Malware Analysis Report

2025-04-13 23:01

Sample ID 250313-3qy8kawsdz
Target Xeno-v1.1.55-fixed (3).zip
SHA256 e9013a37c6ee9bb4bee376c5d93c58957dab859c938afc69198b5143250add3c
Tags
execution discovery xenorat rat trojan
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral28

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral15

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral16

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral17

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral11

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral19

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral21

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral25

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral27

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral31

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral8

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral13

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral32

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral10

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral30

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral20

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral22

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral26

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral29

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral14

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral9

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral12

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral18

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral23

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral24

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

e9013a37c6ee9bb4bee376c5d93c58957dab859c938afc69198b5143250add3c

Threat Level: Known bad

The file Xeno-v1.1.55-fixed (3).zip was found to be: Known bad.

Malicious Activity Summary

execution discovery xenorat rat trojan

Xenorat family

Detect XenoRat Payload

XenorRat

Executes dropped EXE

Legitimate hosting services abused for malware hosting/C2

Drops file in Windows directory

Browser Information Discovery

Unsigned PE

Command and Scripting Interpreter: JavaScript

System Location Discovery: System Language Discovery

Suspicious use of SetWindowsHookEx

Suspicious use of AdjustPrivilegeToken

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Modifies registry class

Suspicious use of WriteProcessMemory

Suspicious behavior: GetForegroundWindowSpam

Modifies Internet Explorer settings

NTFS ADS

Suspicious behavior: EnumeratesProcesses

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Modifies data under HKEY_USERS

Enumerates system info in registry

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2025-03-13 23:43

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A

Analysis: behavioral28

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

434s

Max time network

438s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.zh-cn.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.zh-cn.js

Network

Files

N/A

Analysis: behavioral15

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

454s

Max time network

456s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-string-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-string-l1-1-0.dll,#1

Network

Files

N/A

Analysis: behavioral16

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

899s

Max time network

613s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\index.html

Signatures

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-167299615-4170584903-1843289874-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-620072444-2846605723-1118207114-1642104096-81213792-2370344205-2712285428 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-167299615-4170584903-1843289874-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-620072444-2846605723-1118207114-1642104096-81213792-2370344205-2712285428\DisplayName = "Chrome Sandbox" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-167299615-4170584903-1843289874-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-620072444-2846605723-1118207114-1642104096-81213792-2370344205-2712285428\Moniker = "cr.sb.odm3E4D1A088C1F6D498C84F3C86DE73CE49F82A104" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-167299615-4170584903-1843289874-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-620072444-2846605723-1118207114-1642104096-81213792-2370344205-2712285428\Children C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4052 wrote to memory of 5844 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 5844 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1588 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1588 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 1848 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4052 wrote to memory of 2032 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\index.html

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=133.0.6943.60 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff83f4bdcf8,0x7ff83f4bdd04,0x7ff83f4bdd10

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --field-trial-handle=1468,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=2108 /prefetch:11

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=2080,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=2076 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --field-trial-handle=2384,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=2540 /prefetch:13

C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3220,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=3272 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3228,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=3328 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4200,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=4216 /prefetch:9

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5144,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=5160 /prefetch:14

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5180,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=5332 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5408,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=5388 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5432,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=5480 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=4232,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=1124 /prefetch:10

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=on_device_model.mojom.OnDeviceModelService --lang=en-US --service-sandbox-type=on_device_model_execution --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=4572,i,2943195561713850788,11171988160865861525,262144 --variations-seed-version=20250312-184628.452000 --mojo-platform-channel-handle=1528 /prefetch:14

Network

Country Destination Domain Proto
US 185.199.110.133:443 raw.githubusercontent.com tcp
N/A 224.0.0.251:5353 udp

Files

\??\pipe\crashpad_4052_SDWOTLOSENIMZOPH

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 02960d6a331457becea2693059977560
SHA1 af4a2edd10ee1438350a5282d96164eefad93fce
SHA256 d59dbaa9e1e6adb2a2aa59f73d761df9dbf6c584fb6ae0fb05ac7891cb77412f
SHA512 bf85524879609efc78840f59e09c4979d3e15853e14bb026550095cd0f09ed915131fa108a27e7601fcdd9dc5c5735004e0031976ff6345de41d0fc6aaa81e4d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 76c6a7bb3de2cbf45eab09d91a2d4e80
SHA1 0c170c723b2d335b1cf712918619a981cfc5d505
SHA256 b0a38e586fe3098ae1d23d0bf50356a3c8997ed5465df3c746c9979d0a21e1f9
SHA512 283a62dd95b97da03cdbc12448f2015c135ff38d5d4f1bd9b213664d5c55454164d66aaad9852edd37c0482566b32d5f81bbcf611183c1a932420c91438d474e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 d5fd9a6ddb66144e08cc18b4cba509e1
SHA1 fda74ac1e62e40a641eeeca1f69102fd8b2e8728
SHA256 1b671a5d28092fafd262f403df707dfaae4c5aeaf88944f7b3ad56edec2648b9
SHA512 f2ea421152dfd46816e92f3d593c4251d18d444df0a4cc7585338def94f3a7e1f43681584e5a71816b51fe0743f7cf5a192cff85f18c22ad16eac002f9414664

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bec48c2b451ce655def3a728bb15f602
SHA1 60ca96d468bab41c736f182ed89f4cf63ba93138
SHA256 3d3824496db8dfc2e8cece23a5114607f5c075242361772cee10740b6f4bf308
SHA512 0b61f8d73964f3fd36d19bdbe469503dac560ce46781362b7b02c547adc068bc761d30611a1ec2ad2878cff2868032ec30418a9edafe543d5673d5dad7d82914

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 8c767153270134ff67f3dd4ec752018c
SHA1 42410c9826c5ff96cfdc8163096d903d687da0d2
SHA256 25dcc03ab8d06e9b12461e9227bb92a15634b66ebe6760d3a322ef492a4cc7bf
SHA512 df952af3cb1514315dec428fe4aae1d8de2d7e2a53a1fa250ae47c5af5f3c1af177ad0a2f34d9eeeb40b073157860d2055b79823a1cb399f51b415b92a7c9739

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 5463be078cd2481f9afda24760282401
SHA1 46f0add09b1838b5daa60c592f705cbbad662019
SHA256 8b069c88c90cb715420232630ae9588797adb7ecf19926ff8b0502a6193ef8a4
SHA512 6f7a5234644613d7ca99273e31cbb16bfa5e84624e1399db420928de9041c3b4b9491876ebd986f3736a4ce489d1386c71731ccda86c655978488e1697277922

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58369b.TMP

MD5 8e06f81c42e04dfa99fcf0c1db5508a0
SHA1 ac62b46832167657255d8aaabaf92b3cf434ea3a
SHA256 fc3abcc7f0391cbe8ba526935096ecd3384684e792c434e08be99148ce0e234b
SHA512 70e633ac2858fa92cc0abcbd501ad31574bf4543758f6590d075053e9eaff3ee41b14e1c516563e72d06a83ba0e37277e14c1af6a130e0deed9229e8bf90ab15

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5ea949587011589e113a685861180d8a
SHA1 045ea630b16bdcae6c9c4d0e907133773ddb3d39
SHA256 811b49d82d419dd00c10ed4c05267842747d42cccbc539e954e4c46601d5c05a
SHA512 0e58b402cb54328f6c5edeae30c7104ea984a4a75935ce4540e59d5073d434aeb718976fe3b416f55a075bbddfd7e1c4ad3592bcbdd773225cf3d8f2f1d6e6be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 0fda9f45c4f0e12ef4e6deb8f278be1c
SHA1 333d517a7dc46385e0f6819c22d94596e01c0a1e
SHA256 64b9289ba89cf482a31a902ed7d4d5244962f8d51416e1471614053e20af06bc
SHA512 93809d2d1b5a6282ed24b9f9775915f67b3dd3f3dc01ee169e23e92d23dc46559f80c4431acd666b7626a4fed06b1d430c4e768b3da86107d55cbd328bfb95f1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ed1cdc38d73aa6dd3412c7164450d4f4
SHA1 8504acbbfed535706660217163527b7d61abc168
SHA256 51c60576d62b06e279a7c4e965585f33410baa1a05f42517449da536a356d785
SHA512 901fe9f42a39ab7e205e97f4eda48a9a8e7b929021b983428b98038144deba9bf108561b4ab8b42c4261cc48c3692cfb7cf10844ea61190eb7fe49f287acb197

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9318789e80e5ceec86d4e4861f88b815
SHA1 3880451c913f6c64cb0820253eebac4f1f170a90
SHA256 dab7054a02c3b2eab6f0710f97106baba11e7dcc11e0a9972799019ac06f29b2
SHA512 0c3143a494b033f39f04af311d21fdd53aef12f6765a9e7d804c74ae2533876bea4e75e51871ce0d635828b43c62e1f9870a0d1b62328afbf726b7dcd7bb8548

Analysis: behavioral17

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

441s

Max time network

443s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\base\worker\workerMain.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\base\worker\workerMain.js

Network

Files

N/A

Analysis: behavioral2

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

436s

Max time network

434s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Microsoft.Web.WebView2.WinForms.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Microsoft.Web.WebView2.WinForms.dll,#1

Network

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

441s

Max time network

443s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Newtonsoft.Json.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Newtonsoft.Json.dll,#1

Network

Files

N/A

Analysis: behavioral11

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

442s

Max time network

444s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-locale-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-locale-l1-1-0.dll,#1

Network

Files

N/A

Analysis: behavioral7

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

445s

Max time network

447s

Command Line

"C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\XenoUI.exe"

Signatures

N/A

Processes

C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\XenoUI.exe

"C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\XenoUI.exe"

Network

Files

memory/3848-0-0x00007FFF591D3000-0x00007FFF591D5000-memory.dmp

memory/3848-1-0x0000019D458F0000-0x0000019D4590A000-memory.dmp

Analysis: behavioral19

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

444s

Max time network

442s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.js

Network

Files

N/A

Analysis: behavioral21

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

451s

Max time network

453s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.es.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.es.js

Network

Files

N/A

Analysis: behavioral25

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

453s

Max time network

455s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.js

Network

Files

N/A

Analysis: behavioral27

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

453s

Max time network

455s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.ru.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.ru.js

Network

Files

N/A

Analysis: behavioral31

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

442s

Max time network

446s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\libcrypto-3-x64.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\libcrypto-3-x64.dll,#1

Network

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

443s

Max time network

444s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Microsoft.Web.WebView2.Wpf.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Microsoft.Web.WebView2.Wpf.dll,#1

Network

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

443s

Max time network

443s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Xeno.dll,#1

Signatures

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Windows\system32\rundll32.exe N/A
N/A N/A C:\Windows\system32\rundll32.exe N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Xeno.dll,#1

Network

Files

N/A

Analysis: behavioral8

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

446s

Max time network

448s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-convert-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-convert-l1-1-0.dll,#1

Network

Files

N/A

Analysis: behavioral13

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

446s

Max time network

448s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-runtime-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-runtime-l1-1-0.dll,#1

Network

Files

N/A

Analysis: behavioral32

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-14 00:01

Platform

win11-20250313-en

Max time kernel

443s

Max time network

444s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\libssl-3-x64.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\libssl-3-x64.dll,#1

Network

Country Destination Domain Proto
US 52.111.229.48:443 tcp

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

447s

Max time network

448s

Command Line

"C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Xeno.exe"

Signatures

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A

Processes

C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Xeno.exe

"C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Xeno.exe"

Network

Country Destination Domain Proto
US 8.8.8.8:53 raw.githubusercontent.com udp

Files

N/A

Analysis: behavioral10

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

412s

Max time network

414s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-heap-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-heap-l1-1-0.dll,#1

Network

Files

N/A

Analysis: behavioral30

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

445s

Max time network

447s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\loader.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\loader.js

Network

Files

N/A

Analysis: behavioral20

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

442s

Max time network

444s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.de.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.de.js

Network

Files

N/A

Analysis: behavioral22

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

448s

Max time network

449s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.fr.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.fr.js

Network

Files

N/A

Analysis: behavioral26

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

448s

Max time network

450s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.ko.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.ko.js

Network

Files

N/A

Analysis: behavioral29

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

436s

Max time network

437s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.zh-tw.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.zh-tw.js

Network

Country Destination Domain Proto
IE 52.111.236.22:443 tcp

Files

N/A

Analysis: behavioral14

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

442s

Max time network

443s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-stdio-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-stdio-l1-1-0.dll,#1

Network

Country Destination Domain Proto
US 52.111.227.14:443 tcp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:55

Platform

win11-20250313-en

Max time kernel

702s

Max time network

673s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Microsoft.Web.WebView2.Core.dll,#1

Signatures

Detect XenoRat Payload

Description Indicator Process Target
N/A N/A N/A N/A

XenorRat

trojan rat xenorat

Xenorat family

xenorat

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\free robux.exe N/A
N/A N/A C:\Users\Admin\Downloads\free robux.exe N/A
N/A N/A C:\Users\Admin\Downloads\free robux.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Drops file in Windows directory

Description Indicator Process Target
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-hub\zh-Hans\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-mobile-hub\zh-Hant\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\pt-PT\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\fr-CA\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\wallet-pre-stable.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_905658740\sets.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-hub\ru\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-mobile-hub\pt-PT\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-tokenized-card\zh-Hant\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\wallet-stable.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\load-hub-i18n.bundle.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\wallet-webui-792.b1180305c186d50631a2.chunk.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\webui-setup.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-ec\es\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification\ar\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification\nl\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification\sv\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\fr-CA\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\fi\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\Mini-Wallet\miniwallet.bundle.js.LICENSE.txt C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\Tokenized-Card\tokenized-card.html C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_905658740\manifest.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-hub\ar\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\README.md C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\wallet-webui-101.079f5d74a18127cd9d6a.chunk.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_905658740\LICENSE C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-ec\ar\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-mobile-hub\en-GB\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\ja\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-tokenized-card\fr\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\wallet-checkout-eligible-sites.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\bnpl\bnpl.bundle.js.LICENSE.txt C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification\ru\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\ar\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\en-GB\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\zh-Hans\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\runtime.bundle.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\buynow_driver.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\hub-signature.txt C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\ru\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\sv\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-tokenized-card\de\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-tokenized-card\nl\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\super_coupon.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\Notification\notification.bundle.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-ec\zh-Hans\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-hub\ko\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\fr\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\th\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\wallet-checkout-eligible-sites-pre-stable.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\Notification\notification_fast.bundle.js.LICENSE.txt C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\wallet.html C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-ec\fr\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification\es\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\es\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\zh-Hant\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\el\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\wallet\wallet-checkout\merchant-site-info.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\crypto.bundle.js C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\driver-signature.txt C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-hub\fr-CA\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-notification-shared\ko\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-shared-components\ko\strings.json C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Browser Information Discovery

discovery

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\free robux.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\free robux.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\free robux.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPMigrationVer = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionHigh = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\CVListXMLVersionHigh = "268435456" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionHigh = "268435456" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Main\OperationalData = "13" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\VersionManager\FirstCheckForUpdateHighDateTime = "31167676" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy\HomepagesUpgradeVersion = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Main\DisableFirstRunCustomize = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\CVListDomainAttributeSet = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\VersionManager\FirstCheckForUpdateLowDateTime = "3819720801" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Main\OperationalData = "9" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionLow = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\CVListXMLVersionLow = "395196024" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\GPU\DeviceId = "140" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionLow = "395196024" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\StaleCompatCache = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Main\OperationalData = "8" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\GPU\VendorId = "4318" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\VersionManager C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\GPU\Revision = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\GPU\SoftwareFallback = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\StaleCompatCache = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\GPU\SubSysId = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\ C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\0\MRUListEx = 00000000ffffffff C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\LogicalViewMode = "1" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1092616257" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-620072444-2846605723-1118207114-1642104096-81213792-2370344205-2712285428\Moniker = "cr.sb.odm3E4D1A088C1F6D498C84F3C86DE73CE49F82A104" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\MRUListEx = 0100000000000000ffffffff C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\0 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByDirection = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByKey:FMTID = "{B725F130-47EF-101A-A5F1-02608C9EEBAC}" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Mappings\S-1-15-2-620072444-2846605723-1118207114-1642104096-81213792-2370344205-2712285428\DisplayName = "Chrome Sandbox" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Mode = "4" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\MRUListEx = 0100000000000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 010000000200000000000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Mode = "4" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0100000000000000ffffffff C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3712238951-2226310826-298817577-1000\{F70A4400-9C40-474B-8262-A4801C697089} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259} C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\IconSize = "16" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1092616257" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\LogicalViewMode = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\0\0\0 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\NodeSlot = "5" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\0\0\0 = 7e003100000000006d5a859311004465736b746f7000680009000400efbe6d5a6c8c6d5a8dbd2e000000345702000000010000000000000000003e0000000000b8832a004400650073006b0074006f007000000040007300680065006c006c00330032002e0064006c006c002c002d0032003100370036003900000016000000 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1 = 19002f433a5c000000000000000000000000000000000000000000 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\Shell\SniffedFolderType = "Downloads" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByKey:PID = "14" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\MRUListEx = ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\Shell C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\0\0 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByDirection = "4294967295" C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\ C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0100000000000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 010000000200000000000000ffffffff C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2 = 3a001f44471a0359723fa74489c55595fe6b30ee260001002600efbe1000000044f6774c3e94db01d087555b4694db016c9a4e047394db0114000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByDirection = "4294967295" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-3712238951-2226310826-298817577-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\0\0 C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\setup.bat:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\Release.zip:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\Release\xeno rat server.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3508 wrote to memory of 4740 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4740 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 5276 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4880 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4880 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3508 wrote to memory of 4348 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\Microsoft.Web.WebView2.Core.dll,#1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=133.0.6943.60 --initial-client-data=0xfc,0x100,0x104,0xe4,0x108,0x7ffe3e43dcf8,0x7ffe3e43dd04,0x7ffe3e43dd10

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=1900,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=1896 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --field-trial-handle=1440,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=2248 /prefetch:11

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --field-trial-handle=2356,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=2368 /prefetch:13

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3196,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3284 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3228,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3440 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4188,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3176 /prefetch:9

C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4600,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=4616 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5280,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5292 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5472,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5488 /prefetch:14

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5796,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5776 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5724,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3428 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5932,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5944 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5308,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6056 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5748,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5920 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=3504,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6012 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=3568,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6024 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5960,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5920 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=6056,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6132 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=3608,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3452 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=3580,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6016 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=3648,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5968 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6116,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6092 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=6396,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6312 /prefetch:10

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=6412,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6504 /prefetch:14

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Windows\System32\cmd.exe

"C:\Windows\System32\cmd.exe" /C "C:\Users\Admin\Downloads\setup.bat"

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\Downloads\HideRegister.gif

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" -- "file:///C:/Users/Admin/Downloads/HideRegister.gif"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x2e4,0x2e8,0x2ec,0x2e0,0x32c,0x7ffe1828f208,0x7ffe1828f214,0x7ffe1828f220

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1832,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=2556 /prefetch:11

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2536,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=2532 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=2176,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=2564 /prefetch:13

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --always-read-main-dll --field-trial-handle=3428,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=3512 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --always-read-main-dll --field-trial-handle=3436,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=3564 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4732,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=4912 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=3432,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=4948 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5648,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=5684 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5720,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=5696 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=en-US --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5760,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=5676 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5648,i,15833102380182104109,15219776198544941896,262144 --variations-seed-version --mojo-platform-channel-handle=5684 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\cookie_exporter.exe

cookie_exporter.exe --cookie-json=1128

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=133.0.6943.99 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=133.0.3065.69 --initial-client-data=0x240,0x244,0x248,0x23c,0x268,0x7ffe1828f208,0x7ffe1828f214,0x7ffe1828f220

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --always-read-main-dll --field-trial-handle=1776,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=2292 /prefetch:11

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=2264,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=2256 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\elevation_service.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --always-read-main-dll --field-trial-handle=2220,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=3332 /prefetch:13

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4352,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=4376 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\133.0.3065.69\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4352,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=4376 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=PooledProcess2 --lang=en-US --service-sandbox-type=utility --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4468,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=4404 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6572,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6584 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6668,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6688 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6636,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6660 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --instant-process --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --always-read-main-dll --field-trial-handle=4724,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=4748 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5040,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5068 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5064,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5116 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --string-annotations --pdf-upsell-enabled --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --always-read-main-dll --field-trial-handle=5440,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5468 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=on_device_model.mojom.OnDeviceModelService --lang=en-US --service-sandbox-type=on_device_model_execution --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=6560,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5428 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=568,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5780 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5748,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5812 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5756,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5860 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6556,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5568 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5332,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5296 /prefetch:14

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=5820,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5936 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=1444,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6948 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=5332,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6176 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6608,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3664 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=7132,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7160 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7292,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7324 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=7476,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7432 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=7492,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7632 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7772,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7788 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7908,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7944 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=8080,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8100 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=8132,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8268 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=8300,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=8564,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8580 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8608,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8736 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=8860,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8896 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=8916,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9064 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=9212,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9232 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=8452,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9432 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=7972,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9524 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=9668,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9680 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=9804,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9836 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=7616,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8868 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=10136,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10140 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=10272,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10264 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=10464,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10444 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=8548,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10604 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=10772,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10784 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=10900,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10968 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=11084,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11116 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=10916,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11092 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=11380,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11172 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=11396,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11468 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=11388,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11592 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=11600,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11620 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=11428,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11788 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=11680,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11952 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=11748,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12192 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=11812,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12256 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=11848,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12264 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=11956,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12472 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=12208,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12608 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=12296,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12736 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=12356,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12960 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=12384,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12984 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=13576,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=13588 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=13800,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=13792 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=10472,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12368 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=12596,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12592 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=12292,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14004 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=7344,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14140 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=14220,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14196 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=14340,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14356 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=14492,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14576 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=14664,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14688 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=14852,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14816 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=14988,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14976 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=15120,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15112 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=15256,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14648 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=15428,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15416 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=15552,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15580 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=15748,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15452 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=15836,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15860 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=13572,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=11124 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --always-read-main-dll --field-trial-handle=760,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=5736 /prefetch:10

