949bddec23b0f1a5bbaf |
| SHA256 | 40a55dd6b8e109cd4aede0ef3f7716d18e2053bccd483728a13ecf9d41e1991d |
| SHA512 | d555a6b1b4e5ce8d49a8614fac625533ab98319e2c4eb4e5841504928efba24c08b97894172fa8e692e1bcf56a834e606dd29783718a18d5f6370e30ba560fb1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 09d83e6d87eff8ef5c2e5dafc65b7c20 |
| SHA1 | b3f4f1e57c85ee8b8a6dbc843359c65b967c08cf |
| SHA256 | 57a2e8d05424d6d0b2f8e859c69f2b00ba3aba655d47cc35f01ff4b3d1bbe1ba |
| SHA512 | 68e4d847285b37ee10f4befc3b72a6f868841f7a9984c9526a1e7ac0b3568cbc003c4458ec6caf10e85ac50a63393a062bc0afca79e2d575f4c36d41a49fb34a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6466ab5c736a41bc5fcc5cb88cd4ef41 |
| SHA1 | 1fa3feddc30795cf14d5a3625df5512ef7d9c634 |
| SHA256 | 8d3c49393ef2fae95e7b808bf376974426668b5757ee6117c44ec17a56b5f8ad |
| SHA512 | 3bd317ebb584faf86634cbefd26bb9401c745cc10158dc6a71138b1ee37464ae3418d57bdba318966adbab1a0d2d9d20a8db56720ecfa83b915005a1e7130e4b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1474d408c0fdefcda4d502d3a675561b |
| SHA1 | 3d1423cabca06a4a145e090392495cf71e486000 |
| SHA256 | 3bea043234f1adc198c7aeb78372d39567b3f4fe46597cebbfcfe46937386059 |
| SHA512 | 863c7f0f09fcc7da82c3b3967d8df5c32055c5da4dd9c7c19970a76d8a3177ebbbed06970085c1a079dc4eff3a73f326209abeb71ac39b09c59d0114d6088f10 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c
| MD5 | f53b6d474350dce73f4fdc90c7b04899 |
| SHA1 | b06ca246301a6aea038956d48b48e842d893c05a |
| SHA256 | 28442a56b016bfade0e368929138aaaadfc36156734e8ec7a6325b3e58fddc25 |
| SHA512 | 7f275614052ebae8876ad28fc5d48e4f63ed9ebc610ed981f81377ea3ba4c49a2031ff771deb12adabcf33d4789ba35354c1e52524c067a9e7ce078703683f1e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | fb2d349ef22d2f2f404d5e5eda1b9bb1 |
| SHA1 | 89ff43e0c8fbe25ded9878c74c866081ea4e80fd |
| SHA256 | 9e0256f1b36903963f49fa3d51555bcc518712839008fc3c27d936fcd983d42a |
| SHA512 | 15332b35d682615ac5c239af64c92ce0d4d00a415f8d94c09c5bdc1e38021dd66a8b42532ad3423ae5a20c36375a7bf75bbc707a5f8311e4a0641ae91a430371 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ccc9d46561d30080af9100ad56150a48 |
| SHA1 | 30bfd6cccab42e2208cbb7582ab3357fc61652d3 |
| SHA256 | b91c894e508326b22e4de3bc1728914673c7b95a56861572d12bd38803364604 |
| SHA512 | 71205a1d9eda663ddc5a9e5fcedb4df3299225322dc32d58f4a777006be1e3a53c254606b27ce8016709f4894139b394c68f3d89f35e3ac9931901ca2d4b3185 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0913ee69eab01e82c8dbdd9a5d7ba624 |
| SHA1 | 1576e677d768de016f39b605302d8403ff89591b |
| SHA256 | a2f53b3cadc36e91afb12ab7d6d91c3c399fdfe7c41c9d912936311147130cab |
| SHA512 | a6d800ba95c60b47cd0afe70b9a313b5b405ef1065f8c8c64f3a03fde61996588317743f19a858cba2a22e8dbc4ab07c13711093dfb56f66df62900c00c86110 |
C:\Users\Admin\Downloads\Unconfirmed 788854.crdownload
| MD5 | 2239923b1a9ac33c05ad4a1226a7fef5 |
| SHA1 | 419b54d285668ba1c2ef043987d345764af9be15 |
| SHA256 | bbd67dd45099c11d6f5bb2e581e6a0f05e1b5747c0f3ba49fd99037405a59b0e |
| SHA512 | 6216ee879b54de850c2b42d5fab6182d93f131e70e6dba6c422249189d618d9fa3d0e040b815fd4b8c0850a98e54f25ac8431272651bcdad702b3991b6802139 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3ebde9dfef101bbd3ce5d1d360deaf4f |
| SHA1 | f0e1e88046f682b7fe9a7301b8293768e5829921 |
| SHA256 | d9791ffaf3818e184158675d9d383f27796ea296daa37a2fbff065d4f6f17c62 |
| SHA512 | fa3778996e2ba141fd79a341f3b636cc8870dc32511a3fa898cf5119ac46bc2d83209b06c336be9ad481d7245c8a1d8c70ae371b6257e1a5208109d525739b29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b889bc83f5a591218d25e4c0f82dd219 |
| SHA1 | 872b2883da31e26d79ef3c0d45d62eda7f20e56e |
| SHA256 | 813213a7e348f6c9cba1db3c1ae6fc6424c3a7b942a8af6b6cd1b26919da9583 |
| SHA512 | dfd49c48bdb38b1b5a0138a7680d1416fc0eed7e5b48e7301155c97d50d664c71104a753c899aa3785d77386c75ea7ba0c799440af1e374e79b3a88bd94f7319 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 90996bc0798f4171643d50b33cf84e25 |
| SHA1 | f063448e304be499196f8a57f7ec3e8b55bf58eb |
| SHA256 | 15e6410923ce6fd507c54dbb42d8cb622a400325807533cf2635f9b1c1430515 |
| SHA512 | ca8cf4e9bd95ce093ebba45f8010dcf51a949178338a27691757e9596ee86a3b803fa47d958845c5e5555db946cabf67a6430ba927efab8eca361fd3e1fc78f2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | eddb5c145aae9077fc75d4cdf108de65 |
| SHA1 | a47cdcca48c57f0591eb7bd2268999736b7a72d8 |
| SHA256 | f1bd58ce8b4191d93e23bd138a5b7859f721947f5296d7d83ee130dcb29fdd62 |
| SHA512 | 91c201f88391ba2d1dfe96519d5b34edef662d04cfc0f9e78f8dda203b99d46b23f06149225ff634233a05093824096fb5a7d9db64241fa7e90cd1cebf5f6517 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | be846d8b9ab2dedc103ba699a273d31c |
| SHA1 | f12374cc259fc663f6e501d123ee47509fe8d382 |
| SHA256 | 5a9c6fac3a1bc0185c37eabfc3db4490a52ee3eb8ff2380c879c00f230fd3186 |
| SHA512 | e8b0ef4ea9d6e5ad685c553721265ade1ee513e9fcc1f99d78ff48becf32ae91ed5867bc46a4ee77b7a440116a058a62be3fbc6809f2314c87ab512a849b4894 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | e2a54c84281f4c1e5f0d8a8aefb53175 |
| SHA1 | 2642cc708da1b347cdd4384f0c4a79dad2b77c9f |
| SHA256 | cc4a30197a0827cc8aba58556e597df255967c85a628b666a5038bcecc4bb2c9 |
| SHA512 | 91e232f1a1a54804506ca2711bbf199fa609a5bd8b7232ed5be401d56d3f2170f1f932921e44718f535ea4443cd1e41aa1e788ebc86325647df5072fd88a41dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | f22fc5850a05b8c3f3ea1d2e07ee52d4 |
| SHA1 | 1ab1d80e508cdf5214763eaefdad3adf073ab807 |
| SHA256 | d032e15310379a5158a61aff62c4fc612b9ff1f58138b53c9a9f7ae458ca4ce5 |
| SHA512 | 2716ec34bc9c42908b69db863f7e81321d7edcb839adb4f46635bef75166c6bdf639df8c241b34508e822020b520e6ee100fc7c4acf6e031d200b06b97a5cb03 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | c909b5d62ae38f3303b408f8d2b7a84e |
| SHA1 | 0c3af2dd756fb9fd05a4d16d48500cc12434fee0 |
| SHA256 | 891e0c3ea7d8fe464fdf2abf4cf855889a10dd3e2c98f93bf11242bc8eb5c8b7 |
| SHA512 | cd77f3134337d67036eb2bc7955e10d36f427ebf3e23593774295b80bdd0eeeb1ee1792128a38a3664afe5b9a812a83af6cadad983366db75b2cf2fd6f1f7e3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | c0488b21b170058c3e1ec5aa1d30af2c |
| SHA1 | c06ef767486e4d147f71d750e2915ac5dd792047 |
| SHA256 | d932690b2187740c33b7365a5909fa7c5c809437878c76dd52e009d77ffaebca |
| SHA512 | 9d61ae42480736835ddbc834942a3edbc9e71ee7b3985c6dc9c4203fd2232a33d6f1c87a9b7e97f0218d8ac5fdf93a036e649e696d2f198382e623ca373f8445 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | c432f547a1f2bb8887019634100d309c |
| SHA1 | 6b957966ad7b18372e8b7ccea4772a35d5862788 |
| SHA256 | 25c2add6fdbc982d9ffa3ea60ee7a5eae6a17e6a18156a1380314be0aef68a7c |
| SHA512 | 91069fd49d13fa1256fcc7df8fd80326320fca48e06877d8c43a50169834a29db8499e2ec1c753aeb54d2ca9faa95dbdbb570bfaeef14462cfcdacf78d4a1de7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | f1f1776d0040b6c4d5e12726d53abeac |
| SHA1 | c8f339d7b2b7ea8a9002db487e10af98476d13fc |
| SHA256 | e6626ddbdddbb7f232d38425883aab257fc6f9892965e915b2dc725d24d42a11 |
| SHA512 | 0b432aeb90637425c67895dbb3c98e40ba48440059a6c90bf0eb7e0407b2fef42d50cb68d1022cfcb1228eb464bfb19d56a7cfd7ea970d918b8a9c45aed6f548 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011
| MD5 | 00d24b07a8f38fb65adc5d449bd0e3d6 |
| SHA1 | 853aeafcfa5825547ea9e38e677d88ea97136cee |
| SHA256 | e45c8e9dff0ef2737166e48d43420dfc8dbc593bda917d0576ac9cd282b90369 |
| SHA512 | e6e251106b9acee4d6041a2878c80c38c51260a26e0a9bd917b55668e22044db94b94732b2d7130c45cba8d86ab6e35c7f2021f5a347dd28b95865d3c20114d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | c9211c6446ce9ad563a0e832bfc6588c |
| SHA1 | 289ff5de5db423fc0f36c9c505ef3d39ad3b35ae |
| SHA256 | 2799495e918d70d91b1bc983a247a0434635abb3880bf46fd215ab14665ed523 |
| SHA512 | c09814273c0931c09c2a20bdf653ccb50a2a9e09c3ff9044030cc123297c662c3ca4474a7674401892d185f9e83f89845914e4913e6878f7c9ef2a939d7afad6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016
| MD5 | f52e4a118c318f5025e5c073aba242b0 |
| SHA1 | 0b4fb1fbc5f0f62fd5ae56145069daee274d3c21 |
| SHA256 | 46f5f73343579025c44b7d5a5b014164934f858c4a5bd1a5eb9e6c3e2092cdbf |
| SHA512 | 251c7888ae24a920b6c11421856258fc7651af8593dce4cb9a4cad0a80dda3a19e197572b3b89b0f2de7b2e9ea313dd9d95fb36010f04014f7288b36193a9b3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 1ce1ada617d0372808c4ab0fb40e7002 |
| SHA1 | 2d0ed514a5fdbc2cac106ad4d0fe3c1c10ba115e |
| SHA256 | aec60a566090e992215646fe80eecf2ff308f51dcc7f245ec34c597127997152 |
| SHA512 | 9bb8591335379092e68365f1ee49cd8dfc836806aee13d33370b4d3e4b7d5c6dd027c810d240eaa2eb64e574c4f8cbdc0a5b5e05290e6858d58770b00d800f4a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015
| MD5 | 1ac7a15faab068d86bbd6c3403443a04 |
| SHA1 | d8556707b6a658f341613a2fd950ebc027cd30a3 |
| SHA256 | 2fdf12a33232690433b2a72db35e1f5eee07522d5cd3046e62eb98594884b3c3 |
| SHA512 | 391651b9ae479ad7548ae9a045fa65075d40b166f661b135227377cc98803fe8b0d8f592c030bf673921f2926ac213e3330116094c2fab080318604e42242698 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 4b3c8a677d27a20916835bdc941bef00 |
| SHA1 | 9c569a54565f4b7680361e129ca63b984a9653a0 |
| SHA256 | 652c875ee10d9d71cbdc78b09ccd11bcb6fdab9990d208fd973b9f6ad32094c8 |
| SHA512 | cba3f4e31599ae7d7d06da96e89a83c6757559df4e828008baa8c32e691e606dab6da2bb7244caa0b0f6feb3750ba0f048c90966a4b61333c64f1d1352866c1a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017
| MD5 | 31a2fb03fda5128f277eb054f6e33165 |
| SHA1 | ecfa1072af26f42629ff96770af1a322dbd3075c |
| SHA256 | 333dd1d27c0fe34ee781418c1a916f0ee052b7429548a198af724d272c943a42 |
| SHA512 | f346c9c90bd4b40f72dff9b89c6b2887d977f25087d66533d259e4f8475c677fec8a272c8c94bf3a9b866c5b1c98bd392f4703b91902d87a96a1ab1e554bd012 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | 1752326ce45c039f4c5e81ea24c27c35 |
| SHA1 | 4a22a9151c3c94d170cd3d23659e8e1a5a6f0070 |
| SHA256 | 13dac981c708b9d1c6d7be7666ab5ff34718fe7d1362428217e88c75530774ad |
| SHA512 | 7ca5eb8b11184b97b7ecfed373420f7b9926839edcd36ea6bcc37a09190478175c49d7cfdb6dcbf1ecc8f2570feec9a0ac8aae08442fddef7986330043ff2d08 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | dac18388ad86ed5ec1bd4d3bdedd4bb9 |
| SHA1 | 1e30106429e1e84a697db46be2dff99a6df0f6bf |
| SHA256 | 0bbf84d7088148e0a398ffa522218b3e0c12a56f95c613cd5b205fa22414ad4f |
| SHA512 | 9b108ca9cdcf79577525ccdc752ce6c753323ca918a23b8f4e99041be4e5411f702d185884494b57fa2f2f58083dbe067c37312a6d4663d6d923990b0c4e499f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 72362d15addcd8d628f99da88ecc6676 |
| SHA1 | e41ca1db793d117cc646342c3451d91fbde71937 |
| SHA256 | c54ca1128a3e1bc54e9721c897bfb7ec9aacd95775df30c47f2e4e812cc98a31 |
| SHA512 | 627a0a8cb02f31bd7c629b860e8d2062a1fd1455f3da071e78382f6f8267691d09b0bf2913e74c63fe732b566f6017632bae1e822697fcd79f7f3a40067c2253 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_0
| MD5 | cdacfd3acd64f1d948b6d11f54ac56f4 |
| SHA1 | 61e0ce989467504af80f11aca6726b246013adf7 |
| SHA256 | dc7cc51869ed1b7cf89b2ab3a9b9e11ba397ae80d1e664954a1cdbb4f8b111cf |
| SHA512 | dff88b7a52f5517d80231bc3ee1a6929cbaf2a9da2ff16a8061df610ca7830c372f7e2ac11245e00e0284fe9cc88e36ad3c78eebbf9f39d3cf91043872c8a936 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030
| MD5 | b84723739f8d44363767e8079d1b7f55 |
| SHA1 | a2edef1b49190ee9461f755727ee5e615380421f |
| SHA256 | ea3e192e5650de71f19800494c5a77541d15742cb247f93293ef4b0e09422765 |
| SHA512 | f8a3935b8204dae8c5b00fb18fb9fe9071889be9a430860c3b3f8fead6843e5f2548b674bc4c514a5a099819b707a6118501d092f0ec70c85e9f298ef2a8cdc2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_0
| MD5 | 114b462e0bc4be1b36f789006ec1496b |
| SHA1 | 09a67e15f0ca466b214c77deb8a3e6026f40329f |
| SHA256 | 683a3e2c371d7860bfa1ba00c8ec95c4162cc3fac1a96f9318663250405037e9 |
| SHA512 | 6775a581556bbc1341cda884cc40b3710cba893803ce8e6c1f32f901b0d02176edb542a8a716878be88381d94ae42502199d60e2c6abf9374e881e02eabaa07a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\ba23d8ecda68de77_1
| MD5 | 438cbe5ae107184d94ccf82816e3bc5c |
| SHA1 | bde60f9f44c41dc4254b41f40096a5d0583a6f18 |
| SHA256 | 572753d3e960ab1f730f3c5ea4884a51f491bee28f309970c784da9266b0129d |
| SHA512 | 3504ede8ed53a62afe08403f297d488a7877452e8f1bee0cc1bae5228dc9532cefe4b51bc3ef53452c337af869184fe45533fbb8f03ab9fd1b8421410f1e9b92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\43fde9e7-a391-4ec2-b539-61b6210586e6.tmp
| MD5 | 64cd14c16c9f94313c328be823c76118 |
| SHA1 | 0c4a8b57734edd34fd5b18b2ee22f0d5a36290da |
| SHA256 | d2ef8363c138e7f179fbcf0de41997a78a937fe3d3f5ee1a07b5a747145b2f49 |
| SHA512 | 489bb69bd01561ae51a07b4e3328fa829959635eb31d8bb33010a551a79afa8a745ce52fa3cc1c54fa973ddc0b4916b9548937380ccd5e81e3f5b7b13e854e87 |
C:\Users\Admin\Downloads\Virus_Remover.zip.crdownload
| MD5 | c8b072b391e1d8abe0f9a883d67eb4a5 |
| SHA1 | 927289c7c496214ab8d1dcfc3f32893b5e5e1a69 |
| SHA256 | 26a9fba15028d9c18cf86e28bbf6bf09f2de3f32e8f1e56c70e72620b1fb421c |
| SHA512 | ff52c16128d1840961b8b3a8a1deb84a5f7ea228dcbeebbc27b5c512abc5130f3bf5f9a15670ef1c06bfa93a776d5434a80c5db3fe125c500ce8f96364f5fa0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 835498451436a4c289b08549a590fa60 |
| SHA1 | 377a8cf8f9e42f72750d515cff7c642473ef366d |
| SHA256 | eb417300a9e64aee6217055fd11b5a2551d061da3f98f3148f4448ae76c65525 |
| SHA512 | 91d87c01fe90e92137e0dda86f0163f0ed42878f2f9e02718c1eaa78e4218f59a349cdd0e0043534e59194ffcfe2a6b75c09d29325b8babf81692e7bd0fde5ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_download.cnet.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 194e7aa00d4088c7cf547cf8bc932182 |
| SHA1 | a2b63086c109e00629424a0ec9a44bb26469cfe7 |
| SHA256 | 616f133274f541ca815ce4726f7c1171b794bd28f264c1e31813189dab341906 |
| SHA512 | 8a065b63e9314c3a003e2dce96403ad4d5747dd48dd7576ec8b2b5563c6d7a248538c97c25af45fa45b525e44e813d9d3caab118fb32b5fa805c3ddd33f84f46 |
C:\Users\Admin\AppData\Roaming\Let's Compress\Let's Compress 1.4.0.0\install\decoder.dll
| MD5 | 9d45f2790dda55df2d99ef66dcb2019d |
| SHA1 | f2a369c1b82476e2e0641f95394dd4dee8223f01 |
| SHA256 | 9b7ff49f7e1d0a39826ec458c8004b20a65a4bd0592b083f38b01e2dbc2b510f |
| SHA512 | 9bef561ec6908dcd7e75f5f63cff8b1ec73e9be2b4e4aa5602182cde18d691cc28259b980c87246c5d27b4284bc783fba44d92a202f77b15f3e65c89dd3aa069 |
C:\Users\Admin\AppData\Roaming\Let's Compress\Let's Compress 1.4.0.0\install\32515FD\Let's Compress.msi
| MD5 | 61ffb9dad4b1dfe76613980c2a899740 |
| SHA1 | b39210d570b0ce4bed9e7046ccbbc79ca56fdbf2 |
| SHA256 | f526e61d5fe740e0d7ad708ef9a84e68774ad2d17f3c72b5c1a29f301c5c581f |
| SHA512 | bd9d7ab218ebdf873103e09c6d14cd5e457cb86b92c688ee17126a11c96ef94cfea030fcb1fc5595231cd7003108e43f0512d6b446ce2b43200538b3f1197655 |
C:\Users\Admin\AppData\Local\Temp\MSID696.tmp
| MD5 | 72b1c6699ddc2baab105d32761285df2 |
| SHA1 | fc85e9fb190f205e6752624a5231515c4ee4e155 |
| SHA256 | bf7f6f7e527ab8617766bb7a21c21b2895b5275c0e808756c2aadcd66eff8a97 |
| SHA512 | cde1e754d8dfb2fa55db243517b5dd3d75b209ea6387ef2e4be6157875e536db2373f23434a9e66c119150301c7b7cdf97de5a5544d94c03247b4ae716cbc170 |
C:\Users\Admin\AppData\Local\Temp\MSID724.tmp
| MD5 | e9e77a444817e445f12c5e4d7ae563a1 |
| SHA1 | ac44d1512ccbcab3d621ee8996c899e816d4263a |
| SHA256 | 983f2c051221b7d9cc5b0c53a8952502f2769148d87a7a89340fca8a081c4a50 |
| SHA512 | fadf784080a6c7a8ec1d192d7cddc82cee3f8cfcadcd6117aaae3a501c87bc3b25b2154b719e5caa867654298ef9e05bfb23cfe26f8a64ef3dd5b53a1a952eb4 |
C:\Users\Admin\AppData\Local\Temp\AI_EXTUI_BIN_3556\dialog
| MD5 | 40e9c790fc05030071eb615d195c28ca |
| SHA1 | 3a90c8770c15e7ed07b95d49f33299e1142c054d |
| SHA256 | 1d7d8d52adce21c1317bd7ed5717292e7bf3cf50332495de73ff6b8c0c9cd31d |
| SHA512 | ba94e19388fe82f06e1f89f37cffbba608aeb3bf5229fb99110d740ad510dd2a47aa16c1ca4d3b501e6112005cc4caf4661437ace2dab71bd223b5f9ea21e5bb |
C:\Users\Admin\AppData\Local\Temp\MSID724.tmp-\Microsoft.Deployment.WindowsInstaller.dll
| MD5 | 1a5caea6734fdd07caa514c3f3fb75da |
| SHA1 | f070ac0d91bd337d7952abd1ddf19a737b94510c |
| SHA256 | cf06d4ed4a8baf88c82d6c9ae0efc81c469de6da8788ab35f373b350a4b4cdca |
| SHA512 | a22dd3b7cf1c2edcf5b540f3daa482268d8038d468b8f00ca623d1c254affbbc1446e5bd42adc3d8e274be3ba776b0034e179faccd9ac8612ccd75186d1e3bf1 |
memory/4892-871-0x0000000005270000-0x000000000529E000-memory.dmp
memory/4892-877-0x00000000052A0000-0x00000000052AA000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\AI_EXTUI_BIN_3556\banner
| MD5 | de1459af81f7d448e39553c663dc2426 |
| SHA1 | 29b786b17b8ae102eb613970f305ecefd9ce61d6 |
| SHA256 | 4f23824737a445244cb3ddc615eb26db9463142b170bf8ed9df1605bf23c26ec |
| SHA512 | a3b26f33be15eab0ddff9790e179e3138580345335f05cd3094ab2889d381bebf1f170d38865822c91c9254880556af1bfd40018654dab52a0cd1f6021c8cee2 |
C:\Users\Admin\AppData\Local\Temp\MSID724.tmp-\RequestSender.dll
| MD5 | b580a63e82c50119aca3d2864897700c |
| SHA1 | 4f9329c98260d20ec398f0a9b39aee424eca37c2 |
| SHA256 | 3766a96231d79108a8dd6867927a0b081c1ad2b3265f9117839050bc7a3e2600 |
| SHA512 | 22d2e273a86fb8418d3eae398f88836e95bd425135b88b4fddcaa673dfb11abf630e1f31c2be433742efc1bf6d8478847e230ffccc95ad7d899b9fdcb10803a1 |
C:\Users\Admin\AppData\Local\Temp\MSIE218.tmp-\CustomAction.config
| MD5 | 8c22d283225f3bdb8e36522c359796f9 |
| SHA1 | cec5168b62bc7d39930e0843a0a285c3d89ed23e |
| SHA256 | 5d6fd5049f33ac6b16ec0431787fa61c66630ba1916bb4c70f3f6b5844b74ecb |
| SHA512 | 826550987a6140b870894c02c20f1c890e187c5919fc60f5fe3fe962fc87bfcc3879ee1de6141d679aa85f6cf52f8be88a9b23a8d43b8561b6b70baf138ada3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2c312e0a394ebf63451c63765380e603 |
| SHA1 | 3b37673681d9b92bd8fe1db3e12bdfcd010614c3 |
| SHA256 | 6490a72e5cb4a8202b3935c29b98c37da2b5c06c3585dd75c76ad63afb138702 |
| SHA512 | 1d048a193089d532f235aaae29aaa28aa23639c7132346e3a2c3a6af7d6d031d00f13443a7e4f5e9c0459e651f113ddbdc7376109491abbe0d1505a92314ad03 |
memory/4892-936-0x0000000005320000-0x0000000005386000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\shiEF9B.tmp
| MD5 | 77d6c08c6448071b47f02b41fa18ed37 |
| SHA1 | e7fdb62abdb6d4131c00398f92bc72a3b9b34668 |
| SHA256 | 047e2df9ccf0ce298508ee7f0db0abcb2ff9cff9916b6e8a1fbd806b7a9d064b |
| SHA512 | e1aeb8e8b441d755a119f45a465ca5660678f4131984322252bfb6d2cec52e7ee54d65a64b98429b23915eb5707b04b5cd62a85446c60de8842314130a926dbd |
C:\Windows\Installer\MSIF4E1.tmp
| MD5 | ec4cd2159189ffa5d293a24e92964b6d |
| SHA1 | d16bbb7b4504afa4d70442e051e548372586b5d3 |
| SHA256 | 8a77ed5526ecf88b81844993b5c55bdf6e056aade9c8cb3e1fd89a3b4d41a780 |
| SHA512 | 099663cd0584dce7ec17322fcecef330341a711a1d6854f57eb852650ab8272b44708f18ebf6ca0e42b2ca0ed10ad99ea7729562de553353afb615604ea19101 |
C:\Users\Admin\AppData\Roaming\Let's Compress\updater.ini
| MD5 | ae8d08824a909b31ebaa2ef907dd1cb5 |
| SHA1 | 2829ecfcd13bea583f1a9004e683784916ea387a |
| SHA256 | a4bcbe15eb9e6cd36dbfa18f0d26b71cb6b03be6b1d615ca3c47546bc2bbe7e0 |
| SHA512 | e69ea0853d1abfd7721a736cd97dc5e8f930b1a9594ee396b3fd0e00cd16284f176f45465120fc0d1d38fc3afb20276b8327f0651c078d877dc2ec54f057789e |
C:\Users\Admin\AppData\Roaming\Let's Compress\updater.ini
| MD5 | 115fd73b8c8e0951b9d7811d83a00ffb |
| SHA1 | b60dec54a4d477a99375ad079ef3d1a79c24f741 |
| SHA256 | 282639b881797fa5def44c874c8fc27645c62cdab8b41d0e7f8f978edddc781e |
| SHA512 | da56950939fa8da624ebee1b1ec884e83a4d982b90d5562474dae99c8a1fb04f146e77feafa0b488b282ef83cb68f492eecb6bb6fe5eecab5ebf7ff9ddebc056 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\c0e22a8b-17dd-4c12-a0c1-899fef831691.tmp
| MD5 | 913d18a9332fc31685926eed74d36ae3 |
| SHA1 | 9f1b79cebad678a30df1411b357fca3c9627e50e |
| SHA256 | 52325987eb08e7afb0c9d5eb20223d33acf00de90d42c6600567167e39cd8315 |
| SHA512 | 758f09b04b35307a146a2cae534efb680388b2b6c268fb8e807fcf9eaa819c7e495d9124ff0242bd5f50e79652ae290fa95a6bd2e0e4ae8c76f81abdd5086767 |
C:\Config.Msi\e58efea.rbs
| MD5 | 24a8f6fc70016e85a5421aab15fc113a |
| SHA1 | 115189ae0696de2059999fb9c808a073602d37a7 |
| SHA256 | bfde29c1bcdbf9be80e22614c8041a1c7733ba70171d1da30f488f82c753fec5 |
| SHA512 | 954133948e395f38be65c0a344232ad11b9ade9245101f108fec857e93e320e23ed05cad32f75daa12ec838d29c59a514c2c2d14966b9546f8ed691b632b9be1 |
memory/5148-1151-0x0000000002870000-0x00000000028A6000-memory.dmp
memory/5148-1152-0x0000000005360000-0x0000000005988000-memory.dmp
memory/5148-1153-0x0000000004D90000-0x0000000004DB2000-memory.dmp
memory/5148-1154-0x0000000004F30000-0x0000000004F96000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_esywc10q.epz.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
memory/5148-1164-0x0000000005990000-0x0000000005CE4000-memory.dmp
memory/5148-1165-0x0000000005E20000-0x0000000005E3E000-memory.dmp
memory/5148-1166-0x0000000005E70000-0x0000000005EBC000-memory.dmp
memory/5148-1167-0x0000000006DF0000-0x0000000006E86000-memory.dmp
memory/5148-1168-0x0000000006370000-0x000000000638A000-memory.dmp
memory/5148-1169-0x00000000063C0000-0x00000000063E2000-memory.dmp
memory/5148-1170-0x00000000076C0000-0x0000000007C64000-memory.dmp
memory/5148-1171-0x00000000082F0000-0x000000000896A000-memory.dmp
memory/5148-1172-0x0000000007290000-0x00000000072C2000-memory.dmp
memory/5148-1173-0x000000006EA60000-0x000000006EAAC000-memory.dmp
memory/5148-1174-0x000000006EBF0000-0x000000006EF44000-memory.dmp
memory/5148-1184-0x00000000072F0000-0x000000000730E000-memory.dmp
memory/5148-1185-0x0000000007320000-0x00000000073C3000-memory.dmp
memory/5148-1186-0x0000000007420000-0x000000000742A000-memory.dmp
memory/5148-1187-0x0000000007570000-0x0000000007581000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b828d547125cf4a21226c18625096d02 |
| SHA1 | 55bfd17b092c8eaedf62f9d666f33b2b356a6cc3 |
| SHA256 | 2018ef1af84838e5c17699ac83923c9d58071df561855249048408a7cf68c06f |
| SHA512 | 44a293c1f72a242aecb7dea2eb136c31fd2dd16fa40118dfc58cadd1bae045465c529c46f3fdb8178ce076404e68dcb0720bbe11291fbc698c22453a3a5ae8c7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b3758d327e0aea8a3f584287e8b95d6f |
| SHA1 | 2382abb41457e61e566647576513f76cccb46d5e |
| SHA256 | 1d045a0a4713f1d54b7e21a9b95f684a38191a206cc894bf3de821a6043187f0 |
| SHA512 | a7c1483b91accc40a0d8a8e0f5f7130bc5b5e1c023a32fde26a55a4ac61dd3a7b3d199f3b1e93ed9f5d48cd16fdc248a2017dcbb56547f007534824739684cbd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 7a0b47a7ca221cede8b07c711e1ef3b6 |
| SHA1 | 9c05b36a00ad8bce4a4828cad2a28fb243f120b1 |
| SHA256 | 86f02e86792e1f8886e34636e3854020418c077aa60c3661604b46a11da00e59 |
| SHA512 | d6fcf757d461316368017b2c45b5dd24a2eee6a0e3078587b7a5f4b4b2a353d0f6246bfdf0a8183defa28a0b02f7c22f8b4fcd0f616d3b8348aa8dc06c35659d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cad34eb09904d8f9472378a2301b7fa7 |
| SHA1 | c0b8984f3cb42ca33aa1c831a713caf863e7b5c6 |
| SHA256 | c8ccb783185ffbccc7b563363f1b717936a0258ea3e4734acf1f859d95ee8b05 |
| SHA512 | 78d9a4c9b084cae219201d5973463603347f43617b371ad67767a61910f1802f9f162b59fae4ddf2729dba910adc8b0ad4e7afe5389952c76fe987a03fe38d60 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 50809c2f09a87f8598a341a4d18e4c0c |
| SHA1 | 3edea427999f5f1398cfb8438fcdf687ce2ec827 |
| SHA256 | 47d9dd0d193ed60252ad3f202c373d923d8533d93309dceae0ca5014264e7910 |
| SHA512 | 6afc3869b59feebf1fe0a4efe3105eb95e799d226cf45df05a6457a550da2b492dc216aaa0423779a43aad7da8fd29c32ea93be0a8014a9ff081a976e9fae162 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3b5ed3e17d5b0abed97c8a7f5a4311e3 |
| SHA1 | d2810139a17cb76dfc2e02364aa0748fe6d7bd9b |
| SHA256 | 74bdb87ca338ad6d0c00e7c983936eabcb649e3b7eeac76ab1e5e0c48f0bf3fc |
| SHA512 | 5bb3f2d88d66b57d78018a4f74cc327facb334a022edfd60117ec36959918729e0aa7a4051ba374d16bc048179f33a3206d8210105eab2f862ebc10dd207f51e |
memory/776-1313-0x0000000005DC0000-0x0000000006114000-memory.dmp
memory/776-1323-0x0000000006510000-0x000000000655C000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\MSI1BD7.tmp
| MD5 | 846afe3ed676561d5f2cb293177f6c03 |
| SHA1 | bd31e948dca976ab54f8a01b87cbd6920659dc92 |
| SHA256 | d3f27a9fb0862de63db0e05de28a02c7913139c10440e0b9bff25c76a90806ed |
| SHA512 | e5c10552930223fc818f5e973de482e0d9664defa3771be208be05dd944bef2ae279285a14ac0278ff4cc9d7384e4811e46434018dde314d6150855d9238457e |
memory/5460-1333-0x00007FFF44A40000-0x00007FFF45089000-memory.dmp
memory/5400-1347-0x0000000005790000-0x0000000005AE4000-memory.dmp
memory/5400-1348-0x0000000005EE0000-0x0000000005F2C000-memory.dmp