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=4184,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=3784 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=7208,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7000 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=10176,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7176 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=11268,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14436 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=6800,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6700 /prefetch:14

C:\Users\Admin\Downloads\Release\xeno rat server.exe

"C:\Users\Admin\Downloads\Release\xeno rat server.exe"

C:\Users\Admin\Downloads\free robux.exe

"C:\Users\Admin\Downloads\free robux.exe"

C:\Users\Admin\Downloads\free robux.exe

"C:\Users\Admin\Downloads\free robux.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --video-capture-use-gpu-memory-buffer --string-annotations --always-read-main-dll --field-trial-handle=3940,i,10413024045774430243,15938669045737602176,262144 --variations-seed-version --mojo-platform-channel-handle=3712 /prefetch:14

C:\Users\Admin\Downloads\free robux.exe

"C:\Users\Admin\Downloads\free robux.exe"

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\setup.bat" "

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=6064,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6032 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=6648,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6792 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=4728,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=4652 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=5848,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=4668 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=7232,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5832 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=4608,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5828 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=6764,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5512 /prefetch:14

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=12188,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=12120 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=5516,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8284 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=8296,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=3048 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --field-trial-handle=6672,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6912 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=9980,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7272 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=12376,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6924 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=10408,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=6660 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=5712,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7628 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --field-trial-handle=5792,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15344 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --field-trial-handle=6276,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=8320 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --field-trial-handle=15020,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=4200 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --field-trial-handle=7220,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=14816 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --field-trial-handle=7748,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=13820 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --field-trial-handle=7664,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=9956 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=13908,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=13864 /prefetch:12

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004BC 0x00000000000004C8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --field-trial-handle=14868,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=10044 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=15176,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=15204 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --field-trial-handle=8348,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7676 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --field-trial-handle=15168,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=7268 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --field-trial-handle=6916,i,1036421236682299698,10951104468693950697,262144 --variations-seed-version=20250313-050105.095000 --mojo-platform-channel-handle=5940 /prefetch:1

Network

Country Destination Domain Proto
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.200.10:443 ogads-pa.googleapis.com udp
GB 142.250.200.10:443 ogads-pa.googleapis.com tcp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.16.238:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
GB 142.250.180.4:443 www.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.10:443 jnn-pa.googleapis.com tcp
GB 142.250.200.10:443 jnn-pa.googleapis.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 172.217.169.46:443 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com udp
GB 216.58.213.14:443 consent.google.com tcp
GB 216.58.212.206:443 encrypted-tbn0.gstatic.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.109.133:443 user-images.githubusercontent.com tcp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 140.82.113.22:443 collector.github.com tcp
US 140.82.113.22:443 collector.github.com tcp
US 140.82.113.22:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 172.64.150.67:443 axi-shop.tebex.io tcp
US 172.64.150.67:443 axi-shop.tebex.io tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 104.18.43.9:80 stats.codesandbox.io tcp
US 104.18.43.9:80 stats.codesandbox.io tcp
US 104.18.43.9:443 stats.codesandbox.io tcp
US 104.18.43.9:443 stats.codesandbox.io udp
US 172.64.144.247:443 stats.codesandbox.io tcp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
DE 167.235.8.253:443 ctrl.fc-eu-0.codesandbox.io tcp
US 104.18.43.9:443 stats.codesandbox.io tcp
US 104.18.43.9:443 stats.codesandbox.io udp
CA 198.41.30.195:443 open-vsx.org tcp
US 104.18.43.9:443 stats.codesandbox.io tcp
US 104.18.43.9:443 stats.codesandbox.io udp
US 104.18.43.9:443 stats.codesandbox.io udp
BE 64.233.167.94:443 beacons.gcp.gvt2.com tcp
US 34.120.195.249:443 o72233.ingest.sentry.io tcp
US 104.18.43.9:443 stats.codesandbox.io udp
GB 142.250.180.4:443 www.google.com udp
US 34.120.195.249:443 o72233.ingest.sentry.io udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.10:443 jnn-pa.googleapis.com udp
GB 216.58.204.86:443 i.ytimg.com tcp
GB 142.250.178.14:443 www.youtube.com udp
GB 142.250.178.14:443 www.youtube.com tcp
GB 142.250.178.14:443 www.youtube.com udp
GB 216.58.204.86:443 i.ytimg.com tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net tcp
GB 142.250.200.38:443 static.doubleclick.net tcp
GB 216.58.213.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
GB 216.58.213.10:443 jnn-pa.googleapis.com udp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 185.199.111.133:443 user-images.githubusercontent.com tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 13.107.21.239:443 edge.microsoft.com tcp
US 204.79.197.239:80 edge.microsoft.com tcp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
IE 94.245.104.56:443 api.edgeoffer.microsoft.com tcp
IE 94.245.104.56:443 api.edgeoffer.microsoft.com tcp
IE 94.245.104.56:443 api.edgeoffer.microsoft.com tcp
US 13.107.21.239:443 edge.microsoft.com tcp
GB 104.86.110.128:443 www.bing.com udp
GB 104.86.110.128:443 www.bing.com tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 204.79.197.239:443 edge.microsoft.com tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 13.107.21.239:443 edge.microsoft.com tcp
US 13.107.21.239:443 edge.microsoft.com tcp
GB 2.18.66.72:443 www.bing.com tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 204.79.197.239:443 edge.microsoft.com tcp
GB 142.250.180.4:443 www.google.com udp
GB 20.26.156.210:443 api.github.com tcp
BE 64.233.167.94:443 beacons.gcp.gvt2.com udp
HK 34.92.53.177:443 e2c2.gcp.gvt2.com tcp
GB 142.250.200.10:443 jnn-pa.googleapis.com udp
HK 34.92.53.177:443 e2c2.gcp.gvt2.com tcp
GB 172.217.169.46:443 www.youtube.com udp
GB 142.250.179.227:443 beacons.gvt2.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.10:443 jnn-pa.googleapis.com udp
GB 142.250.200.22:443 i.ytimg.com udp
GB 142.250.178.14:443 www.youtube.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.178.14:443 www.youtube.com udp
GB 142.250.200.22:443 i.ytimg.com tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
GB 142.250.180.10:443 jnn-pa.googleapis.com udp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 ntp.msn.com udp
US 8.8.8.8:53 ntp.msn.com udp
US 204.79.197.203:443 ntp.msn.com tcp
IE 94.245.104.56:443 api.edgeoffer.microsoft.com tcp
US 8.8.8.8:53 img-s-msn-com.akamaized.net udp
US 8.8.8.8:53 img-s-msn-com.akamaized.net udp
US 8.8.8.8:53 sb.scorecardresearch.com udp
US 8.8.8.8:53 sb.scorecardresearch.com udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 assets.msn.com udp
US 8.8.8.8:53 assets.msn.com udp
US 8.8.8.8:53 c.msn.com udp
US 8.8.8.8:53 c.msn.com udp
US 8.8.8.8:53 c.bing.com udp
US 8.8.8.8:53 c.bing.com udp
GB 95.100.195.145:443 assets.msn.com tcp
GB 2.18.66.59:443 www.bing.com tcp
GB 95.100.195.145:443 assets.msn.com tcp
IE 13.74.129.1:443 c.msn.com tcp
US 150.171.28.10:443 c.bing.com tcp
GB 2.18.66.162:443 th.bing.com tcp
GB 18.165.242.110:443 sb.scorecardresearch.com tcp
GB 104.77.160.88:443 img-s-msn-com.akamaized.net tcp
GB 95.100.195.145:443 assets.msn.com tcp
GB 95.100.195.145:443 assets.msn.com udp
GB 95.100.195.145:443 assets.msn.com udp
US 8.8.8.8:53 srtb.msn.com udp
US 8.8.8.8:53 srtb.msn.com udp
US 204.79.197.203:443 srtb.msn.com tcp
GB 2.18.66.162:443 th.bing.com tcp
US 8.8.8.8:53 edge-consumer-static.azureedge.net udp
US 8.8.8.8:53 edge-consumer-static.azureedge.net udp
US 13.107.246.64:443 edge-consumer-static.azureedge.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 2.18.66.162:443 th.bing.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 104.77.160.88:443 img-s-msn-com.akamaized.net udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.178.10:443 waa-pa.clients6.google.com tcp
GB 142.250.178.10:443 waa-pa.clients6.google.com udp
US 104.26.13.6:443 www.bleepstatic.com tcp
US 104.26.13.6:443 www.bleepstatic.com tcp
US 104.26.13.6:443 www.bleepstatic.com tcp
US 104.26.13.6:443 www.bleepstatic.com tcp
US 104.26.13.6:443 www.bleepstatic.com tcp
US 104.26.13.6:443 www.bleepstatic.com tcp
US 104.18.21.206:443 a.pub.network tcp
US 104.18.21.206:443 a.pub.network udp
US 8.8.8.8:53 ecdn.firstimpression.io udp
GB 142.250.180.4:443 www.google.com tcp
US 172.67.25.149:443 fs-loader.com tcp
GB 18.165.201.52:443 ecdn.firstimpression.io tcp
GB 54.192.137.3:443 ecdn.analysis.fi tcp
US 34.160.152.31:443 c.pub.network tcp
US 34.111.152.239:443 optimise.net tcp
US 34.160.128.112:443 api.floors.dev tcp
US 104.26.13.6:443 www.bleepstatic.com tcp
GB 23.192.17.241:443 widgets.outbrain.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 104.26.2.70:443 ad-delivery.net tcp
US 104.26.2.70:443 ad-delivery.net tcp
NL 178.250.1.39:443 static.criteo.net tcp
NL 178.250.1.39:443 static.criteo.net tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net tcp
US 172.67.25.149:443 fs-loader.com tcp
GB 18.165.201.73:443 ecdn.firstimpression.io tcp
US 34.111.152.239:443 optimise.net tcp
US 34.111.152.239:443 optimise.net udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 34.160.152.31:443 c.pub.network tcp
US 34.160.152.31:443 c.pub.network udp
US 8.8.8.8:53 static.edge.microsoftapp.net udp
US 8.8.8.8:53 static.edge.microsoftapp.net udp
US 13.107.246.64:443 static.edge.microsoftapp.net tcp
US 204.79.197.239:443 edge.microsoft.com tcp
GB 2.18.190.98:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 172.67.2.229:443 www.bleepingcomputer.com tcp
NL 178.250.1.39:443 static.criteo.net tcp
BE 64.233.167.94:443 beacons.gcp.gvt2.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 34.160.152.31:443 c.pub.network udp
IE 54.77.238.227:443 tag.escalated.io tcp
GB 18.244.124.35:443 cmp.inmobi.com tcp
IE 54.77.238.227:443 tag.escalated.io tcp
GB 18.244.124.35:443 cmp.inmobi.com tcp
DE 52.29.80.192:443 api.cmp.inmobi.com tcp
DE 52.29.80.192:443 api.cmp.inmobi.com tcp
US 104.18.43.90:443 cdn.confiant-integrations.net tcp
US 104.18.43.90:443 cdn.confiant-integrations.net udp
US 104.26.8.50:443 freestar-io.videoplayerhub.com tcp
US 172.67.36.110:443 cdn.hadronid.net tcp
GB 13.224.225.87:443 c.amazon-adsystem.com tcp
US 34.120.133.55:443 api.rlcdn.com tcp
US 172.67.36.110:443 cdn.hadronid.net tcp
GB 95.100.195.57:443 s.ntv.io tcp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 104.22.74.216:443 btloader.com tcp
DE 103.231.98.76:443 hbopenbid.pubmatic.com tcp
GB 13.224.225.87:443 c.amazon-adsystem.com tcp
US 104.22.74.216:443 btloader.com tcp
DE 3.124.64.248:443 tlx.3lift.com tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 8.8.8.8:53 prebid.cootlogix.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 hb.yellowblue.io udp
US 34.36.214.49:443 pa.openx.net tcp
US 8.8.8.8:53 ads.yieldmo.com udp
GB 23.192.17.43:443 ads.pubmatic.com tcp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 rules.quantcount.com udp
US 8.8.8.8:53 ag.dns-finder.com udp
US 34.120.63.153:443 prebid.media.net tcp
GB 23.192.17.43:443 ads.pubmatic.com tcp
US 138.197.252.115:443 prebid.cootlogix.com tcp
US 138.197.252.115:443 prebid.cootlogix.com tcp
US 8.8.8.8:53 a.ad.gt udp
NL 185.89.210.212:443 ib.adnxs.com tcp
IE 34.254.84.10:443 ads.yieldmo.com tcp
GB 108.138.217.66:443 hb.yellowblue.io tcp
GB 52.84.90.86:443 config.aps.amazon-adsystem.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
US 104.18.27.193:443 htlb.casalemedia.com tcp
IE 54.77.240.6:443 g2.gumgum.com tcp
IE 54.77.240.6:443 g2.gumgum.com tcp
IE 54.77.240.6:443 g2.gumgum.com tcp
IE 54.77.240.6:443 g2.gumgum.com tcp
GB 18.172.158.4:443 aax.amazon-adsystem.com tcp
GB 18.172.158.4:443 aax.amazon-adsystem.com tcp
GB 18.245.187.55:443 rules.quantcount.com tcp
GB 18.165.201.38:443 tags.crwdcntrl.net tcp
GB 23.64.21.88:443 secure.cdn.fastclick.net tcp
US 104.22.4.69:443 a.ad.gt tcp
US 104.22.5.69:443 a.ad.gt tcp
US 172.67.38.106:443 cdn.id5-sync.com tcp
IE 52.214.74.173:443 jadserve.postrelease.com tcp
GB 87.248.114.11:443 ups.analytics.yahoo.com tcp
US 130.211.23.194:443 api.btloader.com tcp
US 130.211.23.194:443 api.btloader.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 141.95.33.120:443 id5-sync.com tcp
US 15.197.193.217:443 match.adsrvr.org tcp
IE 52.48.124.8:443 bcp.crwdcntrl.net tcp
IE 63.33.249.32:443 bcp.crwdcntrl.net tcp
US 34.107.140.113:443 s2s.t13.io udp
US 104.18.27.193:443 htlb.casalemedia.com udp
US 138.197.252.115:443 prebid.cootlogix.com tcp
US 34.120.63.153:443 prebid.media.net udp
US 35.186.253.211:443 rtb.openx.net udp
US 52.36.224.135:443 postrelease.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 104.22.5.69:443 p.ad.gt tcp
DE 162.19.138.82:443 lb.eu-1-id5-sync.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
GB 185.64.190.82:443 t.pubmatic.com tcp
US 52.33.34.36:443 ids4.ad.gt tcp
US 34.98.64.218:443 u.openx.net tcp
NL 69.173.156.149:443 token.rubiconproject.com tcp
DE 103.231.98.80:443 image2.pubmatic.com tcp
US 69.166.1.66:443 sync.go.sonobi.com tcp
US 104.22.5.69:443 p.ad.gt tcp
GB 142.250.200.34:443 cm.g.doubleclick.net tcp
US 104.22.5.69:443 p.ad.gt tcp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
US 104.22.5.69:443 p.ad.gt tcp
US 104.22.5.69:443 p.ad.gt tcp
US 172.67.23.234:443 p.ad.gt tcp
US 172.67.23.234:443 p.ad.gt tcp
IE 34.254.106.145:443 ad.360yield.com tcp
FR 178.32.197.56:443 sync.smartadserver.com tcp
US 104.22.4.69:443 p.ad.gt tcp
GB 142.250.180.1:443 9b636e63e19a3963e1c630688abe9e56.safeframe.googlesyndication.com tcp
IE 34.254.84.10:443 ads.yieldmo.com tcp
US 15.197.193.217:443 match.adsrvr.org tcp
GB 142.250.200.34:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 ep2.adtrafficquality.google udp
NL 35.214.136.108:443 x.bidswitch.net tcp
FR 178.32.197.56:443 sync.smartadserver.com tcp
GB 2.18.190.100:443 acdn.adnxs.com tcp
GB 23.192.16.30:443 contextual.media.net tcp
US 76.223.111.18:443 eb2.3lift.com tcp
GB 23.192.17.145:443 eus.rubiconproject.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
US 159.89.226.205:443 sync.cootlogix.com tcp
US 104.18.25.18:443 js-sec.indexww.com tcp
GB 216.58.201.97:443 ep2.adtrafficquality.google tcp
US 35.244.159.8:443 u.openx.net tcp
NL 35.214.136.108:443 x.bidswitch.net udp
US 35.244.159.8:443 u.openx.net udp
US 104.22.5.69:443 p.ad.gt tcp
GB 216.58.201.97:443 ep2.adtrafficquality.google tcp
GB 142.250.180.4:443 www.google.com tcp
IE 34.247.205.196:443 usersync.gumgum.com tcp
IE 34.247.205.196:443 usersync.gumgum.com tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
GB 18.164.68.5:443 cdn.browsiprod.com tcp
US 151.101.193.108:443 cdn.adnxs.com tcp
US 13.107.246.65:443 adsdk.microsoft.com tcp
US 8.8.8.8:53 c21lg-d.media.net udp
NL 178.250.1.11:443 gum.criteo.com tcp
GB 142.250.200.34:443 cm.g.doubleclick.net tcp
NL 35.214.136.108:443 x.bidswitch.net tcp
US 8.8.8.8:53 hb.trustedstack.com udp
US 8.8.8.8:53 dis.criteo.com udp
US 8.8.8.8:53 medianet-match.dotomi.com udp
US 8.8.8.8:53 ice.360yield.com udp
US 8.8.8.8:53 us-u.openx.net udp
GB 23.215.239.190:443 secure-assets.rubiconproject.com tcp
NL 193.0.160.131:443 p.rfihub.com tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
GB 23.192.24.32:443 c21lg-d.media.net tcp
GB 23.192.24.32:443 c21lg-d.media.net tcp
NL 63.215.202.172:443 medianet-match.dotomi.com tcp
GB 104.77.160.81:443 hb.trustedstack.com tcp
IE 52.212.196.64:443 protected-by.clarium.io tcp
IE 52.212.196.64:443 protected-by.clarium.io tcp
NL 178.250.1.9:443 dis.eu.criteo.com tcp
US 151.101.193.108:443 cdn.adnxs-simple.com tcp
IE 52.208.139.223:443 ice.360yield.com tcp
IE 52.212.196.64:443 protected-by.clarium.io tcp
US 52.11.94.160:443 events.browsiprod.com tcp
GB 23.192.16.30:443 contextual.media.net udp
GB 13.224.245.127:443 yield-manager.browsiprod.com tcp
IE 54.170.21.246:443 ap.lijit.com tcp
GB 2.18.190.165:443 cdn.adnxs-simple.com tcp
IE 52.214.245.133:443 ce.lijit.com tcp
GB 104.86.110.129:443 www.bing.com tcp
GB 104.86.110.129:443 www.bing.com tcp
GB 104.86.110.129:443 www.bing.com tcp
GB 104.86.110.129:443 www.bing.com tcp
NL 178.250.1.9:443 dis.eu.criteo.com tcp
GB 104.86.110.129:443 www.bing.com udp
IE 54.77.187.247:443 x.adroll.com tcp
US 34.54.30.30:443 publickeyservice.pa.gcp.privacysandboxservices.com tcp
GB 13.224.245.68:443 publickeyservice.pa.aws.privacysandboxservices.com tcp
US 104.22.5.69:443 p.ad.gt tcp
IE 52.214.245.133:443 ce.lijit.com tcp
NL 35.214.136.108:443 x.bidswitch.net udp
US 35.186.253.211:443 rtb.openx.net tcp
NL 185.89.210.212:443 ams3-ib.adnxs.com tcp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 pixel.rubiconproject.com udp
GB 142.250.200.34:443 cm.g.doubleclick.net udp
IE 54.171.6.32:443 pr-bh.ybp.yahoo.com tcp
DK 37.157.6.233:443 c1.adform.net tcp
NL 178.250.1.57:443 ssp-sync.criteo.com tcp
IE 52.49.25.61:443 match.prod.bidr.io tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 34.1.242.226:443 s.ad.smaato.net tcp
DE 51.38.120.206:443 onetag-sys.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
DE 91.228.74.166:443 cms.quantserve.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
US 104.18.27.193:443 ssum-sec.casalemedia.com tcp
NL 34.1.230.247:443 ads.creative-serving.com tcp
IE 46.137.23.186:443 ms-cookie-sync.presage.io tcp
NL 46.228.164.13:443 d.turn.com tcp
US 104.22.5.69:443 p.ad.gt tcp
US 20.33.104.140:443 sync.inmobi.com tcp
US 104.18.27.193:443 ssum-sec.casalemedia.com udp
NL 89.207.16.140:443 amazon-tam-match.dotomi.com tcp
DE 18.195.234.25:443 match.sharethrough.com tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
IE 34.248.143.250:443 sync-amz.ads.yieldmo.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
DE 57.129.18.113:443 wt.rqtrk.eu tcp
GB 87.248.114.11:443 ups.analytics.yahoo.com tcp
US 34.107.140.113:443 s2s.t13.io tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
GB 143.204.176.39:443 sync.serverbid.com tcp
NL 89.149.193.100:443 ssbsync.smartadserver.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 69.173.146.5:443 pixel-us-east.rubiconproject.com tcp
US 8.8.8.8:53 mwzeom.zeotap.com udp
US 8.8.8.8:53 cs-tam.yellowblue.io udp
US 8.8.8.8:53 px.ads.linkedin.com udp
US 8.8.8.8:53 triplelift-match.dotomi.com udp
IE 52.49.25.61:443 match.prod.bidr.io tcp
US 8.8.8.8:53 um.simpli.fi udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 8.8.8.8:53 match.adsby.bidtheatre.com udp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 pubmatic-match.dotomi.com udp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
IE 52.49.25.61:443 match.prod.bidr.io tcp
IE 52.31.109.203:443 dsp.360yield.com tcp
US 44.216.225.159:443 sync.srv.stackadapt.com tcp
US 44.216.225.159:443 sync.srv.stackadapt.com tcp
US 44.216.225.159:443 sync.srv.stackadapt.com tcp
US 151.101.130.49:443 sync-tm.everesttech.net tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
DE 80.82.210.217:443 dsp-cookie.adfarm1.adition.com tcp
NL 34.1.232.191:443 csync.loopme.me tcp
US 35.186.193.173:443 ipac.ctnsnet.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
NL 64.158.223.137:443 pubmatic-match.dotomi.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 63.215.202.169:443 triplelift-match.dotomi.com tcp
DK 77.243.51.121:443 uipglob.semasio.net tcp
US 98.82.158.241:443 s.amazon-adsystem.com tcp
NL 35.204.201.36:443 um.simpli.fi tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
NL 64.227.64.62:443 match.adsby.bidtheatre.com tcp
IE 52.211.80.5:443 cs-tam.yellowblue.io tcp
US 104.22.51.98:443 mwzeom.zeotap.com tcp
FR 54.38.113.3:443 pixel.onaudience.com tcp
SI 195.5.165.20:443 core.iprom.net tcp
SE 13.53.196.230:443 d5p.de17a.com tcp
DE 103.231.98.80:443 image2.pubmatic.com tcp
DE 103.231.98.80:443 image2.pubmatic.com tcp
DK 77.243.51.121:443 uipglob.semasio.net tcp
NL 35.214.183.184:443 a.sportradarserving.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
DE 103.231.98.80:443 image2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
DE 103.231.98.80:443 image2.pubmatic.com tcp
GB 216.58.201.102:443 s0.2mdn.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 35.214.183.184:443 a.sportradarserving.com udp
US 98.82.158.241:443 s.amazon-adsystem.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 81.17.55.173:443 rtb-csync.smartadserver.com tcp
US 98.82.158.241:443 s.amazon-adsystem.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
GB 13.224.222.44:443 cdn.undertone.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 80.77.87.216:443 cs.krushmedia.com tcp
DE 51.38.120.206:443 onetag-sys.com udp
IE 63.33.249.32:443 sync.crwdcntrl.net tcp
US 34.96.105.8:443 tr.blismedia.com tcp
NL 89.207.16.137:443 openx2-match.dotomi.com tcp
US 70.42.32.95:443 b1sync.zemanta.com tcp
DE 148.251.40.147:443 sync.richaudience.com tcp
BE 35.206.141.5:443 cs.yellowblue.io tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
NL 34.1.232.191:443 csync.loopme.me tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
US 54.174.139.101:443 rtb.adentifi.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
DK 37.157.2.14:443 cm.adform.net tcp
BE 35.210.130.15:443 pm.w55c.net tcp
US 35.186.253.211:443 rtb.openx.net udp
NL 34.1.230.247:443 ads.creative-serving.com udp
US 34.107.140.113:443 s2s.t13.io udp
US 70.42.32.95:443 b1sync.zemanta.com tcp
US 8.8.8.8:53 pixel.tapad.com udp
US 8.8.8.8:53 inmobi-match.dotomi.com udp
US 8.8.8.8:53 id.rlcdn.com udp
US 8.8.8.8:53 sync.e-volution.ai udp
US 8.8.8.8:53 ittpx.eskimi.com udp
US 34.96.105.8:443 tr.blismedia.com udp
US 8.8.8.8:53 cs.playdigo.com udp
US 8.8.8.8:53 sync.clearnview.com udp
US 8.8.8.8:53 cs.admanmedia.com udp
US 34.111.113.62:443 pixel.tapad.com tcp
US 88.214.193.140:443 sync.clearnview.com tcp
NL 91.227.144.188:443 sync.e-volution.ai tcp
DE 178.63.235.34:443 ittpx.eskimi.com tcp
US 35.244.174.68:443 idsync.rlcdn.com tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
US 80.77.85.111:443 cs.playdigo.com tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
NL 64.227.64.62:443 match.adsby.bidtheatre.com tcp
US 172.111.38.54:443 tracker-shr.ortb.net tcp
NL 185.64.189.114:443 simage4.pubmatic.com tcp
IE 54.78.254.47:443 loada.exelator.com tcp
US 80.77.87.216:443 cs.krushmedia.com tcp
US 8.2.110.97:443 us.ck-ie.com tcp
US 50.31.142.159:443 b1sync.outbrain.com tcp
NL 103.67.200.72:443 sync.adkernel.com tcp
IE 52.49.25.61:443 match.prod.bidr.io tcp
GB 108.138.233.49:443 usr.undertone.com tcp
GB 108.138.233.49:443 usr.undertone.com tcp
GB 108.138.233.49:443 usr.undertone.com tcp
GB 108.138.233.49:443 usr.undertone.com tcp
BE 35.210.130.15:443 pm.w55c.net tcp
US 52.86.1.23:443 sync.bfmio.com tcp
GB 23.192.24.32:443 c21lg-d.media.net udp
US 50.31.142.31:443 sync.outbrain.com tcp
US 18.213.58.31:443 partners.tremorhub.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
US 172.240.45.96:443 sync.aniview.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
DE 18.184.216.10:443 ps.eyeota.net tcp
US 70.42.32.95:443 b1sync.zemanta.com tcp
NL 141.226.228.48:443 sync.taboola.com tcp
US 34.198.10.102:443 bpi.rtactivate.com tcp
US 70.42.32.95:443 b1sync.zemanta.com tcp
US 69.166.1.66:443 sync.go.sonobi.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
IE 52.49.25.61:443 match.prod.bidr.io tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 38.91.45.7:443 match.deepintent.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
BE 35.210.130.15:443 pm.w55c.net udp
US 54.88.142.103:443 pxl.iqm.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
IE 52.19.224.221:443 cm.adgrx.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 18.213.81.188:443 sync.ipredictive.com tcp
US 104.18.37.193:443 a.tribalfusion.com tcp
FR 91.134.69.99:443 green.erne.co tcp
FR 54.38.113.8:443 pixel-eu.onaudience.com tcp
IE 52.19.224.221:443 cm.adgrx.com tcp
FR 91.134.69.99:443 green.erne.co tcp
US 104.18.37.193:443 s.tribalfusion.com udp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
FR 54.38.113.3:443 pixel-eu.onaudience.com tcp
DE 18.184.216.10:443 ps.eyeota.net tcp
US 50.31.142.159:443 b1sync.outbrain.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
IE 52.19.224.221:443 cm.adgrx.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
FR 91.134.69.99:443 green.erne.co tcp
FR 54.38.113.8:443 pixel-eu.onaudience.com tcp
US 70.42.32.95:443 b1sync.zemanta.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 98.82.158.241:443 s.amazon-adsystem.com tcp
US 34.111.113.62:443 pixel.tapad.com udp
GB 216.58.201.97:443 ep2.adtrafficquality.google udp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
IE 52.49.25.61:443 match.prod.bidr.io tcp
US 3.208.79.37:443 vid-io-iad.springserve.com tcp
IE 54.239.33.158:443 aax-eu.amazon-adsystem.com tcp
US 172.64.146.152:443 capi.connatix.com tcp
GB 18.245.187.42:443 live.primis.tech tcp
NL 163.5.194.35:443 prebid.a-mo.net tcp
DE 18.184.216.10:443 ps.eyeota.net tcp
DE 18.184.216.10:443 ps.eyeota.net tcp
GB 18.245.253.114:443 sync-gdpr.intentiq.com tcp
NL 46.228.164.13:443 d.turn.com tcp
IE 52.49.25.61:443 match.prod.bidr.io tcp
US 18.213.81.188:443 sync.ipredictive.com tcp
NL 193.0.160.131:443 p.rfihub.com tcp
GB 142.250.180.4:443 www.google.com udp
BE 66.102.1.154:443 stats.g.doubleclick.net tcp
GB 142.250.200.35:443 www.google.co.uk tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.10:443 ogads-pa.googleapis.com udp
GB 142.250.200.22:443 i.ytimg.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 216.58.212.206:443 encrypted-tbn0.gstatic.com udp
GB 216.58.204.78:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.178.14:443 www.youtube.com udp
GB 142.250.178.14:443 www.youtube.com udp
GB 142.250.200.22:443 i.ytimg.com tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
GB 142.250.180.10:443 ogads-pa.googleapis.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
GB 142.250.178.10:443 ogads-pa.googleapis.com udp
GB 142.250.200.1:443 lh5.googleusercontent.com tcp
GB 142.250.200.1:443 lh5.googleusercontent.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com tcp
GB 142.250.200.1:443 lh5.googleusercontent.com udp
FR 5.196.111.73:443 sync.smartadserver.com tcp
FR 5.196.111.73:443 sync.smartadserver.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 172.217.169.46:443 play.google.com udp
BE 64.233.167.94:443 beacons.gcp.gvt2.com udp
BE 64.233.167.94:443 beacons.gcp.gvt2.com tcp
BE 64.233.167.94:443 beacons.gcp.gvt2.com tcp
KR 35.216.18.75:443 e2c34.gcp.gvt2.com tcp
KR 35.216.18.75:443 e2c34.gcp.gvt2.com tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
US 204.79.197.239:443 edge.microsoft.com tcp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.179.227:443 beacons.gvt2.com udp
GB 142.250.200.1:443 lh5.googleusercontent.com udp
GB 216.58.212.206:443 encrypted-tbn0.gstatic.com udp
GB 142.250.178.14:443 www.youtube.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.200.42:443 ogads-pa.googleapis.com udp
GB 172.217.169.46:443 play.google.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 20.26.156.215:443 github.com tcp
GB 216.58.204.74:443 ogads-pa.googleapis.com udp
US 140.82.112.22:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com udp
US 185.199.110.133:443 private-user-images.githubusercontent.com tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com udp
GB 20.26.156.210:443 api.github.com tcp
N/A 127.0.0.1:4444 tcp
US 8.8.8.8:53 edge.microsoft.com udp
US 8.8.8.8:53 edge.microsoft.com udp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 20.26.156.210:443 api.github.com tcp
GB 142.250.187.227:443 beacons.gcp.gvt2.com udp
GB 20.26.156.215:443 github.com tcp
N/A 127.0.0.1:4444 tcp
GB 142.250.180.4:443 www.google.com udp
N/A 127.0.0.1:4444 tcp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 104.22.24.158:443 www.cyfirma.com tcp
US 104.22.24.158:443 www.cyfirma.com tcp
US 104.22.24.158:443 www.cyfirma.com tcp
US 104.22.24.158:443 www.cyfirma.com tcp
US 104.22.24.158:443 www.cyfirma.com tcp
US 104.22.24.158:443 www.cyfirma.com tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
N/A 127.0.0.1:4444 tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
GB 18.239.236.93:443 in.fw-cdn.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 104.18.95.41:443 challenges.cloudflare.com tcp
US 104.18.95.41:443 challenges.cloudflare.com udp
GB 142.250.180.4:443 www.google.com tcp
GB 2.19.252.143:443 snap.licdn.com tcp
US 13.107.246.64:443 www.clarity.ms tcp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 td.doubleclick.net udp
GB 142.250.200.35:443 www.google.co.uk tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
GB 172.217.169.2:443 td.doubleclick.net tcp
BE 66.102.1.156:443 stats.g.doubleclick.net tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 52.152.143.207:443 o.clarity.ms tcp
IE 13.74.129.1:443 c.clarity.ms tcp
DE 88.198.153.60:443 moderate3-v4.cleantalk.org tcp
US 150.171.28.10:443 c.bing.com tcp
N/A 127.0.0.1:4444 tcp
US 216.239.38.21:80 virustotal.com tcp
US 216.239.38.21:80 virustotal.com tcp
US 216.239.38.21:443 virustotal.com tcp
US 34.54.88.138:443 www.virustotal.com tcp
US 34.54.88.138:443 www.virustotal.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 142.250.187.227:443 www.recaptcha.net tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
GB 172.217.169.3:443 recaptcha.net tcp
GB 216.58.204.74:443 ogads-pa.googleapis.com tcp
GB 172.217.169.3:443 recaptcha.net tcp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 216.58.204.74:443 ogads-pa.googleapis.com udp
GB 172.217.169.3:443 recaptcha.net udp
US 34.54.88.138:443 www.virustotal.com udp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 142.250.180.4:443 www.google.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
GB 142.250.187.227:443 www.recaptcha.net udp
GB 142.250.187.214:443 i.ytimg.com udp
GB 142.250.200.42:443 ogads-pa.googleapis.com udp
GB 142.250.200.46:443 encrypted-tbn2.gstatic.com udp
GB 142.250.200.46:443 encrypted-tbn2.gstatic.com udp
GB 142.250.187.214:443 i.ytimg.com tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 172.217.169.2:443 googleads.g.doubleclick.net udp
GB 142.250.200.38:443 static.doubleclick.net udp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
GB 172.217.169.46:443 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 8.8.8.8:53 encrypted-tbn3.gstatic.com udp
US 8.8.8.8:53 encrypted-tbn1.gstatic.com udp
GB 216.58.212.206:443 www.youtube.com udp
GB 142.250.200.46:443 encrypted-tbn2.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn2.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn2.gstatic.com tcp
GB 172.217.16.238:443 encrypted-tbn1.gstatic.com tcp
GB 172.217.16.238:443 encrypted-tbn1.gstatic.com tcp
GB 216.58.204.78:443 encrypted-tbn3.gstatic.com udp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 142.250.187.227:443 www.recaptcha.net tcp
GB 142.250.200.35:443 www.google.co.uk udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
N/A 127.0.0.1:4444 tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
US 88.223.85.192:443 en.negeenfo.site tcp
US 88.223.85.192:443 en.negeenfo.site tcp
US 104.16.13.194:443 app.clickfunnels.com tcp
US 8.8.8.8:53 assets.clickfunnels.com udp
US 172.67.142.245:443 use.fontawesome.com tcp
US 172.67.142.245:443 use.fontawesome.com tcp
US 88.223.85.192:443 en.negeenfo.site udp
US 216.239.36.21:443 js.center.io tcp
US 34.107.203.240:443 embed.lpcontent.net tcp
US 216.239.36.21:443 js.center.io tcp
US 35.192.151.63:443 api.leadpages.io tcp
US 35.192.151.63:443 api.leadpages.io tcp
GB 142.250.187.227:443 www.recaptcha.net tcp
DE 3.124.100.143:443 gonow1.netlify.app tcp
DE 3.124.100.143:443 gonow1.netlify.app tcp
US 88.223.85.192:443 en.negeenfo.site tcp
US 88.223.85.192:443 en.negeenfo.site tcp
US 88.223.85.192:443 en.negeenfo.site udp
GB 18.154.80.68:443 d2bxqnokimz7h9.cloudfront.net tcp
N/A 127.0.0.1:4444 tcp
GB 216.58.204.74:443 ajax.googleapis.com tcp
GB 18.165.196.54:443 dvwowtnmyluv4.cloudfront.net tcp
GB 18.165.196.54:443 dvwowtnmyluv4.cloudfront.net tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 18.165.196.54:443 dvwowtnmyluv4.cloudfront.net tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
GB 52.85.142.165:443 d39fkvblvwpxa1.cloudfront.net tcp
GB 52.85.142.165:443 d39fkvblvwpxa1.cloudfront.net tcp
GB 52.85.142.165:443 d39fkvblvwpxa1.cloudfront.net tcp
GB 52.85.142.165:443 d39fkvblvwpxa1.cloudfront.net tcp
GB 216.58.204.74:443 ajax.googleapis.com tcp
N/A 127.0.0.1:4444 tcp
NL 35.204.100.195:443 app.fast2cloud.com tcp
NL 35.204.100.195:443 app.fast2cloud.com tcp
US 104.18.38.233:80 crt.sectigo.com tcp
NL 34.141.179.97:443 set.safesendclub.com tcp
US 3.233.246.154:443 get-gx.com tcp
DE 18.159.142.104:443 www.opera.com tcp
DE 18.159.142.104:443 www.opera.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
GB 172.217.169.46:443 www.googleoptimize.com tcp
GB 104.82.234.15:443 cdn-production-opera-website.operacdn.com tcp
DE 18.159.142.104:443 www.opera.com tcp
US 216.239.34.36:443 region1.google-analytics.com tcp
N/A 127.0.0.1:4444 tcp
GB 172.217.169.46:443 www.googleoptimize.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
NL 185.26.182.112:443 net.geo.opera.com tcp
GB 142.250.200.34:443 ade.googlesyndication.com tcp
GB 142.250.200.34:443 ade.googlesyndication.com udp
N/A 127.0.0.1:4444 tcp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.180.4:443 www.google.com tcp
US 8.8.8.8:53 11199305.fls.doubleclick.net udp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
BE 66.102.1.156:443 stats.g.doubleclick.net tcp
GB 142.250.200.35:443 www.google.co.uk tcp
GB 142.250.200.38:443 11199305.fls.doubleclick.net tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
GB 142.250.200.38:443 11199305.fls.doubleclick.net udp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.200.35:443 www.google.co.uk udp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.200.35:443 www.google.co.uk tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.187.227:443 www.recaptcha.net udp
GB 142.250.187.227:443 www.recaptcha.net tcp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.187.214:443 i.ytimg.com udp
GB 142.250.200.42:443 jnn-pa.googleapis.com udp
US 216.239.34.157:443 tunnel.googlezip.net tcp
GB 142.250.178.14:443 img.youtube.com tcp
GB 142.250.200.46:443 img.youtube.com udp
GB 142.250.200.46:443 img.youtube.com udp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net udp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
GB 172.217.169.46:443 img.youtube.com udp
GB 172.217.169.46:443 img.youtube.com udp
US 104.22.48.74:443 api-gb.any.run tcp
US 104.22.48.74:443 api-gb.any.run tcp
US 104.22.48.74:443 api-gb.any.run tcp
US 104.22.48.74:443 api-gb.any.run tcp
US 104.22.48.74:443 api-gb.any.run tcp
US 104.22.48.74:443 api-gb.any.run tcp
US 172.66.41.13:443 cdn.paddle.com tcp
US 104.18.95.41:443 challenges.cloudflare.com tcp
US 104.18.95.41:443 challenges.cloudflare.com udp
N/A 127.0.0.1:4444 tcp
US 104.16.80.73:443 static.cloudflareinsights.com tcp
US 104.17.247.203:443 unpkg.com tcp
US 104.22.48.74:443 api-gb.any.run tcp
US 172.67.20.89:443 api-gb.any.run tcp
US 172.67.20.89:443 api-gb.any.run tcp
US 172.67.20.89:443 api-gb.any.run tcp
GB 216.58.204.74:443 ajax.googleapis.com tcp
US 151.101.193.229:443 cdn.jsdelivr.net tcp
GB 142.250.180.4:443 www.google.com tcp
GB 142.250.180.4:443 www.google.com tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net tcp
GB 142.250.180.4:443 www.google.com udp
GB 142.250.200.35:443 www.google.co.uk tcp
GB 142.250.200.35:443 www.google.co.uk tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
BE 66.102.1.156:443 stats.g.doubleclick.net tcp
GB 172.217.169.2:443 googleads.g.doubleclick.net udp
GB 142.250.200.35:443 www.google.co.uk udp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 142.250.200.35:443 www.google.co.uk udp
N/A 127.0.0.1:4444 tcp
GB 216.58.204.74:443 ajax.googleapis.com udp
GB 142.250.187.227:443 www.recaptcha.net tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
US 104.18.95.41:443 challenges.cloudflare.com tcp
US 104.18.95.41:443 challenges.cloudflare.com udp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
GB 142.250.180.4:443 www.google.com udp
GB 172.217.169.46:443 img.youtube.com udp
US 8.8.8.8:53 s3-alpha.figma.com udp
US 8.8.8.8:53 static.figma.com udp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.143.106:443 s3-alpha.figma.com tcp
GB 13.224.245.109:443 static.figma.com tcp
GB 13.224.245.109:443 static.figma.com tcp
GB 13.224.245.109:443 static.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.75:443 www.figma.com udp
GB 18.245.162.75:443 www.figma.com udp
GB 13.224.222.86:443 errors.figma.com tcp
GB 13.224.245.109:443 static.figma.com udp
N/A 127.0.0.1:4444 tcp
GB 13.224.245.109:443 static.figma.com udp
GB 216.58.204.74:443 ajax.googleapis.com tcp
GB 18.245.162.75:443 www.figma.com tcp
US 192.0.73.2:443 www.gravatar.com tcp
GB 18.245.143.106:443 s3-alpha.figma.com udp
US 192.0.77.2:443 i0.wp.com tcp
GB 216.58.204.74:443 ajax.googleapis.com udp
US 34.128.128.0:443 events.statsigapi.net tcp
N/A 127.0.0.1:4444 tcp
US 34.128.128.0:443 events.statsigapi.net udp
GB 18.245.162.20:443 embed.figma.com tcp
GB 18.245.162.75:443 www.figma.com tcp
GB 18.245.162.20:443 embed.figma.com udp
GB 142.250.187.227:443 www.recaptcha.net tcp
GB 18.165.201.24:443 s3-alpha-sig.figma.com tcp
NL 142.250.27.84:443 accounts.google.com udp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp
N/A 127.0.0.1:4444 tcp