memory/5604-1379-0x00000000067E0000-0x000000000682C000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 930996c70eb6eb41a7c04e9935d79d8e |
| SHA1 | 95d154662cd6cd090e35ab9ec02f6cf8058b4895 |
| SHA256 | aa05cc3d3deb0daed96f4a7d284f915e8f6ed7e3e3b6a9d903fc7fd06dccfcf1 |
| SHA512 | fa78a5fdf0160e12a592a1310bfc1cce740f9401f847e787a1ca2d97d27e483df94f711990cd81e4d4d2a7e8675839a0e141c2cae4472df979426e2efcaf07e3 |
memory/5604-1396-0x000000006E290000-0x000000006E2DC000-memory.dmp
memory/5604-1406-0x0000000007B20000-0x0000000007BC3000-memory.dmp
memory/5604-1407-0x0000000007D80000-0x0000000007D91000-memory.dmp
memory/3844-1414-0x0000020332940000-0x0000020332962000-memory.dmp
memory/3844-1424-0x000002034ADB0000-0x000002034ADDA000-memory.dmp
memory/3844-1425-0x000002034ADB0000-0x000002034ADD4000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 19f2c455aa5607132ad3f32df53e4fb0 |
| SHA1 | 7885884826b90b2774e6402854eed09509683e2b |
| SHA256 | 02889bddfbfd1ee83fd3ed1127f3a83eaaa77d97d56ae7d8d91f733a96bd1fde |
| SHA512 | 19f02f5242bae78da04dc3e4c18fc2f57da2a26c620d1efe82a158cf4e5c4aaf929fd2bc5175956044bf5f2f1c6912b7ef48d413adb5b696c99ec97a9e4cb325 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | aa3e9c2a4538ad86c1631471d8e856db |
| SHA1 | 70509083f7aaae282e3f430664272555c4662364 |
| SHA256 | 3be3564161f02b29d5ed1203c3ef0213fc1da599996c8364c7203a8eb933965f |
| SHA512 | 23472e6175cd71cb6ee237f475d6b28d5407201f38ee5596b89bcbc04ce7af77018466cc63282ed239ee9c75f204265524c779d200ca91a98b5bc8de81877920 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | f426165d1e5f7df1b7a3758c306cd4ae |
| SHA1 | 59ef728fbbb5c4197600f61daec48556fec651c1 |
| SHA256 | b68dfc21866d0abe5c75d70acc54670421fa9b26baf98af852768676a901b841 |
| SHA512 | 8d437fcb85acb0705bf080141e7a021740901248985a76299ea8c43e46ad78fb88c738322cf302f6a550caa5e79d85b36827e9b329b1094521b17cf638c015b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 6960857d16aadfa79d36df8ebbf0e423 |
| SHA1 | e1db43bd478274366621a8c6497e270d46c6ed4f |
| SHA256 | f40b812ce44e391423eb66602ac0af138a1e948aa8c4116045fef671ef21cd32 |
| SHA512 | 6deb2a63055a643759dd0ae125fb2f68ec04a443dbf8b066a812b42352bbcfa4517382ed0910c190c986a864559c3453c772e153ee2e9432fb2de2e1e49ca7fe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 292c8a5982a5adf7167a0b55d21cc6bd |
| SHA1 | 9edc8c4a93528e1b25e07268af395d0e79232657 |
| SHA256 | 3cb6d099f057c6127aad60fc06b179cb01214bfd034781767b561ff928dd0470 |
| SHA512 | 7b556d91f0431012adb6440de4e3d876c8397762de88e35f3bd8d7863d1037529a7a583a96889eb93b196b5948c982c9996c52c7ce150d2bff00072554c3f6ba |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 58fc90bfee47f578e6b6672c44a1d4d7 |
| SHA1 | e3424c7a46e522ed0ce9d3db70a0751ba2c00ef6 |
| SHA256 | da21cc53c90f2e5e4bfd3c850f862421908b603d342f0bb2eca1e070d3694ad9 |
| SHA512 | 4b51d04647cbc0168c228b8501a8162e1286fb21b2fd79fd1b95f8731e3bc7ffcaf7c09151e1047a5b3c0e2fa340f94c6a919bd06a4d86111b044a0f9170782a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3f595e12867969f634aae4472f21a8ab |
| SHA1 | ba9dedf9804c46528ebb74017ed2478059605e86 |
| SHA256 | ce78f904a56a0c32cc0c401e83501e2154fd14400bfff0e1b1a4975c853f17b2 |
| SHA512 | 527b84772c610570fd6335776615e3381059686a180926f91d3f7f2d7145ff52d76632dcf0817451fa1e66b2f2d727e0ea44d34d184c5561563ecf4c34e9fdb4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a370c8dba17d2597ba4ad423b2be2834 |
| SHA1 | 4a7f30c08d8f39b3569b071902238150cc30c0c7 |
| SHA256 | a28a377359087e82b8ee038d6f97070414ccc4a1eb64aa22f5c4945c8bc8e719 |
| SHA512 | 0c40fe3575778dceee7f452e973be9648f2d3bfbada98ef91692251c608527b7f11930729e0bc9f25821212609805724046986f9463bbf9935a1dac7a3186bd4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 064bc79dd0cc288ef2b7c52653c92af8 |
| SHA1 | 7304633d2a1538e795598cd1a404b9646734e87f |
| SHA256 | 4207dd1facae7bad6c0c47f3b69ad60b0d5c3601c453f2d91c10ede0f93fbe92 |
| SHA512 | 58dfb1b91f393d68864347313341a4b50ce4011cf16a5bf7b723ca712b48ab8820366c83f9f1d2a80ca4a65ee73d2f83314bd3a33e3948245826248c1613df40 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | dc6035c6c92740eaade2e060467fd5a9 |
| SHA1 | 13c4af3250fe9b2e852a6a2afd3f0b0fa95f66c1 |
| SHA256 | dcab9d0d390a5dd7de664a5e3e17f358fb5d249748620c11d70605aeceb7d7ed |
| SHA512 | 399a53195ec59538518c4c0c76c86f85e94655b89de868699a8bc130e34889b76ec0a18d451253e79fa98e6bce5ecc1792c9a98546532fa426e8e6d349ff66ba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 039b5a7979a72aa4546614fa5d117623 |
| SHA1 | 02caf454a2c0be9beced00aaf6be0b0295137456 |
| SHA256 | d9fa669e5a1b7220dba9e7e7ce7bfb8e8f883bcf9ebe05310847e857c70552ca |
| SHA512 | b59f0c1131dda3f3bf8acd8c74fce24c7eca854c86709ebb21f5de71d7d6b12eb0088bb19029894880a47ffe3de6d6f11abfe033227736e468d2c7f364d6a7d1 |
C:\Program Files (x86)\Shortcut Virus Remover\Shortcut Virus Remover v1.0.exe
| MD5 | ffc1bb82cb50bc8bf44796752bc195dd |
| SHA1 | 42eca25ea25c74f9d97dface1256228553e5ca06 |
| SHA256 | 21f5ac850ab5b880d60e29050d20e1e8687124b5dde3947a6720bdf499abb782 |
| SHA512 | 231ce23fea7b6fa160168afa8b018acbe321447e164966693ed47b6f6a345fd43dce5d3d0409e97e0fb4cd716760a0182e5998c903dfc4cb2b04392e32504776 |
memory/5812-1794-0x0000000000A80000-0x0000000000A8C000-memory.dmp
memory/5812-1795-0x0000000005330000-0x00000000053CC000-memory.dmp
memory/5812-1796-0x00000000053D0000-0x0000000005462000-memory.dmp
memory/5812-1797-0x0000000005310000-0x000000000531A000-memory.dmp
memory/5812-1798-0x00000000055D0000-0x0000000005626000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9784a64b59f2e04b57e5203d08f29358 |
| SHA1 | a1d8ada1dba8dff3402808158e44b6c7770931ad |
| SHA256 | 9586cd499ec67314d256e54e355d8594dc6d4f45329f5018f123fb7d2a858d2a |
| SHA512 | 32abeea4466185411f74fa24756a4b41565ed3cb0e77c7b34cfeefcb259a48d421a583fcf96c726c454360b8b7b134d57e8797ddf17cd53637bbd89c3b90d5df |
memory/2360-1809-0x0000000000690000-0x00000000006F4000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6ab59ca424b6bf923309e44e6114475f |
| SHA1 | 8ad5d32e2f0d6f3c9b8e082c64f6e718c6ea194e |
| SHA256 | de6ef673fa6e42a37576e64ba8c502e11bffab6a061da996a71a11b44e6b4103 |
| SHA512 | 926f984c492be54d6a9712209ed1bc2255df9e34c375a426a73dd09102051343b22a6a54b66a5a2a5a8581f6e406af7d830a89e2293fb4dc6a1968e884d9ebe0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 38623387e2199b7d0a06ea1847d7c1ac |
| SHA1 | 9b83b8d1df2fbec30035aecf4014fb9cd0789fee |
| SHA256 | b70b40c4e4342af941d78c39a4e756fdb6037ba8f28022d3bcba548da729a36a |
| SHA512 | 777c17c38632a7e5c9023a97155a51f25c79082f5a9800decefd1dbcfb2dacea2569aefc2d5f2da4cbb32c83e04064cc8ced9c507b8a1269c3a4b7bafdf56f92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bb7404f965c6092a272925dc5c1e7d0f |
| SHA1 | 92b01f4c52fd5e780f5ddb0bb318b1efcd595ce6 |
| SHA256 | 1b8231ae6b804268852475456e17289561e7227e0b737b506c49b59d73d7cc81 |
| SHA512 | bd469124ee6df9c59fa0fe633a098b9d34a488920cf43a7ccb52faa930a359af14fa2ed8501487386a9083346f4ace59be4d84c086f6cf39ac51ad254c578cdf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3ea775b9dfa4200bc2fe7a6ff0164736 |
| SHA1 | b2aea5fd1f7b4358548a113b39e000438a4fafbe |
| SHA256 | 66cb4fbc20e6b1716777781d8e93d8c9a2a18d076de29ff0ad78a5e1e033f316 |
| SHA512 | 389cbc07b62ea9238823a4517fcf2569ed348ec33aaa1af46365a053da8f768abbc06d0e25d80ac82c86021a18e0eb70ecc720680e27211c6e5f1cae32265618 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d5eab68b72f4125b77a793741799bd6e |
| SHA1 | ace0061e8ed772b93a9455d09b71079c319bbc5a |
| SHA256 | 0e27e12e28f75140ccabead49df474e5c4b58b7727b8aeba22cafe7fb9e607d4 |
| SHA512 | 60db5b0c71f4b52b490bef50456b39b32524476b65153b8cba6e8193d674c36b0781b53ee8467ca8047c8dfd5072afa402d67936ccb9fa9ea9ef2288b21832c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 36088da05cbeec62cac3e06b3c121fe7 |
| SHA1 | dd9ffc58abab306a56129a6041f4dd2c3c24be80 |
| SHA256 | d5850f4d1c8a1ee0cc65148e4812530d40b5065d001b934d0fd9b1974786aac0 |
| SHA512 | 2805c7be05f99de8f7194cfd9946ceb0576b3ef0a6628844b9dd9e580f9fcdff6d33e619a05b48d9a06f4e82a854d00cb852125479f35de64c42c33c85c85cae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 64246a7afcad56f76a87764b52155161 |
| SHA1 | 53132e523dd51d44d6d18b9f12ffad0688e509b9 |
| SHA256 | cd0b8f7dde24f8388468018ab29d956fc66ae6e499583bc5ce8dab8c5f82c0a7 |
| SHA512 | bbd3dba5785a32dbc92af878dd6addea6d425b918c41db39c75e94ce5120652f4d6e6fceea59b678670f52a88b5dff52a19d6ab05697df870f292072368eb653 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003c
| MD5 | 7b49e7ed72d5c3ab75ea4aa12182314a |
| SHA1 | 1338fc8f099438e5465615ace45c245450f98c84 |
| SHA256 | 747c584047f6a46912d5c5354b6186e04ea24cf61246a89c57077faf96679db6 |
| SHA512 | 6edf4594e2b850f3ede5a68738e6482dd6e9a5312bffa61b053312aa383df787641f6747ac91fa71bb80c51ed52a0c23cc911f063cd6e322d9a1210aea64e985 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b928f71148e23d4f25b25fc948c5b89f |
| SHA1 | a1f51abd75b470c043fcb14c003add57d4c03eae |
| SHA256 | 8fe1487d98f4369c6786b438c82f1a6491d14f40d2769a014ba1c78f8acc8c0d |
| SHA512 | 58789d95efc97b47309be2aa6ecbb8664ff792aa394c21874ef2158f36236374b1a556cb568e4cf944fa814a9245fb7627a6aba3bf20506311f869462d65a6a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1e2005c522caeb51d5edf3fe6b970d13 |
| SHA1 | 24ebf44f67d22a39107027dd10f0af0b9781ed26 |
| SHA256 | 5682f967cf477f38594d60fb4a12f3cddb3218aec357111c266e3aa168b7dcde |
| SHA512 | a25e671a0a72ed24c0410e3eb4681001a9201409c205311b1d1622abe6a32f41798289a45e00008641a1b48bf84fab5f895f3e051ffba99a32b02b86e768582d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004e
| MD5 | dd38fe32d3be905f9c71590e1ad70618 |
| SHA1 | 5c85376d3133c562b90f02b94c4e214e04418f60 |
| SHA256 | 1a20577f159c7a7170bee04a1efe029c02a0843c7da63f7ac0425c1d3a34b60f |
| SHA512 | 346d6cd3c47515f0fa06b91216cf71fc6564c40fbd2b5344c1f10993a3ce950dced0d2dcd6d5d2e7d2f2f2979c76a9f30f9f79f196e5ca692179886f82ba2099 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 49f54f9cfd20389d18f39c6ca1526aaf |
| SHA1 | a64cfea609dee811fc208136f728465c89321f2b |
| SHA256 | 2421cb62f33a8ee0e142295d6935e88fd88bb3ee3b4ab23238c7a9ed6f55490a |
| SHA512 | ac67716adb7f6fd758b047b74c97bd2230d6211e21d6c19f21117aef8f40d6b225d531a39d4085faf6874d04d4fa12e5c6aa2bd51b3175765f112176b2ee1d6f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | d427881aaf2f32ac0a62fc00537e5543 |
| SHA1 | bce66a60eb4b3c61d30cd0edbc09736ec5b1144a |
| SHA256 | 786f95eb0758542195eac973bf017f68df92ba2464fa84d7f2e0098c5e0e694a |
| SHA512 | 4344c43109dac76c81e960c2c4230ac48d4a741b29cac59b95ff34654389dc5db72dbcc5343f3142a34045f2b530b54a8b988e33243be26442297443644beb0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 49084262d4862f18a0913c99d70251d6 |
| SHA1 | a6af9caf2cb5182edf77bcec609e69a08bbc5301 |
| SHA256 | 9c0ed7e6d86d780c932fa72af0b6ac786cba652c1e9b09f2cdd593d4486287c8 |
| SHA512 | 438c0badc080e8ec6cd85f75a3ce269bce8f5df062e425ed82795bf1a9624ef93801dd8f46a534fee0f2db1fe1cd3298c8dde42f1fc48810e92f159bb7dc4887 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e91a476946d542dc7453e11f087a9314 |
| SHA1 | 5e3bff3556e4e41b21fac4d8907f52dea0d8515a |
| SHA256 | 10adbfad0c20cf4381c0ce9b9c847319ddaf6b01d70f7cde87fc46121c82f7a0 |
| SHA512 | cf1f68ff6fd5f74bc0ba44aa30c1d96238487471e9238466bca009b5f637b4996c891c8fed11f61c12bf581671497cd1bfa7253f20cec79823a59bfb920430e1 |
C:\Users\Admin\Downloads\Setup.exe
| MD5 | 59119b86f9eadbf16b09f090ffdc97ec |
| SHA1 | 36b6f835b8aa111c9e7c38f55a2edf7133ae16d4 |
| SHA256 | 74916d5f5626d3b8d11e2f2f9dbc63c9b6b48290d24b264848cccc6585ac0192 |
| SHA512 | 02c77445e469548d1da6907d02423c24ed5cdaff2cad1b112cf7c00a511da4702d5b42f5cb5c4d79eb044a807b97b4bfb7f2ae18a51527f9a2379247bc4d20de |
memory/2624-2109-0x00000000002A0000-0x000000000030E000-memory.dmp
memory/2624-2110-0x00000000053C0000-0x00000000059D8000-memory.dmp
memory/2624-2111-0x0000000004B50000-0x0000000004BA0000-memory.dmp
memory/2624-2112-0x0000000004BA0000-0x0000000004BB2000-memory.dmp
memory/2624-2113-0x0000000004BF0000-0x0000000004C2C000-memory.dmp
memory/2624-2114-0x0000000004C30000-0x0000000004C7C000-memory.dmp
memory/2624-2115-0x0000000004EB0000-0x0000000004FBA000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | f6f99ddfe3311393bf52aba712cd70f0 |
| SHA1 | e226e186d078bfba99a3b39de28b3afef2be2763 |
| SHA256 | 151cfaed4ad072d5dcf5440d312cabc8da70564b0d5015f08f476e322a21fb5e |
| SHA512 | aad59e3f2e54876e9a6d5119ff6ec23e35944987603f07ce381dca5baf4c2cd30ce2ab6392900cd50e2a0a5a215961e9495c10c855426082fd47c709a631cc05 |
memory/2624-2122-0x0000000005E50000-0x0000000005EBE000-memory.dmp
memory/2624-2123-0x0000000006260000-0x0000000006280000-memory.dmp
memory/2624-2124-0x0000000006280000-0x00000000065D4000-memory.dmp
memory/2624-2125-0x0000000005110000-0x0000000005118000-memory.dmp
memory/2624-2126-0x0000000007160000-0x0000000007168000-memory.dmp
memory/2624-2127-0x0000000008A60000-0x0000000008A68000-memory.dmp
memory/2624-2129-0x0000000009100000-0x000000000910E000-memory.dmp
memory/2624-2128-0x000000000B9B0000-0x000000000B9E8000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 11935c0fc0ae6e9396a6a670b75ee407 |
| SHA1 | 36d8aba0cb450e117df7b79cd76a93c8f959c2e9 |
| SHA256 | 29edde1132899e899cd273675e07cb708d44baee2da66781a152ec304d08199d |
| SHA512 | 80b7aa94a77d20f0c9290d73922e2e4fd2a00c90662d5f8b86177a2a74a7e4a8a542b4a9c9e5a83341cc6d5153ac20033257542df0e4f64927f9259341fa6b01 |
memory/2624-2140-0x000000000BE70000-0x000000000BEA4000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 862013a47eea72b0953a93712465fc5d |
| SHA1 | 3e1c603303380831a7baa7e69bbd256c16ba1727 |
| SHA256 | 5636edb87cb26c9526f910521a84c445d7ffcdc92923ef80478e70a7115a1373 |
| SHA512 | e9843842e671084d051b128cb3c7738d75512988ee227875adb7e53fbc9c086e71cc0c934c24355041bfabd832202ca8f8449d824c4c5bf24ab3d80ecadc65bb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 538118d60a4b146a9e8692de5c55fde6 |
| SHA1 | df20665a34314fcb8461b3e12bcd524c80a85cfe |
| SHA256 | bdda60342c3d518a3adeff8a0840fdb5778c329b8008e95158566ffb1ee5054f |
| SHA512 | 3b35419336f70852102de4903f395fe4bc33d6cd62e14ad93055071c200991aa5747ee45ba8f9a118266ec263ff7e16c247147d4497b9ab3d16763b7682606f1 |
memory/1772-2235-0x00000000009C0000-0x0000000000D08000-memory.dmp
memory/1772-2236-0x0000000005580000-0x00000000055D0000-memory.dmp
memory/1772-2237-0x0000000005930000-0x0000000005950000-memory.dmp
memory/1772-2239-0x00000000059E0000-0x0000000005A06000-memory.dmp
memory/1772-2238-0x0000000005990000-0x00000000059AE000-memory.dmp
memory/1772-2243-0x0000000005BB0000-0x0000000005BF8000-memory.dmp
memory/1772-2242-0x0000000005A40000-0x0000000005A48000-memory.dmp
memory/1772-2245-0x0000000005FD0000-0x0000000005FF1000-memory.dmp
memory/1772-2244-0x0000000006010000-0x000000000604C000-memory.dmp
memory/1772-2253-0x00000000067A0000-0x00000000067C8000-memory.dmp
memory/1772-2254-0x0000000006840000-0x00000000068AE000-memory.dmp
memory/1772-2256-0x000000006AD50000-0x000000006AD62000-memory.dmp
memory/1772-2255-0x00000000067F0000-0x0000000006802000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d58b0379ffab6c00d2595b6693cc935c |
| SHA1 | 7d890ce9a0cbd590287633504308b593f09d7987 |
| SHA256 | 6c66f91c9a3faf812b9c68508fced73cfe4783856ca1d8790b624a1f90b370ca |
| SHA512 | 09104b7f2125406306393920f1066273595b7d7333a18a5f076fe8cfc516ea6949d0740e477d6a6331f691f94720fd7a2254d46ce8158c3530c607177fad023b |
C:\Users\Admin\AppData\Local\Lavasoft\Web Companion\Logs\Webcompanion\webcompanion.log
| MD5 | 46c91f8ac812143d6e60bbbe71714fac |
| SHA1 | 4a12167b577e4581c690cafffb97be7313016f98 |
| SHA256 | 0b675a0bfd5b5c08801f32ca16718931039f3bed0d5d3cade2e06db45d0a5aee |
| SHA512 | b43488433dfcf9c3368d5d80dcabc91224718f160023186dd6b066d77a45d135d2e4c01ea2c724006d0bc3bdfeb0674b023888f2edc0e4da5cd7f6322a0e086a |
C:\Users\Admin\AppData\Local\Lavasoft\Web Companion\Logs\Webcompanion\webcompanion.log
| MD5 | abab6c16a2ea81af3988dbca0e3847cb |
| SHA1 | c9d9837c379f2af2def43f775f60c12cd11a5f9e |
| SHA256 | f10d8d0eb7860a68061aefdd7af956cbc5e3c4d58ccd6d6b768760bda4ba3162 |
| SHA512 | 02167519b4b807dfe53b3765bcc1a47b68dce0cf3655792b758b5e6052e187c9474661211d63f89be114accc93c808d3cce735b225fd9d4852b80643b6b0dfa1 |
C:\Users\Admin\AppData\Local\Lavasoft\Web Companion\Logs\Webcompanion\webcompanion.log
| MD5 | 2073abdd30e0c4c82e300b22fe0f1781 |
| SHA1 | dc58bda11a6d0f271aff434cc0b906568ad3ba2a |
| SHA256 | 99da4f14247925d93e98a6ffdb720a5a95a595b6c52387d1197c71dd11f31b8a |
| SHA512 | 094e78022e096025db2ddb58a24aeac77acbbe487323fa7c7827771d875e683b65732f183778b7ed1b1a876e2e728b71dc05d3810d9d26306150fcab51d834b5 |
C:\Users\Admin\AppData\Local\Lavasoft\Web Companion\Logs\Webcompanion\webcompanion.log
| MD5 | 7efe67fbc555c83fff1be0caf5b54a53 |
| SHA1 | 662053d82c25bf2d02a9a546ce56c13eb2b2cb52 |
| SHA256 | 897de4a701b7d58269cf9d6c52e17687b5fd908546606b53e640e19c8eccd42a |
| SHA512 | 7a70bb6d106018848a6b284c3438f0d40366d829bd56601b0a6aa27fa9872b0de7762fb13f2f8354d9fb13a1e65bc154cbbc4955b585c7d652e29137e88a4b7a |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\CData.txt
| MD5 | dc6f13332cfcec1206be939054224b20 |
| SHA1 | d5163d1d0c94d3ae204c7a8e871b4d53267b7771 |
| SHA256 | 1b78747d1475d9e1bb0dc86dd3feb9840de264615826e7041967a7e4b00b5d46 |
| SHA512 | 8c5af79a2d5b8401cc80b4b7b4d95e243c7cbf7c66b729fd7e6eee5f88722da615d3f74fe02700b9415245620e909b98c3eb2a3591e0099bbb313417615f67d0 |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\FData.txt
| MD5 | 8e413ef84f525c59ac2b75ed10add2a3 |
| SHA1 | b6018d41cde58e49a1cd97dd850b6ae562b8c0bc |
| SHA256 | 2c85804fb3b90230b841d35d8d4a94cc089e89645ad90d6913a2d35aab50770a |
| SHA512 | 1075ac34d425007cdfb45e85fb4c16543b3c7a9c43e74c8efd287bc7b1d9fed5527e515bdc5deb2e44cf0096fc50efd7eb35c565e3c6cd398575138ef09fb006 |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\EData.txt
| MD5 | 7ba5b64415ae0b96b2cc360e2bb1da6d |
| SHA1 | 68ad971acfcdcf52a297734205db973289c9ddeb |
| SHA256 | 05a4516c41c04585509eab606cddccbc19c87673c067e3643b1ab1263441eb3d |
| SHA512 | ac93ec3bc82f610937842d6541998b0c382e1890c45af1cf9c850090c3c196317c43c8b740e5fe2038f2ee5bdb5607a939c8bf282246207c5f2b82de8e125e9a |
memory/1772-2380-0x00000000078D0000-0x0000000007948000-memory.dmp
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | 335d8b10a6988eb38995ef38644b1552 |
| SHA1 | 6e7f535cfa1e3ba2a2117a5a0801a00c6ec1e523 |
| SHA256 | aa0da1dc9950d1e0ef36e6429976cd1388561b5320aefef1f3f99a1a7b05c1dd |
| SHA512 | f5060a2e0f2d5d5bba229a8a34442efe0b5334b41c9b76fd52f09325efcf6efc599f87e59f3a904ee299fbc9eb6519843559d539396ac25039a4696f045bb3ba |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\statistic.db
| MD5 | 1938ce949ca4faafc1e194f38cf8358a |
| SHA1 | 71ce1d6ba4c2aa45b82ac932bf18757f88dbdf26 |
| SHA256 | 8745e025d34220803a3fac88e97e033126a5500dec258897fdb6defce4332cb1 |
| SHA512 | f688632719352527eed98eeb41fac1eae3efb18cfb26861fe54fd8b884ef9c56cf61633b4836170932091524cf18066d70207ff177b921d4ff8fca2cb49e7bcf |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | 6c7428ee170827af95a42c36eea3c79b |
| SHA1 | 0f3c9a3ed6b8ddb27afe69932de2b96a5ec2a84a |
| SHA256 | acb6dd2a0049c987baaa2d46c6fcd6de74cc90aa79f3b5a5713454fceb299a46 |
| SHA512 | e4fe547e171e2d90a48876592dbfcd688ac61d63ff2c69fca4ab9bd4935600f362bf18ebcee1d7b2e2a8c16f15695627c28133d55e79be18d48c27c63c2e5b54 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\mumlvotx.newcfg
| MD5 | d2a31af04b72f10b334cf6d83e329178 |
| SHA1 | 87ce6a8c7c38b66bf229932daa43d10acd43f5df |
| SHA256 | be6034c3d1169b8b945d3a6e939cfd25759ac788ade5b59dde8aa299d1cec49b |
| SHA512 | f5dcd0d132ee4119550ef8f2c6675120e03647d36e2a1dd4e5bcae2bef0445398f4fcb4dac8287ba745a14e89d93c7cdae7c6701e4c6ede89a869c5b354f95bb |
memory/1772-2432-0x0000000008300000-0x0000000008334000-memory.dmp
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\ActiveFeatures.zip
| MD5 | cd20b0b28ef430aa1ec36902209a56e3 |
| SHA1 | ea61aefeaef007db046d38ce6ab798fc27f83520 |
| SHA256 | ffeb699d8f11507d527c36982f50e1bfa33235d7ef871d2d0930c3697c5829b4 |
| SHA512 | 2ccf4401f6a52febd3644d4ba4cf7b27d6afeee0b569dcc75a302cd4dda1325bf571ae0974fe3457c1fef3609177bc650e9fde476ff5ae6553eb1907d61f8cd2 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | eae39683b5f9117fcde036e28aa6ea09 |
| SHA1 | b362a0882a2afb7d470b94ec9d72dcacad82737d |
| SHA256 | e205315b625f88ba5db9fab72956be091f45fdc9e298f06d3408f04bacf183a0 |
| SHA512 | 44d032ef7a455e11f20425ad351c743363d5583554db23003f3cdfa3aa12a0fd7c175f5b0e2d363619909d76ba92617784705f370ccb902295f2e96c2b6ce5fd |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\qzujmjru.newcfg
| MD5 | 8fcfed0307b17dbe792fd477141ebaa7 |
| SHA1 | eadeff417fee31215a1449982f3e58b9f52330bb |
| SHA256 | 04119e97067e832137e094aceaa61f131aa4984fff9a8930592ca8c30914f982 |
| SHA512 | ffa98e1347556f207e958c923f0a98f84891682ed5c28f60e81b2b7d8ef10d5fcaec81dfe440d51eff53dbcd77249596bb8c471e0056f807a7985a3f47e27544 |
memory/1772-2468-0x0000000007AB0000-0x0000000007ABC000-memory.dmp
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\ServicePartnerInfo.txt
| MD5 | c6393bbd4a571b335e487b6334fce456 |
| SHA1 | 7ee6ace6b9008c9b23d091c2f5b6095f974d33b7 |
| SHA256 | 52cac028a8af30150c9fdb6da10a0ab94e898bccf6bc4ba9110e4dc5517ad2ce |
| SHA512 | c40e6f1d0543889f6775f43b5407078a82432c33e5d50bad91116e02afe0e66cd33f6391939d3019d488eefcba97080c27d5669de47cc27d8b6c54e4e3a65106 |
memory/1772-2478-0x0000000008400000-0x0000000008476000-memory.dmp
memory/1772-2480-0x0000000008480000-0x000000000849E000-memory.dmp
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | 503758332f80d2c0cd5445e7fcd507c1 |
| SHA1 | 897977a2e51e562e20fce5af1af7cde0fa2ca136 |
| SHA256 | 0022a59125e8f274ec86835d3218f0b89baaa85cf2d25a4d8cde5e7ab1626822 |
| SHA512 | fb7b9f690b73f559edd5e3ea60e450bda2ee7438f819aa766ada3485a67a683623f381337726f2682615f9e0e266bef2417fbda6870c31c65fe05000ac29b285 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\cjkouuiw.newcfg
| MD5 | 1e3f56b1c69ea172acdbf14f6cba39e4 |
| SHA1 | 628d53d6eace73ecdf0f7800bb24dded714a4c11 |
| SHA256 | e8e3b3086a50e2ddbfa5f007435d0c03310cfa7d11fd9f06b04b6f1073612281 |
| SHA512 | 1e1852e61aab29c1fa271cdbd05217c550b20a76fe38defb6006e4c3dd970fcaa56a9ad9812fe272e96c312ab60d8331fae5edb0ada1b9b17c2ffd0f0488719b |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\nli0zchx.newcfg
| MD5 | d5f2c889d495143b6e16f27db2be3194 |
| SHA1 | 75086017e5d01e2bc1916f08898e50bcecd29a8d |
| SHA256 | 0c33bdd4b897e401600958a13f1cbf9f7b8ad25abf42f5bb42e8072236daef41 |
| SHA512 | 39ba60f26b7385fd6318d781e5556adcbe0c47c1289d5259a9343d6f1bebba0d811b773a3fddedfffdd64309f33e8695aa18d6b80049d45fb228443626736788 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\3rl3zb5m.newcfg
| MD5 | 51e6fdda068e1857f4d5317f4395186c |
| SHA1 | 0ef3491b18c65c0608b3618732fa007a7bb6822d |
| SHA256 | d74a3dfb3932b1fba08e9094c7719b5efbdba6edb8050a882a187781b53140c8 |
| SHA512 | 49d466909d2ae7296c30a79ecc33b41e9852344f87753092979bb987cff72c6a569e39dc5bf7dccf931a51220f0bb11b3a67b2f5e1fbccb1b289a03f6c28af02 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\og3wfsxa.newcfg
| MD5 | 7121c4e3faf01298f83c564251186219 |
| SHA1 | c4e9cdc88037066d7f62a4587fd8f5565fb70fe3 |
| SHA256 | 3d8f3436ed25faaf7d41aae623946b5943d870f03678693680a59bb1a5a3ab72 |
| SHA512 | 054251d5439572cd5acfdfef28025e47fe8f1db6d6924c441635954d471b85a983fce4c438b73372de7ce1e9f96156f5d1811f9f7ddc365ebf6d22777eb5ab62 |
memory/1772-2628-0x00000000661C0000-0x00000000661E2000-memory.dmp
memory/4876-2635-0x000000006AD50000-0x000000006AD62000-memory.dmp
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\statistic.db
| MD5 | f1399b7e12ed1e44c93ae014ef352708 |
| SHA1 | 9f62c9e6c5fe2262e3fab9ddc027ed63c18154c6 |
| SHA256 | c5f1d4d9b0d78c40d1fb3e15e8a388a1d7a18053400aea1605e8d7688e5f761f |
| SHA512 | adff4ef0592194df5dc12bce7f94fb0c342237aef09f73d6ac24c652151a9e81bb07854d305283fb7689c3b4fe197f87b2fe24467c4c437fb5fa1a07bdab876b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046
| MD5 | e44c8ae9b39a43d2a519c02c2f4904ee |
| SHA1 | a26fa1df8dad7ef835731001623f6db416079043 |
| SHA256 | f5b3dd32d78dfcb46d1eec2c6117625883922f850d3db606dd28b69a821838ce |
| SHA512 | 9597d8e568d42a91253dc2091f10c67e4fa9f7df1f402beb35258189bab5166180424ab7ae90127250e43671bb909192e354ee0f178258cb578dfc4945106a2d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004c