Files

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8aea9a872995ecad888a6169d1107eb8
SHA1 f235e87aa95b960d7bea78804834202ea93e963a
SHA256 9c0086e2c5cfe2887a35f2539b2a250c35490b223ba43704e0f006d836bc2c6e
SHA512 3df6f356bb0fd634249114cbcf235ed5ccc433fee4699bb9278afbeafed0bfd694331c3eecfa9cd2654f002876f3e87725d235884fe9be7f32015102c1f6d256

\??\pipe\crashpad_3508_OISQTMBFNJFTPLNU

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 2adb43103da7a1fffda3948a8c4f7bff
SHA1 6ce8ff5aca96570f6be68cdc695fa27e97841178
SHA256 8dfae9c452c393919df1fd38cccd7ca4f0f68e2776b26c96d9add88054486281
SHA512 f92dc21000bb384860ae6cfd98455e12e7587cadb065c2edbf15adf340b743a7195b313797adedf3b2f49866d1e31a98b79c98641963ce1782ea0ed05295c38e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1476f843a2b58146a191c56b488c35e3
SHA1 707ae2b60e7c5de896137fe6acbb99b1b17801bd
SHA256 555ac9425552119ff5a5dd349c47acef5188d0dbcd3424c7388365cc9bfddf21
SHA512 9193d5bb69e917dc061b2de9c4a62163e93b8b72d90b374cfb10e89b638834c5230861aa4dcdd9114e40aa91311ef1b9a2d8c263a856c3aae2ff46dbcb69187c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 2e124730b0bd4a670dfbc9398b98adf3
SHA1 dcc9c7b00dc54f722360f36bbf54b9545656b580
SHA256 68ea40b5f221354639b0f05f101948bb2e5ac4fe19635d877d7ff27a53591985
SHA512 e43b390e952a143ee6a475090e67a1e7c6c6d9745888aa4426b549c68085e46ff76d9a0969a2a39f98958b1cd255f341342a9c6e7c63ef289b2cbd75d54bd24b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a99b8d0ce6f18980011e53b23ff4395b
SHA1 2c0bcf4b29b2697843b00df68b3b1622b854da32
SHA256 c7bc8c68cc1bd08225c9c03cddaafd3bf22154baeb378e8d4ae9f26c988b640b
SHA512 7abb4716995bc3f76fd85a7ebb76e4fd0383c59972bc0f1c75238ab00cc4f22014234f806af8c8a17d0d74cb4f916df783c808e0fcbce2c00aad96a46cb75e6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9a28eff7c3f77940a7c42fd86f76c31f
SHA1 91e96d6b7fd511d09e765656225e40bd7ca4be86
SHA256 360247eacb65d7c8ff98c812b3613445b0b98cf8882df00849df5c42ac030dab
SHA512 14ca951eec26e3c8f5d6d156447c67b1fd6cb8a120405768bc8ea565a85728edb3121a78407e8d0744c501435db6ccc814dc9218796c0b4372afc9dfdebf40c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe582aa5.TMP

MD5 cb602083e8cf657cd9f16d877b674e81
SHA1 1650bc00afcaa26c54a1f4ed51f792f4f536ab86
SHA256 4dfaac02aea80de1262ce0dd821ecb9fb4c6391f7c615d3ad6243e00f861a8f5
SHA512 668915ac4cf35c2cd1a387c734801f3ad37ad661bf7932b10e8dfe74a8625700320278f21cdc6335ea00b1ccf776bac1317cf857a7bc4cb58e4acce5b29c059f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index

MD5 ed2c7204fea6ca8780ac089e17f428d3
SHA1 968d63bb5fce0b7b3de471413aabd8a81ef36f37
SHA256 02de4c1acf541f691de6eb96ba073960c18c3586b1f581de2dc4a945e0c6d964
SHA512 24e53a3c41fc0a3c5a59f2e83a7301e075f99f3c27302435dad7b0c5da35a3e49090514c5c4bfe5d72f7a26a15d10f9410e2d50e3358efe0621a689c92a5f9ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ffc1e6aee10566b34a38a01143ce0d36
SHA1 6b45a5faf800be5c89dbca750a1f871dbc6c1c29
SHA256 5a8f6c80ca5c0449cec1bed2eddd20c3d5fd317a611c251000af50b6da89d8c3
SHA512 9543a83b700725b0fe906e163f279f3759356d7fef43a2ef7f1ea3e7b49279456a99242d7e3ec68f393de3588858313f516e9a8396f69589be728c90f825e014

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017

MD5 fa74ce2e6d1a20b8aecdab0106134968
SHA1 abbb7826857e354034a05aa4c6cdf96bb0cc90ff
SHA256 d3130c50b34f59c3ccb4f61c1c929f1e3a7694f1eb3cd6a1507d3d1650ffa3d8
SHA512 e4ce5adf16f03b26338c9224ae4a205da0b5fe124d62d8399e5df02fb4b412d490b4843459d9f99afdd90579ff26115c94f4665012252fdcd19790ae3635de8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a

MD5 8bd66dfc42a1353c5e996cd88dc1501f
SHA1 dc779a25ab37913f3198eb6f8c4d89e2a05635a6
SHA256 ef8772f5b2cf54057e1cfb7cb2e61f09cbd20db5ee307133caf517831a5df839
SHA512 203a46b2d09da788614b86480d81769011c7d42e833fa33a19e99c86a987a3bd8755b89906b9fd0497a80a5cf27f1c5e795a66fe3d1c4a921667ec745ccf22f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

MD5 c0399e6d4556acf02013416c3a3af8d2
SHA1 cfd275764c4aa78e272f0bc6d66b8506efda3c80
SHA256 faed6ef527975d8c81afe700f2cd3f24a4d4ae068705d460904dde292f25534f
SHA512 6f89caef920af72a30028c4e002f5504a0d7e40848fa17b48d2ea0854739df2b0eeccba606773f8347adf2784b4847f13d1431dd2d31fac49523b548dc11d1a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

MD5 65b0f915e780d51aa0bca6313a034f32
SHA1 3dd3659cfd5d3fe3adc95e447a0d23c214a3f580
SHA256 27f0d8282b7347ae6cd6d5a980d70020b68cace0fbe53ad32048f314a86d4f16
SHA512 e5af841fd4266710d181a114a10585428c1572eb0cd4538be765f9f76019a1f3ea20e594a7ee384d219a30a1d958c482f5b1920551235941eec1bcacd01e4b6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f

MD5 92e42e747b8ca4fc0482f2d337598e72
SHA1 671d883f0ea3ead2f8951dc915dacea6ec7b7feb
SHA256 18f8f1914e86317d047fd704432fa4d293c2e93aec821d54efdd9a0d8b639733
SHA512 d544fbc039213b3aa6ed40072ce7ccd6e84701dca7a5d0b74dc5a6bfb847063996dfea1915a089f2188f3f68b35b75d83d77856fa3a3b56b7fc661fc49126627

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c

MD5 54f844f341a1399676ea61613c242967
SHA1 a693603a0711c9922ef8ff61d0d08b637d162e13
SHA256 876734a262366197de87284a743fe17748b81abb6f6284eab35244abd3514c5c
SHA512 b831272dac5552522565ed6272e0362212d35157986059b889bfee36fcd446cfe500a0e067dfd021ec306b34971e9cff584e56ec45153fe6de3b677a785eff82

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d

MD5 514a68a88632b70bc4a69d0f587a4507
SHA1 c9d68d24d2288757fcb0c4ab9ff704ae7c524955
SHA256 be1b780aa77db37e6e6dd27d160f0b1bc2fecfa734177c21d9c335fdaba116a5
SHA512 08d1273559310c223695287eba2e74f3b8195b584e4a92c2d4b6bffffd4d2d6e40c79f1008620163782678e34be9839146e01959a088c42e66a3fb017c32a3e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

MD5 71d9e274716eab4983afeafd828936eb
SHA1 95066a2724fc3c844bd423d7052a08184cec0797
SHA256 691ebc4d195da2f898a839904e6527f525425a2cabba5a770852d9607fa789bb
SHA512 62978b587391a842914e4619bc94fe68166ed38151c73b71ceeb713fea207013a44e1d4a64d7d4cbefc7d7cab5f73738d7f17615d50525d566f349527dbf491f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e

MD5 dde035d148d344c412bd7ba8016cf9c6
SHA1 fb923138d1cde1f7876d03ca9d30d1accbcf6f34
SHA256 bcff459088f46809fba3c1d46ee97b79675c44f589293d1d661192cf41c05da9
SHA512 87843b8eb37be13e746eb05583441cb4a6e16c3d199788c457672e29fdadc501fc25245095b73cf7712e611f5ff40b37e27fca5ec3fa9eb26d94c546af8b2bc0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b

MD5 217be7c2c2b94d492f2727a84a76a6cf
SHA1 10fd73eb330361e134f3f2c47ba0680e36c243c5
SHA256 b1641bab948ab5db030ec878e3aa76a0a94fd3a03b67f8e4ac7c53f8f4209df0
SHA512 b08ea76e5b6c4c32e081ca84f46dc1b748c33c1830c2ba11cfeb2932a9d43fbb48c4006da53f5aac264768a9eb32a408f49b8b83932d6c8694d44a1464210158

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015

MD5 adf2df4a8072227a229a3f8cf81dc9df
SHA1 48b588df27e0a83fa3c56d97d68700170a58bd36
SHA256 2fd56ac4d62fec83843c83054e5548834a19001c077cdb224901237f2e2c0e4c
SHA512 d18ffc9a41157ea96014a503640b3a2a3931f578293e88cc05aa61c8223221d948c05637875d8e3ee5847b6a99341ea22b6a1aee67c170e27bde5e154cf1b9ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019

MD5 398c110293d50515b14f6794507f6214
SHA1 4b1ef486ca6946848cb4bf90a3269eb3ee9c53bc
SHA256 04d4526dc9caa8dd4ad4b0711e929a91a3b6c07bf4a3d814e0fafeb00acc9715
SHA512 1b0f7eb26d720fbb28772915aa5318a1103d55d167bec169e62b25aa4ff59610558cf2f3947539886255f0fa919349b082158627dd87f68a81abac64ba038f5d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018

MD5 7aaae9c625fffe537531bef0db48cf9b
SHA1 323207f66f9dacf232d705100ec3a5040fcabe6e
SHA256 f5e9963d2deed0c7ad3cfb0cdb6dcede13e5b3cdee28db99bd6d235f24d2856a
SHA512 8f85347cf50d5a05c65ff1e450aa1152210aed646270703b5acecfc58e73a537ac34ec7473e4d8388e8a8dea97e410237d7d4cd43058214ddea409362ca42582

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016

MD5 3e0234d27ae0a53a8c03368b0cbdd7cb
SHA1 659f3affaa2a1550b467e60fd671a49602b18441
SHA256 cfef1bc2c64dc87d5c0f043996db5ffdceee4aa91407b13db34ad17f8d271010
SHA512 7a31f322e0100d4acb74f42d6996a873cf5cabc05e0efbd86f15c2cfd841b61db06cddf68f627ebf7abb29753028a12cdecd5adf0b7981805b16f735c2fab1bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023

MD5 dc491f2e34e1eb5974c0781d49b8cbaf
SHA1 b73ca9b5f9c627d49da4ecbc3455192e4b305a3f
SHA256 f956049f0d96d455a71003eba400cb94f7067bc52620cd05b81006ecfdd438d8
SHA512 5c9bd0d5c93a05ca76eb727328a0fde40f2be7fe53b6b6c9eb260e8f20f92cfc831fd4b46f954d85baf151ae8aba1cdd6f76b0faf96217922cad844c905f3645

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a88351000b4b8ee1f653cd39dca27eb4
SHA1 449eda7cfc75591c18dedf3fe1fa21bb785303f8
SHA256 c5baf90bf98dcea97f554fe6155d62cdcfb2f9920fd34db4d27975b7956ba255
SHA512 c72295045d36df33df480626cc5040a9f2f52224e1c36cf8e5b8bbdd9b3cc89291c7186f988cf2c8b706012f47d0ba7f10d244d955358ccbcc37b44c85054f25

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_codesandbox.io_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_codesandbox.io_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_codesandbox.io_0.indexeddb.leveldb\LOG

MD5 a57f2150375188d545af780a47404e2b
SHA1 b190805aee231454024235b3a928d48e153d5536
SHA256 a8f64ae11054c6c175995abfe9a7c5a1b39f85dec1a082b894ea0661b0876c19
SHA512 6f3cd47468a60bd49d9f3b688d96a2fb0b704d8f123fec26525c6736fb543f1b7010cf8ce37ff01be4c5788ef1132ce8a06713ccdf37b0b53b36c3adf6a5aa44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_codesandbox.io_0.indexeddb.leveldb\000003.log

MD5 bb17c63fd49cc650ea9619a1c41bd926
SHA1 95791dce6a0ab8fa65b1899c7fc8006d5ae15beb
SHA256 4028ed6979bb81dfdda740e57b75596f00b364a832f91c2babe2a2814bd8c88a
SHA512 afb272b11e3888843e0d5d4f30046565461538967b8b024f7b396ef1cf67414041cc5f1f897a56235d571e53721c206fad16bb311d02903becee11c6309b762d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 87427af4e069a99df35d7151c9ab4010
SHA1 d0f921751cebd1d66c9ee0fdd9ce0c63d8b3e1ff
SHA256 70ad025d625f2cad5f7dcf6117bce36aaee2c846915916990784ef69a4389923
SHA512 0b4c660bd6ade7d2d796cacfd1dcf98557e91d9baabeeb7898bc496c2230e96e20dedbb361095eaf3fc949f284f6dd618f4eb4ef8b140e79ff961820e9adcc7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9f184750f73ddad7451b78b412b0371d
SHA1 00901d75d447ae9aa0e455f84559d2ccbabdf4da
SHA256 d386dd9e3523b94f113c38c37c385455b984615aa998bb57737f0433f7edc877
SHA512 bc64d0552b34501aee437b8195fc11e9635373397f3904443e59ef68ae9d36f28264e7b016530ae4222504d07055ecedcb07ba2fcdb0ee71d47540bb12a3d851

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 d5fa1a6b9955abb42f2e4b8278a856a5
SHA1 083978ebf8274c434c0264c823dfafb8b10278bf
SHA256 f385c1dd19ba98fff1c93f0847eeb379a027691c4155f421635049dfca561244
SHA512 867c460de09e9b3c5484b828790d596bbc7bbf1cf463b1549154e98bd7b1cc4698496d70431762e8ed7fb5bf8bacf92de26ef93291b84b950d9d71bbe88ec509

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 2b9ddf1608ee272c2076c764561557fd
SHA1 212fd6b71280eca7db8b7f4cbbbf875acb843f6a
SHA256 bfec8d2d1ce8104577bcd5c7d370ee873f7e148592e39dc2e5ca40ba5d6237eb
SHA512 259908e8d78d7a6393014a88527c27816e931e6520ba7ef1feeafb28eea058d49a374112f165125a461e7a3eadd02f9962983bec240dbc3721305efd35899a34

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 cebea70c47f2b7b5cc729ece44ffe0c1
SHA1 1b9e4a74ed3787cddc4ac6cbd3e272f785303e58
SHA256 11dd0850dcf5c0c92e13c0d3bbed889ce3a599f8fe50fe9a5928f6ee5a4698e3
SHA512 a8e0cc7c0dbae67a0feb800d6d296a63c0f0a21c25bc73c4800e92d892e8e77cbc954d963d7ec7872299a733878d0ab748803c2637bbff32df4cab685e70082a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\9196edfa-e4d7-425f-b72e-d1439e7dfc4d\index-dir\the-real-index~RFe59044c.TMP

MD5 3efe017a778fd544dd6a4537e0efa1aa
SHA1 9c4247c3c1c600d0292994c4f3b24e94022bc294
SHA256 342a1e562a5e3a730359316e73dae49c0c4660b9e64b89937052e4815e91aca7
SHA512 c94cae381eb38da94347829148ec8a49e9d41ead9adf17b77ba2fe5f62404ba0259f65544354447a6311667766772bec3200b7c7f0a03866aff22bd8c75e96ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\9196edfa-e4d7-425f-b72e-d1439e7dfc4d\index-dir\the-real-index

MD5 624a92749be57a424fd5a85b068a905b
SHA1 2c354a57a80e6e89dff681246372e17429bd2486
SHA256 5caec3652c1ef2f48371d77e7fd42735d0bd7e28d090b12d823feb99b6a3921b
SHA512 0f4f2241264bfa17fdcce6994d8a4a381be5339d89a9d8c86dcf0765548c9663e1dbb656dd66ee2a30b696b95a2e7c06052a761aefc6669d149208b662369e0d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt

MD5 6ad5c9a39fd959df415d450af3edc089
SHA1 15919ee0da26143107d5dd4d14ba81bb7277234c
SHA256 b1280b4b0e14372fd28561ecccfe995bb4a03e34ed899674ae72658204cb14a5
SHA512 19887878f8c49448a485a681f09363ff5350d1bcb2442ea4d7f524ac17321b2b749b0824ec6b1de7018b294c078be4019f3db553a6c1e39d71db61f906ca57c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\c11ae81d57afa0385d189aac5b8586f0785f3105\index.txt~RFe59047b.TMP

MD5 0a5b097704e5aa9ae8a692218e195808
SHA1 ce3ecfb2eadf8b2403f10aede431f5db8eee08c6
SHA256 88bfca6744ca92dbf34493cc6e2f4f33d9390feac7c0554f0cb0c6722cf4c2d0
SHA512 399c71d82d1d572b92f8ecf063d63501f476b81193b3196f72061d7a847fbc8d48cf317f17353f1fd859c1cb96ba51bba26988a627fb1a8e2f12c0f48dd6411e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 46cb7641be727eb4f17aff2342ae9017
SHA1 683a8d93c63cfa0ccbf444a20b42ae06e2c4b54d
SHA256 944fff1dd6764143550534f747243ef7d84fdac0642c94135ab40f584520f63e
SHA512 dc1b5f363e90abff5c1663a82764296922c842820d2819805e87da6da1081f1b5f2d8debc83ac34a26ce289b7b22588b022433686b19b039074ae184968b9fda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt~RFe59424f.TMP

MD5 0bd08e0c6b0e8915a373feb35a52a64e
SHA1 334df4398d66dfed153ce439cc8098956d0dc755
SHA256 baa62919025e1f83a8de2c1b7d0f4184268dfd682978dc466793a9a62777eaa2
SHA512 9bdb9e549a68f70e1a31b66eefb83f5603e31f4cc672eaad4e5597c1ceb5ed12ab39de0eb7f2aec272d013b411bfbf9c88c0bdfde87669ccee7c0df2dcc9ffe6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6b46a759fe85694eedf5925e56d518e3
SHA1 2d657530821ac8a2e4752f5c65b47e76ff393800
SHA256 4813929b92a01045e58f77cf61e063fe4c086abbda7d3de93a965b07f1cf6df8
SHA512 8570f37b17526b2ca5f3fc862c3f56f80d83340a7d4e06c14633f2d643f1e9767d60bee61f332f24c16b8211efbd0d84b66dda1c891017e7aa8bcf20f2fceaf2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 92b4e3b50e9e82a14ee199b9d6a62b05
SHA1 be5a5c643901bc9e6248fe158e5f385ad149598b
SHA256 222daa28e7953be9bbf6aa7cc9dc0df6a3478028a9d47dfcb4f04594d50d36df
SHA512 bb51c3c8022dccf6b422ddab42ae48e5480e20b3181cfee66bad62de6aba00004668fca7a09884ecedc5dfd60cfeb9b64f3cce1b979d68ec6a7e5fb60077d57e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b320c993eecde8c51e532ea66d256654
SHA1 2c85c13884aba93de5ded3bc10e76af3571ab5e2
SHA256 8906e6c1188a9b235c7bfb9c245bd19f2f1024007e6d848944d3392cc42e74ce
SHA512 c05bb3625ea8ab3994c61cce0b2b5b4620ee3e8400f06be9805ca29f0205f2b58e7984ac0cb07a7cbc48f7993274e5d82dc6185285a10bb0b212a65b708b15bd

C:\Users\Admin\Downloads\setup.bat:Zone.Identifier

MD5 0f98a5550abe0fb880568b1480c96a1c
SHA1 d2ce9f7057b201d31f79f3aee2225d89f36be07d
SHA256 2dfb5f4b33e4cf8237b732c02b1f2b1192ffe4b83114bcf821f489bbf48c6aa1
SHA512 dbc1150d831950684ab37407defac0177b7583da0fe13ee8f8eeb65e8b05d23b357722246888189b4681b97507a4262ece96a1c458c4427a9a41d8ea8d11a2f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ee9830b5e7edfa12a3a06823a3647168
SHA1 b2f3faa9fecad419c004649bc5829afe076d5bcd
SHA256 24f8ed372f559087f17025d9330b308981d6356523cb04ff24cbf4cb2cc94d8d
SHA512 945d58a590cb09b2067383471f2f1a3837605fc57cad19377d987bbc531808e725986c0913e86b076947d94b9c5a5aeb0705987e8faccc6b078ce01d68a621e7

C:\Users\Admin\Downloads\setup.bat

MD5 7b106c33260825e1f7467c6637397010
SHA1 0fb8416d8f496477af4dd39639df02f25d8b1c4d
SHA256 c80dd7d9d88ffb001787b135343c1008a1b68dbcd4e422d61cfe2164741d16c0
SHA512 fceda68edd2926a82ac5159a9a64f8e2f42dc5da07875cdfba5391cd2d21dce3da8a4fe3e441d42b28353dbece3a648f03f4a84c32ad76ee761d6d7dadc09859

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bf160642b9f8439386ea128022221ec0
SHA1 d3a53ac0afb7fed21a90bbb3a73b1173461ddc75
SHA256 d2509a914320aa1d94b9819e8c3338e60ceb331ee692ac20008491bcb56f6a90
SHA512 1d96bfa16c5ff87901e87cde67781908b99ad10c74609ed7e7f16827e5ebf89c60d3d973b9ff4448b50868048fd4139284e995ac0b1d950acd4ce6698bff6df2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 01267c408995861a04bda3ecf28ab6dc
SHA1 a29a4a77ac6f9dcafdd90e6f84b8a49baf4ecff1
SHA256 a4c202c22c8722605b870337cdd3c31115d67752dbd4b9b0a868f70c2bfdf89e
SHA512 f0afa474c430fae4d6c59cd1c0f7d2719fc9554d2ae1f9519ed34b5ed86cbbf09cd9e1c1caa9dcb43cb46c36548269d894648929f56102939f13e743ca51803f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 aca2616a1c0ef892828b6f8c747d2def
SHA1 2539807aa5fbd7c51818cee25b26e3214f226457
SHA256 78125cf6cf9e848943ae154c18c012cd955a6cc3c62ea6bfab09bcd6837065ac
SHA512 682901aad616d098171a04399b119e0d232406d91daeb432b7427648785acfe7e43b17b0bd751b997e5d9bf48bc1b929ac186289e5314e32bb7b60d7665c713e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 682ff716e69471147f7a0e231efe86ac
SHA1 937de827ecedfb18ed3f399ac647f88f2579c6bb
SHA256 11e566a5d7934e7f13ddb561000aafff386430a3df22a36424f2101e9ba76662
SHA512 4fffcccf9a78aed772e46ff48f817d586934c8d46434535d25b080c4fa264e018e6c2fe389d8d42b1f3b911e402abbf00affd9b890b77ae68d7074a31ee3e93e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 c7f87d79c624d8c89e195268ee81bc2a
SHA1 e0a8ce5f50fd83e537453539d428a39733f02681
SHA256 22f6c23f22453c1d5bda3746f6cd404aa5707ae13be7ce5166fe7bf06a81184d
SHA512 cce8b562858465321a1d15a4a73a13614eb0b3ce8810f6130216546d2abf2905700d6c25f16ae7d2896a3c57c938d5c57776c70da7a12cb22740cff7d095e7e5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\Logs\sync_diagnostic.log

MD5 5f59392942ffc3fe221e9d26a9bd809e
SHA1 e548ce9516954f753ab07e91140d461d611f2fc8
SHA256 3a30389a8cecb1f7c3aeaa39f4586662344d0589120a7b5ae8e21cfcfc0d7bd3
SHA512 656bb8f977c96d51ff630c6c92eebf97818902b7b1d5e401244c10ea86d3f3be0c5d7a74242157cf900a098ccd7f0ba79ee6abe8d348ee0a61c0873414304354

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\HubApps

MD5 40e2018187b61af5be8caf035fb72882
SHA1 72a0b7bcb454b6b727bf90da35879b3e9a70621e
SHA256 b3efd9d75856016510dd0bdb5e22359925cee7f2056b3cde6411c55ae8ae8ee5
SHA512 a21b8f3f7d646909d6aed605ad5823269f52fda1255aa9bb4d4643e165a7b11935572bf9e0a6a324874f99c20a6f3b6d1e457c7ccd30adcac83c15febc063d12

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DualEngine\SiteList-Enterprise.json

MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA512 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\DawnGraphiteCache\data_1

MD5 f50f89a0a91564d0b8a211f8921aa7de
SHA1 112403a17dd69d5b9018b8cede023cb3b54eab7d
SHA256 b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec
SHA512 bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 87ac273b90ccedf80277ea5ba37396a6
SHA1 a24c551d53531caa6d266f1decdd3322d9f53e35
SHA256 66bfbf54b16d16f01ac45cc6b9a3dca4e47f0c5bc3abd4b7d9eaf447afbf2f4d
SHA512 f7469ab5e58dafa56c1f501d447cbd1795aa157175c42e1757f7cb75461586893a393870937fc3d16711330dde2341e5616b270448b25bb87f3364da6705c457

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences

MD5 bd018b9420980a0ff3dc888def707e18
SHA1 d653e469d1fb99b91c61977c93b039eaf439c769
SHA256 a2a1a723dfec2505b344e3112446317c3d50e7c4baaeda9cb741063886729834
SHA512 82a84a27049cf314a7b664cba195b653cebfa14ba9fe7bc4c395c111a6b03db1a3101810a0b07477275bda48bb3bc5448c710838fb162ef8f12efbcbf617ad84

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 d29f317a9e9358bca1578701d3270584
SHA1 b5e5636c3203f66c461b7a30508785518d260ee5
SHA256 d950a84e4d6a684eaf94ce5c9a6ba8f7722e3893896054f1ba880db6e3231903
SHA512 a97c7a690d657d10e900aa85a524916d40f313051f86d164056c667d970ddf34f8b95f549993f7cf45cd546d3fbb58e44c850b014290a34b24659b06db8299c7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

MD5 348aa330c33ab0e1d453aeff0b82ffba
SHA1 d8d77a564eb323824a1b1406de7e78a27321e64e
SHA256 4ed7278f6e071988228644aa53bff03ed29d761a1c812c5aa7a461e602a896a7
SHA512 8b22352c1805cd1fbe23a96fecefe9046923cdbc279d496a8d76dc549cc424ced7ab99aaf8e251cd39ce2c29a2ff3b5091ed83cf6f04b4a91aed43ad80eff77b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 3737cf31a4b81f7aa7dc57e56688b60f
SHA1 0e90c1fd93aaeb9c8da99520f4967b0aa93c600c
SHA256 2d474e2ffb0c29be97923786df6a358fd715f793eeb87d06a1d608d717aa0327
SHA512 eca1421406deca7f510c79ad9fcfd24f6ffb3a8b24f50fd0567d85c002458c718d7bd5078527be4d4fd433baf4bfa8518f32e2613d36ba7c3deb63d362a2b035

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Variations

MD5 961e3604f228b0d10541ebf921500c86
SHA1 6e00570d9f78d9cfebe67d4da5efe546543949a7
SHA256 f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed
SHA512 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

MD5 3e45022839c8def44fd96e24f29a9f4b
SHA1 c798352b5a0860f8edfd5c1589cf6e5842c5c226
SHA256 01a3e5d854762d8fdd01b235ce536fde31bf9a6be0596c295e3cea9aaf40f3dd
SHA512 2888982860091421f89f3d7444cacccb1938ef70fc084d3028d8a29021e6e1d83eaef62108eace2f0d590ed41ece0e443d8b564e9c9a860fc48d766edb1dc3d9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\LOG

MD5 15fed0911097e185de5c84c4ee2240ed
SHA1 baa3c11ffc18b4c856ae175b01ffe2b2b56b0e0b
SHA256 570ab3041082d6f401cdd36e4c1e03cea3bc563a110b973291319aea7f373acb
SHA512 df7881268eb3fd3d44d4acc4cb746eb393b396dfb325f34913b45c8803911333e59ac002e3032c576348a7162e423181dae0826d36fe2094987f508cb90de95d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\data_1

MD5 01e72e44fcb4fede38d42843e3e067c8
SHA1 068b6f21aff9bed7207db4a2dffdf13ada282a55
SHA256 bee0b83922e2b7e4fb1becc889c542da4b024e2f70c5aded04aac779e85d462c
SHA512 c796d03d117ea8511b5b85fa1a7e8bbbf2b61ff09857738787cd93c7f42cffc19a94fbdc5ba45507243fbababc3d45dd3235bfb8c442cd760ffb2865438792a7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 02b98917f4c0a30d3240f8fc6f38e312
SHA1 0f6c72078430331f60a5545fd2107fbc24e26e7a
SHA256 56e89ecae66a4effe35fef140aa76a263464d3552ca09c3d97fbdfc554384fbf
SHA512 7571abe55d3d5138bc323dca081fde2bcd2f484253a30940c1003aaa5467437e966a1ffc8e116a7b769f40b6f2e037b248c4f8accbb78a966015ef04d1cde59b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

MD5 9dbe03ef603ab52b1c8b91545f88726f
SHA1 b18e3b28fd3fa38e97d66fc3b31dc1509e5395bc
SHA256 6e41adacec6f926353c2fb1cdcb76458ec194b0a7ea9c594f5cdfca8f65147e1
SHA512 7ee762d0c713d354e13f05339404a65e3526468117b15ecfc8af1ca266f00187ceee90455658f941e38c8d121575f114ef6c6c7f0dfbdda74606692af31d3a97

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

MD5 e1523fd9f2d23903129fb8cc34177187
SHA1 5928b8c18c24033ad8925a0b5d26e292daaca384
SHA256 09033b5270cae7b04a2bddb99f94d9876565dea459fe8e5e7ac77a70867f227a
SHA512 f01b7310e494c8b4fc7ea3aa0f39de4cb7d7988972e643be9ded385393fcc025f31b6f156ee88f07c1be27da52767c92cfde36b417456526430e71570f024d2a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

MD5 f2c314b79c47e6008bb36052d4c127c7
SHA1 eae0c95d3c58f6f971fbc19db1824e22c844f9d9
SHA256 3f5be0685e5fbfb70444ab401f05dddf29b2433dd2ce4fed61d559b40d69d72e
SHA512 929dd99f012f6d0870a4c2aeafee2a2d1e579f29a333f87b1c97cc898939303e6128c899e5c702443df4f7d5bd44b7146a479e53c8c6fa1a0b75416877cfd67c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

MD5 45c321e3a9345824f72b9caee96ff953
SHA1 8f854a01ed023452005f3f846a2b1c754839bb02
SHA256 59c9049f44cbd83be5a1639a57470411719f05e8bad07c84116733ef849212f9
SHA512 38d10fc8bfce491939c56dd08869cccd0cf3cb89a850822ad6629bd966d89fd391801f590657bbb0cfe1b01a12e0b2befecf266e5a8edac59f4a9ef530260a60

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

MD5 36ef6c99731061f116b03bc361d44969
SHA1 4c516f406cd7eb3b85aadc68a65a152a408b2a91
SHA256 63d90220aaa07116eeb909cb49a27d9035beb3b8e1f60bfa36cbfbc58c16bde9
SHA512 1faf554b4b5f5f5c6533502cd4497b0ee43a1b8a115a15271f4c52bbe988837df57947f5af68a977c1c596e97df8f0e38c4d0e4e842d688c4ba8b456ca755e92

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

MD5 5322e2b350c7fc044c1898cd59933b4b
SHA1 b219fb16cff06e9360336716431d0d5c1ca91890
SHA256 bbaaaacebd154c53e7f7e380d7b962c4a2f85d0722ea1accbf7bec8b5c365795
SHA512 65ab7bae27c1dd76045bf4a3e112ed98d36357ebe0385986cb4b9a5f61792b77d4a642a2180d07e8db910c1a83bc4582f797ed0308ce5498e9ea3b1b535b464c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\default_cloud_config.json

MD5 18261eb12378081f939fb9415ca0c9e1
SHA1 20d4ff782e17fe45e71c3f9fc60a94655f72ec7c
SHA256 12bbeec9a0af9e3ed945b28b9b8ef89b2f897768d1ba3ffd6f3fbb42fa5bc556
SHA512 fef634b4ce77c2f36ce1bdd63e8ac28e76cd089f0bff33f4425c757ddf37fe9fab30dea7b5bb51c91eb27012cf78800e03643e13d51a25bf624ce58ab3488a80

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_3

MD5 63cbe94417330ecb95c49296e66e7280
SHA1 65acfb29d169594ddac00dc0d790f2f0df36db8c
SHA256 c507d9848da94699cc5ddb0c1838614400167e24c7d8f15e221b45a2208ee599
SHA512 71963c6bc54cc3eb747e529412e918aaad03bfbd85ae27ab2128fd89557f304621f83e05fad7c0e511bf19cb5489c051b4a498140669355fe90328b76794427e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_1

MD5 ce6d0e4d8689845dca71cce7d2b58e84
SHA1 0adc4f1987019ae8cb2a8704814230f572c56bb2
SHA256 1da6d559fc4660e696c9342e89410abcd0a5143cf9c166885cce39c3d9609953
SHA512 333eb0992f1bd47b46b5347f722c427d3ab315f4ca520fbe155b91654062ae530640498524bdc89a45e7b234e493d1aa501dce2a2aa7bab69fd5533c538ab651

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\data_0

MD5 c2248fe2cea6439344c0b9b44d6b631d
SHA1 102341315c6e8f9f4ee53f4211a6b8b871d5139b
SHA256 b61eecaacbbbea41fa36d0b567da293a9ee30b34ddd217600a4cc78c504af4e7
SHA512 bbdb3192e2add4aa3e80520ea5e2e81f9a395f8c6885fd82db1e594f97882671495321fba7d38e2e3dc4e642dc7f6852904eeb8d17edd47b7af4c9389741c84f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

MD5 622e6cf7f63ca7f7093d166706912359
SHA1 749c910b41f9fedbd85ecf3d7ae0fc4833b157a4
SHA256 b0db30ed7294f4c62614954914c97177c5f450cb6e03c8373082f246b322b604
SHA512 285b6e89c511f0df55bc92731d6fa8a92412e9615a26aa81f52699207c6304b667e63ed6398c14471478d7f2c25f05c116ba9a18ccd5e1c95551b056f6b00905

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

MD5 d866fcea7890bc4ff328107227aa40dc
SHA1 9343555ce510733dc0a5f86ed3ff4d48776c2882
SHA256 695edfc3a3b3fcb7b56e8c1e16a604aaa1d1b54402c82873bb0e98e63b3e2d86
SHA512 73d5afc7616ae4877b0fd1f4e123c096b69fac4aa4cc0caf5f15430f5ae77ed964bf6ae4d5b1dad4e9d91dea9c3c996a40804f706f1a20e699e3e2b6a03a7c45

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\50c6e109-0054-4347-a1d8-68d09f69d79b.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

MD5 7da51e4d30225c24f43b742b6d6434e2
SHA1 8b95af9b15c43cc161b50c4876056883cf64d39a
SHA256 480375a8e79f16698af1d72be0ea6f3f34d62f44f6c881df80cac54854a16677
SHA512 6ea25f8e0a91756b968a1f9de487f9bae5bd0ff62095e4efadba47ffdbc6644818c2db9059cac0ecd352e4ea1f7f66dc966bbe3633a4e415b1b880369640153d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 9436affc97843765a966b3568fa7e5ec
SHA1 7bfda74bb30589c75d718fbc997f18c6d5cc4a0b
SHA256 7165713d3e1a610399471a5e93d5677508f62ef072c1151e72273bf4bd54f916
SHA512 473ec3a843c33e18d6d194651fe11353fcd03a7959225faeabf8c77484155ea6a7bccb72dbaf2093ed53c408faa3be9f6fc907f7a5ddf8223375f9d09b504456

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 20a5a164ba2dae0410b9b313e866cd90
SHA1 f54a317d3ec70e84cff1adc5539efe4e5d73bcf6
SHA256 9af9b0e7af47ffd8ad17c4eb49c00186b3d8f17991864c9d7d96b776693d6815
SHA512 5694424746d343340350cba7789f42a4ef1d0457a7815aa78fd9f20c541123ee5b525de86390f173963d70a2269cf8efe347f9cb56a80271456288617f62af39

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 579fe02b32381a1877790e1ba1d39266
SHA1 fd7540baeee9e4c484e81c095575ed4e2613fc1b
SHA256 dc352ed363c164fefc19e45f28d34905f15cda542c58e2599e834cc4eac93fed
SHA512 9716c3fc290f8b768361274c4f91576a9f7109f3edcd26f174a1c5d432d66a1ca562729534d56061f7370d08ba62465859d0e161dbc1f24cc7db04fefd8bbdae

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Sdch Dictionaries

MD5 20d4b8fa017a12a108c87f540836e250
SHA1 1ac617fac131262b6d3ce1f52f5907e31d5f6f00
SHA256 6028bd681dbf11a0a58dde8a0cd884115c04caa59d080ba51bde1b086ce0079d
SHA512 507b2b8a8a168ff8f2bdafa5d9d341c44501a5f17d9f63f3d43bd586bc9e8ae33221887869fa86f845b7d067cb7d2a7009efd71dda36e03a40a74fee04b86856

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8cd038fb0dd3df7fce9a411ef2dd3f27
SHA1 980d42a71088655bf84cc12ad8e4fdf1078de5da
SHA256 9d07a0598b9259e1e158affef7e1a747dc7535ab484e32a11791a9eb3500a693
SHA512 a51f602cac7209a2dddb81a90809b58cbf196e577ae0d2bb0cffc778678f4f09bc3dba48512e23cb5db30cc699d131f739c96e7ed348505c4bbd2b1bb46beeb8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\82addf26-e437-4cf1-9d29-1a07c62eea57\index-dir\the-real-index~RFe5a95d9.TMP

MD5 bb5d061fa8fa980b88771e7593d8a5b8
SHA1 d4cfd8e254f1ea53c925d432287a5cba1afdd0ca
SHA256 724a8eeac91a98149ebf9767488791af36144dfc824d17121c213d7c06325292
SHA512 234d6185d59769981ded465406265f39baeeb6b667e75c0aeaee220726436ac2f2d34cf4e518cacd3c9b91943d9c49e0c66eb990013fa0ccfb93abc2ac9b3e85

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\82addf26-e437-4cf1-9d29-1a07c62eea57\index-dir\the-real-index

MD5 e1382642a113af3033b83ec61f4b2ad4
SHA1 c2ddb2729415f5040fe7a0f30de9ad163f56ef04
SHA256 996ec4f341ae5f99732a142f3084798571606720f3a2b463163a9057ee566765
SHA512 04974d3dbeecfb873eb1d07e383cfba42b3cce9cbf8b236d0e73b9633ca570ee6bd6dcb5e17b0d7b790c5df6f61b252a403af0f82c7de6816d8defa2b53ec805

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 78d7b788899556453c3578a70d44e3a0
SHA1 47aea2fc92019b153fd38142fbdfb4222c5ee1ea
SHA256 c22893f10f959657e5fced0d19c1770c2de7a3c078df0cbfd6f0cdb884f492f1
SHA512 05710e7d32fbe41ebf1651084c8ff31b7d59a0c4505b7b21c0e7004646ca68ae50cc34d6dd305a15db028c11c53b613a5d67bba57983f630d182a2ce1404d7b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Breadcrumbs

MD5 864c1323281e698087fb5c01e787232f
SHA1 dca3a4e86d1800ca7a83008aa065314d0ddbba0e
SHA256 db62a45e7d7723dda5082dfa2a33cfc359a1926209dc496d0fa7c009381cecf7
SHA512 9f0f179c48a1fe5dd376590c4d3254d4d774d7baf0d71c8289232e1c5ff9ddd084f7e675d2a3bbc069fede782178caac0c3d88b2f4576baa4f7f6870fdf142bd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\index.txt

MD5 7765f2aab7ae11c3278ded6dfca06cd7
SHA1 30f6a3965910343e7fccd3656d5b026fbb86b431
SHA256 0469a2a8238a4f020c6b30242316755d9d36755639c42a977754d127a3eebe36
SHA512 03c8f5578ee87c32d54fa46912e3439035c6a28d0826f47e7b2a248b6d1770443ca13f49507bb100a0c98f5eb85d3fa6734c46ce991cb2154f0b0e1275a6839a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b579ae73e6a32091f1c0b588ec60a208
SHA1 fb15134a9476d7c718cf81524aec06a8246a0a79
SHA256 af010e349225ec3903b6b26546efe54a9d747776eb8d7e1e794ed8c59f5347e3
SHA512 6e939c6557f7e929de5b9638c41105446006c12edd35e3ede2f75e95a5286066ef021c971e166be6f640b86e18efd788ffd94fbc73fb713baa6835bad33da467

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b38037288efd0ff027f5e4971825384d
SHA1 ad840779c09770f4101b87f951f1cb9b6a615ceb
SHA256 dfd566fbe0cbc36b55cbc2339d886bce08c17fda7a35abe1a326acf4538b3c08
SHA512 6548c8f4580a399e029ffabc93a23a67d192ad6f57db5cde7e08b91a43f86cd8154f0c1a6e415d905effae32da768fe7547ef082a82262f3690f4b9b9366e681