| MD5 | aec56d242dbe4b827d96b51ad495a641 |
| SHA1 | 205a704decffe78d7e228c1931e02139c12e0e17 |
| SHA256 | 29c605be051c94178e8f1611b58f3cff574abd991f17fcc66eba1f927331b8c6 |
| SHA512 | 0df9057acecaeb6ed4253d04c037cfff6178ab7130d564d851c3bd0c26cd9747a603803b7ab65658af14e8a6c1d9ba0f41c1db2b2396f98fd21731f130cc0c57 |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\AppSettings.txt
| MD5 | 590fd86ad024f2b655deec8333e240a9 |
| SHA1 | f1946050248dd1aea834f139063ac8eb3e41677e |
| SHA256 | 7afe6a8c5bf14cace6e9bb2d40df2adb5f31325fc024f448138106cf7b63f7c1 |
| SHA512 | c19bf730552e548b6caaa27f5ff2c5b34d34ac9408b3b6e388361635ddfd4f619b9205fad76b9141f2804b8dd364cd843dcbabd4d9d7b7b712f320f6729d87ec |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\WebProtectionConfig.txt
| MD5 | 0cb1cc6ebd3113ffa4d08cb8e611b0c1 |
| SHA1 | c084178a890875d41c400e8950537e1f8a58a50f |
| SHA256 | b578ec7cfe4cdf6690c83daa66b068fc585a8b35fc3a8722e29f2dc0fabb26e2 |
| SHA512 | c86f4c9a16249313e1a4e0561dc6241e931c5d382a830b64e3aa9d1447734716417bc2f08e4860edc0d2945cc5091170b90039194c90985395d33a36662fffec |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\ActiveFeatures.zip
| MD5 | 000504af95c67c6875e1deec54ad9000 |
| SHA1 | d1889cf42085f071b562d107419792c4480db826 |
| SHA256 | 5b94ff32e93f68126c1d2405366a9186faae59c47372f7a2fba5fc60613b865e |
| SHA512 | 0f0aceab45f54af6fbb92204c30941a0ea08b8cb103fd7d985c9c95a30335ae0a568a590f386971335eb54d2a49fa985ef8cf62c073f2a62bf36535f907cfd1b |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | 3e3277d25789f73722ea266c26529cb9 |
| SHA1 | ae72c624f825f632168aa60e41008d3b84d5eda8 |
| SHA256 | e343ef5f4761180f29d8e3934780c600632df7b6e23289552d056da26de2c43b |
| SHA512 | 53b8b3aab165665bf75ebc49b4f0abfbc77f1bce57ef9864876bf5bd14d1fae6ed91d2b200f73edee334bc97b7586316a7a25ded26e1a180588f378944c2b695 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | 90734b8737a67c5c909e772fe84a95ce |
| SHA1 | f169c6227dbb816cb3b1d222814a35bc513f92bf |
| SHA256 | 4fd82b9ccd0f2d2b72a31a5b49372c56c2ddbc1b4171218e04ccbf7fcd640fea |
| SHA512 | 9da83b0829a77a2593a77dbdf928295c6755bedd175d12b3bba951b4e49a8ade7aacf2e8b0370b389b16f0850fd809f167e5374e7115bc343cb9671b46f5b9d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 301a06342e658b33e4a4dfe9c9dc60d0 |
| SHA1 | 6b3be69a6a82706d328c5261ce976b5be77623da |
| SHA256 | 5d035f88c18f4c4bb20db1b7d912efb2249131cc992d9948dd88129db3e90dfe |
| SHA512 | 032fe6f96405107f0ab602c7ca4e12b87fef11a420532032b0e4bcbd7acb171b35d612ef9810e40f36f7824d6d59c87982b98c55e98bc6f5c443f0c8e7c44340 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\59317f43-60d6-47dc-bb8d-13717a27acc3.tmp
| MD5 | 0055c24ee0e1fb764900052d59667f1e |
| SHA1 | 12c4906c62a5400aa0c4e53962f8f9f2c5902981 |
| SHA256 | c2f41f3c70c84b03eca68762147446d52ef54937d3df3d2009fdd7604dd92a8f |
| SHA512 | 1505af9dc0738933dbe1279cfc5147115c14def4939fee6ba5d39bbcdbc1b2024e87ab17036bedbc052f402e5c77219057c08104f00703d3688fa72e273287e3 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | b18c6aa6796bca340fc934b8a01a71e3 |
| SHA1 | 2a2ae020132de6aa4f185f1120db50a421ccd294 |
| SHA256 | ab9489b9ea4f17ebcac20c0b0fc047e417b7cee17b2b559e20760497303d65d8 |
| SHA512 | 9396dfbb63c5485383a07187b282b45142f361d079e6e7edbdd88bb0b0b4f4178d9f231d4ba81b77243d661b319673fae7fd104bfa09dd2363dca758ea55b7b8 |
memory/4876-2907-0x0000000008AE0000-0x0000000008AEC000-memory.dmp
memory/4876-2934-0x000000000BD90000-0x000000000BD98000-memory.dmp
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\n4ulh05i.newcfg
| MD5 | 77b923af0e082d190261fc8565907b70 |
| SHA1 | 43d2d918b4ce8e7380961314614631a5dea5c1bc |
| SHA256 | bdad8812b956b03c29dbf66e149a94384f5c2d68eda62504c8efacfaca9d2a2e |
| SHA512 | 333f28bf44aa2514358908c2a4cda5f713ab60778fa67c3139d04d6b0a50b0090590998d290a1059866239956565a5e42f07403817d143ac76d6ebb427d782e8 |
C:\Users\Admin\AppData\Roaming\Lavasoft\Web Companion\Options\FeatureActions.zip
| MD5 | 78ce7bf265ca2449452ae44096daa701 |
| SHA1 | 6e186453716ac9defc51f6d56565922ea3edb18e |
| SHA256 | a597fb5eede741a8f3a063f0fc50f8122b2f64f37aa1a9f265d22cbdc633df9e |
| SHA512 | ec5158b065887d81a850ab001c55d798181bf850cc37ce7ddbe10338c4f21bee6ef368e3432e7ada10733355bc1c3a413a78e1f28c96c31a42aa8950b6e5eab8 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\boytvdue.newcfg
| MD5 | 87f084d50b422b1d7e021754e19321cf |
| SHA1 | cce7fbdd71ba248bc881f36acb52f5bf28a68745 |
| SHA256 | 0644a9f58a37e8d11c73eee094e3567dde44c1511196b363056d57ba054fe6ad |
| SHA512 | ce3f83e2dd757edcde981113a93abe4501c36952c24ceea376d745d438dae455a624316f79834d7c6fcf16ee510e7fb663add6825628722fe81a81bc0ffd2611 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 5f53421f9ef66f4550da55c21e4449f8 |
| SHA1 | b0d5b4e45951b1b6901bc833c4f5476140404717 |
| SHA256 | 3b38ab5c6a6e44c7d162f85a1c69b00a92d2535e56ab625d1773eb88bcf37096 |
| SHA512 | bf8192b2e4a3a85b1fd9914be15be56a4542fe5a921aecee9027fefcb4ac9653fd10a1e3e745f67a1a6abc2080fb11ebd4a9ffaced9a474667a96769406a3f79 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 7faf4bff1920a0007ed0ea187e848ce5 |
| SHA1 | 1c4a39fcf381116af202b239e45be3f3c6b17fbf |
| SHA256 | 2cf52396a6899e359d057988060b63246e979b021ba98ae5d2d2aa1dec3856b7 |
| SHA512 | 462669a20ce02a9647bfd23f193f470a11cb87382865afa053e6cd868969d1943d922a6367969bb0f3756408490bc07981fe547d127c0bdb15b905582f46d5c4 |
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\user.config
| MD5 | c315f58217980bd315c9902132562c8d |
| SHA1 | 261128dced5add5b67d88cb4502ed40fd638781c |
| SHA256 | f39d510e08286d5fd80ccb5cad8a955962e6c9a1b9d0e42784d8b6c7c7a93e74 |
| SHA512 | 2427ce72a644310ffc0e926c9ff19c7ab0758dde4addfc0528a50a832e44e1e68e75fa5a134acb7cfed2929b0ecf4a2ef633959bfc033dd0acc4b1c0fde62705 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cd70282439809bd4f755269aa2b61793 |
| SHA1 | d55dd32171bdf81aa9d304a2a35ec425e3192abb |
| SHA256 | 22e8983b6799bfdd085bbe06e341b380f5b4ecdb63ff4bfc7df2162d29891196 |
| SHA512 | 82b2c3502b59f1a33dfd399887a849a3ed51d64e4f73b4d9ba98a705183cb3807e99911f27b14782e2490d5021d239366bf866ba8f29b9acda26d88c44877d42 |
memory/4876-3134-0x00000000661C0000-0x00000000661E2000-memory.dmp
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\kjekrldm.newcfg
| MD5 | 8854d9bc58d594c4de5431779cebf8ce |
| SHA1 | 5bf60befaeffd03412fea74377abcd93e666a83f |
| SHA256 | 699e7e1526126624ce13c1d14268a562f239ad7978f72773715f89a41c296911 |
| SHA512 | f762f0d797aee7dd9b30a4431fefdb9a65bc4879cd3379b5be9a8ad09f29b5c0e5f40f95caa713af3ec0ff7f33511d46bb5a93596cc85f4257a682009bc63550 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 139928880adf0156d02a59b2179d41d1 |
| SHA1 | 729aacf77b8dc964cfa49ad2964a10d918a47554 |
| SHA256 | 91dcac4486c29c06d7e7965703a05591ab6792eea26b0737eaaafb8df003e385 |
| SHA512 | 0f543ad21ab8d3e4c67461e14c1c1a23323d0433e357017ec7dde1fcf9ae867e1c65bef4647c0450e6c256b7f49222414c5ba068446fcc0ff4e90d816d752baf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | dc6873728f7cfbfa1146bf48956f7ab9 |
| SHA1 | f7bc9fd0da89cc76679d8cfbd8a82937ed9d27f8 |
| SHA256 | cc337583d023a658c559a9bc51c5034ddc99e5f3f971d7f0430c7d97703c5018 |
| SHA512 | 6480230a25b1ddc03cf0ae8fc1705defb42152d7122a99c61ed8b04d51440676af6293caf716ba0b70754e111227b16989a7cb1f5324d9eff198acc0aff5db2b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6597ba4d7d0f9ced4c746adf2f565983 |
| SHA1 | 094dc450571a26f171ce835ece37b33f3cc2f38e |
| SHA256 | 34e5e3537d965c876aa67b482649f46f8bcda85542282324f2ecdef41e87508c |
| SHA512 | 649fdc8323724c081079f0706c935e85e17379dcdec97a0d582aaa3822fee15983f06f2511583b316b06b12cd3414486f9d5ab6bccbd56759abed38a012b46e5 |
C:\Users\Admin\Downloads\Wave Browser.exe
| MD5 | c9db6b5c84be13a43ad23cc204e4bc52 |
| SHA1 | 94bd6634303205715fd04f8aa10d75158390e4d9 |
| SHA256 | 77200156d4773175d341aad11ab23bd52445065cd95060348da17d083dc27688 |
| SHA512 | 9273493c5e5ea24b2f5ee219fdf849546e85b3f5cc24c970f1ab6fdcfe961d96ca6fd41c96f9d915892ab24ce7ff409f0f5a6569b0225e95d36afba51615f8d6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 85b2807ed832d51bfee47a85da700890 |
| SHA1 | 98f651fd61af528f9e8f74c916fe40853ad070cf |
| SHA256 | 36d2c7b35df6f3f2d9aa40f23a8c21ffaa20f4db063da3a9768f7d6201200d3f |
| SHA512 | 47b3f9c35b1ae291e1dccc7203d62fcf8ab3cc7dd48b3c9a5f361aff80f505a9bd1fffc505cb0ab32b6e1c96d59571a8023d35afe38cfc7c23956fb4ecd7c804 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | af9c42c2cf990699674cb1249e4fb644 |
| SHA1 | 1e7e95fbacffdfb2696433c523bd45ff11936293 |
| SHA256 | 8328df1e44a8b3ffffbdaf7ba0be9a6859cbf15262f73153f3dd291aeb2fd768 |
| SHA512 | 814ae09650c7d2c125197d2308dd8c38346222435a9a63a43f8cd2f003c881ea7cf08877191bce90c936a863929d16ef31e444cac46e7abc592890f88eedf094 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a26b97921bcd9f71fd12660c4f203523 |
| SHA1 | 55f3f08e7f9125ee0efa8e69c6994c9a48468452 |
| SHA256 | 9d265147f226ce155373e062191bceb1cf4c05c32ca81385f289f88d6556fa7d |
| SHA512 | efe52b84539f0aba14da90a455d646e278331ecb4b3874f03f23183cfb0344a15636d8eaf3c9ce3a06e0d59356cc31215ee139ee3bb62594a11be99edfeaa6e8 |
memory/4084-3243-0x0000000000D30000-0x0000000000E6E000-memory.dmp
memory/4084-3244-0x000000001ED70000-0x000000001ED78000-memory.dmp
memory/4084-3246-0x000000001F1D0000-0x000000001F1DE000-memory.dmp
memory/4084-3245-0x000000001F210000-0x000000001F248000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3cbb86f97447ae11f9ad1c998378e8f8 |
| SHA1 | a1c3f026e31b6085dfdfb0b5b2729e0c1ca8740c |
| SHA256 | 211e25e1d65392265617a32615c171052eed0b2ab3a408b7d81366917dbeabca |
| SHA512 | 9360b3dee364a5c5460efe0695487b411d120fd38e1a55df56ff85bbb6f1d1af11b0004a6b9d98d31ce12e738bd64b5ed0c087c5e4e0ef172d6561a22bea8352 |
memory/4084-3256-0x0000000020C80000-0x00000000211A8000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe
| MD5 | d083a07a3dca2d0ea5ddb0e959fb8ff4 |
| SHA1 | 86f3f43729db553d45b728b1409b73d3de5a5915 |
| SHA256 | 05e1c6babb787f24d8a60f8ded2c216c9bc2956970d75073a71139fe168a122f |
| SHA512 | d16259a1fcb29def140e9e1768b99d973b434c97bf7b09bd0d223143a622ee720d2531a84dd4edf082300fb5f4f00812e418c0131b196375821e612bf34f7aac |
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
| MD5 | b282ce9b81f606d1c6cbda554dcd4efa |
| SHA1 | 7554ca07096a2e410f2cd3c98beb7b7e6be27f3a |
| SHA256 | 1893941e9dd1ca1296e7f575a9442fa1cc53dfeaf2d1bc94d01608ba9e7e31bb |
| SHA512 | 9e71f3cb4ea67831dbee5bb4cbb2dbd9f8ff8ffd1158fe2fcac41c89169a9aa3236c8d163f7d4e9df5e2b70ba2be20fe3af97bef70be40f45dd11acb5b4bc184 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6276c5b11f0bed1faaf3d39d7884734f |
| SHA1 | e64e442530444a163a3e5922060c52464b174b6e |
| SHA256 | 16f18b527c16d6b934372641034054a41c4f70708fa9fb6beb98a4e82c943fb6 |
| SHA512 | 1a96f1cbb4d19abee8197e8852af70064bae22aadb0f3221672e3b7af1370cb9013e2f2504aadb847f3a70234a14e665151f70e1606e7cf288ffc2cc5acfc6e7 |
C:\Users\Admin\Wavesor Software\WaveBrowser\initial_preferences
| MD5 | e58df431bce4aa154745b534a5f07912 |
| SHA1 | 9abceebe1d7575e1db9e67d0362ace75c61c66ba |
| SHA256 | 80102ffb97f5f9168b7c58743906ce68ef0315ca4af92baebd784d2cd09fd4b1 |
| SHA512 | 2707100810310ea77c2fb96f7b203176a5ef9249904c3d1b7e127aa0b1b29bac5646b4af93c0115463925acca00dd5f241d2cda73be9efb87ec5a5ed47c5bf94 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WaveBrowser.lnk
| MD5 | dcddc9e4db8c687551fafe7da9d18909 |
| SHA1 | 7532d93081a8abbd55b7b09d2eec369cbdc8f38a |
| SHA256 | 00c417e5b60e2457efaf2e403afab71eca2a6888df4fc48b41f34315504d4311 |
| SHA512 | a8fd9e93654e02c04e9af17fdab7789f314d5dac06041ab84a12b8639d1b7c739c37305c1c57acad7795266f483bf5f580d1f3a578dfc4b386543f7e1f3a6ae0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | b65d667045a646269e3eb65f457698f1 |
| SHA1 | a263ce582c0157238655530107dbec05a3475c54 |
| SHA256 | 23848757826358c47263fa65d53bb5ec49286b717f7f2c9c8e83192a39e35bb6 |
| SHA512 | 87f10412feee145f16f790fbbcf0353db1b0097bda352c2cd147028db69a1e98779be880e133fed17af6ed73eb615a51e5616966c8a7b7de364ec75f37c67567 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\ShaderCache\data_1
| MD5 | d0d388f3865d0523e451d6ba0be34cc4 |
| SHA1 | 8571c6a52aacc2747c048e3419e5657b74612995 |
| SHA256 | 902f30c1fb0597d0734bc34b979ec5d131f8f39a4b71b338083821216ec8d61b |
| SHA512 | 376011d00de659eb6082a74e862cfac97a9bb508e0b740761505142e2d24ec1c30aa61efbc1c0dd08ff0f34734444de7f77dd90a6ca42b48a4c7fad5f0bddd17 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State
| MD5 | 7e4feffa85d26a660f83318adfd9bac3 |
| SHA1 | 62e9428c71f43c079dabd55302049b6fe0fafe35 |
| SHA256 | d47e31fd61b39a22538fcd8b675e225b3865f6a98a014abaf45bb16b70267ea8 |
| SHA512 | 1323db033e9ccb0ddc1c0f722a21df00cb9dc6ca3dc21de2bd47e3bc1cc478c5be3fe0070bcd6ffc791c3df8c6e9fa47bb51682036ee4bf12b294f324d1d2426 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State~RFe5e75ca.TMP
| MD5 | 6669f2151bf8304c8e08c4120a2c0a92 |
| SHA1 | aea25a151b21a7c282f70d6cc7472305a3b8375e |
| SHA256 | 78beb3ef687c0aedf90ff34fde335383a5a6d5359d77db88f064c129d4cd67da |
| SHA512 | 34145b04226da7650d3333361588172fb51c162431016d277c2314d825f4d281098d1620e4ea94b7ed032cb7e25fb27b5f6f8219ce8cb1e2c054cbdbbed32f8c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\45cf85f1-2a44-4f40-96df-6423c889c8bb.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
memory/3432-3528-0x00007FFF66340000-0x00007FFF66341000-memory.dmp
memory/3432-3529-0x00007FFF65950000-0x00007FFF65951000-memory.dmp
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\4a9d0b2e-18fa-4e71-8de2-67adcb99cc8d.tmp
| MD5 | c30a3e8f3e6a8a236cdc1d58adea97c4 |
| SHA1 | 088c616ddd1e0ac605a0cde72f91b484db404853 |
| SHA256 | 3f6c91bbb2b842af6d53144f0767f6db735a7b7706e1c40e6bed7c4ce2a0a9fb |
| SHA512 | d83e01aea95d890a1dd6ab1fb006f6b58e975af87078edbce844b5dcaf972735064a36c5098cebdf14efbbfc5c7dd5d3840af760eca7564f96137c6f2fac5cc4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\GrShaderCache\data_0
| MD5 | cf89d16bb9107c631daabf0c0ee58efb |
| SHA1 | 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b |
| SHA256 | d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e |
| SHA512 | 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir6276_2009296655\Sync Data\LevelDB\LOG.old
| MD5 | e07d395de916b45cea5eb695af249245 |
| SHA1 | c86ab64bfe1c1a02e99c1a4aa2a0629435509189 |
| SHA256 | 9d5943978cb20f734a593fa7ec41fb0e4b43df54b163248a44f4a73cfb96b373 |
| SHA512 | 1a6542ec3642203c78bf8ac68f0ee1040102a2761af8e3c62d668b1ddc7b2cd7495a995d217646c6d971284d6635c54cfd84c7d35b68434472b517819d32506e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\GrShaderCache\data_3
| MD5 | 41876349cb12d6db992f1309f22df3f0 |
| SHA1 | 5cf26b3420fc0302cd0a71e8d029739b8765be27 |
| SHA256 | e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c |
| SHA512 | e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\GrShaderCache\data_2
| MD5 | 0962291d6d367570bee5454721c17e11 |
| SHA1 | 59d10a893ef321a706a9255176761366115bedcb |
| SHA256 | ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7 |
| SHA512 | f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed |
memory/6184-3693-0x0000018AE81A0000-0x0000018AE81D0000-memory.dmp
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad\settings.dat
| MD5 | a4b3b7acc1711e280ab40363290a80a2 |
| SHA1 | 384fccf027a72648452db1e23fe52018b0b6c7e7 |
| SHA256 | 7f926a31efb878f7e907aff7cd31b6a0bd71781bd4219599060b6ec6c86c55ad |
| SHA512 | 21f497cf37b353108ed30fc86209fb44c2f3648be3e8d8457846bf8b66b7dd5bc1f406858517789809430c97eec9eb073db3454cda4b13d3efb93676e399a5a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c4d325e598a143c757b2c5a2854ad2e2 |
| SHA1 | 2f61403bf6a7846d1684337aec2d4da2929f315e |
| SHA256 | f08df51e1a05bbdaaaa175269a1bc8220333dde3ae405d37427bc01bd2468ca1 |
| SHA512 | 4ffbf9e3ea5b7a3c160c28f8c75939d220a57626e8338a3d731b00c06f28835f029ba9a3bbb131345bfbcc766985082a77b966ad1255c20d2636de4cc5f6b230 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | 8e433c0592f77beb6dc527d7b90be120 |
| SHA1 | d7402416753ae1bb4cbd4b10d33a0c10517838bd |
| SHA256 | f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af |
| SHA512 | 5e90f48b923bb95aeb49691d03dade8825c119b2fa28977ea170c41548900f4e0165e2869f97c7a9380d7ff8ff331a1da855500e5f7b0dfd2b9abd77a386bbf3 |
memory/2892-3800-0x00000219A9500000-0x00000219A9530000-memory.dmp
memory/7004-3801-0x0000025258840000-0x0000025258870000-memory.dmp
memory/6960-3802-0x000001C6019D0000-0x000001C601A00000-memory.dmp
memory/7028-3803-0x00000204C9450000-0x00000204C9480000-memory.dmp
memory/4416-3805-0x000001A0A7AA0000-0x000001A0A7AD0000-memory.dmp
memory/5356-3804-0x000001CA9E8F0000-0x000001CA9E920000-memory.dmp
memory/3212-3806-0x000001CF019D0000-0x000001CF01A00000-memory.dmp
memory/5660-3808-0x0000020464C40000-0x0000020464C70000-memory.dmp
memory/3800-3809-0x0000020809FE0000-0x000002080A010000-memory.dmp
memory/6152-3807-0x000001F2AE540000-0x000001F2AE570000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\71bcd0eb-8db2-447d-8634-d63ec36245b6.tmp
| MD5 | 797684f924e5887fd19bf3e3db752b77 |
| SHA1 | e19a6086c2e87eac03c802737f40e7ff842fa44f |
| SHA256 | 1dc3edd13c8c702426d614addf5ef1b5380cb78b7bff7886943c21c354cada0a |
| SHA512 | bddf7202395db21d5dceb3f91338dab3f85586abff64ce78ab7df369b8b17b5fc337f2318822701c652383f7cb009da2a1e931f15676cdf1f9b3011b815625eb |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\images\weather-qr-1.png
| MD5 | 5cdc09bfeb0cc136c4b8e45114c8b910 |
| SHA1 | 9d15f710e94409fc854c30630d70c66959871410 |
| SHA256 | 70697bb3558c12efe9b34ca34b05ff39dadae04df9e4928e0de6811b3efb3a99 |
| SHA512 | 29b8d495506291d46554e0a3951cdcd6fcd5f3c43fb52ac15c4bc13180d88fe91495c616c3e12a2c7edb7a2d64f90c391faa539199ba7532c45fcb827270e131 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\images\[email protected]
| MD5 | d336d499edc3d7205948e09647ab5826 |
| SHA1 | 797b756310da1f67d3df61c821377992a305cb6f |
| SHA256 | 63f3d2622f4927d830412c8b089dfbdc77dbb880f9c49f072c6c8dc0b3cdbd00 |
| SHA512 | fc0d6b3c8ae83f3db7c5f9ed4a999b090b2a1e8fd80f4b91ce1a42f804cf8c8c49d03dc0f362617c0df130a7b607b5ffe36fdc0edfa5f4a18b308a4a66ca8472 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\assets\messages-86fb7e29.js
| MD5 | 6d62c5de88a2381b5627e0d2df7b9a30 |
| SHA1 | 08c76dfb73e09780b0b3f98e5da414494904417e |
| SHA256 | 068f97ff81dc092e4d201f575a2d330a0f5830e847edc6e0e80f8a97684ba75f |
| SHA512 | a193d284bc5c017353e8ce1a51f2449e2e58f0f35fbfbe8173f812bfaa91840f2cdede70897c64d271601f8836ef4f694dc099c2271c18b448b9892e5043e291 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\assets\index.ts-7d59b331.js
| MD5 | 64fa826b6b9bfa910fed4a18c6a12c9f |
| SHA1 | 265f312f8187d56522441f869714b9d76229bbeb |
| SHA256 | 676f44312864a5e6e41bb8b70412ac265b6a293b791679be10049c17fc62d4f8 |
| SHA512 | 32b7d2a64ace406caec91994f6eef6551fe982876e5ff3a5d694929e0fbed4bcd2c7c53b879ff5a32ada0ebd35672e50db30a0a17f39abcac34a1cd13a61abfb |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\assets\index.ts-5c6f3b83.js
| MD5 | 52ebda260d370e60901faff13e8c9828 |
| SHA1 | 4681cb8093a4159560a8103dc32787ffd55bfa29 |
| SHA256 | 8146421645c3f1f6af4e87a3fb22107220ae417717d7613bb291a0fd330f8437 |
| SHA512 | 283e4308b2e9a93d3871853a0cd17519b39fcb29fd3e1457af8897d9bf12ff5e3430164c63f4164768ecf936e4cd2c48b8b86037d872a9e3c9bec29a9f91a5a0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\icons\icon-48.png
| MD5 | 2184400582c25500a74577359a1f7e7b |
| SHA1 | e69eecf84f7d2d98bf236edbcfc143fa42d01bc3 |
| SHA256 | c6c3593c7d0af5c9a7f2e26b98ef2629e392c5da87df80653d94ebe412d5c9c0 |
| SHA512 | 24858ebec11fc0bb586eb2d6f555f5e798ec9708ad89b0a94957a1537dc150a584b70865d7fed53d3f122789812d390eb6af6b68ff4cd93296b2b0e5a21b103f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\icons\icon-32.png
| MD5 | 9caefef512720012470700a11b0bd456 |
| SHA1 | bfc11bafa996fbbce1566a569a79d5d72b08f1e5 |
| SHA256 | 82c0a843e1df5cc10a8c6beabee8416281aa89c73798d7bb6a2cf4a237a24ae0 |
| SHA512 | 3bb42b23babd54cb902e595b84a398ad5b2c9bd2e4bd4951a8b0cdfdbf91f6d0e04bb1fa944c54d673babdbcf0400c1947d0e12fba8057c3f69ab1e61b89aea1 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\icons\icon-16.png
| MD5 | 46c4711e8452178b9c2471f9c59c2667 |
| SHA1 | e020f7ba4a787f840d204525e8eeb21d0c21e2be |
| SHA256 | 4e1aed06fc4105c64aabe9580069d0cdeec3464a693241e7c02771e1beda860f |
| SHA512 | 42f2161205f28003aff9ea4a8bb33a0a0ebbdbb9bb5e9446efbca4f000a4315b2bf7184d79254c148da40597cc15bf8f22a02a3da78cf5c9026ae35e4bd695bd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\icons\icon-128.png
| MD5 | af719a0c95789b088fe4b9f82dd5ee98 |
| SHA1 | cca49d2a728cd456b450cfcc20f91acf781c3105 |
| SHA256 | 5b861963c613fca1dc4aac9a416e43b2165b05a4277478f74b7f6562a378ff5f |
| SHA512 | 4a6f77684b3bc459897ab2709754849868bac64f4e099c1e74970339c944738278454d6c043ee8a2a0337e9891e7e7126bfc41e6fb0f5fac544b978ae36f5082 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\images\[email protected]
| MD5 | e86f7685206ae12b271a4c50620f1f81 |
| SHA1 | b5a96bdd23787dc994406c408c8db08cccffa646 |
| SHA256 | 28cb433c90e6ca9cfa6aaeb6ec60ee2c98d02a255d671c7c47689f9799cdd14f |
| SHA512 | fa2fb8ca2050b13193898a48da639673e706b156b666e8159b6a71d417aca7490c4faa8953776fded46226c7ac0b6465c44729cb452fd93fc961ca2bcbaedbba |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\images\weather-bg-1.png
| MD5 | 8f158754f161c02baf061d230c993455 |
| SHA1 | 41b21d1c3e2aa029ecc77dd6aa5b174d0eab34bf |
| SHA256 | 0055b3b2ca2078823b01d4cf064d4ebfac5cbce03fa38c8b5e920b92b3b47f6e |
| SHA512 | 8e417897690aa540ffde4ecc541a7a0a7071f355b6b663601647e6099f67310f540a40b12f6c0a2984965123d9ff3ac9e78f0be7b4abe2d6bc9ae941fd869106 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\src\assets\images\adblocker-bg-1.png
| MD5 | 404ead15b3040c2a16cada6a18088aab |
| SHA1 | 57d6d1b3d601532d1825c738ee51d0971f137af8 |
| SHA256 | bd474396ecae2864798b9b33062afe3b599dc834db30b6a2f4cff0d0cbb9f9b8 |
| SHA512 | 12173b41f487987aceac82c13f63b1318107c48d6803dc1f89053245c1c08d092761399ab397da44f0ccca5d9ee3c79ab98081cbdb25a78ab5b97f0b52a4f784 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\service-worker-loader.js
| MD5 | b48149d66d4bde2196c003629e79ae5a |
| SHA1 | 276944b5796793effe150b05d0e9a8c9af89bfde |
| SHA256 | 22002a97ade52f1ede27d832dceab496337b59a6b6e51699d4fa231502fc9f5a |
| SHA512 | 89edbd1c24a13c6516cef4d23421bfbaa61a7ab37662e393fc27c4a21c94b02a71d348b55f6f2aba66b6cac7cc2f0894487241664672bdd92f113a07984c7555 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_76405756\CRX_INSTALL\manifest.json
| MD5 | d1b209dd9c422ea50135dc2bb716d238 |
| SHA1 | fc13c64e6b1ccb9561e8ee0378dd1418b39e401e |
| SHA256 | 14abbebee800bc6e73c8302fb892faf2c9ab6df5ac2a8eae66caf583915b7d0b |
| SHA512 | f9641b3f7bf52d4dd9f3e223e220a97924ab8fef6d472924f30b15c91414df9d72ec4de00ffbfe9b17c06d8398cfdbe80095b1da06c3b0683ed6a751cc0f8c8b |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_625300764\CRX_INSTALL\assets\index.ts-loader-13a0f470.js
| MD5 | 37ba3a70722df270b2f69dd60db8f1dc |
| SHA1 | 8c61f83d7e13b5efed2335a14bdfce2463fbaa9f |
| SHA256 | 13a0f470c87bf4ac0613fe1c0fd3fbedd5ce1606cb2d491fb93b3cb5bb2e2d75 |
| SHA512 | 75d1e0556a2ecc24cc3a06619b1894973d391fe089c59bd33033286de99799968cc2137b0c0099d3cc63545ef317ec82cf3534a2739c909644bb01137401d10e |
C:\Users\Admin\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
| MD5 | 752a1f26b18748311b691c7d8fc20633 |
| SHA1 | c1f8e83eebc1cc1e9b88c773338eb09ff82ab862 |
| SHA256 | 111dac2948e4cecb10b0d2e10d8afaa663d78d643826b592d6414a1fd77cc131 |
| SHA512 | a2f5f262faf2c3e9756da94b2c47787ce3a9391b5bd53581578aa9a764449e114836704d6dec4aadc097fed4c818831baa11affa1eb25be2bfad9349bb090fe5 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_31933164\CRX_INSTALL\icons\icon128d.png
| MD5 | 1e56327668359bfcae26c27defb340ef |
| SHA1 | c91bde25817086d9b1319c20b1710b09365a70e4 |
| SHA256 | 7ed951f0a157dac2b42a2b003fe76e085017cf425c827b05bf759ebb55db3d6a |
| SHA512 | 5cb98cfe15c3be976ee6144657eccc05d2104bcab2b8368d1a570395c1c726fc81fe4aa09236fb8dac12c43bf12020449403ec6400c4d9cabff879f4dcd656e2 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\manifest.json
| MD5 | dc94fa1e156d18d0cbfd331728c2b479 |
| SHA1 | ad49c0983ff019486f468a812346f47add7644e6 |
| SHA256 | 14044fc911ce7cb164a39b669dcd52b060b25a667283b252ab44162c6f495ec4 |
| SHA512 | 6294414a18ba3086b09de15885a6adaa2d107f8659bf042802b8b9da63053eb9f5239cb1b780860ff2616dba4cca8040da7f77fe857fbe3de0376fac741729c9 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_31933164\CRX_INSTALL\icons\icon16d.png
| MD5 | 03bf7997beebdef943da84b05cf298c6 |
| SHA1 | 7cd4ea284ef975b358c8dc668391274edc8cd1c2 |
| SHA256 | d5ada7064d7ee67144d11a33a3c28b7856912f4989c5213978659a4ef965409e |
| SHA512 | 77d68841d5c3ed12f91f8351636feebcb41f4e6984b239f72462ff5f45f2d7fb92162d2f54c32a1c3f229038f4b0a73c06054c9adf9b0a6d03f20a5e9cef68d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 578f8c62cdb6d99336db14fee88c4d71 |
| SHA1 | 8b11424851841ba17b34f401e5ff7f49452ce361 |
| SHA256 | 1a4c0bcffb9b24817da72aeffdfcd7af197d969578749c1c40a3b30858903cf9 |
| SHA512 | 20acb75c7c4fba916aed57bfce90a7666ec9b92291a31dfe5a99a93a4e80f579eeda20f363e05a652402bf09be94ed83d3c149ee9edb2a2c20731d06f8709003 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\css\reader.ca8c9b0f.css
| MD5 | 7b74f1b3f2961a628d29f5ba4e3401e7 |
| SHA1 | 88e4f3ba7abde61ff35d9981e743f786bb46c60b |
| SHA256 | c81c0bafba038ecadbf0c01b981e75d1cf25e017b3f25d9fcc005b29cadc2da3 |
| SHA512 | f2dfd9a936ab432c42436fdeeaa47f9a4c5d33ce65611478460b5041fb5b28589f7b8c6efc1941b8428ef8f23922dbaff4fa99b9a7eef9cf9b5b50f92e9058f0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon64d.png
| MD5 | 01e4b6ec21791d162c92f49d7763e0d3 |
| SHA1 | 3d752663c717f363328159a3094b66a4d2a5c027 |
| SHA256 | 2fdfb515ccb51789e74df228e98001430e21ae5b6c5e431272507bf2b9b00539 |
| SHA512 | 542b0c35e08dc981f06ad3fe4a3069b239308266527a1d26c5cc5a6e8aba1caec17e21781b85df4a4a81ad2f3cc795c725c05a1d75c4d9a68ca5649bee3e2aa9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon64.png
| MD5 | dc39252248265c7d25d7f5427b5f924f |
| SHA1 | 8604983483be5d2e8aa688ed859836779ce6873c |
| SHA256 | 72ebbbc69ea5f2374db8f108b76173c2f80bf5d649650f64abb251684b3db74e |
| SHA512 | c844ef354b95a4db22188bc3d66ae5e4d62e7e44f6d5dfb1fa82036f4ce3e50bc1a5701307bb06d65c8800130c0126de0918ec1a019c2ef4843543c0feff2a96 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon48d.png
| MD5 | 947bc5e0d15be2926c11d5a68a4b67ff |
| SHA1 | 75b60440ee2045545759d4e8f1720623afaab0d5 |
| SHA256 | db48f163264c1f4aefdf6b4c26d9b5423e4bede72b99ec3ab85071fcc42068a6 |
| SHA512 | adfd785a41eaaf4e73334cfc2bf766e960c21679de48af8b8a23a9f6a44e728833c0f7180e009418d80f48ff71fcbf752fba709fec7d1f200caf5b25733625c4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon48.png
| MD5 | ea39e52e0ebea8dc443c3763df1fb7f2 |
| SHA1 | 73c46b248f755af3de10165a2b0d6c4946000c94 |
| SHA256 | ce40935cdecdbb0be009f6df6973ef9a737ff44e788550efd941111037e208ef |
| SHA512 | b84cdfd52a88bb087a7caf57a828960e27e1f1d7d72e7bee61516d125ac064fca2f86e438d8de2050afa6e693d83526eff5f12823d9507729bc067166b7fd1e8 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon32d.png
| MD5 | 7734bb666bb9fba04c15c759f9fe35af |
| SHA1 | 16aaae66e98153ae52b90346c6a4559a8e3b6fed |
| SHA256 | 4d6b2fb743bdc348a3babd96a96cd6bca6cc191bfd02524737a491ddc99a7ef4 |
| SHA512 | 093209ae6d0a3aa9f909be1db3cc3be46bce496c42238f2e9ef4bca3c63b5d7c68de915a23163ec655069f81336357b281d5f830c1ddc8f0a3324d0d247de106 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon32.png
| MD5 | 5978dbf06abe1f283514daf84bdd0c54 |
| SHA1 | 29c2084e859686315331a94c0fe080d6505bdda5 |
| SHA256 | 9fd76e5d4ba12a800a2368f26639a0d81b542bf65fd9f7cdf9376a9e50e0d66d |
| SHA512 | 67d24797dd143c2657c8a0055e2b82bff76f297c72ff7ba26fc8d71c761e067ab14a0354958710f6660ca614bb21afb2fdeb34d1fb5d20c1981d9a723e784cf3 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\cmjgfhnpipbddcdmmbcfjodjgpfecdaj\1.0.6_0\icons\icon16.png
| MD5 | c63f512ccf8d6ef497fccbc53c1f950e |
| SHA1 | f04e832d89b4eb315d6979780ec6dbfc25361abb |
| SHA256 | 09780ea3eaa0a432b03214025febb59c28fd6e105a775f065037c5e9720fa150 |
| SHA512 | f4bd4dfb891c49a36cae8e796e6333984ecc081d259c496fd5015683f9779cfe1ccc53c31185f6d2f14c46ffc66032f6a69e9698baa12c5b9b439a7200fcf5fc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\icons\icon128.png
| MD5 | dd8ba8258321a3f8aaec8becdc0c166f |
| SHA1 | 62563261ab7a9078282dd81d9e80eee559dfbb28 |
| SHA256 | 7fc819dacf90e4b07bc087b1e51f1287bc859605341e8a1a5404adac94e07bd0 |
| SHA512 | 0701625508917c67961132d661cd7742290d2cbd549e5d78b0e9ade97a6734a6b286b689f446a728274db9c985abfc1df36f70a16d5e38c50b4111faf75ee4c0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\js\reader.b6d0bc02.js
| MD5 | d3125cc7ff4b77b50ed5985fd60365d8 |
| SHA1 | dc9ea3a18a9373421063d0b25ec15c163b96f42a |
| SHA256 | dd5b116a1f7a984a691fa43ee0fa5cbda0cc59daf64bb91a56b29b9d51bc9e78 |
| SHA512 | 15a88b681dac690c60afc5d60cbece38bee90895bafa2bbd20dd64ab1ad4006843813ad651b679fe5162fdaa0a5fc82f676687b77b9009661e808ec7734c2d06 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\js\chunk-vendors.4dc0582e.js
| MD5 | 31926ac32d09b11207381a26e0af4664 |
| SHA1 | 441ea6b7e6a1977726e192401d4622baf4b60c87 |
| SHA256 | c94db3308a5553ce30282d8baf4132d9bc37256952dd0e4de78fc9fdac1b0a4f |
| SHA512 | d144c7baa9ffb8a47db16cc90b7ee0c340519efb0334055871096171061384451158909b76ca9cc68ab1efe0cbde054def32e6accf5993c675c500e4b3d25ec6 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\js\background.js
| MD5 | 71215d3e85aa687d34ae441706bc3e9f |
| SHA1 | 597bbec974c3f5f5b2eceffb1dcb870b7bff84bc |
| SHA256 | 55345b40109f7c1ee0e67da02202919b7b23e47b14651a19986bb535d2d8bd8a |
| SHA512 | 2d19ea31a5903b6d638a6f0dbd27d69b61dcd4d9e8e1f916de8f4cee9c1fadc2370ded95b93443493b718b30c16fa5ac61004caae9d144dc2f8ad77144a34b12 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\_locales\en\messages.json
| MD5 | faa2541f084f6c737dec29aca0e0f504 |
| SHA1 | a45de8c939d9eddaa256ed3b90af02492d3ab3b1 |
| SHA256 | e2768b7e87c9ef697ef77987ee01895262a7baa11b01067861081f12ba1151cf |
| SHA512 | 8c712f7e716a5905f539204f6982d097c8eb132a0dc72cf9675e0e4cca1eeec81ddc3c38a6e5104aac29a9d77d5242d060f6ec4435a17d56fadb8cc152ddfde3 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\hbgjioklmpbdmemlmbkfckopochbgjpl\1.0.0_0\preferences_schema.json
| MD5 | a192304f63ef26c80086f835cc4b7ada |
| SHA1 | 6963e90e752209132b728a938844c4c64dc94d43 |
| SHA256 | 4f72309f9378f04b3f1cb8f46b031ff513ac63e5056d96272f2bdc6d39dcddf9 |
| SHA512 | be619909cd0c3465966a4018847310c1493bfdecad6f07bb28293f3dcea73dc377f5d52cca040d626368e17828eae28384fe51d20c4a71925c5f31eea8e18561 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\reader.html
| MD5 | acd703620c37c04eb1f0385e833f54be |
| SHA1 | a8cfb5c47cd845372c1bd0478986396cbdf0050d |
| SHA256 | 5029ca5e84e047ccff7049ae3688eebfa94bc1db6d0396eaea689c5347dd92d8 |
| SHA512 | 0e6dbb1960671f3bc60bcab1fe660499ed5a38ade07ba6ed9026f10ba22553b56d514f5aa4387d7422f6cada2ba48041db4fbc9564ab7bf79df79f8bb149c94c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1412570625\CRX_INSTALL\reader.css
| MD5 | 4fc892d96be3a3d76aebb4d779af39de |
| SHA1 | fffe9cb7cdd70f3f6ef28de42280847cd7919309 |
| SHA256 | 2848789361e63ec9b4c2f91c78cab85a9ecf77aad87e3506f2725c1e8b4efa84 |
| SHA512 | f90b455d8fbd655468add5b79f53d08221e42d1ba1c4598ce015c3612bffd6bcb98f2e76092df31168dd9fafb13f442648e4102d87b85f11a5ccf5271909d306 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_31933164\CRX_INSTALL\css\chunk-vendors.edf76334.css
| MD5 | fd22bee2dd34c1fc022d31f960eb963f |
| SHA1 | 07dc55bfc963c7fb82de806fd52bc5edc0de6603 |
| SHA256 | c47a61bc577a25a605fc18f68ff5dd1b34df73dcf4ab27268b6f554ead53434c |
| SHA512 | 25f8541a4fd517b0938904ba1d9a1f5f665a1914c6d6435e84a3006ab1b487387e8deb02b0ca9ec23f72e5da10b81ef6d29f999e67f96906553fc6e6b64261f5 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_31933164\CRX_INSTALL\icons\icon512.png
| MD5 | 1141e69302c1ced1faa7ef9da4829d91 |
| SHA1 | 92869f3416a9df38b02e6d8ad0aa63f390443b1b |
| SHA256 | 979d92ae59f80fab2a041ca2d8b394dfa2024d6c9d4d30a28dca8e7accbbf283 |
| SHA512 | 9a68c8b46eff722e08a9d721d3c244b9d636da07ef9cc39b076d83cc370c784d73fce8d4296cdb2e130ddcce151e3984f738b26aaf1f6bc8063ad7f7dc9cd0a3 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_31933164\CRX_INSTALL\js\content-script.js
| MD5 | 02149d11b1d64a05e07de955d84de40c |
| SHA1 | 20a0e6cd068d8d92f3f3946968983ffa79eff391 |
| SHA256 | 961e1d01f501a060a9aecc8bdbf7ff5a332a7b4f8d7d44c5daaae39cc16d6270 |
| SHA512 | 06c6af5f21e10d3bcc40543820249e2fa268fc8c35473f8402bccfd2c6070e97ed9ad27da28b910b2bd34e5eff72b18919d5acd9419273d58f0cb76a5d330f1d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\css\screenshot.2318cbb4.css
| MD5 | 1f75aaa8da687a4acb1bc3e5f3b79d3e |
| SHA1 | 3a13f6d52836f90d895b40bfa70752362ca2f2be |
| SHA256 | a1e7e1d010612c3c7b05ac4b685e23e38e15a8625cf216faa2f714c1a3367670 |
| SHA512 | 96a0339e910b6f5f73fa65c7c770eccd71723884387da24bbf37d5ed337a4296c4471ae7b214d75dd46261c8c9ada01193df56e5615de37184aa37fca841fbc4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\css\chunk-vendors.b71cb11a.css
| MD5 | b01bbce9ebc38e9b2c06cfdd46e308a6 |
| SHA1 | 08e7f48270296b905fb59b84e9c61214ff02c845 |
| SHA256 | 6d20fb764f5243dd7f8ae359521ebaf9fb226cfa88fed4e485d494933954045a |
| SHA512 | a35677754cd9f42825c2e4a896aaf6035a93ac2062e1b69091d536e5a4332b3714caf5485eb9f1ee38973254c141994c0d57ecd00407926598d547bcf43503d2 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\icons\icon64.png
| MD5 | 6014010055064fd6c52f878f0915bba6 |
| SHA1 | 48623a60e65b680220eace73e8a4cd64d518e3a0 |
| SHA256 | ade51ad2884b6d45203ff221ab273f7f4d00b48466d287624e30235c31d5815b |
| SHA512 | 480d2bc766aa2ed4a8cf4911d8302f6659259b4cbb0468a4946de9e28840b1d939b466bb34b2e816627b80fda944918fca43d33ed486296b3bc007b1c3339cdd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\icons\icon48.png
| MD5 | e176ec36527c7e33dd8d5bb499de8b28 |
| SHA1 | 4f6a42b63c1c2d1e83fcd36d287aac65b278ac86 |
| SHA256 | 634e4dd9a4075c853710fd21ffce989dec4017ce5dd53a6cf9d399ab0f02f02b |
| SHA512 | 7b9eea877056edbacecdea58625ba9b7823fb0ff93fec1fa37decdb909fe06782c089a265942b74fe3b8eca847f70d4e9b360788a1f2fd82dc66c34619e2fae5 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\icons\icon32.png
| MD5 | 3859b2c6ff6122ca349034a19ba44446 |
| SHA1 | 1889f72b5e05429e3edec6f8f347ae3659555d5d |
| SHA256 | 28563cd75104bf3c62e053bb0196619969597a839f259442992d5eaf6a429b0d |
| SHA512 | 6ecd261016be328ac07c49c734903f9bba7f24728437e87b9e0af92d50d2059a3f8b04ad7dace87b4a5aa9d526cfefd3d06e0158b02b00c3aaae0e30afe6023b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\icons\icon16.png
| MD5 | e9241693817d03b293143eebf8f292b5 |
| SHA1 | 089213eab8f9b4255865fd2f40fdb57f705ff019 |
| SHA256 | 8fe0ef8cede16f0c6b2d0bb6ad54c467cbad370daa335199257a06b04ed7780e |
| SHA512 | 5762758bb14f1a406e828c4a5e0bba51b09ba20d3f176de9de8fe55088a31b7d02fedc4233973c136f16d1201fe326ee804eba53dcd77d666a21b51d1909d603 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\icons\icon128.png
| MD5 | 69d8aca578f2211913027fc70870871d |
| SHA1 | b055695d2c80490e3b2febde12dcd06b393c7596 |
| SHA256 | 4b162b2ff5c2574d3a2cc3306cbc20be4111f163334d263308d7ebd2ffd605ee |
| SHA512 | f27837682307c3e71e0ddc4b868b2e4c2f58be8569922f75a1b605d8c8da971311e121e976216fa1a913d7d180f9a7851fe9cdfc962f6571d6d00245390ef222 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\js\screenshot.cf3394a8.js
| MD5 | 1a8393383c20555b0b1db3f1ad8c5fda |
| SHA1 | ba0218d073816a897af5713858adab53faaa1fe6 |
| SHA256 | 4330837a55f8f307fbca14ae44f7b21daf05758a5bb779e052560c0d1fbde46b |
| SHA512 | 3c446f00435c30e7c7908c7e032a3d67593e1a4d0b841168644c15e579caac3b3f5cdc7c20dab600dea13df63a6e459396c14179820f843aa65e35d1d1193f09 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\favicon.ico
| MD5 | 766e3aa6d6cf1e3e38a0fda74dfa5e95 |
| SHA1 | 4ceba6cc69141a7dbd9ae10f541379e1ddd12c47 |
| SHA256 | c022f7502beaf6694716e90907598847e31cd52e5f74b5616f2ae67f1848c76c |
| SHA512 | a4e930d54934ece626c96f255eefc132ce4c64356d56dea7ac93ce9215dab43cf1dece6fd928113f1741751cc009b4151ba56abffb08506a0e7bfe5cf6dcacd8 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\stock-tracker.svg
| MD5 | 0b62f270901ceed5545f72be672b0acb |
| SHA1 | dfa877df1eca33cca5a2249141b906728454502b |
| SHA256 | a2418df713a7a71c6f700a3f5f80fc48f2a2bc109351b2ee8ed164f8b16f64bf |
| SHA512 | cb808508ca098ea1fd0c6d57265b50ac5148d7703f4488932ee8fb1b60bff11ad87559dc8d6ce74f0c46feeccb92185460ccdca1044a35d9e555fb0bf9cffa11 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\stock-tracker.icon
| MD5 | 4cb876ccbcecfa5c076be38281637b5b |
| SHA1 | c48eb2caf40cfd01a5862096ec265080d6c7c403 |
| SHA256 | 506a822363f3d7c2796f2336c258cad639fcb245906f574905971508455f9e2b |
| SHA512 | c45abfb7df3c9d690354d2b3103485b6a02a7467cd9d478b1c9ec1363750f518d4229a04e7ffdfc6ac033b4730c1f98cfb06f00970240392ba1e928640b61e4a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\icon64.png
| MD5 | e385f501b1923850e37ad98f9f1e37e8 |
| SHA1 | b57f5e0cd0b9de0d2607343c86968120064d528f |
| SHA256 | 43c3bf68ce633f8b4283f547bf1be497e30c4c3c6e562e2d2c8570a65535bfc9 |
| SHA512 | 12d85d4da9e7d66c4f3560c90c86751d9a561c6d07658537aab8ef635b90942ecade8b0e0800288675d8abb4551036e25c6d08026afec2b5583cf9dfe9eddd4e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\icon48.png
| MD5 | d69eb911a9ec63f5796fe50a065275dc |
| SHA1 | a6f40aae67d470db57e2d82d47c46cdeb810333b |
| SHA256 | ecc4cc9f836119cd92930b47cc732fc13a30339b3040022ca61b9a00af4fb76d |
| SHA512 | 7c10f60a44ac386fcf6e53a771154832b9c617c8f091900ebfeb782677d9810220ef96981d1e6fe281efa61fe4d04266c4753cdda3f7e33a07811b95ea920fc9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\icon32.png
| MD5 | 0377d965b3e9c9412945d68eb38c5684 |
| SHA1 | 6da5dba87dafa41f44733b8b6b075e6637ff2d20 |
| SHA256 | 85688341249de64a51f43a3c7440c5cad3818e760b526e13bd9f87c265f28986 |
| SHA512 | 838f8cf510c0b5c329ee32db40310de07717748a654bb14c7eb58969d3a5f243323d944bea641c06a74cc2cb5557804761bdba3f7834f397e0fd015657bec85b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\icon16.png
| MD5 | 89474cb9450ad0ae6d65449236ac9566 |
| SHA1 | 89316b0fe9c9b647e24455c773495f8d86273822 |
| SHA256 | ecebcd99bc3c226981d99cbe94a5924e50010b233c0efa4f201c7e726d280843 |
| SHA512 | 0e1c3858b1b940a64cb1842de19db53639bf37b306ce80b1d9ae52b977c0da6f9d79abb403ebaaf8bf9bb4c190b4febf2d66bae8608423fbb0cffc62b5efeea0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\icons\icon128.png
| MD5 | 21a63fb52fa7a00bb4e5dec7df9056ea |
| SHA1 | d08b36ceccef44bba2ac612bc1041d6846485f59 |
| SHA256 | 107cb4d0befe2e69f7c2567f0dfee179d8298c654e3bb8f2a4ea571ff8564883 |
| SHA512 | f4484f19bc6123b2e8397d60ac34b136ea2a10c8f7ff848176f3e478fb4d2877d51fab9dbb25e3609dfeed9d2c2b744d73314ab3464c192909e0991dec27c655 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_103252494\CRX_INSTALL\manifest.json
| MD5 | e84721722bc3261e094b216be654ed32 |
| SHA1 | d780c71de54a5ab21c1e9e2ee0d17b3aeddb0f5a |
| SHA256 | 13365117c6d5dcc435a03695e4dd836e99860c78f6bdc300d41985821d9e8d61 |
| SHA512 | b75a4f042985e1ce1fc6a40c843778f1eaa8a50fe6af105ac0a7168dba4db4fa655e3d3d86a99910021910b58314a6acb7c26031cd087754935ff34ff8c2ad1c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\img\wav\input-unchecked.png
| MD5 | b96b35f79cf720e6e62fc6686cb1e12a |
| SHA1 | d65a5bc7076ab1d7fdd14714f4bdb5c8161fc8e3 |
| SHA256 | 1b6d466a9a6fc9e0e4ff29f15e5af95db67647a40f22a1a29c52709a600414ce |
| SHA512 | c496f6c1857360a169fd3c55fe2a30e8e8d0feb564ef96a3ccd63e441533b10bd5c0ec3533e3a17e671ef2c64cee6194431bc12a1c204e72e1a92b18bd0ede58 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\img\wav\input-checked.png
| MD5 | 61f5683c6a4823b5eb8aad1d0ac61e9d |
| SHA1 | 9f4ed602be964bc86d5b64bf91216b6928cc8ef4 |
| SHA256 | f0a2acc7ad20df6ca4ad2a387399fd0631a13cba75dbf8e31113cec5acdfbd31 |
| SHA512 | c9018e2200d1cba3b4fb9bd02d90d0ed54717d053f8213d520afc3a4f6f101e2da16f8b0ea147de3b9366da78f0c9be65c0b079c134dc8edd474202b5c64a513 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\img\wav\icon48.png
| MD5 | f3329c8783d871495ab1225a8c5419e4 |
| SHA1 | e018ea05bfd4d81133cd9c986d284587857be808 |
| SHA256 | d9a73b74e330795ad02e3f93231ca5d553a291123dbc576cebac111986ae73ac |
| SHA512 | e4f7db41b61a28e5dbc71effbaf38ee616ce1824c3b5e046aecaf9be844d26f62c31997189efc23fa73dececfe476614b562eeeb3cbcc29c577d0f5e4176a07b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\img\wav\icon16_disabled.png
| MD5 | bc74911c7788a70b10efe4d2713acc37 |
| SHA1 | a8ac2fa5fdb01a4b722e84d116eec2dffe83eb81 |
| SHA256 | 19f29161973cf017d6a1ebd78b052f82dccf1ab0c2c7809f40b228dcebdff171 |
| SHA512 | abf845b68684a6655322679d790ac27263f7eaac00ca327d699c6b5e3563c56facd5ab09fbf30c7df9e1fbd100195a8b41c63899bcd5e12ae3ee3eb58563a724 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\img\wav\icon16.png
| MD5 | 02c1bc6aa4b67b1ba1f64efe091709e9 |
| SHA1 | f5b282bc995f9f4bd9ce9d6d0f27bd5b28c50236 |
| SHA256 | 245395ca85f1eb95f2b7c8bc53a8cb81f517e869ba11e900187a4224dc6e8618 |
| SHA512 | fae8adaef105b1192f6fc185937b647f332192246a5ac17a32162096c9a4b1071f3e82fce38dabfce77633cdf8b0eee4e5d091bb30319142e3575c5ea1366bb9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\img\wav\icon128.png
| MD5 | e90758d19d11032ca68d1c277a675c07 |
| SHA1 | 45f07e1a29c48a7e3a684f630fd8b044499ced1a |
| SHA256 | 4140980fddd63f9ec570045e490fe17035cc4ea13f04eeaa5d9054e9ddf15218 |
| SHA512 | 3e317bd619ebea3fd3f883e696571eaa610db73b5a3bfcefb8cf505dfc7f57aa6416d8440d4744baea9ca57f024ad7af6dcc59390a633f41c7b7ccedd0a870fa |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\lib\components\toggle.vue
| MD5 | 96419cddfab2658ba06491554eb9ee4f |
| SHA1 | 892a1b6fe0e1906ec4b273c07114584836526bbe |
| SHA256 | 5cfaf070ed3bf6c38bc89fc187c0bea20ef4dd5537fb9b968d69d067dceb93ef |
| SHA512 | dc23dd4499211fb59b290427ead5b043519053c2d82aacf2d65f081d5c7adc31d161b501d03358620a119620ceb3174558721bccaf343d318a3cc1155d4e2df1 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\lib\components\panel.vue
| MD5 | b4c87bf3be0d52f5cb3e1d3355225dce |
| SHA1 | bbee0ced19039e58fad74fa9c4319edb2a2299ec |
| SHA256 | 84acdb6dfec93ef4c5db326e1685bc618f63d515b6dc9203d9cd6acb467eec28 |
| SHA512 | 78ef255d4f24972f4bd86923853b9999537b08426353d9759b51741abeff104bcd211b19e5009b40c39c0b8f20d5bf27eb8cd9749ebc942a21f151d1bc3cea4a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\lib\bg.js
| MD5 | 6bf27be2d4380c7a318b3cdb75eb8c57 |
| SHA1 | 889d39b3b86eb05550aed6dd45122f5a5473e7cd |
| SHA256 | 469599304968595796a9a3ce21ff20c17b1831b48e3c9a30aeef61468dce3a0a |
| SHA512 | d561d36577709dedf9ffbea4cae8148dfb0896b2fd2e7d9ea1df0ad1ddf704f7cef6cb4465bae11fd51309bd3acd5b80bb81440c4e3a27ad9269a311cdde983a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\panel.html
| MD5 | 5b20a0e44ea48a2857e2c1f251c2cf92 |
| SHA1 | e6fb1bcc6f1483da9f09c1073a5faa59a4d9209b |
| SHA256 | a0c0c35d5d7b106dda2227d218a76be9035c5ca4bc97395df0c5eeae86b6dad5 |
| SHA512 | ce71c048efaa8a7d81f1bd290306e31757a94fc71fbc031b1d63068f7f2662824882fdfefc75b9071ae61f3b41318904f4b8a773407061ef593d8e2f997dc52f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\manifest.json
| MD5 | a44f02ac0d982d6ce172812c53f4dab2 |
| SHA1 | ec343da5bdb3d69d8ba0339d873c945e9ab77d3c |
| SHA256 | 50e42d8aa1e357e3b2d155b61df564d630cc6e6ed859a964558e4a818b23d6a7 |
| SHA512 | 0838189606264fec435d74b29265ed37766e03e3bb7000719b573c43b34d48b27da47581aa35be8dc54c8e25c819e702b5d337d92933be208ec87f36b6658e9e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\background.html
| MD5 | 34104d719035cec91aa3cf92d6aada98 |
| SHA1 | 70f4a4aa92cc68537f209bdff80488ebfbed8906 |
| SHA256 | 3f9745f512ba2f2724f18396b16c9485d753350882a1ec697fc0eec3ed0b1660 |
| SHA512 | 1f5b04e3c9e39266c7c8cf0dac64d9b592cec118c2efceeff2da07475f4ab72b5d2c6a9ca416e80ef1356228085f6e59071c3337e66add013601fcb4ff17c3e4 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_492471575\CRX_INSTALL\lib\store\index.js
| MD5 | d4f732b50b33413845c3db8f5e888ae7 |
| SHA1 | 15a3b4dd40665d5eb1356dbfe980a1155e5206c0 |
| SHA256 | 2aad1328766d0b6abaf520a55d4517fb94673e90b004f27a7f6c93b8ce7c20d6 |
| SHA512 | 6012049cf6253048c9fe1e7c094665407cc772fb7d3a20dc3e9a84a1d3b4b4e20285d42496c1cd79235c68cc3e7b4fa84e67e7393a8885f10f23e68397b2540d |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_492471575\CRX_INSTALL\lib\content.js
| MD5 | d34d8af3d1e617ae23ae8182548892d2 |
| SHA1 | aae7cc51d9d8e6a3e43e128cc09dd866f45479da |
| SHA256 | ad9d9885d4906a93459a53c11c47c070f80a4041abad4a1d28302a69014ad86f |
| SHA512 | 725e3d11b846709882cc969f1402382b49aadce36d65348c628cf427d31db80a2a98d74b49fa85c8f879a29f1f5b235b196687f6911eec0a7f121000e282c6c7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\upgrade_to_pro_btn_icon.svg
| MD5 | 29d6555e0739ea5ec736e579af460e67 |
| SHA1 | 0f081c506cd7f0dfa04122de174bf266109f69b5 |
| SHA256 | ad69930ac583f1da0eaef050d2bfcb09aa4c3fa415c0daad44dd9e0626140350 |
| SHA512 | f0a3dfd5f083daf86d68d2551068d16e93a79a3b1ce8b2a501539df398677d59f29de369df48a6268bde8b9c2d3242da8bcd4195d1f059ed799f998d56aaeb01 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon64.png
| MD5 | bb658c43b09d3b129b838168d30c6df0 |
| SHA1 | bc9412319cbf2014e663b868638da7e8124bee32 |
| SHA256 | f6b573e0e1461fa3951393cc9af2cb2a7860656a955e48ff4acfe38b8d60e651 |
| SHA512 | 1f094377dbf1a1bbcde0cd95c73f4d2d4385cce42df77be718b140417da70794c1873e8a3f89286b0f567f4ae8fb83c6dd046529a40f0bb8d75b6e988d4ae207 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon48.png
| MD5 | f25f85a0ed15e8504b18330c59e9d564 |
| SHA1 | 787d381e4373175e4d5285fc4a906daf1c6528a9 |
| SHA256 | fde5d52c90bd9c84d73932f0442fea2867b6ba5848faf20f0f7d66c6bcb4decc |
| SHA512 | 75654556d06d9b08286b8df55984e88e66443cffb041c3dbd2f17b58287cc3455abab1c535376c872c43aec932fb3a0dfa321496972e96a3fb471dee80abc1a9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon32.png
| MD5 | a67717ccf79e9b8e709dca737a2cbfe7 |
| SHA1 | 0bc7942b8a7199ab49227b3330785e6bda3b9d56 |
| SHA256 | 96d45147eef3aeabbf637d7300035c3ba0a41e9c8bc03917a00f1576aead57e2 |
| SHA512 | 283cfc1669f34b343586afb24771b40963d876de3ac5e6e8a6d8e007f228d0f560b8d71cca0d58401b77ab7cc0a827cf75e3ec6bced40cad631b88a526a31464 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon16.png
| MD5 | 9875ae2fa7bdc8bb317799269ddfdb78 |
| SHA1 | b1dda8548a8585f1d51ffd00c73e7d7006f718fd |
| SHA256 | 626cf5040f8ffec33288a2db1f8ccb7a48b130a38f4e1acc28598b274507ca9b |
| SHA512 | 37589ad1440f5800a1f0f4c5716a06a1f0005a4761466929ad898e5b8117f73b8e303e35e38b164279e8768f099246662ae6b6065cbc68b1cd2bc49aa6bd100a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon128.png
| MD5 | 43190d0efc9abb4255e990ac7b066eb6 |
| SHA1 | 14bf6a02511d273c46551bae2839c2a572f0b6b6 |
| SHA256 | 1522af5f0aa6385cf1fc34d0c818ed899beda218d43141704e449bd86947fd79 |
| SHA512 | e7c85bc4084a226ec03b817c0eae929401522b84fcc4e45c58b56c32228b8cf2294bc4782b8858bd8832a0ae482ea426965b8755a70d5aa774ccb1ad2e48406a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon.svg
| MD5 | e6060d73fad7d7b129e6fe5dba1dcd41 |
| SHA1 | d012e00813f707dff14aaa422313fe2a81df5f74 |
| SHA256 | 402bf406fb5b2707bc64db6a0ca8a4962ec62f89c34348aa04fb314783b92742 |
| SHA512 | b31c9a5df7cfb97be2f5030be07db7f9bb3efce9036388af445a1eb01be87c5ca02c2d29d53043e9d802b03aa7d0bab476bc7d47776a2e17c48a1fb7ca79bbab |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon.icon
| MD5 | 5fe1ce24abce7713429afbad8555a78f |
| SHA1 | f4ae1d7d36b2b7162eb57d17b5d518f9f4d999e8 |
| SHA256 | 1967844e9995e53ca421aef0c38545e906e8943e6d350bba8e0ecd091b6fc98a |
| SHA512 | a97d7156e9f2372c4f7fc68e3fa47b040cd8a04be9fb3512bcf98e430fc7e5b3adcd7aa789ff5626f61f476b84698ed2eb3d6c75791529738571c88a45d76205 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\icon-512.png
| MD5 | 45be0c56a04eff1836ba484bf3b3dea8 |
| SHA1 | edd521046a4a80bd02cc4da8c39ad0f52633e43a |
| SHA256 | c5354015f2e4b8b639fb45142476d2a0dcdab5590ff923bbd305416a2ccd2b10 |
| SHA512 | ebf63e1b9f88960238120875e1a4e5b5655bf1280bd04ebea6ef99019e9041712e692da0b53b67457554429b96f40a9bc83efa7a78a07d1b5d75dfd57bb4fd8d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\bullet_last.svg
| MD5 | a1064d330ca8e7c62ac7296053bf6508 |
| SHA1 | 714aa79e2f59f401447f25272d2a6c09614966db |
| SHA256 | d48e1da9205f68e6568981597db865dfa0bb8f0085bfa543857b323ccc94435d |
| SHA512 | dd8d49b0c6f0b04c6a08b9be08caf8cb3277985933c4db36614513d440ccd3627788b81f7e7839f06005723e1548281a7f7123386840d594342a5642feacab4a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\bullet_first.svg
| MD5 | 83e6138f646aba1f20e56c96ec4dd960 |