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 7ada081a53243ad958ef0ddc64635404
SHA1 5345762b6597665aff26af9e02f855551c57b3fb
SHA256 87b1ac6459e7d3d0fb9dc39538f4e7ff15d5851110eab6afc9248aff6a90a4c5
SHA512 129633b629b7eb1472f8dba7b26ea2bf0461d42c7cbd257946ba8789888eff4a7d69024e431cccf4b7fa848908623100068423faa0f918b5302a60625a3f204e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 0f774f2cc353b7a84222382747deed06
SHA1 3d427ea53dcea33312b5016eb5c1531cd449687d
SHA256 226ad0fabf77dcd0993eeb63ebb7aeeb37bdda5e140ed1f3ca2d9f3b06051f99
SHA512 2f858935e5a99004f68b95bc9ac5ca9c16fbed57eabd294c23b1bfcd9977be98db04e3bdc1be61f0817f133d07b67819b20a42c7208723d1f854c547a4cf3737

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5b3da2.TMP

MD5 4f04d5d7e04c3fffe799efef0a12686a
SHA1 78db1a40a531a3a65e75ed253192e5bf849e52ac
SHA256 9911e7d69e7209864717bfd2fbf48b93a61407dc39203cb109d5b9e09f1a967b
SHA512 39b0d6d28b09ce8bb7d433ae8b953e33dc8e907dd9d116bd52a081af0da16f76130ad682154c3193bff77e8e3553722a0760cebf33f131e62971c876d8363447

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ce7679238e450d91f518ba73aa80b83f
SHA1 7ab6e7cae63a7646190d2da063e3055c0b08235b
SHA256 a772a984cfea987c0580a1237525f55cb902b81d0c46c19ae8be83b0ee41b221
SHA512 d12b2c9599c304b5a637a13d66434bc521b60fbcf742b8e84339f59375b117127c4586cbd122c70acc412eb58765b4396b0a5c6af7d32831194b7c19ab7c26ce

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\82addf26-e437-4cf1-9d29-1a07c62eea57\index-dir\the-real-index

MD5 0c1e23ca05cb1c358734554231015c07
SHA1 25205d0e61db1976a05b410e4ddc085fb6c1b489
SHA256 68a3c20bd541d47abacd62a466a1dc7b8297314e6decfc19b115fd2f97b611bb
SHA512 8b649f2933dac5b005dabdfa9dd4069d1a3eba267fd5374bbbbe18101b49b3daf4a1075ff156335274ef26fb235b1e1de81dddf179fdd727b63ef4e9293bd736

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\3cedfb74d44f2e84198d23075aef16c34a668ceb\index.txt

MD5 73698ae5d33a38529e2de3767ef3f5e2
SHA1 ce8bd40f5e910c3d65859d8195a1054b854d92a0
SHA256 7a65899d270e2def06ff2ee0e5902f2742272609e7ab68f4a377f6fd810ac6f3
SHA512 712d7e4322dde98c774d62e2b09925d024e94f0ca04915d8bb576f3f0b5066e656a628016036dfdda3998076923d165fe4374eb52ece8b1ddca852180102f76c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 515ffaa703b3437d404b08e13cb2fd9e
SHA1 92a7528502660564dc3a3b588dc6f6a8a298be06
SHA256 e8e418b05eff4c221011da020689fff6d8c4c76b6f29c78dd54e81ab88cbeaeb
SHA512 0f06b53acabd631c89b2181742b2549642c5af42437de84c5b95d9f2684d9eb440d32f46623555c0322b1bb6378091bd10eac26d3ab722a90d7bc168fb8be464

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Cloud Config\CloudConfigLog

MD5 b99bde1bae36ebc8f9d6bcc88fa60d95
SHA1 d0389ceecb53f685766f7c70c1ae72bb25237edc
SHA256 bd25ff391f1d89821a89c1940ebbe14a0f8a07ca6fc354c353866d5f78819ab1
SHA512 c2abf7184a3aa9911cb748155af525b8a4c0cb8b44ddf7d7174e85d1c12aca03da70129d1aad85854da98f57ba72f2214b4b2e3d85788b2521657b4b9d7993c8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6d5da43293001197ba78940eb00639b7
SHA1 6bdd3c110a92dbb153589705fe3d313cc29037b2
SHA256 a9213eddf79fd10abb46ac8e144abf3989348841e203f470bc5702b8725edfad
SHA512 761f0b926afda2a101146818ad75d30ef981500f2cae1df06342a5ffd1a5e65c22452e620f67e2b8359f6a8f562cc66bc9031ad932438aeba332be0a00a009a1

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_905658740\manifest.json

MD5 c3419069a1c30140b77045aba38f12cf
SHA1 11920f0c1e55cadc7d2893d1eebb268b3459762a
SHA256 db9a702209807ba039871e542e8356219f342a8d9c9ca34bcd9a86727f4a3a0f
SHA512 c5e95a4e9f5919cb14f4127539c4353a55c5f68062bf6f95e1843b6690cebed3c93170badb2412b7fb9f109a620385b0ae74783227d6813f26ff8c29074758a1

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_905658740\LICENSE

MD5 ee002cb9e51bb8dfa89640a406a1090a
SHA1 49ee3ad535947d8821ffdeb67ffc9bc37d1ebbb2
SHA256 3dbd2c90050b652d63656481c3e5871c52261575292db77d4ea63419f187a55b
SHA512 d1fdcc436b8ca8c68d4dc7077f84f803a535bf2ce31d9eb5d0c466b62d6567b2c59974995060403ed757e92245db07e70c6bddbf1c3519fed300cc5b9bf9177c

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\manifest.json

MD5 fde1edabd926edaf85bd8dcfd6d26f0d
SHA1 380c447a4df3871885c99d926edd1e689f247b99
SHA256 3bab6a96aa24d25d5f838199dff00837be00480f92a559d30a24f67334e02a2a
SHA512 acc5b7ee98a6652a74477d2a9b295ecdacfd0182b75931653d373fdb15c52d1d869bbe3a41e4a79db36ed91ed55c39c47526268b56b123e9b7f19479bbe8dc13

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\Tokenized-Card\tokenized-card.bundle.js.LICENSE.txt

MD5 8595bdd96ab7d24cc60eb749ce1b8b82
SHA1 3b612cc3d05e372c5ac91124f3756bbf099b378d
SHA256 363f376ab7893c808866a830fafbcd96ae6be93ec7a85fabf52246273cf56831
SHA512 555c0c384b6fcfc2311b47c0b07f8e34243de528cf1891e74546b6f4cda338d75c2e2392827372dc39e668ed4c2fd1a02112d8136d2364f9cab9ee4fa1bd87f5

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\Notification\notification_fast.bundle.js.LICENSE.txt

MD5 7bf61e84e614585030a26b0b148f4d79
SHA1 c4ffbc5c6aa599e578d3f5524a59a99228eea400
SHA256 38ed54eb53300fdb6e997c39c9fc83a224a1fd9fa06a0b6d200aa12ea278c179
SHA512 ca5f2d3a4f200371927c265b9fb91b8bcd0fbad711559f796f77b695b9038638f763a040024ed185e67be3a7b58fab22a6f8114e73fdbd1cccdda6ef94ff88f3

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1284_1979333546\json\i18n-tokenized-card\fr-CA\strings.json

MD5 cd247582beb274ca64f720aa588ffbc0
SHA1 4aaeef0905e67b490d4a9508ed5d4a406263ed9c
SHA256 c67b555372582b07df86a6ce3329a854e349ba9525d7be0672517bab0ac14db5
SHA512 bf8fa4bd7c84038fae9eddb483ae4a31d847d5d47b408b3ea84d46d564f15dfc2bae6256eac4a852dd1c4ad8e58bc542e3df30396be05f30ed07e489ebe52895

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-notification-config.json

MD5 4cdefd9eb040c2755db20aa8ea5ee8f7
SHA1 f649fcd1c12c26fb90906c4c2ec0a9127af275f4
SHA256 bb26ce6fe9416918e9f92fcc4a6fe8a641eceea54985356637991cf6d768f9fd
SHA512 7e23b91eab88c472eec664f7254c5513fc5de78e2e0151b0bcc86c3cd0bf2cb5d8bb0345d27afdd9f8fcb10be96feaa753f09e301fa92b8d76f4300600577209

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-tokenization-config.json

MD5 ae3bd0f89f8a8cdeb1ea6eea1636cbdd
SHA1 1801bc211e260ba8f8099727ea820ecf636c684a
SHA256 0088d5ebd8360ad66bd7bcc80b9754939775d4118cb7605fc1f514c707f0e20d
SHA512 69aff97091813d9d400bb332426c36e6b133a4b571b521e8fb6ad1a2b8124a3c5da8f3a9c52b8840152cf7adbd2ac653102aa2210632aa64b129cf7704d5b4fa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-stable.json

MD5 2e7d07dadfdac9adcabe5600fe21e3be
SHA1 d4601f65c6aa995132f4fce7b3854add5e7996a7
SHA256 56090563e8867339f38c025eafb152ffe40b9cfa53f2560c6f8d455511a2346a
SHA512 5cd1c818253e75cc02fccec46aeb34aeff95ea202aa48d4de527f4558c00e69e4cfd74d5cacfcf1bcd705fe6ff5287a74612ee69b5cc75f9428acfbdb4010593

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Edge Wallet\128.18340.18330.1\json\wallet\wallet-checkout-eligible-sites.json

MD5 16d41ebc643fd34addf3704a3be1acdd
SHA1 b7fadc8afa56fbf4026b8c176112632c63be58a0
SHA256 b962497993e2cd24039474bc84be430f8f6e6ab0f52010e90351dc3ff259336c
SHA512 8d58aa30613a2376ccc729278d166a9b3ec87eca95544b9dec1ee9300e7dd987326ea42d05dca3f1cc08186685f2fdaf53c24fd2b756c1ed9f2b46436689dc74

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\index-dir\the-real-index

MD5 11a5dfd28790252b0edd063653c74672
SHA1 b164f09a873bc8176fceeeb7d56443688687ffd0
SHA256 bcc9409acc092de7fc6552f24452b00315495ee9e6ec58916cb5921a4dc3698c
SHA512 6746469f84e89ac775b34de144dd3923544a9c7ca16c3f79351f02ea70d810e0cf0aa5f80020b1821f61d5286b632989cc6a9c0fe61ebe992df1a2880d23ac35

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network\Network Persistent State

MD5 bf7c899a1a8f6ff95a98f4a6b64d01f9
SHA1 099bd6eb2fb478efc5cf0de07c4b754f3544f2f4
SHA256 a8aeb9e57a2ddb0199c5aab049db19f84648a83f2fee07275a4179680b4e7535
SHA512 33f56ebbd62ebd295d76da370190608158b8b7b97deb4213a67f35a077545d0489e1af1d62cef8a2fa38b1e166aef75586e2fb1845d53d78fc9d0d02bfb70ddd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0ab127269f5064d96af1140bbcd33bc2
SHA1 f7db7695e8934cc13e7c47d7690e386500b6af8c
SHA256 34024a5dba1112b296bfe1e59096b094ea11cd37d52b9523346d40e9aa0597ef
SHA512 4596321cb838fd8231591be24ede78ca349616c007d0a1b979316cfbea08bfd8d60207e3f5541625106a007ba4f56911a3b1106d5d22438a750a148ccd4581b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000079

MD5 53ea0499d3f54e1a0d2a3fbc5941d2f1
SHA1 14e30bd90b81818ad83ac43c2ee6c71fa622a33c
SHA256 09614136ccd24f5f00af5bd4639ad1bf984ba70c223743250967eef53645706b
SHA512 753637082e4b720aa134912ae3bceee297f6226908816297c5a025aceea269fa5cf950973236e99f8505a3322bce8c48f3882db3fb7bef042b0e4ca1a4614a3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007b

MD5 2d16d48c2d8948871a9e4b7df40890d3
SHA1 31f4d9114fe50d8f2dd63d7e651fb6240a625126
SHA256 32e51b072486d1b10efa95f7250799e7fcc5e5ab6eb439ccfab3604e7eb84ec2
SHA512 434c0bad7adaf7aad12a79157e8c3f10011d08d9799a82c90c37c238596bf5b730a7e38a66bd8ce3f19612d5d2dd7a32fc8b2429fdbe2320bded4ecf48ceb686

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 36070a5ebbf946acb16dbe5e78ec88ec
SHA1 140a2e75749d4c68cd633855c6db3fdf5e15e2f9
SHA256 93525ce42a634b2da70ea7f4ee4dc5b587481fbd80c8221df2b537895fe21dc4
SHA512 c541ed8d1949a0e8194aa2fbb9529939c3605883c2b7a30314d0ed256d35b81fb46693886cff1de5c5483afc92e842c7e9a1585e4ba77e2e7b66961f7eb8d508

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013

MD5 c8535e48efcced3cc1fe1ff78d28251a
SHA1 962e4d7ff0d8f68e5d8caced19eb636203567784
SHA256 e50247b6afbba4694d5f9e304595922ecff494b237b9a6eac37c2bede5efd964
SHA512 5e4b3ffa9058f3ce4dc4e8c10815f56c221cd8703905c641d6efaeb2a3341478e96bf99b6495759033ce0812d1bfe8cec5a306055fcb0b7b897bb2e1f2319372

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014

MD5 5763355592733dc8101d026dda2f9291
SHA1 b5c292f97e85e8e609f04c59a52506b253243fe2
SHA256 e8db10b920a36c9e1d1130c79a105b36aa654e33ffd46ee1f11b50f7026cdbda
SHA512 d29688597ce2b4101414a992449510f6f01bba6e4b9c980438cf65a394a2c180960ea72852d16540456765e5362ba1384d7524726846cfc3ace5e6b0d6cfc761

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 f55257d300b9a009add3ef1c44347a8e
SHA1 38d65879b88d2c90dd621e10bd2490ea243d27ef
SHA256 8852b761cdb4079518f5c06b51601ccfbb5aa64776097db080d8f88e7f952e22
SHA512 fc4ebe36565862a6a67d64917ea629b3ce59c36bd4c98cd697eff87e7d877fca3b7e1ba46240eebc40254b52913f9676f572d89983994c11cbed5a5099ee65ac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 906b6082ad368ae9655afa8d19d77ada
SHA1 6fb5b93d0d2021d8173ea2a66a903186f5d00a5c
SHA256 19c702129d284be0c19f0fbb4ef34126644685b4cbad237dbfc44b49b37b2458
SHA512 713c2dab5e1e2c4ef9d0b61270e896cab61be01495ab910613e3a30c195352e9d064d23590d9ae9af7aa615afceb43c70a39ec09ccf5c01a09c331a1d82259fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\e92880b7-368d-4ef6-8c53-3f869ab8ce3c\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 54d503e48ccbfc18b985ac6becae6891
SHA1 2254041b105f288b19910de96f352fd092533532
SHA256 17a52b459dcc6c0d9ee1b3485dcb184552927e0148fc7ccfa0a07312d6c4caf4
SHA512 459d310ee8d89c3883c2fa95c0672da2d36acd215f5fb9b5ede3700b368ad77b2b1ddc0e3553054bd14995cf9aa4e213d70c9a97a0821c4b87c3cfea26374ce1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007e

MD5 0e9639c8d75e694116bdb65d68d35002
SHA1 721da80bcaeb24564b5ba7f19a018ada956eb6ce
SHA256 de70c7e8bace4bdf2c5af650af03474ab8d5922f662ccd0730a22f020a02caa4
SHA512 bc483882be4f78faca43151ed22f17413621aa847aea5d2c0e8ff578b70857491aecc4d961e068c94cba02eedb497fec64387f9c1c1040041c124a0dd9cdba8d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 447fd3d23c60147f5d1c994af851b071
SHA1 b104b666b9dd7db629a187e88498c3a66a4c7a1f
SHA256 fdafc7318fb96ec996de63a2a75e64fcaf23c2c95573dceb51fdbd9f8efd75bf
SHA512 6eeb7c255513ce62036d5b9701c13bddcbe62703874457cbd7a3548541264984e89278b719b2347dc9ae7593b90a3f96bf0e52523e370a7216625fb808a7239e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f675c184cff7613a0de1dae1db867562
SHA1 325c6d7fabbbcdf2136d70aaed8140f010fe5d6f
SHA256 5a4b39842c9345ea4ab66bdba5fc56f7370d6a752f699bce2cf9fc8c019710aa
SHA512 eebfb5aba2e332eccd64ade79d65bf3408797cdb44b49a2346684b35cb0e8c595bdfb0a383c30453aae779eee311f7f96a83e7c9e47af5b10136b707eeb43e01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 956d510a208d4cb08d1482d8da4171cb
SHA1 b22b86c0ae717c3e68c2c9b57219d8fbb2a498e9
SHA256 7fa3f4ca113635889e4c2318edba80ff823be8a9141bd8f044786f277b636d34
SHA512 25a145dd0adce561521954e1b708625c7935f20eed9db8a2193ff36c9d674b2bfae5bb54ca34b03faf92395f231cd87619fdce994ce9bb47f7eb7e71f6ace907

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b8bface74a8e44a1f8b31e2b9b6b4354
SHA1 ee241c62c28aeea79b18007c81027d7e72ede0c6
SHA256 061a905bf6c12c72aa76d037442eba6ca5941214faa82851bb818d7f1f68872e
SHA512 e43da3ec5c2631a481f4b6c87bbc69f57d3ee0f546c0e8d6de1a8acc408fcc65abf18cceaa9384bcb00759a177583eaf298ec8d69c4a2bc5e3aa7a0aa178e1bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f836707a91606e2848bc11d4f8159d92
SHA1 eaa66eb0de98629752242d9c9111f82105ea955e
SHA256 2125a7c88b3c20cff84e7612c3eee2ff542158664399854ba43af1f1c0d9b6b1
SHA512 bd10ba4f89d8d321c2688b726dc1aa830f3896f34f1f485e36da35a541962f9b5e194f680ba7db5fe72a021379af67e31332b4e179d62379c26a623c43eedf10

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007a

MD5 3c421103280c1c61fb7d87130f41f2ec
SHA1 4fc58ec78d7fbe73c7f0293bf3151393a97c62ca
SHA256 c546139ef0a073c472c85ac0ee8609be4533d483e60310446df88ca9bb388754
SHA512 c86ed1b55b8dbbd698c50bc82699ec0dc82c51ae0f3df819c89ddb3cf1833583804368a36f1bc04ed5f3b08d5105c05ac14d8f1603ebb007442b3a5b8142e105

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 83726652cccf0e7d10cee68040d62178
SHA1 ed011e373d32dd86e18994507c78f978d2ba6ce3
SHA256 ed98489226fff77bc9fbc17b9578a9b8b7b60f52ae1100e357f9dbeace68fc5f
SHA512 63aa5a72821aa1e2dc73a7fff7bbc57671f1965eb8917ac47f11d33aa1dc318685cb010e1dcd9617dfea19a0c09554776ec090c76f14c2ccdd2a082f2cebce00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007d

MD5 ad2a8de3eb814de32d8e199f580b69c7
SHA1 db2bdf58ea60cab9cfa63e0d7984563b78a1a4ec
SHA256 8b824bba3f9edfafecb934af397e06d1696b89203d9de4dcfc5d76526972d4eb
SHA512 2e18ce4b53cf78d0f3f48597de55627e1dbdc958e6a7716f61ee118808ca3194a05c8760a34da5e84b987885c4027fcafe4b06fb9fdc40b58c07ae2f2b83b693

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0587842c7942e87a_0

MD5 387019451f7a6bcefa97183469ab69e8
SHA1 f0f2b1aa236a44e160e3e3f55e7238b1c83b626b
SHA256 b000b246e296dac14efb8700f75389f2ec68ac812a4e0dc5f96ec11e7c2d5a04
SHA512 56aac537a56001324dbe1a56b6fc2b4c16a0aea0c3722ab9d86f57479c256421e258422e66fadfa10c69628242015ebfbb52128a8574f5203db2efe9496740e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52d4fec1241d1282_0

MD5 459b80033d817dbd0f7ad1ead38d3d31
SHA1 d5fa8e1ef6d0d443ad5ecd46bdba99be31b93049
SHA256 6ab983fe154829ef95eed48875b10ae973dd82c79c926c626df959a252470dbf
SHA512 0625d9e10de01635b7955ce3f6f479f0cfa16c4c090360c13e18e5f888727b3d23cbee316088ab727f715ee944203e4320ca172fc5aa65e87b70b46b8237bfa5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1c35674991e84a32_0

MD5 89fe125b9b37221765b997f831e2f76a
SHA1 2c9e01d9c71ad6aa37f7b1d0546afd26b5892ea3
SHA256 91cd4c1f7114b1cc7775a1b497a65045c9794e72fa495f102d84b003a765ca66
SHA512 633a433aff26afee5c5f8b69327da7079decce6523e5701d67e60d2eceed032c3fcab8fe687175e641a9e2d1b6b4816da4ff1479e687fb43f6ac15bb26cae50e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\23656295d6fb916d_0

MD5 3d09b18da651147e90999eeea455c9f3
SHA1 1d9acd9fc454bc5a3f2c08b7a821e52078bb9902
SHA256 724526388371d3044de2f7a07870515f637e1f2e400fbfa1990d746e10dcffd8
SHA512 6d63e5c80a7fde8826775cbd973e4c4a88ca4480b9d31e8ff1b1f8c91d39ed525e3cdf44ea34a42dbd0c92f02c55bb9924160f36f84099f0f45dc9bd86789d67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e5411017fc547b9d_0

MD5 af60855f0669f418485e50d99abe0848
SHA1 50b137c878d918f2956c51bb3c63f187a8b74051
SHA256 db97f7c86cc1b60287edcd9f77b38d7fbb206e2474150b3fa9ffae6a7b98cfa0
SHA512 a0008505751b2c00277f8deb849bc0084470a90904261d9c2b0981358cb5c53adaa34004f86290b0713a5470c43a889571654c820a320c23a799d1fa218c1bc9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c916ae6dbdf101a4_0

MD5 5892782d5df2e3b4fe2a7c5c164db414
SHA1 0d98a82db3e4b42481012bcffba41e313d817af0
SHA256 5789287eba989220f0db27ac4de95e2f4e98456e058254c7adba2822ef6b4457
SHA512 099a59250d7289363a875248a329f95c034b161808a6529358dad493038a5f9bc1eb869314f4723b985dc4f182d752e004fda34fe314ad746d0426e3eb849914

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9b94093e6cbbbbcd_0

MD5 135a11ed30056b08edaae9608801ebe8
SHA1 9122ddecab6b494d4b4683ce4a757d373187fa8c
SHA256 50c5505c91c1c6b37952c2fb889c5b9a8d99c4d679b8cb4af27817bb2a1fd78c
SHA512 77e4c163f536544d07bb20d2fee80e6bae297c6ab1ed099628f5cb667a6d6fc33362ef733906a26621fe00008f3092a70f7a8a53dd5c477637a2855688bd07eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c5283dd8d1d63820_0

MD5 d7e79872366c1706e12cabaa7b20dc64
SHA1 ea367364e1b1c2f6133a25bec80999bbf4a92165
SHA256 6de1e1b6e183ca79320d9ec566c7956d200ec4ee03993301ae4bedbf06aec55b
SHA512 2c095d0cd4db8fa13fe4b2e2b1c7eda3be608e2b45470d94cfa063378dc117200eb123e9015bff3741ceec1dd702793734bdd5188006daa188a08476b45c717e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6168649e6abb0ac4_0

MD5 c173712f2eb5209671e826910cecd598
SHA1 dc32ca0032177740aefe0e011582cc5b10f7f090
SHA256 41f222a593418b615a2c3199fb3b6fe291ac4673632445dcab3c6b2c90fae73e
SHA512 9b2e0c18d14b642700d533f5c7a236e64b997d1c126d19c29824999a0c1cd4db531519df301e9b25153a6cf1cf42114b02372cfbc3122704826ac4af14eab9b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b6ca7f7cded8420b_0

MD5 820acfad2eed8a87ea12a4df4c06ec95
SHA1 89c4578c676cd5217690ac409a33db06fc8f2fe7
SHA256 3edc66581306d366c07e8a21fa04a9ef56ee0b9240560f3a0aa2454dbdf62995
SHA512 b5a0521160d3275451d97363345315e1fe328dbee446aac9410dde373a9ca93a5580149640543b6c2f917b8c0f8dbe310b3ce9cfcc6ee4787ea2c1d76029d071

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\13f162154fad7955_0

MD5 4f2da7e280afdb140c093af3654ec520
SHA1 907d952aaf30b2dbfe8ddaf233a1a413d29322cb
SHA256 a9611bdcf2e2e3edecd2001c9d9fbcdf2822e08dd8353354436b98be392a316e
SHA512 9fda2f91836e70552d1103c8eb9802c45eb720f915cd041c68c22f3ef4efa21b1192adb44d359dd61777a0341874572f11862ffc901930dcf0983409d68409f7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\db80d672a14a2d79_0

MD5 5bd80ecb88738209dcc6bff231eadce2
SHA1 2c744e0016e758a1077cf0fa9308e10ceed39e41
SHA256 68a0aa0e71f6d10c3791cc398c197b072b8e23ef8e4b39916e84445b3d610090
SHA512 63c0ea2b1d6946402c8fc0a95b4c3d6e185cfa3bd071c279dee72312f900bffd70f252108c902a08d8af790500535905cd99bbe18705ab50d479fe377e984ab8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7b4311b2387bfb57_0

MD5 161db25dd2482864d038c6e161142d96
SHA1 17cbb93f4c4cb922ee27a4fd9b1ebdd92cce4565
SHA256 a77ca35fc8ada1dfc6407a6f6ec6017450850f6f8707819da30ab6df7e08e7ff
SHA512 efb93c1356e7d331e89e0810860e3d5c42d1b1c025a03926139554c9efa742541d57e6fd1ca6883fe618a867f8b34974dcd2f56e0d1e01ca87dbf5c6470b6833

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\09684e72cfbfc32c_0

MD5 47f46f87b714bef92961451caccb9cbe
SHA1 6ced99e7811a0def0dbba32e8ff8b74fe85b059b
SHA256 277e017305b0a15db61d02e2f90e2535527b3e6781468b26398dafe306633cfb
SHA512 998ff2051dc6524c277c96cd7c4269210d1969647fc97781c5e063198133d51ef401d27855386e6df0f0bc0cd4da658a737de2fc7a3a4bb12667ebcadaa5c144

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2940f1b866286526_0

MD5 0c0a5b3220ec8bc2f3f374eb4c1be216
SHA1 47d3f497de604391729939c1bd102f1687c3e7fe
SHA256 4044ef535b5e85ff7a4595a14b3ac91820f6a3ec1a6176015bbb275721a44026
SHA512 f929962642ab51e1a416eb5d132990719aa7185a74873d4fb979c334ba1481153034bf9431a6a2dafae61a9056f6e9b3b6c42ace885be3bb79f9ee7a49865d00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a9930e45ea6b06d1_0

MD5 0cb573f07022636e90cc0fd4dcc680b6
SHA1 f2fcc14490415b3350cef3fcd6daa12def0ae08c
SHA256 be29cc5bcf40f0ca4982ee5da9e2e0ff68ad7772c4d5e96d8849a4e8a269a2d0
SHA512 ec68e2f0dda4cdee88c9fc745493b1da3b3b75ce34260a96177ee161fbce6ad098eaf0fc5e8cb4a5e5e0b74b065d586f0b2df4258d91f4cc38ea37717cafb5c9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\62bb6b5b8c0b581d_0

MD5 e4799ccd97307c15547c9f19947aba05
SHA1 57134939205223a7c19c203025ac58414effa8c7
SHA256 01023ca9745e794675cdacdb52fdef04aa3b453346094d034526bec98c87c75c
SHA512 7fb80eaf55530ab51fba2dbb23fe97f4190b613c066273e9f9c3a645029ee5349079aa40ca399d90e4ddb914df3ce4109a64655d25bdd96776d55309fc4f9b99

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d5e01666a40b86e5_0

MD5 70a28a67967404afb594e738b42b859b
SHA1 d55967f111bc1311af33cc5ea5c31cfa4cceee22
SHA256 0023de7d29e4815c79972ffa13c7f8d444bf6a39b26ab6d4ff0b02323992549f
SHA512 c85acb21cadebcdf530fe17fc29adf6df0d7638c844341f263240aa800fa97806d7b7cd04f9e143dc07cf5083d67857b05c4341cd05f16f446c4ae972bc1a359

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8a97abef9c409a22_0

MD5 a13088ac22809d8f32311b1085772e11
SHA1 21fadcf9e0b8acc2fba426fcc090bf2268056ed4
SHA256 873e74534fbf89fbaefe2bd234fbee6585b7e716fa35ac19c43074dd01cb1190
SHA512 824d6048a994b5e789f8e7947048b610317da700b24abd772e6e03738da7f1132b5dcb436a2ef2b79934047c26fcf561cd1c0b85835bc4269183f26211fad705

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\10936ed321465b2f_0

MD5 0c8e846d5a7133a0ede8cf9b00ee561d
SHA1 aeb64026b5e16a7c199d722f3b5731a65dc0ccbb
SHA256 8d24428e94f618c50c4598585f0a4595d923e6f3f6812481a9404bc32705e08c
SHA512 0f0086edde46453d40be6bf547ea20c28236a97526d6341d13b50a2f3f2614597296be506437f79d95890a889ac2237dec0c43720aef45d51f57c0b2e5935e3a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\628c857fc95adf33_0

MD5 193e1e3f4148607d3d0253993829fe2a
SHA1 290173587aee5829b659978f22667385e0b3fa74
SHA256 ff2347b8a95b2c459c289a64d040a97f796ed2b15281ce85c00d445abec13dfc
SHA512 4df7762271cbf245e20bf23179a7847d77382563b3807cde100495fecf43c2addb7108add09c6dc5217357cc9ef1bd903da53f7e58cacc1a317b140dcf38b640

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dde124473e74b793_0

MD5 293970a5386d0b9362aac92299b145d8
SHA1 deebb192483125e74e24e578ac0cba646c31a5ee
SHA256 5cefce360292ffa351239af1bd75bed4fb3e341809aad4f20654418184081edb
SHA512 f38bd1cb752b4aba29280f0afcf6394e16ba29e641812f344bf0b86c01c44ce2dbc3af7e7b019fe332dfa19591c7c2d0ff375c39509db33fd640591a23258cb8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d3ac6b3179109b04_0

MD5 9caeb6020a1e889b88b7ea2ac884bab4
SHA1 2747425cac4a3518da0185bdb9ac3063b6892b7f
SHA256 2e782ae71a371f1dc9d53633999a1acce8ce1f086aeb2092efdb1c78e63eb3d3
SHA512 351c3c460de9b7f2edb5ffd3bced7c2e9399f59aca687f27e5648ec58087e00bb9f285f570c6f4bc335feb8894d7ccc24afb80118ef71fb9fd433d0a36879667

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\22510e6f41637f30_0

MD5 fa9250b672adb889031afe7682a71aae
SHA1 91cc0c13827d8757b811109632af2240a4ceb2c7
SHA256 0c75e9f650a6c679915969e7e1eb29b39470f8fd4348511bb9373e0ea89856f6
SHA512 4965af02c9969e910e71439e086b407f2bf5744abb4979373e08aa781dacfbdcbdca05eef708cd396d5c4ec11e64c53eb525d79091effa9a9d8e7bbd00362e32

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b7f3c7361201681c_0

MD5 75328de828afef113980eb6a90f40573
SHA1 585653372877c20b299f3d62959ead03d8b6f142
SHA256 2d449ff7cc58a83447036535e80ebe34f4b31ce0f0ec612bf260657c935ab8a5
SHA512 b2b8b76fe1d5ba117f001286eb3fa38896d40e411738e90ea67435d6dc50963bf9e6ec99b3c9b28618cdf12bc3c72b11fcec0826fab94a308c08e730b191c548

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4d55b643d6084e1d_0

MD5 eb056cd11596d3d133589fd4a3de32f6
SHA1 f799979ea420097d32915d6f9a464eaf2ed4c69b
SHA256 fb4816f2fd0480cb85fea807a74bf402e7d973464c7097237c0e39092857cf6a
SHA512 7d67707d8846cf88b2ec452cb815f72382e27c68384f7711a331066d4838ffe0339f7559178601d7b49c9ac11104d60d0d2ac66e7790bb3fb0985bf0172fc7df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cf89c1b1aabc0399_0

MD5 ed60fd8ea8c0c63071525e6ad050110c
SHA1 a79e8b7e40f042c858ac7aebeaac4f7f9d7db11e
SHA256 348381288fd2422b7ec7082199709c3930af1c424ba518d114f5c0cbaf6011f6
SHA512 ef33fc432f5cf5eeddbfd10200401c4e46db23a0140b5649dd2686de286c829209cba7128fe866fdb2748e65eb587184d0cc219f1a88339dcc43f01a4316a749

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fde1be5844a396a1_0

MD5 1770c71b2a7524a165e5034f09b6b7a2
SHA1 45a0d2e35d73aef7eaaeaa96139cfe106c9596af
SHA256 7cf395a24d249dc90b88f174bb71c32261626dea1713a20ae248a1d8c54f658e
SHA512 332474b35ebaf898ad03b2cf9e1db9e8ca9eda041f9ebf43947361b15f9a6e8ebf4ce7dc889b9dc8fc7f56a144aa710700b012efcb4966ddf14ba0a4041bcdc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\49c5284b87bca143_0

MD5 e9c23c54824d26b5cc20e41a53298c51
SHA1 854b5ee925526d178e56d19ec2c82032f746c9d5
SHA256 02bd0fb46f0b7ca04c8eb13afafe62a2abcdbf3d584528cad262e178bf100ad6
SHA512 081c7845e504008fefa0d08284271268b267cc11795a9ee1a1703ace7ef71fcd1bdf28d1bfd708d965982ad901aa1092808ac9845ece19f7c4ccb85cc325fc78

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3c878b9c6b2711ba_0

MD5 ca367772b6902f67c8a4513753244942
SHA1 cd60a9d01ac507d9bb7a5fe1ea7cd6e4124cb9d7
SHA256 6fc7a21549870aed7902a8c11379a8fe114d0e9017e1ba1ce127f8552cc116ea
SHA512 ffcd21f737b16ca775bc01ba3469d885c94f6ed2730f309839b0c977b73e1180ef8130b61902d91fd9e45185a623dc3923df25f7084f5c36eee7fb9e51cc0130

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b190a9e98a3382ef_0

MD5 3b1e8f4581dce3e35d496d816ce0d2a7
SHA1 1731eb4c58a00c2dca1119e0b923c3a20067aa77
SHA256 9f2769c6c1dbe20f36c27fd5771d0145422997a4fc78882c10d9094f5eab8c2b
SHA512 e7a29807ec00791368193a78219360864b100ba17c00a5721f7a91965f289fd6622ff6d9b818022123122225dfb818a9569ce319af9cde532fa823ea470ada31

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\19fc1df34a20b146_0

MD5 1787ca683c71e01badff2428ff010fdb
SHA1 482858dc086d42421c8a03066ac5840cc032ea46
SHA256 94b3957a773b3ef73f83cba24c739153e0fd64a946ea28b5156bd0fecde8b84b
SHA512 f1e19b8d0e9e5134630c4987a2cc5f2a778685be41e725ef3473497a4a1591e9a5eb67732beef6d50febc0c1c516785d16c8aa48054a978f96d55e8a6e3342fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ebf5482a9eb0de83_0

MD5 94523a915ee714a93d8ed3e76c24a975
SHA1 462078369bc7cbdd0dbc3bbd61ff6314af23816b
SHA256 6d84d50a7d4fb2436075914474d03f6bd12d72ab2835e4783bad73aa1060822f
SHA512 e8c58688ac8aae01ec5fc05b94384b047294e61683388dc544d901caffee4470391adb8bcb8e16b795dac8e186fc79dda52a1ac329fc0bb4e8e77747b24180ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8cd4eae1c08033a9_0

MD5 45353331ad29a9031e3bc182a2c45ccb
SHA1 c32c6782ecfb4df6a47be807926962e33117e868
SHA256 4ac9181433e3111ca1e143b020ab3dc3c36b22483c2266de7ffae73454379a50
SHA512 5c39dee79a06f33a486a20e961c2ee15a605ae5d5db383320f7cd64586eafb5cd7cd8fd1a967867414baf8a4784eda07fd4561de1718710caea0ac07441afa49

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4e3625f6f4917544_0

MD5 31da20126d35dd1422313ee0729bfa07
SHA1 ba960a1c50be961feca0b3095de4024781599cd1
SHA256 f24ad1438ae616835b1f2cfce43e07e2aed996564a592e9002103bd35fcffa61
SHA512 bbab47f71fd48b8137d7ec5564353fda03da2dc7a4a893af4027f8ce88ef712fac071fe0e6b0678a3ec058fab039e8d28bf8ea127e628c2d04b35801c2633534

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\47a4811439b25efc_0

MD5 50e8e631f723ac0c5b519c130aa59761
SHA1 49db54375954874c966beaa46f4996f191b39429
SHA256 e3122e8c9b465b70549de6df99009efcf49a78d4740bfbcbb1204d80e1641371
SHA512 83e9db64038b9318bfc443c9722f853de04c78b73d3a3a4e3ef65ee88d8d5a814c5fdc571b36212f9c8e37e182387b4304922c26d0f4f917b681de7880c41407

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ba872977e7eafed0_0

MD5 efd875a471956f18734f8118f83aa64b
SHA1 b1cd22a644665350a1073539d14d2ede089e144b
SHA256 00a1ba9561f31ba5cf3399e608659578923f30f5de20fe1ea45a2805d56f6318
SHA512 061bc9271810e5a1eeeb54be8b0956905b5106ad273c1aac3eb039919c1497860433e7b03bf0f5126f3e972038c7d6cfa115decc3f63497f1124cfac25b446d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\512d5bf31870f6ae_0

MD5 54b929f7d9d411857de4f4cbde31cdf5
SHA1 fd1c83dbb63665da833341cc09b43eef91ec2444
SHA256 9e64d1c6e188678e9ae837f2ce68911b02cb3864d47f8799786f3317bb42ca50
SHA512 e414937ef170ef569633a22fa3885fc39fbd878128c0d9f7e39b9b23ae0f2f611de25eb7b6290e72650b599c71e691a02eb5d9ed23359b229ae2e6d93b8b69b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b77cc7fdb69c2940_0

MD5 33ed70f4e198df255e9e4042a3eaec60
SHA1 820fabfc99e45625a4132c363eb499b321f7bb9a
SHA256 9e58ff28a4cbd55e53705b3b98924f5889ad602f3a05c9db8f9bc22224b0532c
SHA512 2830dd5a625e06e6fc3a22d45cf822c48b63d3f64bc1097de02ba0ea69fba12979f17573257cb563450664a3237b9acd504d18f7e97496909d57127d4c1e61ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a92fc2d2b9d9f0a4_0

MD5 f6ecf7ddc12cf9a65b9b6814f3fbd711
SHA1 64d9a8e3b54cf40dab12a3aad0edbc7d47d0e09b
SHA256 beb869c9250a6b9cce11644781565b3b4f74d2222de03e7e0b42dc9804656338
SHA512 edc50b4884cff8120593c1f0b7112aa11918b96f44caa6b9ceac866273ade8ae85b74a43f71ef0aa7c7d537e792a1b335c2baa53a5e79e5f78b4bdf48d7065f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\59a02b5598276f89_0

MD5 449605484eb2544cdfb40f72acc5f0c0
SHA1 cd8b7ad9f1da92fd9aa7ab06f247e7a61b3030cb
SHA256 fe4e6287ebbaf7367b12afc242577aac7aabb22bb9fcc475f3d283177fb83448
SHA512 b0889979571f8155356f7fd378634dec83b4005c9bbb2d27627b3c57e0f3e4822478f672393968a7bf1cb37836c796e2dbe84818e57ed3e14b423c4aec4e64ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\16af11a7a348424b_0

MD5 4a5c6006aaf328014a181b2d4dd641dc
SHA1 c9de24d2dd6bc01219595cfa3c5aa79fb2c54cd4
SHA256 7d85414971cf92682829d55b132081aeccc7e12560ff0fc8d774031cc0c67895
SHA512 7530a7f337d30fe59439dd2ffd85a928a864e7841767822b59fea17997644fa5dde1272b4b141f71c8c74ee5e046da219e9779e3510dadd5ae01e057a5be70d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1e309b5236eec317_0

MD5 0048333371e93babb0049976c43f93b3
SHA1 8f86420036ed94ef1b021e9c806dc0ccb178b7dc
SHA256 ffafa699da2338889b885d2e53828107ffd2cb7ff8f09fc8b02ef2bbcbdf1278
SHA512 7330115f0badcb8422fe270d6975bb7bfd467df33d2fe26ca86159504791142cd55f687a26e6a76ddf003d0d312d6e53cb996807960a5b3672fbe7c39e2f3320

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7a5308c80f1f6e6f_0

MD5 b111840f7ded02bd4f69fa8207dadefa
SHA1 0a94a33dbb134b0100fcc5f9544a10962a8813bc
SHA256 8cb43d1d57e4a3f6465d92010464f45624c68e35e762d422d4893cf81407471e
SHA512 d490e9288ae5a02f666c536c62c8d3460d9e54b1bcfb5d3422e941cf32251e53f772e5dca3b08170b1da7ab45a91f82c6f40fe3b5dcd57cf8da52b990abadce1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\999060125892351f_0

MD5 ea4f6517f8201968b1bed2a614dbb87d
SHA1 4735f82c48932085476605c37112bc0e55686359
SHA256 3e4b665caf7bf18a1c97fe7f27fb906a865588724afdc9b554e78e19e3a8f594
SHA512 ef6651e4f45994ea30060a6dcc1f7202f1a4a5805217e97263a75e214da958d4acc18b0de5c1d04e832fb6523b70b0a543db55200efa0dca50da55f921eedbac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\39e113aab00b8b7b_0

MD5 7bd4a90a5b91b5f4be54bd7c622c03ae
SHA1 af54289628359cefed5d843bc523e2c47816ee36
SHA256 9ca64ceef78ef1bb4f3c601f9d7ace37091507a3602df1674500b01aa98e1218
SHA512 5b72b9a7dc92eec82b42a9d95eb9ac26c5fc8047e76f550471a4c07956535cf11343bf23be895d3004fca0cb219fdf2581f49b58b6ea013b54c250cf256ed0b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7c3157bc84bef0be_0

MD5 209855cfd43e08fd681ce94a6f4192e2
SHA1 7c4de9a4ec0f4a8d12fa6bfab6de622f87287739
SHA256 78030010c65bc143239facbb5d272b47e04193d78aea907bf6e9bce2873363fb
SHA512 17f8dd4a8fe38f7765f5dda944eac29d636be997a7dfc68e69c1c8e20cf7b450b5fb85dc7321147806aa6734e077e09c5c1efd87753d94a67b30f05d75be2a11