| SHA1 | 95d56f7ad12fd08411c32272f3c4a744a47ce1a5 |
| SHA256 | 40abdfa68158b57407f0aa9497bb42008445b3b948da05311d140df98504a71e |
| SHA512 | 8c984a43f052912520dab0a63e6c6761fafaae604995c3d829d899279bc65761c71c5b02a1be1161e0c7208ae8059554bbf66b3975359f4d7ee2573cba21a1bc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\bullet.svg
| MD5 | dcdead4a514f361537ac35c3c4d3aa90 |
| SHA1 | be69f0415f2cc04914a211ad1fdaa8d4b512cb66 |
| SHA256 | 381effef058c266d991dc5d62a3c88885d4549e5f791b57352327a0adcd286c2 |
| SHA512 | e30e548674a097025f23bbba5ef8219db2aaf80eed8a6a3e5317581edfe5de5f9ba9904ac5e38e2da0b4f5550a525745816d908048acd5bb2f15eab69a849fc9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\assets\background_pattern.png
| MD5 | 9f4b16ab45eb25a785e4c8307a021840 |
| SHA1 | 13dff927855dbbe551277c17aaf5ecc4064c5e6f |
| SHA256 | 60031f2ea255927a17515c9554c764c14129eb9e1b8d6b2c0b425164e027a212 |
| SHA512 | 1f55d8cb7dba6e15c503832da29c86b0e719ad9ab1c541e85fd9819a3366ce2db4a0b6f91bc61de970c4079b152d2b588bf6b512805c899f3e81d40add0156d6 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\__uno-e2de340c.js
| MD5 | 69f06da01887ee36d9f3849eb2fd2d96 |
| SHA1 | 24685a57e15299e18d1e7b37f2ccd62357b771eb |
| SHA256 | 98d4c3af6a9e0b702997f2f230f3b97d3f8dc39799357278aa1d519e59108fe0 |
| SHA512 | 191e0a8366204b8c4c208771816c2adb62a785d7a8e2ed8941d5d9f219d5a2e9c0af96e99abedf9632c028a97bd78b70c97df822145ef472d8ed5d9da296d5ed |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\__uno-33fc7658.css
| MD5 | 3d1bb2760e9972113a8c96fdfb8f74f1 |
| SHA1 | a6524827576da7b83c78a3e9efed324db20a56e6 |
| SHA256 | 0c62c72d42844f644214c2008d9343f4ddc88ef472f6cbbb2ffb69ce818da0c6 |
| SHA512 | e9455185f34907c8b6080a7c83986a5cf1d0c49f88f350be58465e524395f136793bb8f868d2b0b29b1f6847502a8a8417436e3200a7cf12ce8f989969d4f833 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\text_paragraph-9560fadb.png
| MD5 | ace8c44e942f47852926fcc44f84e1eb |
| SHA1 | 64389cd281d5a31cd98df8373b949f623a623914 |
| SHA256 | 9560fadbc8511b24fc6236a49f04915bf3d0fd5987885a3affb15b018f7d2411 |
| SHA512 | ca29e9a1a33bc9ba6ab95a414eead913c2132c6dd491614aebc42e21b1c0e7efbd274f2ae62d0730f5140c75c711bcb76d89c8f3684ff457c3ab3208545f2f51 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\sidebar-f6521a0d.js
| MD5 | bba7a87fa558d4146e2f4b8388833641 |
| SHA1 | 413bd9458a4b81a124e62aef54137792b5009a88 |
| SHA256 | 2945a840751125c4fe3b4c8a54c92a540b0aefb98014e2d7e6f16de80179a796 |
| SHA512 | 30fcf6e38e7e31e1f6756ac3536aa37be36e9fe341fb4f751d696a1197b206af06a33a449c4dcea5be4cf7e458f371b119c478895db42b58213a939e93e2d0d6 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\selected_text_menu-715343cb.png
| MD5 | 3da5d1a8c8f33943b30cb88cbe5ad949 |
| SHA1 | f378cac3adf1e2c534f3588e68ae50239f26260c |
| SHA256 | 715343cbf66cce609a7d8ef3650189f87eae891c137bbf237f075f86794ad45e |
| SHA512 | 67c9d6cb33dc937a515c09c013b9b8df911ef3711217496f78dcf80dafa9dd5770578130bec65b7727af5c70f1bcde5888febb36fdc009bc7302e188222f0a87 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\selected_text_button-7edc9403.png
| MD5 | adbf987176e8bd12ea1d6610b16f005e |
| SHA1 | 95eb881aa5426b4f3e835ac3db5a6a0deeed8e09 |
| SHA256 | 7edc940367db12fa5c53bb63b7fb2d60092024b5b0481746b713aaa4107d8baa |
| SHA512 | 6c26bf5688cdb2b52f5e74d38e638ee061ee41157147372924d56af4f7c428f1a074c18d4e1491cb02245ae1389605a3cbf686c53c91e1809c4558a0d78c3d63 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\popup-264c9e18.js
| MD5 | 6c5b877df13e42552b069c70ac059f87 |
| SHA1 | 5000af82e71c8cfdd87c0e26c0825a33aabd7000 |
| SHA256 | 90d87bd1c2a00e190deefba1afb8c6f688adcb0be667c5038707e1f9994f9282 |
| SHA512 | 27c914ea04b6de76c3dfe0d3e88a8325a2e3d9d5cd6d8c46ce6736ad4019b27a35115599a9990a55c183548f6de512983dc9be9fa242757683a3ffa76891c1e1 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\options-33ddb4d9.js
| MD5 | 59991ad25ba10d885a5f3cda2fd75fb9 |
| SHA1 | 7d08dea37be2355560953f4dd1f5763ef0394ac9 |
| SHA256 | d244543e3d3794824fb8425c62713277610f5fa8c0e15bb2ba7721f47f1a8799 |
| SHA512 | 803ef1087b5698d0c45db47c48643a552e5f22c169f8b782a04b4ebfc1d19b02e0045729d74d08e41a04c4653aca712b31f5dafe3e4dedca375bd58f6fee3ec7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\Logo-62cc63d9.js
| MD5 | 5bcb4b16a81c31e129530e2f511138c4 |
| SHA1 | dff773d4d594a29b3878c3442ae4851288716ec9 |
| SHA256 | 01dee36e68f5c04ebbff01d067ea329b6c8eef3e44039932ef97b61a10b14923 |
| SHA512 | ac5b338468e489b740f944216859c9f06694136f6c2744eee78863d791683b2ecf1affbd8c7dffa30cbbca1d0da5649406f51668ba0798585842808d31e58c1b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\index-3ef63e9f.css
| MD5 | 41d57444e7d13ff1dc04638a5fa8a98f |
| SHA1 | 71ea54705eabb7fe120d48f0d38f4f509c5cc1f8 |
| SHA256 | 3ef63e9f56bb46a850d23696f0051e4d5693ecac0589a8cb6f7ed5f4f844bbe0 |
| SHA512 | 716e73bb1667e32283debc17b3b82252ae34fbf588ae4446d536aadf1ffd078fa6e481b6a1f745297085a597b0899e7c69b751364d1a8d076571e571f3c22ba0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\code_menu-a8be2aaf.png
| MD5 | 86b6fc046825556e244a5becaf13808a |
| SHA1 | 8dc1515d1c28f69589117531e050aa5075f196db |
| SHA256 | a8be2aaf596b5b7b1278bd6c885185bb4b8d8643ab53f0ea6a8aff43b985c29f |
| SHA512 | e97a205dcee6fbba3d2e42033aaa38dc2f3ed6484f1770b10bc3263c0100e5e9a47865052a924808601b695718792b7ce87bb24503448bfca7c8c62cec3331d2 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\code_block-5a7f325a.png
| MD5 | 761a934aa1810625041ff64a1637cd0b |
| SHA1 | 5de9398b0788f60b04727c8c03ffbcd9598060c6 |
| SHA256 | 5a7f325aa9c65c91a3e95aceea22c6c41bd60c1e1d99a51a774b996dd9aea600 |
| SHA512 | 7849ea6e382c84a262aca09eb1fa92c7011322b69354d80de3a8c14a4ca4de00ee287edc97aada44632451adba51494643207732c468b1dfb49f907396184d59 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\chat_button-151199f7.png
| MD5 | 06afe46c6af3934611326ca03e4d5019 |
| SHA1 | c9ff8c29722699f2e667fa83358df8bf8510263b |
| SHA256 | 151199f7457f671457d933c16cc5efb642d8d9063d32fd8134592c8e6289285a |
| SHA512 | 7e993a5d77fa19371833bc96f01a433c7d2e4cb8b5d8ca39de83fc5cbe91e2c481c72ec1d36e5c7247995b902ebb7ea50446043dc903ec34115700a988c001c8 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\assets\chat-1a99eceb.png
| MD5 | c470fd10049c5a990633ae2f966744d7 |
| SHA1 | bf81736c5594940db5226f979de52726049ac881 |
| SHA256 | 1a99eceb971741f8b8ee5f68fa4881a4f6aa308f7fd4ebb192eb9c51ccd535a3 |
| SHA512 | 4d96d699bdcc7f287183891bb1dd7fb670d539a7821e33a1662a92a1a3e4a7ca5f59d5d94a766875be0474b2b0c97a79ce01a0065bb9f88c0385593d8a022c09 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\background\index.mjs
| MD5 | 6a2917b9df2de3d54c60339d1206f311 |
| SHA1 | ab2242f853f8093295b9c47196127986bdec7d99 |
| SHA256 | 685654e3da9e0b5b6c36d8ce42bcee21681102b74f9a5d8915133af2abab635e |
| SHA512 | f456344e25665eba4ab4bf7a653596cfe3548948988ac531dea6641192903c951531965b9cffbe86ade815c4bb0b5648b6eaf000cb3046ab026e0a17b332e1f7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\contentScripts\style.css
| MD5 | a2de90a2190cef036f2c6df8ab8f00e4 |
| SHA1 | d2c76852071c134e386b54d0163640233e8b854a |
| SHA256 | 8bb83055b42d5b706abb9b10afa55c189f2e451acc976c78430c3d91f555c817 |
| SHA512 | 761d49c55530694df775138dd078c5b7ac91ad2ff561d00df824bb70ec7d63b6e886ff75e195eac6277c535511618bc2c034e2db7693329886b4b87696f7dce3 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\options\index.html
| MD5 | 825098ffb1c701fa3d4c55700b80543c |
| SHA1 | b06cb78044c5009f24e8dc197cabff792f41099a |
| SHA256 | 67503223782dd7a38f81cc8712110913d07c184958c24a63be7a0554d87816a5 |
| SHA512 | aaea548da521304d96fe254630bb0c25f0c1bd39430302d551725cf1116281e02d2dd6aa10f72ac42a3b027281358ecf4ad6c784d842796979b0fbb7ec98d10f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\popup\index.html
| MD5 | b9f2c3c3464461be908e00dd0a07ad63 |
| SHA1 | d444b802b3a77ee1a240882d6c9133f7b541578a |
| SHA256 | 99140505f181f09bbb427a1b07e252988d3a897a4d60d80a7ce4687775a11019 |
| SHA512 | 7f12b3ea8d5aa3e2364f497178ab8ac4aa202363ccd4ca5ae57965ca59bd397653bc634013e0dac7ebc83576c35c995690bce9935bd9b93f054c1bf3fa5a764d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\dist\sidebar\index.html
| MD5 | faae766c66f159ed15dd70bd8453eb66 |
| SHA1 | 1cf9bb3ea8a629bc3175c7cc4bc947d39f1ca98a |
| SHA256 | 74136d4873b9626bef202c5ca822f2a18013407daecbe0e7e8edf1d6c28a8c34 |
| SHA512 | 6d685d771ad7bf2ef98c64d1e493598a9d42ad3aaa3a8634e972d9d3b70592e3b3954221df72f9b34f8d4cd9a55f56708583e510ce067773b47972e038172ebc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_89766842\CRX_INSTALL\manifest.json
| MD5 | 58faf08525b8c5eaa815cb2b2dd0463f |
| SHA1 | 7f14cc65e26cbedb1d25077d80fdd58376d2500e |
| SHA256 | fa783f682625206ce6acb2b96c6c53e8c9aa93071ba28feb3b6d8c46478ab50b |
| SHA512 | 7c1086f7be32e9518c6e173e20c46a19374a97f32d79aa625ff7c49c4e407d1948a07fbadd468848c9f5699b6b97ab7a679d97b428bae28552f8a886bbe7f8f4 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir5844_1822906003\CRX_INSTALL\dist\contentScripts\index.global.js
| MD5 | e3cd8deb1ae8c8711ad7529bbd2aff18 |
| SHA1 | 718ca2db4cee29a83a6a56c3557751d106580fe8 |
| SHA256 | b33536a2ddd32969d4cea8e52cfd57a083730d2decd782448cc620efc0329366 |
| SHA512 | eecf9c9d9a207baaf68eb6a87ccc9ebe7ef46febd5a88993257dc9732c75a8ebf31e4b0d41e451a1205459690e4f4267faacd3eeea37f7f6d55fd02affaa0e84 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\js\chunk-vendors.415c12a6.js
| MD5 | 77fa64c2eb0898d78e608fbb9c236384 |
| SHA1 | 9199349bd9840fa3d72e2b4ef52cf1275769e8f0 |
| SHA256 | f53209df9570da789a0df7b82bb2a896bb293500115611286291b19f7600e916 |
| SHA512 | 1f71ad03ee7a331764cfac4eccd1ea9659da2d422437691a6044dddeaa4dcfd685a9d83a21fcaa5ddcf5b3dba3dc826b7982fc5f0f1a4718c9fb0433b263a91e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\js\background.js
| MD5 | c67336a501fb8e77464f92448d96a4a3 |
| SHA1 | 4a1fdfe6e0c462281dbcf424871748fb3d1ab390 |
| SHA256 | 0ac1e8362ee965e90e88ae0eeb81765cf19fda8274adcb5a14b79f7b3f9aac79 |
| SHA512 | 4f724b8bc69f114157b2c7b91916cc116fe0488d26c5ef807213212f559b9b19a27a6c12a729bb3d6601ebf50d442e25c0b673b4f3ecf06345d3c33035629a71 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\_locales\en\messages.json
| MD5 | cb899ec506ae3bef16421dc39ff26c10 |
| SHA1 | 714630649a77aa2ba4b4d017820247526b805fba |
| SHA256 | 4da1efa11e4dd6704473fe530af1f90fc80cf4b63b31ec9b954298492342370f |
| SHA512 | 514578131935e7adc3d04573933c943d114414d209a74e13ed6f046d732b959c9bb1395a72a488eede9919043a54ed1421bc02a4b0da1a7561fbf46df94eff75 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\screenshot.html
| MD5 | 556aef4a8c63eb965d5e3e87b656289f |
| SHA1 | 7cf08c1d2118d9e2abfb92ceb9d5b3964b7cb362 |
| SHA256 | 339055bcc7c121c24012afb2bc50350c7af6b8c8499666540623dee40ed7f987 |
| SHA512 | bfe5d6056f715e406a1d683477f9cc762f678967b358991daca128668536b75595eed18c48223f1bebc90790d5b959aab8a8c0cc689fa0bb75596036e1a72f81 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_434554679\CRX_INSTALL\manifest.json
| MD5 | 06bdec7129d7991804144c5e1a17a5af |
| SHA1 | 291d01523f90716f599e85c31f3898d8af254eb7 |
| SHA256 | 606cad9061e27f77eccf8e1554ab864e3941660595d5e51c2fcc72274de966bf |
| SHA512 | 77f0fe14b18a9a6624bdadf3b952585e8aed89b44dd2886ffe4ba66d3e84f63674ba5761a817d6c5557aa57d0f79fc6e046de13fa7b650384ee27cf5169fff01 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir5844_1592489966\CRX_INSTALL\lib\panel.js
| MD5 | fe2411f25990621b6148d13d66075504 |
| SHA1 | dbc38d2494d77623d338544bd3cb226d55b24fa1 |
| SHA256 | e44194b6b95db9ecaf564f1366aaeb5782e114dce94f3d32371a73fe2ab24439 |
| SHA512 | f9b096fdf08ea7f32d048a59c7f138b51f6c2b62095af5ec2360fa50442fb8eef5ba2683ae31593457480f8f0c403b6e56dff348b07d97d9125c3756c8c91aa9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0f812fd0d24b4567232a31ed589382cb |
| SHA1 | 2b65055d6249194d7c7ccff39b555b4bc652c42c |
| SHA256 | 3076ef6f966bf9b0f1d0747e08df440a967faac5d3b4719f47638bb536ef3e08 |
| SHA512 | 827ce9cc96fe43d30e39daadc2195c0e16f8b034dc798dac81f95a0dddbdeaab568bb837632d364c47d35bfa18ec50a41781a28e82a1eac5863cacb3f2e81cc9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State
| MD5 | ae34418314ea34119ad4a2cab5221b4a |
| SHA1 | 984df6847d4756cc84acba0644b7a6a18ac80c07 |
| SHA256 | f7a62b399ced326c71c9b68ee99d3eef9c3d5820412fb4c5ef7d3a1223cc3ade |
| SHA512 | 56e94ee33f0034fcabadd87aa189cc9d00fe8e3f1969c3566d545f38754ce3cd9679094033c5dcb9a3154a3eb9f9984dfffae0262de2998300b0b6d850c1546f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | d64d945bb1910ae6b64a3f454eacff82 |
| SHA1 | 0118e064f00f165d1911d726cb168e7e9a9a542d |
| SHA256 | 821e20bc2c1411661350a91c5b805d78625cdbb4ce805ad38593e5b94c05cc1a |
| SHA512 | 51ad23133fc8e319174d90014050d24b7039c643c425c6f0df2043eacd831296eacdefa16283df5085ce93acda4924736de924891914038e5373da20a9447ab6 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences~RFe5e9d57.TMP
| MD5 | fc3e33ebb135cdd4b722d7baf3fd208e |
| SHA1 | c68d92d953faeb788216030a64f0a17a88186750 |
| SHA256 | b580b4f49da7f53962a59c1be25d3bac325e0245f4c22dcebe9e2218c0fac118 |
| SHA512 | cc33f2b2830bae85b8ff4ab7370fcc430b0a6b805f00a69bc5b8d8465d4c8b7d81a7e17e0c9001a6aedb5dc1508c1ffcdf98e0a2621cc1f35bcba7dbf9a38479 |
C:\Users\Admin\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
| MD5 | ff4e1c96ccb3473b17d4c8da1df97e2b |
| SHA1 | 94af594ea1b5da9cda51212e2451c0023a3b1b32 |
| SHA256 | 12d0e141689b74ff73563dac2e52f8b70e6d1a11a67f54bd7ad9ee95aff5e4d2 |
| SHA512 | e6feb64c5a86c64d777e176fe1d69beffd268155b060de91cdec2dc4c826451f3d34552fecc16954e9bcc6f5a178db24ae393669d7661bd780a7a6d9c9ca0cb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 77e2bd69a5fa9fcfe15ae3ffd61e58d8 |
| SHA1 | de421047545aa9e1741c67bcaafc9bb8733e42fb |
| SHA256 | da9cc1732fa9f05b0e970e8ca9dc6920a629fdc141e772afe9257c2df71d4907 |
| SHA512 | e0da241377bb90b6af5ddf3609dbc0feb8704f6366ffbee54fd6d09c162371489cf0a758add92bd97922758fdc6bd04f7cf53dbbee455afc5e9eb78da4ed5827 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4069f0a3a7c04ec83572375bf7735244 |
| SHA1 | 3ef34fe519bb26fb28cd1f2da71220dbec03b2f9 |
| SHA256 | e3e2b63d39c8b6299f543618655be6182910204e03bea5f4a30e749c2867b29f |
| SHA512 | df5dad6fdf1fccb8f19c80d145e11287c6dcaa2702a204906bee1df76b12e1c22573643e034b06bb7ced54390c9762ba5b9ad52d6646d1c5154c7e19ad5e61b5 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | cfd24ea78e132188fb1370afde3df37c |
| SHA1 | 19721fb5304bdbbb5b000d089d77cf5427fbe6ff |
| SHA256 | b4c5deeb80c6723c81adb702bf3c2ba728849c25dc238c51f0e4c9ffb48d1545 |
| SHA512 | 12d07b05b5f1a28141d2c72fe2774f1c211a105beca53defcad084b9c31678a1e9736252b5db48bf27fbb7070e8ca06628ebb17af421f41c96831862004cd842 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\9d9f36d4-5312-4688-a5fd-07c0a4388fa6.tmp
| MD5 | b66562fccb0bf59f98a7fc5b85ed1fdb |
| SHA1 | 47a91a71fac65de7de130ac6192935a1bd5e894b |
| SHA256 | 968d51b0a75dd04f625217512236e12699bf2b7712ab0bfa92471ce0ee092e8d |
| SHA512 | b796a18fb4dd05d9b375a9ef6b3d2deb2e712161fd58483114428976ddad852cd9875b3da5c71d7e11d4dea15dcd5a6d82b004d3883966917bf3e5ad911b4955 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | c427e4a11bfa708bc10042ee4f7b700c |
| SHA1 | 0c46a3ce0ee575afc5798efb84e2cf2f5287c2f4 |
| SHA256 | bb0aee332a7b8ddd58f5bc48a43e92f4262305d19d9077c854eaed56dc8842af |
| SHA512 | cd08552a0862825189c8eabfe79274b9df2849bb556e74a9834fa7b8985ec2cd402a2fc911d2a3d88cf8ca606086151816a94c44d91a55e8d36b0ae573ea2978 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 23ebc7c73d81245c9962499bf6f23cd0 |
| SHA1 | ad614779f55c19d9d2d25bdd13b4a18f465c27f7 |
| SHA256 | 22f8c72e4422ca1ca88ea20a042b958feb38f600a721b142ce6c76841879bf4a |
| SHA512 | 5dd4efbda259133cd4ab6ac846f5fa47879281956403066acad7685229f286b731566521eddb571e01ee661cd243c32c358218a5aa0219544df1b4857d9287b5 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity~RFe5ec811.TMP
| MD5 | 0ebfa21975c01d4917b2063551be3ac9 |
| SHA1 | 8199b7cd529011c06467446ac1c7eeacf63bbe0c |
| SHA256 | 910ffc36612b57a795b908e069cc27ea11aadc0650ca15ea48fcf8fc7c0cd2ad |
| SHA512 | 1d35d7488604615ce3ee0521d8d3536dd986e38a924ef7157e90010eb2f2450159db65371feb5de2a5bb2d65d7d2046f5cb578a2719e3d15fd296d6a642a1a4f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6e562ddaf844539de1e80c51a1c8235d |
| SHA1 | 89bc1bc96b63721e3ec465f5132212af80cbabed |
| SHA256 | 03724f2659906363ed60e94cee416c8be1ad1173a8c1084f88190fcc9833cc51 |
| SHA512 | 98f36dcb88a39e835622bc1155caae660cdbd863cb2bec441cc3cc58a1d57385b5d8b64942956f16c60a1e591e280397862be1d6dca2e73890d74871593e43c4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2eec84178b802ed64b22e3ee32373814 |
| SHA1 | 4c757f16dade0bbf441b94a936769f106a973f04 |
| SHA256 | f7fc24ed425089ec368231138bc350d231d46d9d73864945c1c04542713a7b04 |
| SHA512 | 87050b59482c62744adaafe39141e92164c650759a4c20a70e14327545b741d925557e97b6d1efde9b4ec2c29976d77f051e4edc49452936b587724457aa6ba9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | c6a3aa33f5aed9cd87c1775fb1c8acbb |
| SHA1 | e98ff0ed00016e0fb3ca6865455c343e82782ba8 |
| SHA256 | dfaaf073d2ebc658ed38a286f6a44c81f2f015ab4a7066600303ff684d26e6b9 |
| SHA512 | 452282441b3987428c235f38c4f5117ff8425e0c409a13b0fd31afa63c52bd1d3eb42bbf08012af685effa866078e737dcdbdc346b131eb79eaf493a68c8ceb0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5eee75.TMP
| MD5 | ce9cf3c53e28a8247d6b32f3961afdce |
| SHA1 | 4985bace07680a3516ff81bee5f718c5d5457eaf |
| SHA256 | aaebf3c582677327934bd53d932cda32d4993f17ca6e9e9198304d00c378e0c0 |
| SHA512 | 637caca3aea2fb818b0831cbb0d516f7454c44280fc575a8f856d59fcf740ae3202d66463a8163cf5c2a47d7183c7265073f22f757eb6b5c5cf1833685b4569b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 0cfbd9377e23bd4e4fc3511d609b60a1 |
| SHA1 | b50c10b70750e9e3311920110360571387412214 |
| SHA256 | fdf874476c6c75af4626207f93d910119360dad2ef719d435646e9d99d0c4eb1 |
| SHA512 | 38d8bec4e869267290c92b145d7ed7cc59bfa89eb20d7325c06397b6451b2db93eef8dc07ff3ff9153b341511efd93eb45895cc358a4317dd87bbbeb8a34b5b9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bad2d76cf7c0061cd69f5c311eb7e98f |
| SHA1 | bfc8f25f7b95acb63c2d4d368b57a78fc10ad272 |
| SHA256 | f3d3091f62ca59ff6e4a7ba80bdd96fd1d2e74d64aff3cf3dac2dc038332537f |
| SHA512 | bb7d6be36e71a3c67fec21611fb6f3adaebd7cd227e68a97903d740b4efe84dbbc86902141323f09502f8c54b7e9bee5c07c61f653cab92ca73b8eb87784ddad |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9b05ae451e22a6b96ccb8508818ba06b |
| SHA1 | 30b92716b0874e0599f21cb1bae16419ffee6a05 |
| SHA256 | 5a8d8aa067aadb97d6672fc0e2d7d4b6cc5eca962e0f62deaa63321c7f553b74 |
| SHA512 | 2976f5ba59f440be83fa7a2efd42a14a0a0ccda2ae004ff62a2e72d89353fb9949498ba625ba69b786f2a90d33af3e5fcab65b0ecb30f602d3dda401474bffc3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003e
| MD5 | 4a686349993965721f090d158a10a6c4 |
| SHA1 | fb0f61ba49cfd7e213111690b7753baf3fcce583 |
| SHA256 | 65451d12c37acf751e9f4732e9f9f217149b41eebad5b9028eac8bd8d2d46d8f |
| SHA512 | 0dc571487fd798b62678378c2dd514fb439f6c131637d244c8c3dd48d5e84267d21fe633c5b20578e621d5e8fe2958c5e58bc18ebe2d4731b18669fec4031489 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 67e9a0b914f7675cdd370eb615de7383 |
| SHA1 | fd2c1f6b6ee9a7e3889bed274d2b0aff376db975 |
| SHA256 | 3f73af3e7f022737ac1a9f55420951c50fc973c4cf94dd634e4caa8a3aa45ce1 |
| SHA512 | 28b412285346fc2718e21a8be0966d4cf7ebea3dc75f4715f2e146d939d4ee4d537ef34c6a6c37b2cd2fa6b0d61bac3348d11df1c001c36ebc8882e156720706 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b
| MD5 | 2de53f708fbbf7e91bcffefa41c3ede1 |
| SHA1 | 42f38e5682593120733ce92822f1216576c7b15c |
| SHA256 | 5411dcea62bc20b08d1f141206bf2570be4a8a5107e5a830ef6f6bad835065ca |
| SHA512 | cde0d50d0a277ed4743f3d5222ece56540bfc951bdce7ae2f75e9010fe9b5bc3503abcfd67c963448333cb85ee950c96fbe8a34f367858ef5f1db104a79ce374 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 79679a64c55ecee70f28902d369a2551 |
| SHA1 | 21b9d4e3e901651fb59bd537e963735ce822ba2f |
| SHA256 | cced85a37bd00c5d66cdbe6ff74821199faaa4c200837b591aed6d9ad597d1ca |
| SHA512 | e98440a8f9d5ac186fa83d8e70c554eb0529e0e0c4a267517d8243529a4786fa515731c73643730fd606b233c8fa621c9a9d99dcd2f636aca67b205b68f7fa40 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b5e6a7d80af8a51b_0
| MD5 | 13d62995f0bac54c9cf2e401fe69507d |
| SHA1 | e2eda577f0a3129c9676fabc3ce37da6381ada89 |
| SHA256 | 1cc9b0cb0480e577a7d88a2b2b85598e49a7f392dfcd3cc7d0b2fa5015f193ee |
| SHA512 | 16a57656350e0f550ae0160aa2e81d06f47f2280f7afa4231cf677c060dee6b594138222cfda574cbc460d6f1b65c688140cdc09a702b1ede5afbab402fb147b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\01582035c170b32c_0
| MD5 | 764225d462cd61fefdf0c03d5e6fd9e2 |
| SHA1 | a663462852d67b7a0ef6aded8f0536d3f86a96ba |
| SHA256 | dad6bd81bf08114d6f7ea63d1280866b3ee6e0771cadfd83603c7a7c29cfe461 |
| SHA512 | 85a26dc45d97995e44a5803b38fc32b53c614c2cd284d5d5b63b7637bfe0a3838c4cebd25ad4f7077d23275dc479d6667c2eab45ec0bef3b1f8613326451359f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State
| MD5 | b4394154ad3585cb9ee784b8ccfd3873 |
| SHA1 | 97712bbff4f1483af604c6a80092ba039f5618cc |
| SHA256 | 2d177407b7c2288e3e8375036d04efdb3f4e5629b73510b9c6967f3911dcb25b |
| SHA512 | 6e0c91134f1b190e605c0419697ae83fe6133d38aa99c352aea720387a8391107f72337a47443bddb5ec863270961427983599fbd7249c0cb4fff82b75b817b9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State~RFe5f8b03.TMP
| MD5 | 2800881c775077e1c4b6e06bf4676de4 |
| SHA1 | 2873631068c8b3b9495638c865915be822442c8b |
| SHA256 | 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974 |
| SHA512 | e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1547586291\manifest.json
| MD5 | d100021756a9f032a31a0a8b7fe3acc1 |
| SHA1 | 885756d3af781ac4d31e957fc34f788a1476e92c |
| SHA256 | 0a707effe5a6d1689da80e7cec20d826568dd41d34b0498b01ad93fc61693a8b |
| SHA512 | 2aab65f3d03c2a43dbf7ef2cb700ffcac92c969c3e057b4766aff36ef94dd36534ec4a2cf7cb3a9eb7a39c4f9956b095c81123c44eeb469f632d96b4d06ca3a1 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\PrivacySandboxAttestationsPreloaded\2025.1.10.0\privacy-sandbox-attestations.dat
| MD5 | 01607de44a82e98831bd0db8a06237c7 |
| SHA1 | ed9360dc15541bf4a957762aacb8d49c2059f7b8 |
| SHA256 | 87f95559bd47171ebbc2a93c1caa819cc6520a70e8f62568b4a729db6a4c9edd |
| SHA512 | aacdfbdc12357c414c811cbf33a1e649e9dd4f8f6be85fd7ea82f6c27309b96e5aa54c613c2e23fe5e328d45f3cb7d131684992190dc33eddb77fa1cdb90bcfb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e15eb4dbe1688dcabafedaa52365375b |
| SHA1 | e181823384be784289f558a070d91d3cf6c2ec0b |
| SHA256 | f5b6b5612ed0294a6e55059e2336526dfde14553e096d8410b062b23a04bd4f7 |
| SHA512 | 7ee5ce5ffe0f2defc9b642f4137689fe5527378f0905249dcdaba3bdd09b4ceb6cf4c3fe83a287143676b1592cfe5dcda6ef639fff2edaeea4ccf08345f08893 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 85377c9b9ffaba91a9cbfc9615b38ef2 |
| SHA1 | 332f5ab24fa11046967a0ada0389cc7745746032 |
| SHA256 | b1d231a798cdbae82a58209b240139b5d42822be39f2e5a2496c632ead6f16f8 |
| SHA512 | c4f212d31bda6726615edded659bb45fad9bcb60107b188040079d0dde4a0a27acdfcd7bb4064c32045451a4143982d6711a23c0531ef66ebc4921e6af55f839 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | cd87b018e1c24eaed861f972bcdd2ca8 |
| SHA1 | 09a895d1f0214d6a5d9a316ff7874d54a345cc26 |
| SHA256 | 0e8502b538b2ee9bcb4fb55a6629e012195712305223ef82ef912d4574952b16 |
| SHA512 | aef857a1d5e9560bdef73011f2e485ed5ac0ac274146afc7e56dfc39902ab38b0a9be1964a197b6109fec0ea37a5efb18a3c30403246a950c082ce13c7c33743 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | da0f67f91651133b5841fb3fd72a8325 |
| SHA1 | a40c622bf31d59e2185b48078c4e346e93dc93d9 |
| SHA256 | 8131aeb0276e9bfcc67c7c10949da00d514a5daa1932a5e7137b9baa6e1bb7c0 |
| SHA512 | 390e5e454ff7c940c783b2ea606506ed9a0b4867a463033e76b6dac806559d788a894c2853bb910fa69319720eb942216bf4dd28829747c52e80c1bb6c18728e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 928bfabcc614107de437b48387d198a8 |
| SHA1 | 7996028847003af18c3eb0c6a0514ae627e79b91 |
| SHA256 | 0c02f1a789b58e2c1c0307691289646cf661c2a17f986eb16462c065bb3a906f |
| SHA512 | 6955037a5fda90008930ceda627d12c6d225173dfbaaa7e74afebd8e075e904e5dae03e2f17f9c609ded2dfb6affbd65ec37b65920c0dcffddd0bd3ac84afe3d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8bc398770d5b4c2b1caf95ee45f59a55 |
| SHA1 | 1e9da8095186ecacde29b877e9c081027c5c1f15 |
| SHA256 | 53a61f922ddbe91e43d7385a31e759dbd2eef29103f8e3e4fd74198ad42045e7 |
| SHA512 | 9aba86c2eb9a96aeaa2a232b7bdf7d269696ff716ee2f53f137af7edef669d122336dbee7d78c80906555968ab04b26f6717130a2bb2ad7abd116c282e3f4851 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1572664315\manifest.json
| MD5 | 2ff237adbc218a4934a8b361bcd3428e |
| SHA1 | efad279269d9372dcf9c65b8527792e2e9e6ca7d |
| SHA256 | 25a702dd5389cc7b077c6b4e06c1fad9bdea74a9c37453388986d093c277d827 |
| SHA512 | bafd91699019ab756adf13633b825d9d9bae374ca146e8c05abc70c931d491d421268a6e6549a8d284782898bc6eb99e3017fbe3a98e09cd3dfecad19f95e542 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | cf55ce3b9e588762eae423de74c1a9bf |
| SHA1 | 7e8c3da7c7c49143a3d0a84ec0669a412642b14a |
| SHA256 | ce0a089b1b4c144a454d0a27e5c7587e88fe0b98e0bdda32805baea24b54f975 |
| SHA512 | ca6725ef02638aae7a4894a47b30449a6bde67e6268a3f51694009dd3144a2e01b0a79f55ae03483dd0f7d8c5d405ecfeb3e0057a0a834e999710a9be6d7e0a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000074
| MD5 | 43959b56d8a070e886c916dd936b7e8f |
| SHA1 | 0326a764192ca2c1f1b411c332da0ee5b1887c9a |
| SHA256 | c6c3e0d949bcefc77d387b6929c8aff76aecb2e90e39dd06ff1a6abe233c0b52 |
| SHA512 | a7e7e74c3ad9bab6663fa2048fb042fc9b7ba86f086a135337d07c45e694796da1a1ad563c70be593549bfdd7e567151c122330a8d0c5420c32288c859c7b45a |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 7cb86e5080d24d7513cff2efa1f2e20a |
| SHA1 | ad0a75085471694edf8905e6af1981e652840bee |
| SHA256 | a77bcea84ffd47d2c340a84900769320dc1564976126268a19b2b65208076910 |
| SHA512 | f5c296f4c49c69328ae10f17db343638a94c89438ebdbc69945774418fd2d346b646fa5f97bdcb815528d32c76028abd790881b52a346bfce63d791c02a0f773 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | edc82e1371a64a92963b01fd6827961a |
| SHA1 | 2068e804001ed17635d5eea82f309f3f62131454 |
| SHA256 | ac4301109d1c9713bb9905ad88c1f9b846caa224f4018bb1814f7cb327caf63d |
| SHA512 | e986dcdd30a6e33d9242bcc8438a32e08bf4330ed07c4f3e2527c473a2a0332035cbeedefac5551b38960e1518687cc86656b5400e371e60c6c3d131f338114c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b018c08faed3c22fd96b2b83a2cdbdcb |
| SHA1 | c33b8488b97effe4720ced110621224113908be7 |
| SHA256 | ac59db417f7a5958f058f3d394e47206bfa66c554fe6a54f9d76932fe0ecacad |
| SHA512 | 9fa3eea8ac3748ee663e0e04a2d86e69fbb62a387006a80d54d93d23d576a487846fdc56005569c5056c8c1a93cf58dfd15bc7e213b933cea4a7eb5c824687db |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3b92f40660e6487c3097fbccd2c6142a |
| SHA1 | 9f0c5ab41b05a2072cb588dbbdb3c51a9362833d |
| SHA256 | fd664de73b22570c4879aaadae3ae29852dba617a0f4b9f975e23da9c9c0d543 |
| SHA512 | 28739f988d29c8d195d7214dd547b97e7e9babeac3361c5606724ac041cbf8ebfb13e5322ac11afafd6c135f4019c2d914837b5a1b8f2306c2611eb664a379bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 91ad8a8069630df1838058ad386304a1 |
| SHA1 | 0dcc182f53b228310787802ebf85b989e1dce5ea |
| SHA256 | 2bbed99e7de6750eb69a06ae1d709afcdc89533f006d4ebfae6764c6f498ecd4 |
| SHA512 | 01f9710a0dc9140feb1e29ab9a2698acd2bc56c7ec0f20666ac67de42deb0fe4a983f9c3ee5f106787194af679463115af96666f037527c3d6521fde656f1a0a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 1868d8983e689657f748e89fc6a201b0 |
| SHA1 | c208104aec9f4c26f37bf873501150e7313cccec |
| SHA256 | 3b5385ffa33db39d0241eab993a5c32ddc8d4ab66f571eeee7083dc308e9be9f |
| SHA512 | 2b71e745d7af46ebeb7bf2f7946fdbf97705d54fcfb7fe90cebf6b6b82189222065e21f2220891560adfbae1cd3589123e9388682dbfbeb3908ed8ddaaa4503a |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1053343125\manifest.json
| MD5 | 3a910eb3b7ccc6d5d45ccb1de0811c0a |
| SHA1 | 9e65d583f8c2802d6b43f1163187ee4af774b3f8 |
| SHA256 | f908096f627ed782b4d7e8d4b187f732369ed790838a615d1ffd03efbf9a4f27 |
| SHA512 | 89bbfa367cd8404700839193b7bdfb5005e36dd0775337fc0a5828ba9888d20b2a5d72ea747c5554e7271669027d8c9171d49ecaed549336be73acbd4e576070 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\OptimizationHints\481\optimization-hints.pb
| MD5 | cad479461a89e763e24efa545624f08c |
| SHA1 | 349deede39f68732fa265dbb9701f157df5d00b1 |
| SHA256 | 3bf5ac189925b0ab7a9d9a45bef280bb7c28fc3ea35d519f9983b0e0c6400985 |
| SHA512 | 8772b07f481e4932a912bf820399f9174a93f7555f556af69a6253cb857c291ddb7dae3bae117b76f986d6f0ce7770a24a65ab48b7d14da901d4c0e949725c74 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0b5da49c728be300157449109fc435b1 |
| SHA1 | 8caad7f6df937bc9dd3994ffbbbe33624f5e5838 |
| SHA256 | 015fe988ecda11198dae01a6fcb8a88c5fd79b2ae10a1a25360275c02fcb0c7b |
| SHA512 | c2c1fac81ba9ad70f260a8a20babd26934a77979d8570917c2404b52c62ba3fd0eb134b12ba4d8783e88c85515aa52021fbfbaa17cf4c3b3ea90d729e55ecf78 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | a122c23db21f41dbdd95d215a3b01b2c |
| SHA1 | 55a0a486cf85da5d71518f3854f7479982309309 |
| SHA256 | 37ca4ac489dc630120583e7e98ffa12d8947083b3df30ac024e32875f0922dba |
| SHA512 | 9a34beedbf5daf4bb514fe8e6896ce66fd2fbad19a44d2b02809fab0304ca341b1f2f6cccd81205845c0daf2fc4dd85529e2f0a740fa0d97a7b9fcca093458e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 3114bbaed0d6a2e330f79e96f1ae06ac |
| SHA1 | d179c1ea8c2974d2f359d029e15719550cd8713c |
| SHA256 | 124a2edc8aa1d7f7c629949e09ecfc347f2906a23caf7a22fb97225d2086715b |
| SHA512 | 9287475bb9102d95b61b4b5069aa18998cd115cbde52627d8f8bb33fc23465fe39ccdc5d370efabdff8ba535184ff9c77aee454ee70e45ef7b0c1151110b0616 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 3023e121fc006a717cffde8fa05c8b5e |
| SHA1 | 16d3e2844974d63f6116ce27d8058c55f9cfe0d0 |
| SHA256 | fa6abd975f5fd2bd963f9a7207bcbbb8b386fa6f0a1b219c0dc08024ee320403 |
| SHA512 | 45a5e522eb4b8b8a4aaa6d5abd2c277bc1c83898acf7b3894d1e956e1a7cfce51ec345b9412dd44eaa84e6f551a1d78b1fdc94c7a17b39d25d46931123b850ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | bfeef5570fbc2289939b70b11bfe54b6 |
| SHA1 | df165e1839840fc2039abfe96e92ee58cd5b451b |
| SHA256 | e32533a1f20b59720f0daa33f79ae66df3b8a24bc763210fba8d5ed32a8c14a6 |
| SHA512 | 1781ae7c9dfa672cfa4b9f84c8b5406cc2a6dc9c8dd7f19b2a3023359ed19e0a14f15d2455fe2c324ac4797ae9dca22a45767925eb3208b6a510fdee73a39023 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7be70ee19909225661c7c69303ad2b26 |
| SHA1 | 61adfbcdf64016b3fc8f897c206a6eef6ee9ff98 |
| SHA256 | 23b0811b0b6ea939cd417593a562ff0c6b7d9ec63100dbc1bc2ee8aac28a758f |
| SHA512 | 7d1e87c5e6b927901de3b7828fc28849b957f768ceba5727aad214189675d73bb09c70754505592aac3862160a5d8e235d843e9602569ff0d0603e17d0c8e9e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2400621018bef2328628373ffe01860f |
| SHA1 | 8baa298c243846c1eb88f317cadfe43c3670a7d4 |
| SHA256 | 0bc78be94426cb46dc1375f0c41663eb7bff6ad839dfeedb064977fea65fb93c |
| SHA512 | b9a0ee7855334f248c2050ad58e1717c476027aa787f4f14f10d2f34c7654671c40f162fd036ce49c6ab03f4bb4874c41ad353861a37a98e7a925996ee992dfc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | adec11838cbc0ba286057bafa15b5271 |
| SHA1 | 593850535f564529a96e512c00caec5895d3d9b1 |
| SHA256 | 743db74b651fb0ba3f98780ab580cada35cb22e0297f7ced504c3ac153c9a72a |
| SHA512 | d2d57543d3197752cb5d6918cfff9d9192e8543e36234863b932947f989a6cd6ba44f72925d24115fcf039ba08433b67cb9f1decc782c55f06995b82cabaab92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d1f2efeb3029de4f28405512e08620cc |
| SHA1 | 479f613807f74d4831d5dbc1112dab78e1e24b7f |
| SHA256 | 4f6838e2da6c7b2c67bb9358bb96bdbe3e29ca5420ae6de2f1e8be3421b7f4f0 |
| SHA512 | 161ed74d3bd722ea35ca81fab92daa45e55079102d6cd454dd6dfb7c77a6956d1b4d0e6669b147852bf7526a91a61fdfc5f501f2c204a615e429260c0720b099 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_2028320125\manifest.json
| MD5 | 7f4b594a35d631af0e37fea02df71e72 |
| SHA1 | f7bc71621ea0c176ca1ab0a3c9fe52dbca116f57 |
| SHA256 | 530882d7f535ae57a4906ca735b119c9e36480cbb780c7e8ad37c9c8fdf3d9b1 |
| SHA512 | bf3f92f5023f0fbad88526d919252a98db6d167e9ca3e15b94f7d71ded38a2cfb0409f57ef24708284ddd965bda2d3207cd99c008b1c9c8c93705fd66ac86360 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\TrustTokenKeyCommitments\2025.1.17.1\keys.json
| MD5 | bef4f9f856321c6dccb47a61f605e823 |
| SHA1 | 8e60af5b17ed70db0505d7e1647a8bc9f7612939 |
| SHA256 | fd1847df25032c4eef34e045ba0333f9bd3cb38c14344f1c01b48f61f0cfd5c5 |
| SHA512 | bdec3e243a6f39bfea4130c85b162ea00a4974c6057cd06a05348ac54517201bbf595fcc7c22a4ab2c16212c6009f58df7445c40c82722ab4fa1c8d49d39755c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\000003.log
| MD5 | d0c365896e027d947c1bd69f38194e11 |
| SHA1 | ba4c0a61be0a29727cbc6c4e5b48a53c2be474ec |
| SHA256 | b18406327e43eb3d0853019f82d433efcb2f97e8d93adaaa4cf20611afcc325b |
| SHA512 | b8d60f9aa071927698ae637654e30656b82f5b3f8e467e3ce95325d18f290235a7f087fe18c0842deab9069c87ee1c864125bc9cc0b495df7370f0cff1704caa |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG.old
| MD5 | e2f3003e99b6f28c09a764f213e6b808 |
| SHA1 | 9704170f5ae463793dae12f83ccf873f4f4f3ac7 |
| SHA256 | d429cb50b5f29a4928969b6a9f112847e4ed6c517ab6a5d7dafec6c0a0020fd9 |
| SHA512 | 928abbc96e8870fa1a998e42b8d6a3fdf7f8d28efb360eb833fc1e8169a29ee57210762a66a856227933119cd4bd29f77461dc75ef3846589f36aaa50dd7edc6 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG
| MD5 | 7c59ced63c38dde1c2b1c7788a5784cd |
| SHA1 | 83d5c00368d4a4ed4a5372064b92850e1cf82c11 |
| SHA256 | 952f802f6fe2439f0f6957dbe014d606a954f337477a49b3390fd26f66aa9a6c |
| SHA512 | 96904b219d498ee625a222fe411adda206000c65207f7befdababa21bb89eee466c16194a1c6eaf4b8c0ee22e327f8f5a18a531a3acd7377089c3c8baa0aceac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 963a8b2c525f515071843761b156edcd |
| SHA1 | 57e5d824d9778368fa68c33624ba1fd491738af3 |
| SHA256 | a734d7f4a5dfb2f7f032219f81d18daa8104508bc183e16015bde287df0a3037 |
| SHA512 | 429b634e1a94bbd564e25e892c9e61120d8263cb778679bacf71af060f79aba610dc846f9fc32ee26ddee4e314d83e25137d77e6a9d22d94ba603702e9543846 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 2ece4d7d6d34af44e5401727a2783ed0 |
| SHA1 | d4a8ab7b757dae299d2daf36284c8c187fe04821 |
| SHA256 | 70c68b0fdda19b79b20f34e3656be1f0d39aa45f42db0c550df56bd577a91c05 |
| SHA512 | 17b940b92c5a216638eb38ac3cd83bf5bf3fd9618bb8c5eadc691deea96a843cd30a651d04642627a28d478eb458f8318a72677809b4120965e057bcf0495062 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c43d18f5b617ace5dd6c577083e96800 |
| SHA1 | 09a0ccdce665caf443fe314ad4c1e1e602041b75 |
| SHA256 | a8e737ee7ed8a5eed124b2a28cbf582ac46c92fdd9f6dfa711cb36ed8c91ebfd |
| SHA512 | 0d427ec7e0b286299273e9f0945161a0f51609b936f4eddfcd232178bba62e7078e971e969b6d1c145ffe8c77133c01382487c24e9936ae089bca8aeb3f7222c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | e8fe81243cf4d0c665ab475a38d2b20d |
| SHA1 | 3fea8f7ace35bbf5a529bca0c75674389c61f2cf |
| SHA256 | ecaddbf95cfe521ed2cb8347c86c81cbf2ebb826c500407c2e6714ee2a321d62 |
| SHA512 | 17d03a3f39923a119a579149594fd30853e879b23bc3f4b08b12e009e02faee2343687cb84cdf402810079ced281ca44ab740b7d77bd9a1dbe60d9f99a3a4cf3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d76b962fe7685e3247cabd87c02a8018 |
| SHA1 | e5a0092881e4298dba8aeb056992598e8835dfb1 |
| SHA256 | 82006f9d1c9c63079c9fe4770191db665278f4d55e79977d056d58776b7ca25a |
| SHA512 | cf30bf59dff7d110be8c0fa32f90055e33099a50474d3e3e18d1aba3d300ac234a34696657b59af45c340ae6ac89477b13d6e91153fababddfa3695eda18f10e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
| MD5 | 9605e962d53cb6550cb36b8cf5f4abf7 |
| SHA1 | f6858623840b720075bf9ead2abb15db83468e0e |
| SHA256 | f6b4dd7872d82d3ccc069eec249be3d23bd695f96d4c9dec07097e66a85265b7 |
| SHA512 | ee6db4d6c56690a878737f6e4ddc37c21b067d87f0240dbd8d563e4c2f0d6b8566448c8200ffd08ddefa998c794650f6c8f02a2be94f1e99892858f1706457e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | c3b285d071c9dc536643dd7567a7ae2a |
| SHA1 | 3d46ee3fa86628485cfb0fa85181eb445354fc38 |
| SHA256 | b27a13aff9c44744e37d9c2e15a7a085802084e192a65c81d92a6c04d677c51b |
| SHA512 | 38727ffc00eb74aceb753f01de5855297ccc9ac3993c0884ef367c5d586a0529da037299d6b08dc1eda190eb658f7d3fb0c1dc05baeb36434e5706bed32825e6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1267871535\manifest.json
| MD5 | 312e4f3903c4c44432bba32d05890b50 |
| SHA1 | 1c43d85b5119f09224f7def6054fcb141c08a4ab |
| SHA256 | 44ba2dcd8dcdc22358d9e178a17ea739b2712565b088bba7f665370afdf7dbbb |
| SHA512 | 6840d317d2af8c1f0da8f1c448a276228c1b3250c5216c03316b78c26e0703cbcd335b3f11d499e12800328e40f4eafb238552cbc4e038cb8c1ea89142f9a304 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 987ff22ae680289c5426710b949e3424 |
| SHA1 | 513f85c075da53abd7e48feb16ea8a1437f4255a |
| SHA256 | 78b92c5747a9bcb7f43b4aeacf18e97bde484c403150d29fbe84db6b47375efc |
| SHA512 | 0e973a7874425a39ddf22aaccfaab1fbe5816c71b5faba21ee4e6eb209fe243ab45be9cfc6e45c14e57105480a8dee1777d445aac0ebb61f3aaced57ed13fd71 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\SSLErrorAssistant\7\ssl_error_assistant.pb
| MD5 | e2f792c9e2dd86f39e8286b2ead2fc70 |
| SHA1 | 8a32867614d2a23e473ed642056ded8e566687f9 |
| SHA256 | ac354a4723aaa4f06bec385ddde4a4d0983ad51456f52b31a8068ec97d5b5ea7 |
| SHA512 | 6a7af0ca1efa65a89a9ca3b8df0d2e24f21d91673c60cdfeeb02d33647442b01d535497249542f40e66e0d2dd3e9f8ed1f4a201fd97138d07a2b71366737e580 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_740527167\manifest.json
| MD5 | 4aaa0ed8099ecc1da778a9bc39393808 |
| SHA1 | 0e4a733a5af337f101cfa6bea5ebc153380f7b05 |
| SHA256 | 20b91160e2611d3159ad82857323febc906457756678ab73f305c3a1e399d18d |
| SHA512 | dfa942c35e1e5f62dd8840c97693cdbfd6d71a1fd2f42e26cb75b98bb6a1818395ecdf552d46f07dff1e9c74f1493a39e05b14e3409963eff1ada88897152879 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 936f64497cd82787753a4d83859513f3 |
| SHA1 | 54bf421081733612d0aac1d11ce9ab588f6341ba |
| SHA256 | 312477a38e6b0a3c215ebde3cc006d0dfb41464d961b9eee1030f723be8001f0 |
| SHA512 | 127216ae3028f8ba9b865f949240fa7dfed47f98892c052bb25e5009d79d470564f0e6d55c91a40634875286c400c2389dee07b8cb8c758fe744fca961cc3223 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 49dd2b0242c3acf43ec98b4cea69f404 |
| SHA1 | 12ab39808704ea5d21a80b7fc5d705a9c007d902 |
| SHA256 | 0f1ecdeca697a56af2fb1079fae639ec0405126a5878a22b525a28d169915037 |
| SHA512 | 3d7f5ff675f1e9a4ff8831615bad51f5a1e6c45753222d5905d52bd507f70d0342feae8f395ca7014f76686870d1e9ed4cb05edc355c03f20e49c1a90bef5112 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a2aecc8f8c2c9bdde9ea6bad725a6edf |
| SHA1 | 87e32265e4128b7429a752f7bda960642b410a46 |
| SHA256 | 3baba09a852a66e4875f35476c17242775a6d3200a73a1f65e3504450e4920e3 |
| SHA512 | e2aa896e3ee3e1f172ab4cfc8e58bc3089091b2abec477299ef23189ac979009c6c6f58372839a4f2801b7c9e053a9715e8d8047a002e1125f0f6db4a44581b4 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_2055917305\hyph-as.hyb
| MD5 | 8961fdd3db036dd43002659a4e4a7365 |
| SHA1 | 7b2fa321d50d5417e6c8d48145e86d15b7ff8321 |
| SHA256 | c2784e33158a807135850f7125a7eaabe472b3cfc7afb82c74f02da69ea250fe |
| SHA512 | 531ecec11d296a1ab3faeb2c7ac619da9d80c1054a2ccee8a5a0cd996346fea2a2fee159ac5a8d79b46a764a2aa8e542d6a79d86b3d7dda461e41b19c9bebe92 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_2055917305\hyph-hi.hyb
| MD5 | 0807cf29fc4c5d7d87c1689eb2e0baaa |
| SHA1 | d0914fb069469d47a36d339ca70164253fccf022 |
| SHA256 | f4df224d459fd111698dd5a13613c5bbf0ed11f04278d60230d028010eac0c42 |
| SHA512 | 5324fd47c94f5804bfa1aa6df952949915896a3fc77dccaed0eeffeafe995ce087faef035aecea6b4c864a16ad32de00055f55260af974f2c41afff14dce00f3 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_2055917305\hyph-nb.hyb
| MD5 | 677edd1a17d50f0bd11783f58725d0e7 |
| SHA1 | 98fedc5862c78f3b03daed1ff9efbe5e31c205ee |
| SHA256 | c2771fbb1bfff7db5e267dc7a4505a9675c6b98cfe7a8f7ae5686d7a5a2b3dd0 |
| SHA512 | c368f6687fa8a2ef110fcb2b65df13f6a67feac7106014bd9ea9315f16e4d7f5cbc8b4a67ba2169c6909d49642d88ae2a0a9cd3f1eb889af326f29b379cfd3ff |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_2055917305\manifest.json
| MD5 | 2617c38bed67a4190fc499142b6f2867 |
| SHA1 | a37f0251cd6be0a6983d9a04193b773f86d31da1 |
| SHA256 | d571ef33b0e707571f10bb37b99a607d6f43afe33f53d15b4395b16ef3fda665 |
| SHA512 | b08053050692765f172142bad7afbcd038235275c923f3cd089d556251482b1081e53c4ad7367a1fb11ca927f2ad183dc63d31ccfbf85b0160cf76a31343a6d0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 17b898a38b2a5b664968e73419c98989 |
| SHA1 | 64b9c39e5844243076310306fba0f822de9734ab |
| SHA256 | a6a878db1e6155ab62a5a5fea8fc2b6cd81487a41edf2e3a490c54be6503bab4 |
| SHA512 | edc2ac745cc1f33aa316979b6509fdb5dc8c27e525db47a2df1e6fc8367f57b2934241428fe077ecf2512a3fd650f8596c3b1eaad2090347472349b6180bb9ce |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_46443191\manifest.json
| MD5 | fb195043cfc35ce711b45934e387267b |
| SHA1 | 6f1aaafee57a3da2687e9fc8defe2dbc7cba0e07 |
| SHA256 | aeb364b60303212808fac02eb490ee5b054ae843ce084376e5981ef8767e5198 |
| SHA512 | bd7fee1d6f8e51137c849d76ff53f3b501d60ddce83cce18f3a217703d3d8b1a1cc7696b656c666d4f6de62a17ea2407c857137d12e0b6ac7bcdde4b3c8ff86b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\ZxcvbnData\3\ranked_dicts
| MD5 | 959460a18173908111523bbf4c39073e |
| SHA1 | c42a9a7042f6d87a6a9de7f9bf378f1fe9485fcc |
| SHA256 | 5820d0bf9cfc363ff929492b1eb6df430039f4ac0e212a5b5411f7c2614f79d0 |
| SHA512 | 291decc0f58cf71d7929a52d2c21a07590c02bcd202b73fb20391d6d0c7dcbe3aec24e02606f22dbd589ee2546a0eb8414c232f74ec646a1f26496c280705600 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | eb65f2da9c7441c6c5cbd15eb1818646 |
| SHA1 | 356e84194c9380881c668cd2086e002becb1a08c |
| SHA256 | ab85e1be1e16559d85eab2bebec334bef73ec4bb5afc8a179d0295d36e6184e3 |
| SHA512 | d5ada9fb8701be09c92c462add9f29fc6f6d2b6e0d6eda1997beb2e549d5e8c6bb6974ddc939db11de289d73209ea2131f09713e1430d70044ee5baffea4dace |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c0acfd2af6b9670944684154a1e94d81 |
| SHA1 | 33488d4b6abd43ab78fdf0c7c1b4d67eee54c6b8 |
| SHA256 | 2c27ae70d5582ed6cf36ab0c95819a537261647d0fa1988d25d8501139a34900 |
| SHA512 | 9634e1260a30b7a578ea3398ce7a11149b68f87b1682e14a1cb95338f67a663727cf253d372d126df813d81a90d455dcf9e60da4815eb422b2c1837e3a4504fd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_0
| MD5 | bf2a91e9ab9d4b10c6ba238e20d5a45c |
| SHA1 | 31c64a8d99fb047956ce9c0d50634a7b68be7411 |
| SHA256 | ec262e693535593592c44179d3182ad8c540a3ace1e365eeb515cda23afbe718 |
| SHA512 | cc0246ff97410a708a0a965771c0950b01a15eaf51f4532295a6a2a5173bd3088765182a4756b6502f54e68bb0969a90d8c15363082d5b90caf6c5ebf26b856a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG
| MD5 | 2118daaf9d2a856d58cc11cede8dbe71 |
| SHA1 | d212791b5f936bdf3e36f8bbb5c8144159f0d884 |
| SHA256 | 562bfb49b460f58b4cc613b43a61af359255fe41177b41f9ccd68ff7b978edcd |
| SHA512 | d1b7ec5e2d1461c2cdb9092446b95e0381ac656925520ab52ac513dfc25e2e93330a6ab7bc35fc0cbb578178081dcb102d8c5f89f638cd12dd70de22fd346690 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 27a32b96f61d7fa554aae8f4b6742dcb |
| SHA1 | d0c4df7d033d6ff5bd543736964ff1593806680b |
| SHA256 | 87a0bccd602e0592dd91fa78d19a2cdf9320cddbbd380835f9162849032164d6 |
| SHA512 | 8012687c53fa4daf4f02eeb0ca1b7dc6359a608d12803aed7032af608c79aceee23d5e74cb09a86c19b8adafebf7c7a265325d81eb1ab861af9745255122bf73 |
memory/4876-8477-0x0000000005A40000-0x0000000005A4A000-memory.dmp
C:\Users\Admin\AppData\Local\Lavasoft\WebCompanion.exe_Url_kleyaxrtenldtfqjmu2cbjmsn1otpqzk\13.900.0.1080\opujs2bh.newcfg
| MD5 | 814606e0358806af3b6753c933dc5d7c |
| SHA1 | cddc6927c0a3bdcf7b26b18d8981fdf47a2b0a4a |
| SHA256 | 6b1b5f7d28118250068cc57d7faa1185f38ad460ec262a20b620a180c6681511 |
| SHA512 | c2320080f2d06a090ebf88e282f5c6331b61f8602d5790360b1c0e5a587cf49895aa04eaadec3d927d3cb0a4b43653e4fa4e95006cdddae1a406fc9129be2689 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State
| MD5 | 81baeeae69bb1b3a224d1b21e721c2ba |
| SHA1 | ca2a5baff7342329a060dc62f9d4787e67a4358f |
| SHA256 | e178f153aab9b95f5a4f3efb1a289f74b66235e01592dd05529271796b2ef58b |
| SHA512 | a1ee887371fe03bd7943841693d0afd7bad694181a29b09e1e25e49d5455ebf8a2bd747147598d7682333c32fe4de66a382ad1a5a0d80f213de12b3992f6329b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 4859704d9633f74a7f7d784497425571 |
| SHA1 | dd89f118689a2cde8a7533c636a8877776fc8f82 |
| SHA256 | 051022d35b2aef4e53fb3ab251d272a85787a43d6d80d9c7d7a0fd967c71801f |
| SHA512 | 1249c2060672763bc3c8faf6023e3f7aa5da459a7989ffbbca8900a909d4294592dca745fe6f1f82eb34dc81ee4c8e30ce2ec463c34b633e760af679d9baaf51 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5f078fc094d4d5f65068fc556cf6a613 |
| SHA1 | 084f315ac4290dae54444630083757245c7d0fbe |
| SHA256 | f3d8ee0c36d32ef7fcd6a3fe1c22aaaaf7dc5c2e98f377bd052684fda3e56ed6 |
| SHA512 | 85b9f82d9a22b921beead96181314491a950ec06400c4d0ba67ab04a4f6a472d423a410f2aa7a1f830758d66237faddf9ef57d6304d3f534813cd1d0e417cce6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_738821362\manifest.json
| MD5 | bc8af26f5478ad27162a9fd179dcf648 |
| SHA1 | fdd1d27384569090be1eb4f4138bd738bf1722c2 |
| SHA256 | e0ee800a00ed66cdd41f7140d3ad5fdc81276ab31fa6ca6eaee8ea7323088299 |
| SHA512 | d4756bb7b9aa52b2cfd99a27560da432202a53bca668229d89692b53f1ad8e9f54951e418bd9e9342d28f94cb565b70fd1e8f78c1727a6c1fbe31307178316e0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\TpcdMetadata\2025.1.24.1\metadata.pb
| MD5 | 0f83ea8aad2d94a32037e90f2812611d |
| SHA1 | 66a2879b881176df793c94f6833441fe153e5135 |
| SHA256 | 628b2de57b5dde868a30e9c45ffc6ff35a820c93a90d3f4ff61a1ff5396eaf54 |
| SHA512 | e676aa774c099e43c00ecd42d2f10ae194910d9b694629abdba763aefc1d2c541cb1133ad3bf74df08fc6f8fb32b3f3047c07375977ee8d0f8bad9eddb7bc388 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
| MD5 | bc00f62ff8fd20eebfa1d6d2aa293af0 |
| SHA1 | 6102530c0bcdd3e56d67a90fb20ba3acf3dc86a0 |
| SHA256 | 54036f59d11a26e61905d0b6ee8732c808adc0b5ed6096751271006db5a962ad |
| SHA512 | ea4487b1afbe53b6fd905ad7a201abb30db74290952b038405130003fcdf7f5c446392867f8e71ffeecafde9b363350f721253753c6995895c2823731f4620fc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 406795b971df1a9863a77751dafe10c2 |
| SHA1 | 9d0c532dd59c4bac124f9008b211262eddf48a88 |
| SHA256 | 71ff946fb25f3d594b7f43b133f9f13c11cd361d455743fe37e93928a33d4325 |
| SHA512 | 58309c36d31b4db5e13f2b420172f39403764fafb5589a44af2328ffbfa9e5177070b49016540e30d29961bc4354dfe43b685fe57faa790fcf1424023178cfe1 |
C:\Users\Admin\Downloads\𝒟𝑜𝓌𝓃𝓁𝑜𝒶𝒹_𝒮𝑒𝓉𝓊𝓅+𝐹𝒾𝓁𝑒-𝒫𝒶𝓈𝓈𝓌𝑜𝓇𝒹_2112.zip
| MD5 | 93c085b30297702d76503252948914d7 |
| SHA1 | 7da7c31323066bc34f8167a4886e606ad44471b0 |
| SHA256 | 643cfcc34da58c7c9b24ea365c18866fc573d4c60fcb85e4d736346b91a42986 |
| SHA512 | 163918fb5683e2a75947a97cc3e632f301913788d6576d4714c4544125fcd4a26a9b62ac7ff7edae5c3e6dcd5d7ab2e207f4d6fd928af0b8f943d32fefe5027c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f721d03da9a0e23b8ef693819210e877 |
| SHA1 | 2114bf4978bbc6ffa18b27e77877c6c044812b47 |
| SHA256 | e411bbabe11bf5790094d52fe6c505e2b4f5dd20fff5ec8a71193c39045bffba |
| SHA512 | 409a9edb92cb0f7a573c2908b5f70e3fe79540728934d0ecd65c48aca08bae06d73cacd46eef22cedcad7b51ad451826106ddc526ab27613ed0587788a239b77 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1961174587\manifest.json
| MD5 | 9a5a99da362e84f6bc53460440088105 |
| SHA1 | 3f423954c63ec8e57c00dfac30b15059f96ba7c0 |
| SHA256 | 83944ef33ffcbeb4895d21cdb0b65b0712763d7953d6689a659441f378ead1eb |
| SHA512 | d69bc1ae132dec4b28046f66845f572ff552e8c650c08d6dcfdfd8d71ba04904e7771b959cecfa145909cdabeaaee4102ceaf7eeae71f59954b03a07a47585c0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\SafetyTips\3058\safety_tips.pb
| MD5 | 9b8d5611372559bb0c5ec7a5d3f5096a |
| SHA1 | 98cb279b6e94e424faf9f6baa86a0c84140bd569 |
| SHA256 | 9dece439a4472ee74f0a5e239172e6bdf9b05ce85a9f6eaf79598d0817eb6902 |
| SHA512 | da044c7790191df4354585aeeb31428300fcd1478191b2d8ca445f90d79c3c61967e777b6dd1e098f2fdbc06d236f819d74392fdf94bb164c1c152f2477195ab |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 7cea616efb40643a1f46747f67858dc0 |
| SHA1 | d22f0fb35efdbd9e64dfbed9a8d76c41f5282b58 |
| SHA256 | c71e250a10293feb37df1a7bcf15a490bbf36a2dfbb3a3a2697c085e6da6adc4 |
| SHA512 | fbbf327e505cb5c8088a67494bf248f737d189b1d9caf10187ed0c84860552a6b7ac075f3b33c630f0d4ab44ecd621f5115733df46ed4ce1d8e387c718eff21a |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 3532aa7b91c009eaa2e9771d459155dc |
| SHA1 | 3b55f9a42536568c8665cdf9734f433587a1753e |
| SHA256 | aeb1d7975b2994de70ba92279b65b8c2d3024a6d985d0e55f0a640754cdaacda |
| SHA512 | e835e4377776843f92eb360d89e12cec719aac9b9236ba572b3439907450bc638055438b0b72f301ef4dd54f4447f8e077d1583bbc3eaaad0894422d5e0d829d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 891b21f328373f7c811aaa459adb416f |
| SHA1 | 20549d25d23fcb65db4230d34de3e9a9016f0b90 |
| SHA256 | 3037b95b35fef326301d9ac3c8f19611ddadc0a6aa0a2c3d79c51c8d1ed2032f |
| SHA512 | 1305dab4cb42ca6d9eac28280b5c1ba9475e20f5b68fe21299ddf532474579cabecd481c65c9f65f7f1b3c972fc4fb6abf99c5f218e51b1358389c05a469f25e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 29df8b9324bbe2bd313b1fd4efa4d319 |
| SHA1 | 982877e632de4c2214f080bc9e4861d289508bb0 |
| SHA256 | e87e2a9f2cc657627978a27f5403c012c5b26e4059ef109e10c3bbee68afda88 |
| SHA512 | cf7acfe15b623c4cc908baaff5d486606c7d9195747ff4acc717eec21a152a1cdfb1a4ff2af5fdf273d65131460cd57ed4cc6d5a4b08a07310a84f137e045193 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1961011308\LICENSE
| MD5 | ee002cb9e51bb8dfa89640a406a1090a |
| SHA1 | 49ee3ad535947d8821ffdeb67ffc9bc37d1ebbb2 |
| SHA256 | 3dbd2c90050b652d63656481c3e5871c52261575292db77d4ea63419f187a55b |
| SHA512 | d1fdcc436b8ca8c68d4dc7077f84f803a535bf2ce31d9eb5d0c466b62d6567b2c59974995060403ed757e92245db07e70c6bddbf1c3519fed300cc5b9bf9177c |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1961011308\manifest.json
| MD5 | 8f6cc8379cbe9ac1d21cd7eb8198b0fe |
| SHA1 | c3fe48555f405caffc717c1d8868533511df26cf |
| SHA256 | 13a661083f3d75c4b9d176afc7ad53c7b6823050b4ea53b495f091d81018ecb4 |
| SHA512 | a99b465ef452472b9b868ebb33c1f2f1fc61007786b1f9911c8f15c1e0d6aa9231a5ea5526d5b5a6b319726f0e2d64f981c8627c53c26ed485a2c7e0e95d4349 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\CertificateRevocation\9515\crl-set
| MD5 | ecafd632783f06d01f39af764d695a6d |
| SHA1 | 2b92fb6f423130aa073eb3c0db4c98f7078f7d81 |
| SHA256 | 8f675983eb553aadc2fc7199a4987f48f90a4765531322d7d9ccbdb0e3c74769 |
| SHA512 | ab9f3e9fbc5df13ca5aeef8ca710330632011cebb22c3bb11ed5ab2ecdcf18dda3726dfe3d5d5e7427475d4329be38f3607cb1b858617a631619cece2deaa9b1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2babc0f0a2895f7898fe4d0b06a28253 |
| SHA1 | 44a4fd952f0c6ee7a97c393a184d65f6733abba2 |
| SHA256 | 4201da834bdc8696dbf77506662f25d5f84c6ab6c6d16bdb559c2d5b7f88f6c6 |
| SHA512 | 592bcaf1020ab19c81b7f9f1b19fa58224294be7bff824cc298206dd638ea68462988ab98d7c06909b9957af8c7d6f74bcd80e69603f524f5fa13f8642009953 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | e135a6b51179804474c6f8a594dba80f |
| SHA1 | ad2748d354d25dbfcdbd6a38c770561383e66a0a |
| SHA256 | 9a08f015b6baaef82534d98ea23ffd4ff1fad6faecf2533714a87c006c0dcc63 |
| SHA512 | e5cb99a054f6e4ef1b7e2019df36d267e596a048cd43e9fd1b9eef9c31ae48a13d367569e1b6974bf4826fbc67751c2f95578398a6b7343cc9b8dfbe19510a34 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000082
| MD5 | 42d18b064002ba46bf9fab295eaa3fd1 |
| SHA1 | 94f2c37d5d50644c95ab6b4727268a2afa4c914e |
| SHA256 | f83f906db90a63bc8188321b25c71fa0d12a7ab8ccdf0548d543a8d981ae5dfb |
| SHA512 | 47f4e3747f21a473ea3c62d359bf380c2e9347a72a736d5c469cd4a508fa6fbdc1902feb3fcf11321ab0baaf49fa1837422716a447d53d3d4da59c8fa674534a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000080
| MD5 | 854e4b0072b8fdd48c3374d6dd47fd1c |
| SHA1 | f6b76f85a878bc72d0b8c5ab897cd89efac94e78 |
| SHA256 | 44391250513388cb67b990b80a0469d2a83ecd77fb62769cd8e582f300f4d75e |
| SHA512 | c64febc1e388a7c1c5bf9403d7a0b58c347a03c9d0cd048f72377da269eff7567081d5dd4e6867fbb3731f54854503ef71225f8f5dde4372a6529aefe70070a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008a
| MD5 | 94bacb4154eea30a19c8ca7889041cf2 |
| SHA1 | 0f535d558bb01ef0a76eb66d7b5bb3c478bfef3f |
| SHA256 | 2727164c94571c63b050a514acef534054886ad2151096c534d0e61a8679c404 |
| SHA512 | e437c0fe635920a3b27411af9d27e757a17f4e04b731c3b896e0371755bad09d46a7dda1cd7eab0555631223eb21748387fe48f4140c5478a7f20acdc2c26a92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000087
| MD5 | 03c9f8e986fb788f4e44e388793109bb |
| SHA1 | 903b17f9a93887c84546e4ea1263898978dbfdf1 |
| SHA256 | 9268b372ac0271f102fce1edc9ba38f3ac58603e4fd45bb5581a87f55204c537 |
| SHA512 | 2dd47d50f2ab889ee3d12fa8fb96c8cc9bd7765309ce2cef426fc5cc164835ce5911c13b58a4d71dd4ed52839e5e68583f804c7de63e116da0fb073ba04ca214 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000085
| MD5 | 562fcddb5aeaa6b266ebcf25b9e56ccd |
| SHA1 | 2bf64272c9618290d8fc4f21be2a501d97cbb647 |
| SHA256 | 58ee814d010139bd96cb98820037970f2280131064c611b4b2e0e39cbcc844a1 |
| SHA512 | 0d07bfe98f5eaa29737bfe44f1647d09c0ad25d9e3f64df8310b0983e30cf97844d4afa936a4dfd53ba8ad07979bda3d22336bb96b0ff4053532c679c1cdb469 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000084
| MD5 | 4ed2c02c97781513123bf004fd2855f3 |
| SHA1 | 697709718288fc09ecadcfd3e5cf10eb12858e4e |
| SHA256 | 615206b3b6bc888157bb0c698c756b04823b5e3b4cb4a0840ff1b425e697bffe |
| SHA512 | 274e5040938320f6bfc2a594c249d6fcc22a90579d9dd7f2a05559eb5670b1f6c442c14e7e1cc3712dc3369015a639c5b9b14d48faa4cf24af35aefbaf25ed2d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000083
| MD5 | 53ddc11bff6a6988ee00bd60b3a0559d |
| SHA1 | 2262daf9604e06edb14a391a6b3138ed694f4a63 |
| SHA256 | 62f48bbd45ed2ce895d62433c2f791e8f046bd4dd694e51ac0e551c99e73f5ba |
| SHA512 | b2dc91411ad8d0c1809a1501c4815854c94912553bc32982554fa766a2940d8defadb050242953f0e3d186c468d5ee8498f518e757e75983206e581102513d50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007e
| MD5 | 262bca5a6c0e7c828a9a54a73979ba20 |
| SHA1 | 9c8952dcb7d9f95054aa067e912df6ea876c9512 |
| SHA256 | b3efcabdb296f5536beefb6c7f8af444e291ee87396bb6969966abeaf945cd1f |
| SHA512 | e44c6fce5dd33b6b0bf7d72b630e9e76efa415dd09af60b14e3ed7ac0ceb6694e5471bc24e25d10e0249800586d1ac8772680670d0424a09efe3cabe2aa6ee66 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6d6a0d7c42c22807cb47f7b2bfc8a210 |
| SHA1 | 326f7e9ee27bc2888129decbcf563d9d37cca0cf |
| SHA256 | bb424a246f9d2291612fce8dd3f9cacb91074cc3612ae6e128acf618fe4b5a94 |
| SHA512 | fce4aaf31af81b69056f9f39d810699557fedc010587e7b397c2984b5dad8fd5bc5153cf98732e8046b946dbcb160b9581a74a25e52d2afd65dfdf6cef0fad20 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 7ccc5912d066fc6a50ef50190d7ab13f |
| SHA1 | 5a3f8fd4f95e623f4d6f566557c2a2bc82b44d32 |
| SHA256 | 1d509c3f63a7d94efdecf38e272125419b2c9ab097417e5678310b7d34cda177 |
| SHA512 | d32b6fa12972f7731860585971906c1e2f9eeacf70f77422684441beb6940c522c80dc88a62b3f4b24dc4cfff2957b3ec8cc3ff5007204416e56abc4e9629b8d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a9c7839e0f301117641b24ea74c2f3e0 |
| SHA1 | 754cac805cebb9bc8a1e6875bf05dda07b0316ee |
| SHA256 | 2709c8cc6651f79b004f896e777503cc81362c07e774949155e39ffe1ecf83de |
| SHA512 | 8895bd0fdd0c33135dc6081ec2dd0889140c3ff35bb6fbe611cb60d9198d02c733a6e00c5b08e0ab33038aa59e3995298c1b84ddd9a9815c6a0a47a76cdbb304 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 284d449c9c549455db23e73bc377a3f6 |
| SHA1 | 3e0a37b1813c762b736ca67756d1c37220715a76 |
| SHA256 | e04cdb813b7fd777f4295f2247ca79402b5962e8c6517cb4efa4c099fba5b880 |
| SHA512 | 39387bf69462bc2d28e315e6de296f23d0c2ea1b8124bcd9f5501570b16d8941321ca9906795f90ca20b51717b0582c16cb789274941c28e311f142b5f0b68ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | be1bbb3dc18a8463707b2d9a54142dd4 |
| SHA1 | 4bfc43869e91fbef590930b2c7df0f2cec878f5e |
| SHA256 | 24552d424927d2519d65a9fe7032a4db06618bd981dddc877b3563f3725eceee |
| SHA512 | 57d00563349a1c2e30624c068110f9649ffff4667dd4a129894976f3eb42962513c8d2c2e59100bb60b3bc937f6957a40ba82838133381ff3ae39692192098cc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\fa813c9ad67834ac_0
| MD5 | 5a186de3cd1aafb9941a0eeae887cd3e |
| SHA1 | daa9c1ce1b967ffab43c663073bb9205b7930c65 |
| SHA256 | 06192ff1c2be03d00aff4de6a4e3af56604e0740860fbfb31ab819c54ae770d4 |
| SHA512 | 5e6d1a3a36becbc3ced2ab3f114383848feeb345656c427dcd7f2d442e8d2884c1e861cc6c8fe4e951cbb143b52934cd6f1d5262b29a6030627c027456d1219c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_1
| MD5 | fe793baae2a32c964492124f19af15e1 |
| SHA1 | 81054edddb860b8d647b0e737dae6aa9011dd916 |
| SHA256 | e05d5405ef84b275b2c3f2c8806438128972baebdee0b40f20969806a9521207 |
| SHA512 | c87aca55d8fc7a09f25640c1f8915eced778ad0c4270469171798a70fcc0a280d41a1b2b56e9be030cd9cd63b28fa79a13c38d3bafc69c65f0d62e28ac44ca19 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG
| MD5 | 3fee7b49fe051f9a3d36775ee4c56b51 |
| SHA1 | 6a325618c0053f7c8a84ed84101877e09a63030d |
| SHA256 | 8f3ddfe7d53f8e368747c52a4a7dd288f07d89db9bc41672437cd51eaa4e44c4 |
| SHA512 | 8a37f191b2399cc459d21c20853d35a752501ac184a719a69c5d4a7f52e1e1403bb0ef97c7b05a4b91bc83f06083f815308226f538dcb9112032bf8362dc477c |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1395119797\manifest.json
| MD5 | dfb5c8a0e981d7e3c04d27226d68e670 |
| SHA1 | 0f34c80de2989e5cef78e54296ea8c851cfb60e4 |
| SHA256 | 24653a9256476fdd56b958f046fd67e023f4fb6d0e76fe6a280f57f42f4a4a7b |
| SHA512 | d8a2635ed0e77969724415245327e2ace31bccf46ff69873f9c92a3570d507459fd61256d2f7906a33c4d3b49cf28b6fd44278e4a0c8f179b8901fd90a27d569 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\PKIMetadata\1204\kp_pinslist.pb
| MD5 | 5670be0bfe80b1efcd01b81d44385e97 |
| SHA1 | a6277e2fd80815f33d7aa0378d77b8b8f27d4175 |
| SHA256 | b6cbe7c4d06c325abd58b2aa863f96c36bfa3679621814748acd9035972f2b1d |
| SHA512 | cfe56d5d4b992cf9595110f5757a9806adfe4abc7b58a16b56bf9c5649fb57d4a8784828dd1306bd6e8dce296341a6bebd9cb82da02be17a10501f88a71bcbf4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\PKIMetadata\1204\crs.pb
| MD5 | 57086b02f74c3fe7b79a5e2e3d852322 |
| SHA1 | 6420387225ddcd5210175de4f3fdb0ab2be8ee9c |
| SHA256 | a1b5be8d4aab349aff58ed34e1f3bc6647cf440830da0a12a8bd5a1c976c6407 |
| SHA512 | b195eb9a9129863e75be603b00b85ecfe46360910529fb38513af6940f9d17efd56f234b47963452329cd85b16bebb5a85ab5d304743e57d33bafd5b59900468 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 19dc4fabc14122433407e634c261373f |
| SHA1 | caa9c5cfa1cb0c743e4d6841531769f9f6095b1d |
| SHA256 | 5846ce3dcf247e2b888d90f66d1a3d015f49dd85bdd0f6664acec78a02884995 |
| SHA512 | ae66c0e08cf4cab633d5aa523ce9f96e40ba0ba3cdf004ded8bbc222185f01750cf7af04e9c8e0b9dc6c87dfc2825de4d1ba0ec5094e42328865cd2f44745913 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | a203e90abee0834f6392b13364b13642 |
| SHA1 | 2f975ff6374fc532b686ac051f732ab2d85c3f30 |
| SHA256 | 8548d69bb3410342c3506a135ab850c5e6f0b84de6a43bd9e0d1c1fcba8ae59b |
| SHA512 | 76302b37721c73326e3b58176639b606e6886049617310183300cbe046b795de7d7e8b47ed9d9e5cdbc937b267075fb83983952285526690326f44016fadc9e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 68bd542f8f585a818fda33dce113f18f |
| SHA1 | f57f1dacc3f9afccad0f4b3eef16fd45b83e3fbe |
| SHA256 | a42d798264778097787ff1815a977489a98cfda040bedebe2bd8028990d91aa0 |
| SHA512 | 43ded5935ad5e028b9eadee6dd1ad900b3ddd3d81884ac411458dbbf34ee3a265561e81cfff7072a03aaae7d4adaad40305ebf7a9ae1a64b8068036ed14e0a90 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1910690457\manifest.json
| MD5 | 05c5976d715ddd3cd7c7cfb35ed3ef25 |
| SHA1 | 814895d5d1b3e221dd20fc175aac0214ada6f83f |
| SHA256 | a5f3d847ebeea9c9e21bc1640672ba84c0f15f0010758a50e384780f337eb119 |
| SHA512 | 3951a45638e6f615eb022dd65b5e00fe5d4d77b79c18fc4cc5714a59053125b3b14ec7655b3405193ae27a035f2b3dc9e98bb76d7da6fba1266549ec709506fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | be228a0aa181d4168f7a81b8884cb09f |
| SHA1 | d7a577a95030bbf022498ac8a17ebfbc660a9773 |
| SHA256 | 3db8975b63a2b18b10bc24433605e2a96b6d694b4217a230c6e7486513fa5d3b |
| SHA512 | 4f834d0aee7b9ff405ec65b326d27a19e7b04b1350fdeec8b44b650d9281e61c534148fca728a5fa8760799c0e8e32e320a045adb0bd1c2f074487f656a5dc80 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State
| MD5 | caf5a535ebc107c53d2cfe2b4227f5c6 |
| SHA1 | fea696c54aaa530d03a2f1eee9bdd7eb948f0604 |
| SHA256 | eddfbafa2e396910f908e06b4a7a8cefb52d74a7f8cb4ccf0fd6df2cec15acfe |
| SHA512 | 193b2f4cc5f2ff4e7a3c7dabeb5bd116ffabd19bf6280c7efed1d837e826710d8b7eba61506b5ae68d43f7116d21145f52f1040dbefe5f6f39d5faea593371c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6446e83bfd2a7e99cf6c46fc4d1e6f46 |
| SHA1 | 79a158418ee6d83c051f4ce3e84cf82d1760a84d |
| SHA256 | 42c82154fed2c6a859d26e0a65be62d844b15ef51b1508aac96f7cd1cb682bc0 |
| SHA512 | 86e4933637101ad5f09f7be24f9739530441076b4707de6d58fa5126f2f45ddf3e916f41ce7b9dbc86c280a22031626246928cc444e5e6e4fd23256bc061086d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG
| MD5 | 91e889e45ec5c9dba91614d691cf2246 |
| SHA1 | 481a6feef90c2d16ca4b0c46621e8e41f814bdd0 |
| SHA256 | 54add2ef0871bfbff711e6f262488683b3a7dede808a35869eaaf634e00d85cd |
| SHA512 | ecfdc9b6cebcde4c0f24a594f4e489541317bd6c09ea8d9707f5adf0b657376b07bf189dcc0d4ac1fa64528954ececb03d98ec667b80879b6eb0d140221f75f6 |
C:\Users\Admin\AppData\Local\D3DSCache\e8010882af4f153f\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock
| MD5 | f49655f856acb8884cc0ace29216f511 |
| SHA1 | cb0f1f87ec0455ec349aaa950c600475ac7b7b6b |
| SHA256 | 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba |
| SHA512 | 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 7b6b74248386892b8ddf3a14a47d78a6 |
| SHA1 | 4ccb2e201f19354d7130e65526ae3dbe57e42a23 |
| SHA256 | c8879758c916304076e55e7a2f3af5eaccecad64ee5b5f42bd3a734d554b9702 |
| SHA512 | 483ae75f0f2a70ebf8950beee656bc84a591a84b5cd4d38abaca6a314bbe90ac9efdca1a0b348086381c83cd077500c644ec3e036014f07d93c0cc5a95e2ed0f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d8526ed71d56a92144769f90a6312123 |
| SHA1 | 76a82589e73b2dc542a59ed0afb3c22c54b05934 |
| SHA256 | 39fbd26b8aa3473ccee9f423f4ceee3fc9d6f7feeb6268ec61d85ffeff0a349b |
| SHA512 | 0c3508ccf2e2aa441def5daae9a12a520328d993687a3ef9fe0351915833c80e2212cf55d18d86f296c05d363f4b2a4fabcc88d02f5fb5f6350a08d3642a0c98 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | e81c910b7e8135d5ad4ccbe9e6a4c01e |
| SHA1 | 133490ed2e9f78fec23f502535e256756ceffa19 |
| SHA256 | 166def83c273bdc3b00e4d6f819bb8f3bcfb46d5f587953876dc87315f2d6137 |
| SHA512 | 9e92bd900b40a00db17ebd320916bdcc3a319789e2fb01dfc414b7a8ce62b8330abc79c36ceccbbe355d33dc5d7d0cfeda47860b2cc55df17fab0850cc57bea4 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_787262649\manifest.json
| MD5 | 01f3de10093b3b262105724e85817fa6 |
| SHA1 | 97dee66ece41b53a27cbd4579f44c204e35d19d6 |
| SHA256 | be1b2d4b5880584961c46ec8ed276b6ee43ea595da56720268e05bd3d5c95340 |
| SHA512 | 9646b13e23c4214bcc45715fbc60eb9afb29f934d5d33b3471ee89a6f399a68d83b5bdff14748f73ce6a7c2c9fdce782a4ce849f855a900514636b529e9b400f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0eb0afaccbc0d32eda25f3fb9af74c79 |
| SHA1 | 4628019c0a4f8dc3f4f043dac17c4a2809f42e8d |
| SHA256 | 7130770c50bdb672920a1a45899f49ee09b9e2169bfd2fdbd57ad5acb2440d2a |
| SHA512 | 440cb6f5839049c5c548c824c8aee01b1b60f802e6502f43243bc6cd650da649f5b8428bd1992df33641e9c0e5a2ec768194be1199a11ef2e9845c9c41d0bd3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3e6117bea4a3788971726c71dfcc6e35 |
| SHA1 | e2f5f0695a0187ee0d4b73742ba9246591bdab6f |
| SHA256 | 3e98a26c19b8d23e187f44893c8c0fbd426aadcaf89c5c31fe09a62e1c4c2e14 |
| SHA512 | 966ccb26e88b7a01fe40fa84f60a28a8db288bbf856d392449e82fb15ffc7a5ce402e7970e3ef70c43c92ec4e075f6167f1a54687a4f3817720eee7006c36baf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1da29a0431002eadca6dfe4ca509ff44 |
| SHA1 | 53d8dc8aca2b45b339075f4b105d17747f89ca8b |
| SHA256 | 64c3e01238c29d12342b200eb356b9733e416164dcd60209a0e7316d570aaac7 |
| SHA512 | e00c1e011672bba5d7368c87311d0ff294aa581f54560c4db2ad6ffb3c5536038ab08244fb0da48ac2d355f6cfe071d500a7ac27493d6d5b31903c270c767a89 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 7628fcdfcc834c4a522dd5183c9add31 |
| SHA1 | 8d3229247df753d1ce6f217ce0d5d5cfa861de18 |
| SHA256 | 036fbfbbb94d448e6a1e344bf02e7294b13589130ccf20de110704e7875d018c |
| SHA512 | ec8d06a99ab79495225a747f75398e5bd831624554adc255b34d6d80810646cf6ba93aa48b7147d991a3484700e95d70e28469632b8a1bff7ff7e97bb0282980 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a4
| MD5 | 2ca8245ad813777ef886b78118e2882e |
| SHA1 | def4e50b126d09fff51da2c9cebd7a8e84c1ff6f |
| SHA256 | 03065d8475bf56d7dea0a5e59d8027034cc47135912b4c01c14b8b07c6b1de4b |
| SHA512 | 088a7a336c759b929a4f40aabe097939be6ec939c6e98873be91cef65417ae95f48887e59bc0560ba472e9c8f54daa4710e26d0e139cee0dea96f15b3c3ae5f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a3
| MD5 | 4337a96cb3759e1173f1e028095d9d92 |
| SHA1 | 247b67d1cd903c27f8af5322b67e14e6341a2dc8 |
| SHA256 | 488602768a216e5906ab92a79b825994b4776395016b68251337a378ae3ca59c |
| SHA512 | 8b61056f4b4de1b6078360514087fa7b16e08c11e20b380b049e1c9fd02db1f403cb85674181c732d122b7093f7969068503abe1d70c402ebd1bd36e514fd03f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a5
| MD5 | 5790d0c4fcd4c3a599d9d4491719ba1a |
| SHA1 | 828d13bce6710f0e2b8b24cad56373a5ea035f13 |
| SHA256 | c476491a1df3fb0919dbae957b7a653e67ac5dd8c09194e6f018dbb6e5e0b289 |
| SHA512 | dd8f8b31d31cd32f401c6252f2628c1038beb03130a1a7ad5b0ec67409b3ed696688afb2558ad4ce54b3f56a4f88ff32fff4b0c5284ec1ecbc35a5df4c36ce53 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000081
| MD5 | e7aa013c36007484efea08f9b6f31b7f |
| SHA1 | 155f12f5813c7b99d7c45e0d9239c71feaaf5040 |
| SHA256 | 37d41c895bcf101f7d11378bad7c60dd606254701057d218533eb0eb4d0cc611 |
| SHA512 | 76ba71e93cf9d4a70b725001938fe88784d3ba605c29ada2fdf15fea1252cbab0269727417839c494d71f6bb122a88fe33042d36530cdfac96c0b4136668cd63 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007f
| MD5 | 8b34dc6963cfbb1cc9d219f31a4167ac |
| SHA1 | 24030731a30011bc21b7fac9223cf4275642d6d2 |
| SHA256 | b1ac0213bccf35f622c531faee94d839828b0131d07b2a740e279694a2759c49 |
| SHA512 | 0082e9e9b0615256b2365c535faf75d3f3d1a4fdee6bd5b899e90b2c39ad4dc42e7382af9159cbcb8bd93df8975eb67343963637794db3b41b47a8e0a04809a1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000089
| MD5 | 909e5fedf7d36be6b2584d68fb60d14c |
| SHA1 | e0047088f44ee9e31b7dac902787176a9b550ce4 |
| SHA256 | f5c4f890a1fc1e78b919bcd7be2dee23095ef8a10704a43da4d016806c159c3d |
| SHA512 | 5571fbfdebc295ea80305302af57d92cb4025321674e070e8e27488b21719e001c8bc9abef09625ba2f43fe8e65b1bbad87e52a14ca51ef1a382770912a9c3c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000088
| MD5 | 1ac3690e39d332d4d05d9eae03b15df1 |
| SHA1 | 881b9f29ea146f3735771cec575e5e022c99ec6f |
| SHA256 | 14fd697879f4b5e9cfa3977492eec32990cb42d79d6d2279d15127b24e097820 |
| SHA512 | 80b076a6806611c18a42e46c4b20b647f6df9eb9108b11288196329b19c3b4cc026a62f40f7ba1d5df0627c1cd597ccceb8b38f2389d9f407c064661785330ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000086
| MD5 | dde32b5c230927ba3f0ac9d168732f49 |
| SHA1 | 4db85fa7883148701114a0c91eb1d6949cd75071 |
| SHA256 | 0205a83f116943004bc3eb510748db48ec9ce3f6e317d0acaea7e6973197bcad |
| SHA512 | 67fb2093eed873b510928aa45447b795a54a7fd56edd8418cfcd3e2dfe36610dac2f545e5bbb4272ea1a306fecf48b9797dadb324c206db09fb3e2a2e9661b24 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3983d4763f6c54bbbb41a673a178bdda |
| SHA1 | e4a785d714c800b89088cd935ccd8f7e514a888b |
| SHA256 | 2566d18c253300b1c15559a41321b6f0e4ed43a43df84c61cd036e1bb577383f |
| SHA512 | 42aad1e9aa29ea2e35c2d9abb641c64ff8a27d0423c41c63442f17cf1b4aa90324f205f997c8118bc0c1dc3196ef51f27dfca37e0f7bb5784ff528b4ba7ad9c5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6381de215ff38ca75473b870b15b896a |
| SHA1 | 8a0ba788cceb11c69ae72967b66ffb5b56dd1c21 |
| SHA256 | 2521c6f8d5e74f1407c6147e7b699f7115da0a37b31c9b5ccb65f7b46cd7c0cd |
| SHA512 | dcb16713046307f2d629ec5ffe8960185f867a5f1f365762e5cff41b62ba5b459bc46fd0753a6a85cc851c0dac02b24daff56b1cff23154c5875d435c5476f79 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 95d59f25af288ffec27ef7c45203c3c1 |
| SHA1 | a30d9696e7aecdaf14d09cb9ad755c911f01105e |
| SHA256 | 6478b9798316b16283684df934d1a1c8576f76143bfe6cbcdf1daf1c45d6cbd3 |
| SHA512 | 0672a633401c4907215e65fc50f9835342e50fa62c21e15b6bd01b5a6b119d3e0107da89d43e1d2640492db934e7280835b4997d2aa4f6f170814b92c6bb74ac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e5
| MD5 | af7ae505a9eed503f8b8e6982036873e |
| SHA1 | d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c |
| SHA256 | 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe |
| SHA512 | 838fefdbc14901f41edf995a78fdac55764cd4912ccb734b8bea4909194582904d8f2afdf2b6c428667912ce4d65681a1044d045d1bc6de2b14113f0315fc892 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_2109274483\manifest.json
| MD5 | fecba6c3128a97f09a1173779924be7c |
| SHA1 | 41645675ff089fc6059bbe1ed4b049502241e7fa |
| SHA256 | 7ef57c6645a8d144047d276b5d41b153c4dc63cf3627c32db018ae64b4e6d92b |
| SHA512 | c1193abe0bb4a9359e8e73332475995bd042149f62a67e67d37549993c7130589db809c53657abb7a0f9c518f975f270debeaf7fa70327a81b8bbee233035aad |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crowd Deny\2024.12.19.1218\Preload Data
| MD5 | 3c97222c910c2aa1fab0c39a1c8d2b11 |
| SHA1 | c794a8758b4fa74c7aa9536effe9bfa774822e7a |
| SHA256 | c7b91efdd09d75b47036e241eb55a238065ace2c26cd8f31328e8a9f4b4102b4 |
| SHA512 | 3220065c655bf174c466d9ac03d3040e419f30d081983c23a757d2c0c5e4720aed2c71e88befc0d8b6987d6abd6a25289731d7f4fc9ed6348a1d762f67032153 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 2e3d92c5e9ed87c126527052f1110cf8 |
| SHA1 | 90c7e173739f922b08964d0cf25ac1c7a2cd5c27 |
| SHA256 | 4d3cbe6e2f2df58a9b9d6fbc309e3917ed7f9de981a94633bf83d33e1b6e7e8a |
| SHA512 | a0f88f740366b2b6c1701bbe7f7e3c7a38321c4168efa084456b8783c0f32f349b2bd2178517e9ef94a77523283f22ba7e919d827d6cd30eddd1706f715e86fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 634ea3f401b60bd62f4bc059d375f968 |
| SHA1 | c7b1ede47bd66f89a522b7bd743bd30d01b2b6d6 |
| SHA256 | 5a664240ab478af8de5bd95a651c30193beb81b324948bc2b3c4fc29d84ec7cb |
| SHA512 | 331761b57482f958c9ef30d13ba97de56ea032d69dbe15d85a55bd37f2cbedf4758b9c04055601b0097735fc9ad98c46da72295e3d56e14f188e2cdcd18ad3ee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b9663248a073c02ff18c7aa6a9958eb2 |
| SHA1 | efc332280bca0a070537d9540d0f1d6bc921ce15 |
| SHA256 | 69e994f544046187ff17a7bd3e2f3643b2f6c6f217488b9b9b4bfe00ea6e9ba1 |
| SHA512 | 19138c0e4d6e5da61c1b20f8fd1fe898feef84206b1bc3e85bf977c20edd4ea02c41c7312904d7bebd65abd228606f35e4f9198f47db66142c467d92b108a6b3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f1578d3801c731133b57147bb4405e42 |
| SHA1 | f3ab979bc981837b5e16f80c1986f0182956eca7 |
| SHA256 | d6ebb4f80d70c0aea3488a8745a1d8b3f15f6878da988c77a302ea1fe51c14eb |
| SHA512 | f82cc109e5a19dbd22a25a4b7f6fe8fb701e934865f80b14a895afd08e48dc806cbcc7bd7b305d177d5b52a4811c9f05063d427cb82cc1412738072c02c613f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 1c40a05c1ec4c69ce6d8447ecae6769a |
| SHA1 | d52ab498d56c68b4d0781c8de6ef237ef34e48fd |
| SHA256 | eee8531f9f83873504bf48ef8796379e1eb4280ed50d68bacce516f7cc9c9f11 |
| SHA512 | 74b2a156d7ed1c0021799a603161bd4f3445efe9209894bceaaecaddcda4f45065bdb8653dce71ef872399c06e350ac8959bb78c97c0d962812e304d56d7da0e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 39f49da86afe9ed6271ea6985246f32a |
| SHA1 | 093894ae0b2e580465e54d6181d9f2171f0210ef |
| SHA256 | 85de666be53419ccf165d52b55986515227145ae82aaf8f96c8667762b23ee00 |
| SHA512 | 44a19536eb5dc9de0aeb81a5646f28340c9314fbf7fec791340c676a22efacef016e6960050e7c59dae0d594ba950c45faa41bd0d26e22c2a45d7f6dff8c8fcc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG
| MD5 | 617a22ff52b39fa26c221f560cbacc7c |
| SHA1 | 7cecb48996f3711ccd683b84b3fea0c914230a67 |
| SHA256 | 822e3d399580388862b3ac8a122c8f818fbbba2d57d59c4983a5b2d5f6c80154 |
| SHA512 | 103fcfe77f951820dee9eb351007480e92bb22d22b6c3d8271618522f3a2a3f567b7451ee32559a86610f14f9a4675851ec01f16b68b1f8197c086b4fb233d64 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f6b1261ecdc6329dd3283a84ba86cfce |
| SHA1 | 67a85be8cb19f59dea836df340b45e3c2d861b96 |
| SHA256 | 55dcec263f36c04b93d9e3952d7dc28095a6c645485c9b0e0f0131e6519d8ba1 |
| SHA512 | 66ae2820cb58905f4269f21eff64c70638576d92cee2dc2f8f03f04a08dfb02fbc1805b8e9457716e43a1266b31615f21390edd13591617d6aab1bd20a0cdda6 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 591ecabdfe87e18846ce57a568529ce4 |
| SHA1 | 5603e6866bb04a4014467fe53e3e69e416e03a83 |
| SHA256 | 3824b8ba5c75bd341f0d678f55cc108913b0fa4047b9dbad8c7c023c65e0ffb7 |
| SHA512 | 487eb9c95c76f9554e92f3f379468825b0439995914343efc58389bfe2661459ce4e6bc83d38916b7a6284976310ea3ff31e127d0b01c6682739f73669b65f2c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 19a56969ba1293e22750cc671a138c05 |
| SHA1 | ea7c2394555c7d62c4fd16ce15e9ecc059067afe |
| SHA256 | 08eb0c7171e4c3defece86892d16d01fa0035c40bb26eac3da34a6ea1f006be6 |
| SHA512 | 1ac99f1d357cb196f24bdded463b9e48cad656df3045ce57577020d2fb184b6244e6d39cc9c765e5d95dd7a4924793004a9645498caabf2ac2b25282535d7a23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c7
| MD5 | 8b4f872c5de19974857328d06d3fe48f |
| SHA1 | 32092efbd7938af900e99d63cf25db246c6bff26 |
| SHA256 | 30f77a5ff0bcba46d4e760b0c939a5ff112da0d3ddd13a261834134e00cc21c7 |
| SHA512 | c7b87b142cef8e1b31e5561593db2ac5eca2c578a724204464e9ede977c8107f3d6748e9b52d072aff04eef07b232b8f19286aa2267bc325c57926db1a2a3e9d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | df4bd3ddc6c0ccb8810604e146e6cd14 |
| SHA1 | 2fa178bb636ccc2674644199b5c5a5d4e879d158 |
| SHA256 | a7bac917b24ae44e053f6800199aeebf6065e7013838ccdc0552f3ade6cc7630 |
| SHA512 | c2cd49633ae5200b6b7dc8b09210566dfa4dddabb0d8d0ca008f8db4d44d89c01e1eb2a7d9501da10ed8798b8e715ae82f3717f35e650b4b0a7f9af7ac96531c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2ef8bee2bfe93507fff099db6245c579 |
| SHA1 | dbee0a3477e185ef2b16c0affcc4e485b7ec622d |
| SHA256 | 3074cbe7a6924018266a732a3a2e36824a078a4e9530aa6809506f3963dc3c52 |
| SHA512 | d61a3ceb78c5deb2a9596bda65428b6712890d25feb4100a0f66281ddeba8ac61339d60fd43b0c8208cc091c21f0529cac34bd70c611c7bdfce64a4520c28bf2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b3ea824f549301f1bd68fb55d90b9b30 |
| SHA1 | e8e37d455ea44e09fc1df3430df08a72ff339804 |
| SHA256 | 7cc4ba1256cb6ec07336b46d7e9b989a381d56a4fbc6dce389f89763cbf5cb0e |
| SHA512 | efdef8f48ae5f013bc95c31c02fdeaff928b053fd7f5a619f23901cac8a7bf0abcc812d7f77046dd0628ee00fad1fefefcdb424ed053d428a01c5018f5a463c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 22963f3e001307f61a12096d1e06fa6c |
| SHA1 | b9f8d8b77e94772004919be428ebb9bb2cea6ea9 |
| SHA256 | 33946a75ac45580bbf591ea79c1f874a96099824da323e4b8954924f2ad6fedd |
| SHA512 | c65b1a694b76c7f8d0a609311fa6db128299ac788507154fe6e810bf1bbbc851d971b0489cc8fbb3677bc1eafcff12957ed5c064c51ccd37fa0e1bff8f438286 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 857876f91d3cc88c2fc9871dcd371aae |
| SHA1 | 984cabee48070efb08f5383ff87df35518a6f33b |
| SHA256 | 330e820ab0cc4851f03ef6a997c2fc4dac81c105673cd71ba9c3512d93db5567 |
| SHA512 | 1bddd47994728dd0d7206b53535360adfd892f9f196586139527538462234a8d4bcea52656d7ead08ae90054c306f367cdd408cfbabb35d3195694136ca670df |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 63bd884186984db1583b19749e68a477 |
| SHA1 | 13dc978d93f360f4c8242a9cc7a7c5a6c1e922ab |
| SHA256 | 17f46ea68bfa6fb47a9d4c1feba323d313f73660c697df12541586a03205d810 |
| SHA512 | 0290bebf72215c0320c582d5e2f936ca0264fca21f850957ac3f2cf69ca3f24b158cfd9e4d9b30adadbc14c447f0e8b9db9929d5d37f8edac7b39c75dfe896ec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b81201486c33b6908d4f6c1ec31c90b1 |
| SHA1 | 5c5f1430795397a84e9ad397c670c9f1fcdd82aa |
| SHA256 | ede78b4a53d297a5909d84f54cc4df77018f294addf9054cee4a24fd2107fad1 |
| SHA512 | ce7d67b7c40c9cd99c44d484f5f544deec69e54d22adc363fad1062959eff144539e94da33a8011e63002a74e6f0f6a9255d6a27e8b6d8ef13dd93cecf72f056 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e50a6a73e30a4ff6926936a735cd37d9 |
| SHA1 | 1ae1870f9bf3941abb363eec233cec0df2571014 |
| SHA256 | 4126b59cd4a47be03bbd7a6664112290207eb20cbbf55f58203e2990f629255c |
| SHA512 | d6e62655432c4cb559d73dcbc8e482b163119a698146ce3fb27da8d3f366dff82e9d7bd5aa33aab27e85f9b713280f8e250b945d6c3c85b90bc1f35667213b85 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000112
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000116
| MD5 | 5c0b9764cc8b615d5b6a3f50da7dda09 |
| SHA1 | d4e12626a24861f2e09f21d60bc0786b363bf8cb |
| SHA256 | 0673bf2dc43c51b3c76a371dfcbe31daf23ef8f1ada606179698c5e1c3fde410 |
| SHA512 | 7fbf4c74bbc957d782c754893c79b574297288687dd6efc2406868f6d64a3f6eb8ebed904dd0002e09177b359a163b78ad7a93e9aa225b73cfaec4d01af04ad2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000117
| MD5 | 5cfcc885f358ee4ea570b9bdb32b0ff4 |
| SHA1 | 5b0ea2084a07f46059a7604273f885303a18f8a9 |
| SHA256 | 68446269d78249850cb829cb59f434a64d4d697a6f89d5f3d84f609eb07a1c48 |
| SHA512 | 43f214b7a58eae8bef60d36dadad98bc856164e065859e2a3595d83873982c3273d3709dc7ab79899b4421927e1957d32850c4eb38fb988baa4ebd1dce48fc9b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0d8ce7fdd0edcfb9423ea25a687b99d0 |
| SHA1 | adc58dba1614453f41f20095b3a69d6330a2c523 |
| SHA256 | 4c831da9301890906af7989630f41d64f469400cf85dbd3517f14d87a3d6a428 |
| SHA512 | f520ef12449d2bd9f374061ea9f7b4534376480f3d0183f8e9ec7788f54e98ba7db230dd761cf78e261e7939c8a853bf9392e8f7f7972c89558a9ff9608ff42a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1c965d13abb580c37ceb62836899ec39 |
| SHA1 | b54a339c6d14372069b13666ade6a0cad6b9d157 |
| SHA256 | 7d3c2fbf9e1eac2de27615ef395ec4f5790dcf67efed0b4479887a08af66551a |
| SHA512 | 3c31ebe373c080d046e88cee5087d589b4eb7bba770d81d6dae2c0f7e7f4eb486db7d7869d103d885c602296a8b774d96dfc6a271edd1ada3912bf64a7ede536 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_303087132\manifest.json
| MD5 | 01c878f43569459b9671819276fc381a |
| SHA1 | c04140758f7fd681cc55acf2b02d988f13aef25c |
| SHA256 | 6000afa1b02202ed4821c24bbdd88cea539c2cb4d0ef7033bd5d3e6b4ddee430 |
| SHA512 | f80b39516cedd3108676e4c41c19fb7a6d05f2a92ffcbb4ea595f111dfd5e4d14dc7de5c3c871e0fe5d90d40c6c45a8c646c324329ad7aa8fd37c1d4d0810e8f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Subresource Filter\Unindexed Rules\9.54.0\Filtering Rules
| MD5 | 7c91e14b081c346267e1b1761c029f1c |
| SHA1 | 40d2665fd0042a5aaa3b8c7c451813d6c7005ead |
| SHA256 | fd3ade759bd847f845fe201167de1f53e53a2275631303952f1ac4d7ab5b19dc |
| SHA512 | 89a269667034fc15e7ecdc3aec70375949c1ae65a944cb3d762909152c8db1c4b163aa2162698a0345889154e248b5a70b7c93182f5a853529eefd889926233d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\LOG
| MD5 | 262372bdf914d1d896178145ee3d1bbe |
| SHA1 | 790094d3cee7e95bfe7f6f5d9ea39c7195a0a076 |
| SHA256 | 77b6dd815d48f217db0d2c5fb719e71b012dfa376dd7b8e08b6d22e3630778bc |
| SHA512 | 3060ac04d3d7d78a96733835be823efc80c9f0b2e379313ab89805afebbeac4fa7b6a4b43908a0128fade4ffedf5dba3babb619d3c83431d82181f20d2c8b587 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 58c0cb118ae340555ccfe2afc40c8e42 |
| SHA1 | f3f9cba25d9b8f2f00e77e5473a46c929514d4ad |
| SHA256 | 7c61e8d8f20eb17895180f935cc4d9fbdfc072519c5dbe6014fbbc1533f94095 |
| SHA512 | 83c0552fd5164837319917eb7f1f1c950878e2dd826ff817c2ac4dafec3aa23ad553dc692da5c07c7e546b4a144a1f53ce6bc823255c9f619594f2c8f9bbe860 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | c7d3d4941b64bf34b94312c183dfaf34 |
| SHA1 | 9b0ef1276f1e25e04250b7dbaabb427983c373be |
| SHA256 | 75809530be6735f4d0420591497b60cf68e553e7d4012131a09c6cb5f0e0964d |
| SHA512 | 54e05f33a75c474ee0d31704909c45bd992f4400dc4e04aa765e2a8918970b3ca1b1296692d16d4819c858d7294167bd2c71e6d2d805530c50ffda8ebb29a136 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 39d55f366156b256e575ec6ced03c097 |
| SHA1 | 848315f81d1326cb46ebbc81d3573d3763cdd73f |
| SHA256 | 0e865b5cc25f86132b4d289982f820328ac62a99bb2b8a5a8a97051ab51d3558 |
| SHA512 | d7d5cb8c75b8f44d5bafd66518a9d0cfe4d6faef22442f1d113f36d0b0d0afc85f71e899a7015ade30f8d45f469438e8d8c1e65413b2a9a7785c18df632a1689 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 267614ae37373e42c99bbc79da842d4a |
| SHA1 | af007a956fdf1232553729dc8ecdaaa4168ca745 |
| SHA256 | 8992dd930138615fbb3de390797c1232c412dbcebca26dfe8906b288a96dc22f |
| SHA512 | b07a466c2623f903b157813f72981db348e8fabd975ee7e3c570fee614d57b6c0f2effd522ad4709893a85521b61cdee25524f6d781363f04e7f5187910e75e8 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 7c779f226ad0d0a1d620878e7a56c2a1 |
| SHA1 | 7c48536aa60fb72a0b2913aab059415afba09c60 |
| SHA256 | c30cbd0903b039f629385ba1fc4926261c5f707c21c34d84b025c1bda68a9392 |
| SHA512 | 04d1df68c4e65e5acc6c1282e52d27a434fea8250a742ae31f24c994be6ab557f10d54eb303ebdfa95858d675dce15626a649c91431d912c1290af39ed06981d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a93cac388adce9adc0574fb54ca40889 |
| SHA1 | 0ea735c0fa98a2b2a7435e5fb6a429a38223bc73 |
| SHA256 | 00f32a9b48fca549a7123eb234f4c3eb9e5075c527eb985564775ad3b3e435f7 |
| SHA512 | 34203e6963dc775dcd97c281ab1419ef99ccd41b31c5751b0edcf756ba11716dc1cb33b4fd5dbba0af978d85c5094b8168195dc04a06c582f0897447c9e993ba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | db8ebb1d665b45720f39e7e05ba090a4 |
| SHA1 | 4fd7f0891c350d2bb138b5e82ff53cd464d5f655 |
| SHA256 | ae78652d378b1ac0a3198bcf923d786bf4a9c5211f48c427d0ce317191cbb66a |
| SHA512 | 551050c5d9ee55399d138df698186157e1f673e30243791631780efa1a8a0b138d76a080296845cedccbf2c2d819f47f078ea6661f6a1c5513119f843fba968d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 5a3af57c96d269250a5a91a702d65e6a |
| SHA1 | 943d66df890926d82d9e47d44b753c78b6994e7f |
| SHA256 | 9905a8f1f0faa84fceb7eb89080e928282101cce4e55c656a42b0bcce3ee4cfc |
| SHA512 | 1e8d7cdf25d5daf745fc4a7029b1d905a6d649a3205d27e8987b9890022fc389a6661e3cfb8733d9607a5941a77e2f7fc0d789b706db93a39f5169eff09c537d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c8d9953a034e45255732eea5667dd679 |
| SHA1 | 5272a77dca3e67100b1060a724c4a04f521669a1 |
| SHA256 | 469a4f6e114823c368593198895257300f1129873f848f7595055a819416934b |
| SHA512 | 0754d0ed7038850d1dd08f23bac83d42ca3ffbef9b9427e36bf208e9a34babe3fd8785e40cef17d427f042d494733b1adeb548569a8ee7657f91d4cc0b04673c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b61627847e00234f08dd5470dc0bc7d3 |
| SHA1 | 44fcd820c5832e0cf94cfa5c4cfa7ade1eac8caa |
| SHA256 | 5e63cc62d66363786103dbb2ac2a42570079e194cc8be67023c62117daa16ace |
| SHA512 | 8395b981a191fa50f64cca4bfee7fc4743e8e395f436989cc078c479e8a684ea15ef546d697fea7fedcfa872f2ff551c6ec57283871a2aca3fbc93516ecdbf42 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 67f96a6bbd8414e977875cadae224767 |
| SHA1 | 082d365468c53af88504acba9eaa69b70d10e092 |
| SHA256 | 201e5c58c592227a46282ae416033ffa0dd097a876cf02835d5ff2c754a7d3dc |
| SHA512 | 89316343843c4bf7a425464c2f56dea098ea0c72349d62d579a926a71041b17ce98d597aeebcccdbb59fd8fc25c78b40208ad48078b8ecfd07129028bb0776b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f2141be61a0e109376f06ec87769a692 |
| SHA1 | d40cd67379b2532f6e8807312e72511d4d3e1e2e |
| SHA256 | a3311f0fcf22be6454ff354977211d4230af8e5042f02694e7cf0f78f4c3b4e0 |
| SHA512 | 4758bd68dcae1a709d62caadf266e84f53bcb9aad8a0dfe4d3c73181af796816e1392d14e7487e01c71a182ab24fd946bce29597b18dff70714136d7b6537983 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 1ef00afc3c968363e7e52a69476c2ade |
| SHA1 | e573862bbe6e2f0878f72db0d85b0118481c9c26 |
| SHA256 | d23c3025394d0f634dad731fcf5557d2af5e10e28e5621bd112ac373161f96d5 |
| SHA512 | 07da3f65fad6bdf995ca45c6ca4ea72cada82272362c0d01464d5d9f01ef4a30706900279881a82d0eca0d9a7d8e575bb79e59db37da2fe3953853c91e16c93b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 344adf2df53f62ea151292c3eb3eff99 |
| SHA1 | 71c23da117c1f5043fbacdeb23d2d5e7c14d4856 |
| SHA256 | a16656e58838b8619ef514cf506220151d006197093c889eddcfd8bb260be71b |
| SHA512 | f5ba94a4671cb75fa807670664202d3b7e5005a3eebc83125fd06761ebd3acd43e729d36e1f91d43862cab975e8ed8e256f8f4e974367caa73be1a7b613d80d9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping5844_1548364023\manifest.json
| MD5 | 084e339c0c9fe898102815eac9a7cdea |
| SHA1 | 6abf7eaaa407d2eab8706361e5a2e5f776d6c644 |
| SHA256 | 52cd62f4ac1f9e7d7c4944ee111f84a42337d16d5de7be296e945146d6d7dc15 |
| SHA512 | 0b67a89f3ebff6fec3796f481ec2afbac233cf64fdc618ec6ba1c12ae125f28b27ee09e8cd0fadb8f6c8785c83929ea6f751e0ddf592dd072ab2cf439bd28534 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | fd549547ccb821fc4a027c44cdbf3bdc |
| SHA1 | d73ece4023e402d9d019dd467e445ed313f19763 |
| SHA256 | ef0821ddfc07384a98d43824e838ffec61a2a34407aac3ce94e675b408ec62f3 |
| SHA512 | 24ed220fabd6c63c61ab5e2223b962030e48638bb4ff0ae1a26293a5e0d6200f7d0a0d9eb1861ac0624b78a56553a79bb74c1eb0a2f9c1453e22807224a4c4f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9408cf5ac622aca0dbd1179f475662c0 |
| SHA1 | e3c3fc24f4bae279352b261c1c858a59395cd5c6 |
| SHA256 | 9f21d8e0558f33fd4cae3d5613487ac30bd989196b9d435dde09cc5858943660 |
| SHA512 | d2f6039da00f556e103d7ee2828d0b288069bb48a4f7666a0368eb0b0d18252ea372f3c40b2a652ab6abd455b3e73a9ead2fd227fe999a71c60d978f2c9d76dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a6
| MD5 | 655264c24c13fe1b49bf6a67ef7a9952 |
| SHA1 | d27e89bac25bdd4b29e4f15c69dcbad0e2721cb2 |
| SHA256 | dbd5a99cf484cac25c81e405cb1d9620fff99b1fdc9b2a09b294c461d637b357 |
| SHA512 | faeb1a1a44815b3fbc199e3238287e6d430ede378aaf4f799bcfe1976edcca2fb94329c4b9f9d24674c170473683b82085404d044ff8de9952504779253a7062 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a7
| MD5 | 5713c97938866b434f6eaa3118d56ee2 |
| SHA1 | 7da342b3dc77ed6969bdf002ecbec7327a3fec3e |
| SHA256 | 07ba013742fb7bbbf9e2cb94cc88ac41f5f9646653e1b3866fbcc6b097b9c34e |
| SHA512 | c8180bc30932da2276c6e590d45dfa12993fcaa21f661c11a95c149bf02cd9471e49609f6ac69d54a48ee51aa6839ce5ae348f764ad8b6523db7ebb45ef9239e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a9
| MD5 | 6596311992228e5959601da8cb8be4e9 |
| SHA1 | 79113918f87872b4151b5fc944d00d99ff250c10 |
| SHA256 | 79f44379419e2bbdbe03173392cdaf5c34af785e5c17a31bebef8863c37d7b1f |
| SHA512 | d2255697a0a744c3f315f15294f4d6300e626128659ec1499a37ba889b918c365819711a811f1b37488088e87c41c84796557468f2c5240c1cf80cb72db64c25 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a8
| MD5 | 4bd5656982ef46de3263d991427f05a5 |
| SHA1 | e99d9b8ade67fe8535465bb539a66d9acfe65e45 |
| SHA256 | f965e4026bab7f54cedd13f0d798eeac7e323f65ab4e1a09333f9cb015560f68 |
| SHA512 | da98fcdf0f15ba5e76d87dc352069121f9dd03fd325d591de10b159e72ffcba8ca0962d44ba6777453daf45454254284f1543a6ab07c6bbe1f8fe507ed03a0aa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000aa
| MD5 | 0c5474b60f9dc1fe49b25c809bfffff5 |
| SHA1 | 46410d0efd7579a94b0295fd4ee4a852aa9eb49a |
| SHA256 | c2f9a8ea66569d996e1cbbd4fbf85b132f448683d368097033e146f07ce176ee |
| SHA512 | df0a5c4017e4b7a1f390418d24b41981067214e2b3adbf54f85b4cf9ad8ee104e7b2e411d09f817f880ebe644eb4b5d83892ca0786d8648498899ed13f9a9b33 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ad
| MD5 | 18ae3233d6dc146acf4917ebd645f659 |
| SHA1 | 79608963cf951db07373e35a8824ec162d8c8e58 |
| SHA256 | fd8845350fccad9d08a9c3070c6b7b228039754a994674d5c4f7ee456c292701 |
| SHA512 | e4a503cee6fd68d24e21e00dd83f35bdab68697fe3ce2baecd70d63d9dca3f1ef4ca716659d56416dd366a063b303c2b3e8b02f0131d9251d76f1aac5cb251f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ac
| MD5 | dd0e6229621698e2b5f6e8020f810e38 |
| SHA1 | 80ac9a52e6bfdc4d160f785a55abe9bf30ee773d |
| SHA256 | a71417024532b7ef85a3fb843b1a870b5edc2d825ad76466a2cf41689076dacc |
| SHA512 | ec625f79ecb4dc1c914868bd135a625a88dfc8c4fe8578dba7b33d47b97b95a3ae5447eb67ad58671713b693f45de6067612ab3db8ffec3d5401b65bf121c61a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ab
| MD5 | daa80adaf161e236bc0a6e8a03f6883e |
| SHA1 | fbe23a9fae3ddb05020e4218938f3844ac161d6b |
| SHA256 | 45b84047dc5f8cc277feece8cdf16a03f43f846142d8bea4026e62dfd5e99bbd |
| SHA512 | 2c59e16ccee1ef9628e24985339df2784f16c1c799eb4cd448f36e5a30aa039ad51d38120a4f9230a5eed097b54224f75303f0b664ad3412796ba56932cc5099 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000af
| MD5 | d0bdb48812d3b642ea512be606109af5 |
| SHA1 | ebe8260ca64abbce3a736d02dc97023153875ddf |
| SHA256 | e9e21d9292597d7079839676bf6afcbb42727b48f4cee876c41862ecfe6f3be7 |
| SHA512 | d3818f27027987e45f6a8c897fe657e97ccd970c65c445b3e361b1147c4f0318c4fe86c9f23da06b4fb55063b10dd02c2634c91f8c5578ac34a231343fd1b167 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b1
| MD5 | 7655fb4473280dd9acf7b41989e3b3c1 |
| SHA1 | 40bc09e79a8e71d42e18d4840a69e299df3764d0 |
| SHA256 | e2c9582529d1d2a627dfd3e20bdad44e73f05be6f1acb51f49cf414ca4a9dfd1 |
| SHA512 | 4a3185e1751d2408643cc36993cff36250e9fb1ee78f6950948ee58ced9d70e1f4b1d9efddea6b25343248baa5f23083f081eaec66e423396639a0a7b84efdd9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b0
| MD5 | 900956f635e3c2e89e82960b86227e56 |
| SHA1 | 046fb95eeb51f3bd64fea8527dd911a4c24fe232 |
| SHA256 | 307793875df07626952c48706e8877010eb68690d7546682b342af8ef040fd57 |
| SHA512 | 4b1a93196c418f977b3c9ae5ff1e1f014ba4f6670992a8b5da7eddf6287388870ae829e84e0bfb1db43785f0ae89a0bad5873a14473cf11621647422f45606c5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b2
| MD5 | 84fe16af87e1056291c5c73e6a1d95ee |
| SHA1 | caaae6cc057528745805a3336775e1fd5099c7a6 |
| SHA256 | c858d128c02d2f3fa633ea94d913b22a0424d52fd704f37120a9d012e16d8c6c |
| SHA512 | 71876e7e68ffd3ddaed55422974a11a632c0b995ae72199a8896dd6cf19dd924c0f3e0129c536dfd00a029789ff0a20e603a8e12c24baa8f2a76e7b6212370f7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ae
| MD5 | 3fdb0832d0843e76eee17aa48e158a9a |
| SHA1 | e52e0450f0c96883ddfa3184deeca3d862fb7fa7 |
| SHA256 | 5f9e55c9fe892c5c4f83702ded86239be80a29369bf545295e3b97e845119cae |
| SHA512 | ed69bd77ca83bd0bd18116eb4f13ce36d4c6f7adfb06f48146390df94b95f1e0ee0df1ce51cd6db97ab030db186b0d704850140d921e379e3079955c4db98aad |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b3
| MD5 | 38329a779ac2b839fdcd41e6ef26e448 |
| SHA1 | 51000f1b1732e5b11e18d212526be9a703763d64 |
| SHA256 | 4bb55ead566968ec496abd8523ecca0c00996db178d86b546e70d3e358e56db4 |
| SHA512 | 5a4637c7809cd3d08d974722c463ed817229251987b472ef0acfa11cb436886524b7029829b452d5604c86ae12cd507f7a2fcf9c6ef7092a978ac679a0a303ba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b4
| MD5 | bd88969f51d89ff66a94a63fd891ce24 |
| SHA1 | 879fce46cf773ab6bc162d626446d424a98066e4 |
| SHA256 | f0c27d7f4ecb2c45909dee8b8bb2736c18953c74f30839c5b50eaaf03ac97c53 |
| SHA512 | 6bb0f21c1f47f94bc1acf2aa579007d2477440650bd4de1ac8d13e66bd32d59857fc2ac408c16349f0d1dda0577086b3e12586b9247c2bb854f073979699a5b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b5
| MD5 | a75454d884ac64c157961602b6174739 |
| SHA1 | 882bf71325cb1732e4b358b91d85cd4ad47e1c81 |
| SHA256 | fade380e95f2e579ac3022348ad53effe9df0811c7d6a53c11974e3b75badac2 |
| SHA512 | 2fc3b2b30763493b781a9190391418c4a493e2bd4825a62c23df3e20b78d0280c9f462c5e70c006ddefd654e0f72c898af4173824855f47b6207d17853690abb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b6
| MD5 | ee1f3775b7cfece125ead05655716d6d |
| SHA1 | 823466d61b01cd906db0fdb5e75f7c704c9b93c9 |
| SHA256 | fcff383f2106711c79259be310e7d9d7817a7cf8fbee3fea38bc6ff8eac657e6 |
| SHA512 | f60597eb8715520e5a641034ad8385c662d5fb077b05c74dc50e5f37dad85506f2eb343b2d79a92e3de872d24e764670ccaecbe9c6684f5058f3c538d09a5021 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ba
| MD5 | 0b4296eb9f4e2d4961d49664874d3e43 |
| SHA1 | 0f620c38933528f151f6476a4dd19fb6c51b7c9b |
| SHA256 | 04ca122181bbd0da9416072aebb11ff1237218ef4a6399038bf76964ec220b81 |
| SHA512 | 6f88e0777aa799ecdbe3063ae36005ce22dae95422352a8b0d969f2e06298fb4cc71b0efc6b83ccf53560ba8537120c15a1835415a7bebddf3b4b9be7732a2ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bb
| MD5 | e403b9e7503a9d3eaaa58f72ef5305fd |
| SHA1 | 0f98c0fbe4ab88b439746925d108e0af527c1fa2 |
| SHA256 | 8089ac2d18f803bbf211d0eff352828d50aad5101db1e1584a3b4c8b84289b02 |
| SHA512 | 4a72f79b99c879a14d6ec4b6d87f3e0986030f91f969a74492096998ca24db35925f9f0a4cc71e4588591b5603b922d28aadcf91bc1addcdc67aab3df7358351 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bc
| MD5 | 01033bdb7e2acc45664b975eee55b636 |
| SHA1 | 42d953a91928f8a0d79d870d4a9abfe31f189213 |
| SHA256 | e754cd9b0d713b47d37cbab67c21d318010553da2a2c131850efb6eec95634e2 |
| SHA512 | a6541610791a31a6a0580f49e8070ffe548c49801ee6935d95d8f509388ea5abfbed5774bc1b1e1a542883c208ece16d361328705da3506af8b77db7f723a206 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b9
| MD5 | 266333f9c21de3a3d7729eedebb197ef |
| SHA1 | 634a4973c8c0fcec1f8f1595bb9441affc1687a8 |
| SHA256 | f1549a1cf6871f107f0b63bbd04d221086b897afd768cb65830dcb20107e51cb |
| SHA512 | bd9bb04afe5be984cc6dc3c0c130aaefa2f39a3e2a027363b07e910055cd42869fd8b552fa9b14ebd97c628f30ffba2a50b6399a0a090496e775f048d1e19128 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b8
| MD5 | a90fb7d84d41b6e9e5b1cd9e471599d2 |
| SHA1 | be6943204e930601f71860eeb509ff26f4794ee9 |
| SHA256 | 4f8317130ec85e9897c386f725bba0a9d6be7637690f6e8f931a45d00662bcd3 |
| SHA512 | 31058ba8652482db352ac5c71127f9b1ee09b9d06297640bb25caf077e5cef2c79c563d2adc72198ef0e3d62207dff660647562591aff279b1dd1379acc9886f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b7
| MD5 | 92188363a7130ee879e728c9f10b025b |
| SHA1 | f1be390c9ec728af1fcf7c6ff6ecf0a0859fd0dd |
| SHA256 | e67ddb235a9524c53ebda727feae4cee760c5cf981a090d2643144b2a065848f |
| SHA512 | b7733448da4eec8286f120cd3e8b8de51b015aef05bf40033704b46144628cc13c668098c374d05ffdb8eaf4b9ed4f5e97f095db54e7440897e8528bcf3f3b8b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c0
| MD5 | ee0b366d8b73e0b2f0e690a6304816a1 |
| SHA1 | 85daa5b79c974e7350497cc3689f6fb359fc3165 |
| SHA256 | 3520945cea4fadacd5f231298f6864bce128246889b5a900dd04a789d46b564e |
| SHA512 | 025349b6e6b257b3900ee7c32f09eadef8aadf8b22fd8c2171a658e63eaa9555b2bda244013bfa56d1e14642b0ab277b0d64bfefe0d73cea261dc1fe2beb5f09 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bf
| MD5 | 017511cf45e634fea632f98fbfbcde5a |
| SHA1 | 01dca33ce4c257397b3747ad763a669aaa84c98a |
| SHA256 | a5b4fc984b1ae20dd039637f8dcf5e7e0b24a43c20af9d5b8279b358d57c5bc1 |
| SHA512 | 574d55c60123c98736c1f16ad07eacb3672fff05e2676ba1b70d286fb8d114a417313090cb4cb9a4a1a3b096b71ce8dc9f0f08c213707a5bddba4c7f22f555d2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000be
| MD5 | eae6e21ea459d9439b25f0c482d653de |
| SHA1 | fe76a6eb4ad8676ecfb8087371c514e23af6161b |
| SHA256 | ba369e34b8e3cfdb1cefa4f2c3f4b1064ce4dfd01738d220f8e2e2335bb6e4b7 |
| SHA512 | ad2a33b358926145de387ca9e07c56bd75bb057c9bc180bbd0840bf133d1d288c2f95d6f9a6d379c113908c15d9bd5f916c9bfec4bf2fe55c0e25fe5862595c5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bd
| MD5 | 4091419b4d98a2c85a7c62b323a1ccbb |
| SHA1 | e185d233df695c6242febcd1f5ee07690c14fe1b |
| SHA256 | 4bdd2f97b1dd8ad214ee627cbfaa6d80cf446d6ec7db4db6e85f0cdc1c3529c6 |
| SHA512 | 2852e44eb91bf59f5d788519433017f4fceb350854382780485960ce9169496ceebdcdb9337aec19840b80bf40ea612036d3bf05ca19f929eac67ad98b6b3283 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c1
| MD5 | 057852173e958810f1de0e8adbc9d462 |
| SHA1 | bd05e51244966615a9dc2b0119f7e8cfa64f22b5 |
| SHA256 | 9c90f27443fbdb85519985333a8b00c3cff0e10a2753955f41890342d64362f7 |
| SHA512 | 230ec42dfcea740b4fb37e3c7559da2289b7bf2025c465bf055db75659c7f9f05ede374792b046ffb3365f8fa5dc34e23f1312984c195c32a6d42147959efc86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c2
| MD5 | a84088002ad6ca024b9e0dd76839dfc3 |
| SHA1 | 757199046eb295aefcfcd40a3e9b6469dfa0a0b1 |
| SHA256 | 66da9107c97037dacd222b1f39336ce288eb8216b37b7120e81d62ee5dccf82c |
| SHA512 | 5bbdbb78a6f43f1da09988645b81c27d78b990b845ca59a2069e670cb5745ba79320841095b34cb25283837fd08acedad6a7f88c61f2aefc06a862e19cad8cd0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c3
| MD5 | 0c03eb73bfa06b520138251757be12d3 |
| SHA1 | ef423303b4ac62399632ea00c7c717c66e7a61a9 |
| SHA256 | a76257e19135e6a2e321361ad9a645582ae6b9ec949b8be4750a65e47fdf1470 |
| SHA512 | 8fe77c88e92aad247a86e7495ef125c40dc06482d8ebea60e806e43745815ea4470edf8cc86ed54f547473a12888442199e431c5ea7bfd95a517dfca14bce165 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\reports\60d7c24e-f023-45df-8ddb-61d85ee74ecd.dmp
| MD5 | 7a6d96e37565c48153bb776dc871a01c |
| SHA1 | 8406e909019a55a11fac8a5947327ef8dbd27249 |
| SHA256 | 19a7a6a003fe6f74f10f707200f3bb2f5421568c6ad70e773cdc1cf7376626d6 |
| SHA512 | 5bc9a517fbd957eb800cb3b6b45f84286fbd1cb8edc731280189521b16a6afac7367345488ed825f910c6cb26321d3c8fb8c8a57215351135aadf4a032b4b0b2 |