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c041c29b492faf43_0

MD5 233d5049bdf2f755c533873504d50d8e
SHA1 a0c8acb2c3e6d5b3c74a8975c69f9d2a0c20917a
SHA256 6b221387df0cefb69ca14302717fa146fd7bbc62031b039dee53bad77eb49747
SHA512 804e9e53c5194c33b9f292416cccd952a34d7ec7ce3c27a23944a3ec192459bba8e14820c574b54f79b42bcc7c02db826736335114e7417e71e16a086a4683fb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\21c21c5d6a3777cf_0

MD5 497dc7b4428f38e238694ff80511e0b9
SHA1 171f635053f4b33a09c75d08b8ddd001e6b0e5fb
SHA256 778660f34067c69688d4c812e3bcc433e1839bac80a5abde62610c6e6691a49f
SHA512 413f1e60bc4b9fda25ac6687645946c40585e380e4653fd30e6ecac03a3f21b5893b97dc73426326147b2a92e119e6d2f8f38299c67aec1d608b89ca76920e63

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f735b670a4f7a234_0

MD5 935ea0f8f51f1da39168055691ddb93f
SHA1 039a1d63cbb4552c25e4129334bb489050d8c926
SHA256 096a134db1be4d25cb6ee043ce006581b03cdcc8d719937ade236ec9cb9f613d
SHA512 680f3db392a88ae98acf8e1ff664eeeb2def2093311ef66c8c3a42ead11f330fd01bbbebc2981aca06fce12740e078074d98ad3f20e3896089c04225d8574c9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6833e1aec8a0beca_0

MD5 b68402806c7a98b3ce9cb46cb9ea9ce9
SHA1 2087d3040d24d7d01f664659a808c4871929f9d4
SHA256 4cdedfe589664973b457cd6314aef8bfa38556561abc1ed7454c57557f9ddbe1
SHA512 55952100d58201680be4c83cf9b6c211b7a603ad6a2cfa839272c86444dd618ab0e091c4939bbec056874e11dc4b0fd8d36004cf1090c566467c0379627b7fd7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fed0cd31909da4d4_0

MD5 eb1f5bc98d61fef4e7597f1646fdb876
SHA1 0bf827d7e52864b01791c4b9d4e1a0daaa489446
SHA256 2c3c06e4b0b18f58acdcf75fbe51614d6497e26ba994b1e5e525f5d9d5d0ce2a
SHA512 c05bf08ff6546b0df7b20d037d46367d8a1a7e1665bbf20dfffed63604dfd226902d7ab6e93df0e7cf12ef1d225190a4026ea835cecd3d7daf0f8d0acf61ccde

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1d04bef2abfa72c6_0

MD5 c9e1f6aed7e3db7e9260e1dc5ab56060
SHA1 2d8427cebe96be2b4b167ed9824ff0b2891bfa31
SHA256 b8577ea91774c036e85ac6ff4878998c7c8e21aa4eb2ad1c747dae384e97322d
SHA512 9c08d60413cde9e5e99e3b7360665440e15aa89077efd1e4a950d6ab3a1364123585bee302444961a782903ed87a79ee0c5fa1117b68f7b9ac1e96ba194aea44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b56cea3ad2e6ab12_0

MD5 7bd04c0387f3b83ccff49fde42311e03
SHA1 22da161d609d42db733d9aa09faea8877d44b063
SHA256 3100f0af737839218099a0d578a3fb13b1d4f66507ba1b06c8a06fc7a1df9e76
SHA512 259e5e04d48747ebdec02b7fb4b58b3434869e7d0a8859fb668ba42e63c033eeb3e747705f2261e1301a36d7c5359de3b9dbf4819a8c5f8ba7d857331bb45ca1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a851b595bd85f42b_0

MD5 62c914af10f9d65fd59a20146bb92b76
SHA1 03af4ee15fff1e0bc6cac561baf99fae89ceb827
SHA256 974e4e80d074e1f73a9405427a936b8553d7ea31e69da26427bd84f00af8cb8c
SHA512 009eb83387c31fe87b6e26153130340f231c7166ad8a91ca6d69a0cbeb91e0dc4cd767c902a80af02114256dd1b42004cdb3ccf07a07cf9c7dbdfbd509ba7a40

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\14ab5a90d773227a_0

MD5 25114329bc424a3ecf2883dbcabaf21e
SHA1 134554eea03cdbd839d23e86c35853f91992806a
SHA256 83779c6c5aaa105f49342502a9228ea59a01089e84aaf8ca023c7cdc4f70f218
SHA512 495b2363aec52aa5ff7410155ea4ce108f5ab9e25fe057d8620aca6e84bb9250629d9ade09a61405e70b017b6cbb422614eae3a808fafe601db75fd5d938bbba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\df9da550ea6d3003_0

MD5 9f80a6b3f52130372791d5198d3f59c8
SHA1 8b7da0b3aeb54f2596fcc77cef302f4d839dd4db
SHA256 71415c0dadfd204ee2ca245a5dbe12a263182b57315161d152d70d76016d11e3
SHA512 593a46f618708bf256d819958208a6fd1d561e77eded6b2c07d133d0a1b8ca48dc3ff3920025d956f427465729fa3516ec3d5685c95e4c89be3bf772234ca95d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b97c948285070cc1_0

MD5 adf2ec8c5346af95fe36134370413867
SHA1 deab33b2d7879d6a690d9e738df057431013343e
SHA256 9d13bc189d97ee3cab11cc561941644e9dfba88c4b676c438b9c57ec16bf9141
SHA512 1f0ec661c46cd060215647e2bdf9626f9390ebe9b1ff0ab43de1c81c562b54748095408091d62e66f4066e2cae41c477593ec3f6a62cbf19c2a2fed7a51e29f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\09a7b9084a99801e_0

MD5 9d41cd44cff1e1adc9c4c67890b64b9a
SHA1 69910220e1f7585e909e4777b715446d010b94ae
SHA256 0adf822afac12fa844ead5b60640526b7d234457cc366fe3591165c00efc53b3
SHA512 8f73e705a280b1a9531f1429304e383d3fe7c27af7a6ff3d17a9a71a153c77d7f9a04ae81196aa7076751cc56156a92a8058c1c345af5fff46f98878d112a8cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\85760c991467ef2d_0

MD5 a42ea2a7c321b7a5dcfabb2d87433655
SHA1 4ba6cb39cce81461541d7bc888210f8768735392
SHA256 6f6a171e7dd0594bce46515ebf45acbccba877c0a36abfaa7a1e6728b8e8c994
SHA512 878f772f58f6fe5ef699e320f344708335a60a1154ad11b6b0f558fc2991458a3b2b5690c4ceaf08ffde05fca6bb76a0ef71cfbe8fb4f709dc9450dc5dc403ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\98e02a8c52c84525_0

MD5 6e74741cc134aca2aac538c626693ce4
SHA1 7b71aa361db99a5f64f35ceb24862d8327f52f9f
SHA256 c8f9cb0e83e72d0db308a89d1da73eb0f7bd98f2a8695c13be2bd5af98f62a0e
SHA512 53963d48ac1c75f7f0243e95fa4e5e635961c8b211f23cfcf229c81e49baa120c18958a55f12c4c5295cd2cdc84a71126dfe0eac42db4be769b84b37c8623f95

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2f7902d8836e17a8_0

MD5 5a6022bff7261a837596fa5d1585e881
SHA1 de8ca1a5c293ed2adcf46104c95b64ea1515af60
SHA256 c80447daafc553a152389c7033d3c4ac82059991841c80dd4b40f89361c83e15
SHA512 8edf2d37f155ca2d5a1060af94ba95f34007d54fee5e5816991519a18cb53b4e5ad2bc573dbea58943743023c0bd1bd40d0ccda2fcc41b0705b32dec741f78e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2127222b73f24cdb_0

MD5 0fc7b0bfe4eca95cbfda1226d750fb75
SHA1 9fa36de385ac964453706e6ad59743b85fa23bd0
SHA256 bc04eeda6f0fa63053f04ee2407019faf0e4b94446aae4fad793c7bf7081fd13
SHA512 169b40497abbab583834318c9468c4c1ddef288e94e63b9af8931c9d6f24ddfd0921fee582207ba5b40269ee607818d88f3ac1187a8df9efe8a929bde80c8d8e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c2b4e8597e4738ff_0

MD5 e01dc7fc521764c4ab4ee31748550320
SHA1 5044caab4a4ce33b6cd97d6cd032a130fe7f2d85
SHA256 7f28ca468494ac1dd9919a5bec5d274bc1b0cbfb6803e37ff8eb61c09474a17f
SHA512 dc6db8a7ca651bb7b9563b149b230a99f52d525cc96d719cf0205a82cc5bb7ef2e3fb54f95b042b634639cd0db74107a7896d974da26a192123e6754f03202bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b2d14f02dd28fea30f3e7ebcf2f8b6ea
SHA1 aa40135b91e882c9e74e232431ab43e2240cf36c
SHA256 77261fe3e4b5cc7fc385598d572940922572aa16f427713d174c3bbf7b2df947
SHA512 8d3a3f689a1621d39430c8aa136089ecb2bbceae964b55d095cb7552f82ed60e17570f660b013aed2fb9140ca37bd85106fd8e939e47cac8c97ecad22877c473

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e11cdeb22f1c8273_0

MD5 0c58405678c8085c2d249d3d3327d1fc
SHA1 5f7f803ce8cdbcf900062fad7d6962a24b1f1d19
SHA256 e9559ea9efd1f84c5ccbdbc18ecd26b69084df714763005a43da17774bf51d94
SHA512 014f80701018ccbae181f5c121fe1edee2054c477b66d58eb5cf06268bc4abd89fb2cb2705027c4f4e6eb5154355902912802b4ad2f06de0a0a5edb262adf095

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\44d5079ad5841b25_0

MD5 81b61c979ec140c86a4073d245565c95
SHA1 d71d56f2787e7d7a30a509876a6a5e96347c13af
SHA256 3cf153714e012e67226ad889384498df27e0896fead6467c2edd6ada9fdb6b1d
SHA512 5c688dd14a6ea3689c8336a1731a99a53d204d1d3a7d411c6f91bc7e8496319fb9d116b7b39d29994c3f3c4d32800a280c13dae693f4d02ee86009d144365ecd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a69226eb7e1fcb4a_0

MD5 94775ee0a2c287823549b9ec055272f5
SHA1 f2be1253bac1431cbd769e1e0e23b64ac67bc9cf
SHA256 01d31263893fc49444486516ddb1cdffdb56f99b844eb9cf422d70886d3ed5dc
SHA512 f628b3741b19cf88fdb485209d92a462e717b2e0c8c8dd61d0ccedea165858466ce0f5eef4338fb3017da743d10248e0fa588419f3510aae5175b1aeaaac2933

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ec4432fe82184a54_0

MD5 a048948721d38ff2189eadb4c93e60c2
SHA1 24d4936df5f4caa940c8f87522bf5feb855f08b3
SHA256 7b0b50324137e9ef9e561d8d0166c19ea13fb9c144f22677d35c888efa06a2b0
SHA512 c5143d9bfa977f7849542649744f4ffb8be09407d8da4d9020f7fcd81a3f46a96b85f26a496a116a7dd2e1828b3c5549182a388056eaf8cff1eb8a54b83582dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bb73c6570251aa2d_0

MD5 8b0e748bba4d78edebaf0a07a57180b8
SHA1 bd0feca75d5c18e6439c8ecab55f0a2b4b033bfc
SHA256 d35c7c9d89bea95577b63392a42751420e9cd4b7012d74e4431eb120ec2d5c15
SHA512 2e1e45d3b5ce9881a00366db84072c582f8b045fdd052cb289e4be2b4ec7dbc7a3ece4785749e9e12eef0d6c45e67c0fdf7e33c74ef6ee1da890eba1a91e9903

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\19152b7f8e8efcb9_0

MD5 4b0d7416c7c2b2ef2a8f4f7f258dca05
SHA1 9e51e89e50e633f630ea0af0e0375dd3ed01be5b
SHA256 be95adc88919c10af789ba98112d791aa36f67c5319ecba7b940beca35bc5754
SHA512 5421662873c8d3f02642a23c914c9231f110032b06f50d03c61f61201dd0a6e21d278d37dba3459f1eae76c4b2e21ad32d4c2d401b2f11e5976dd99100323320

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ee08c28427b16c56_0

MD5 c0f8bb0422701bad714b0ddf210ef603
SHA1 78c3b9ccf98959631906dcfaec4667fbf6492eb5
SHA256 ee584b542bf791262d383878dc75c6849afaf49ab15964f5f5cd1679c67ff710
SHA512 b9d83f37dc26d60cc61fe771cbe9990689e960a291a13d7a001d8c87b4485111ffb698a77bafb805c1bde0b9c5e8c3a2d8dbcae37662fc9f0fcb0bf9f2709d4d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\12e2c4b18dbb728d_0

MD5 03589168517483f88336355405a5b47f
SHA1 855255b323393baa28bc43a9acfbafc534b30708
SHA256 323664f36d97d03072021c9a6906a8a3ad3820638e10c20fd9a3c596b5d9adfd
SHA512 e7b772bf43c777aa564df1057e70be6b2b0cfb8e193a8311465561cadfd543d79a4fa37e3074d5aeef41f9263da84c521ee5707908ecc3be997d8b353ecf734d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f0572c9ab2f19dd1_0

MD5 ded7fbb2b7123020752d6569f6a21457
SHA1 b2ff2738064999bd985e142f33b6a8f70a6a25c0
SHA256 ccaa8a2c645014d20c57b1d91c577124304cf86596d874addb1ac9c05fb9b49b
SHA512 4d558a2c9d33a99b55b403605dfa280921fe515d7b703cc313a3984f9691b5816871abe91f5cf83b20b7da55dfe15982c800ada1acaaf3db49bb47ed265c5fb9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d0ba74cda9d8b0b_0

MD5 3a5cda218a64ff4c88f76b62c611365d
SHA1 adcda3f791d5c019b976febdd6277a0415e3ab9c
SHA256 dc4b8896a3a4577b24dfef9e3f813653322b40e9b8b541b06de48b8f08e55aa4
SHA512 98461c640033fff42c23186f61c65353dc9b4a9657114b184540f2bf1a8b4061a92e788c99a6edd7f22a99f0e32a33d07721196a03d427319ed1cbe36830b54b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\bcee5e4c9a6ce18d_0

MD5 7778d6f0b4e0613b7078181aca0e927c
SHA1 8a2357c0cfc907985bb71098eedfa210e8e9e57c
SHA256 9dd0742907e64b35f343cacb4c6bd015f88eeb07c1b1879498325cccae7ea4b8
SHA512 38675887471b5956448a1c862fefd6c2ff056f7ffb3cecc671e46e6cca6a5b8b84f2f59a27be68190068b8f808c68bfb3cb1dcd3c3016013fb6793d122d21068

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\89db893576032902_0

MD5 9d95dc8376cbac1499b596b465f09c9b
SHA1 825b7a7a1090b9d7dc57dfb4b5beb7494d913b56
SHA256 ee9232cef503111a9f5b6b2f1b43b9a931bd975dc616299f2f3a38d9097dfb00
SHA512 f3850009363afc91101db53b3f7fcc17430fc483f48709b80a7d56da75c565548a31102a879a5ae1b5b2f9994eac08118b99acd5daf350824f23ed9aa1be4444

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\25d24c50d6908129_0

MD5 c5d11847d465e6ee29a676dee9cb6832
SHA1 5b6572166aff3254cd237dabee13a2c5b51c8754
SHA256 7a4f3c6c18ddfb8a7a0748e82310eff84732d4c11ba8c0a1eac4bcad0013eec3
SHA512 293f3a1e351e259148f3f0f625a83e8bdb8b5caf4f39fb8edf67580aeef06be4b2386ce978fdbec8cac23bd0b3a60fa0ac0ee2d7af05ba36ab40c0db5ba4cd61

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f2508f9f774dff5a_0

MD5 0df3c230122f9e12688be973a25825d8
SHA1 6a4dfb529d7a8cd6355122c89d4a17c68cdd9e8a
SHA256 e4a39d7aad1c3d65429901e28280c559de85d32d9781384d0f9d406371ce98bc
SHA512 2f3998b3ee97725f813386c0a5d31cac46fcb982eb8ef361ab483211002d04b0f5d3cf790b81d019c892fd5bfff34c850b14ee2fd86040b9c625da2820f3b898

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\617885bb170208d2_0

MD5 3efa2f34bb8a6cd90b97ebd4d6fe8310
SHA1 ef0aa1977f5b9fc6bdcc7945fcd679102e86f062
SHA256 20428b6d4dd3478bbb259fbfc9d52ff0d7669bd96a2f1c24a494bf8557406d12
SHA512 062bbcf26769061797dfd748d7e7ebd42c48e51604c3222f53e5ed5d9afdb98b723a318654f0c728643b8c6790d56e4a61f27adb9ba6562c3bb8a18c781c7d70

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6d0b78a7984afdac_0

MD5 3578af423cf576d0f3f2e525a8db4b6e
SHA1 df4b33803646173945bc459619262a33d01770e7
SHA256 1ec5195f5c83ac097c078c711caa05c3d1c55b4970ce10246713d93acefbe847
SHA512 5d7824c3e5667eeddbe6fa695b3c7dc79f46ef543ff4538d51329c918da65d68e12a05da82e6d990fa978bb02c5baa5d12f4e88bab71a075b25cbbb377727637

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\172b237bc017862d_0

MD5 6b2faa7122c7b35071f06b7fa0b31967
SHA1 cd58621da5264cacaceb87d8ab715aac3a57a81f
SHA256 c5154d120654f1a1ab16fe6867cc17b88de5978a0113ad411223dae8431f0d5c
SHA512 2aac9801877870a696f2497ba6ba3a866ce6f50537f3d0154f89ac1e93210498ebff622d26b0bd0903d8a6b20992dbafaacde6f5c443f4c25008e73869e09515

C:\Users\Admin\Downloads\Release.zip.crdownload

MD5 89661a9ff6de529497fec56a112bf75e
SHA1 2dd31a19489f4d7c562b647f69117e31b894b5c3
SHA256 e7b275d70655db9cb43fa606bbe2e4f22478ca4962bbf9f299d66eda567d63cd
SHA512 33c765bf85fbec0e58924ece948b80a7d73b7577557eaac8865e481c61ad6b71f8b5b846026103239b3bd21f438ff0d7c1430a51a4a149f16a215faad6dab68f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ffffe897df72e06b8363f5a8a95d0013
SHA1 b4c30ee4dd3cb353366094e7699eded28faa7e3f
SHA256 40de1756b9036b184d20ed2dcec11b1f9f044f9456ab435ee7392b36d2ee5be3
SHA512 06070d00edc101f26f8398249c3db86c7fc0d3c288b11733cf3a21c57b4a21317e5c305fd54cbafdf7cb8d0204b428bce2ed84a84cab693ad1d09fb3e2b49090

memory/7576-4994-0x0000000000310000-0x0000000000512000-memory.dmp

memory/7576-4995-0x0000000005810000-0x0000000005DB6000-memory.dmp

memory/7576-4996-0x0000000004FC0000-0x0000000005052000-memory.dmp

memory/7576-4997-0x0000000005080000-0x000000000508A000-memory.dmp

memory/7576-4998-0x00000000053E0000-0x00000000053F4000-memory.dmp

memory/7576-4999-0x0000000007A00000-0x0000000007A1A000-memory.dmp

memory/7576-5000-0x00000000079F0000-0x0000000007A02000-memory.dmp

memory/7576-5001-0x0000000009910000-0x0000000009932000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 15d8e21f88c226715001907c59eabb67
SHA1 35d9398ed5cb8be8617ee59209680a344ff59122
SHA256 e1b84832736914abc7e28b5ea91c2b4567ce1f1c8cf64b7b9955042ed122a62f
SHA512 4c5fe3f8ae459897ea49b574b521fb1871ca69dcf214bfe04fe7faff81c587808e2a527baf4c9c898b6ffca57896676f137dbcb72cfe62ea7167c2f29a813cc8

memory/7576-5011-0x0000000007A60000-0x0000000007B12000-memory.dmp

memory/7576-5012-0x0000000007FF0000-0x0000000008347000-memory.dmp

memory/7576-5014-0x0000000007BB0000-0x0000000007CD4000-memory.dmp

memory/7576-5015-0x0000000007CE0000-0x0000000007CFA000-memory.dmp

memory/6204-5032-0x0000000000710000-0x0000000000722000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Asset Store\assets.db\LOG.old

MD5 3afc020903243d04cfdf4d556e67175b
SHA1 c2faf5643e88267ce44c7ae333223f83967cf29e
SHA256 ee2b79fbf4de645f905272f460c066b660fa080b423d584e4e6e819692bd962a
SHA512 1ee1360453914683c0e98804d1db5558c82c7c3c818272c8defb527524911f23ce5baa252f9c9274ce98215592c1c8c995b985151bc30da4dfde6a2df2cc8541

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 167ffdf9d3865ac1374d1f8fc4070006
SHA1 8b0408a7e23431f2c1318f57fb99c5983b34a8ed
SHA256 6777dc27d1324c75e5b2057c9fe41916a66acbb699b02456289f54e66a78dcc0
SHA512 d12ee7e2ce421b962a725722c0d0cb30a4b6d1910b8f134ed105c49010f86fa6bb947648acd7d9e05d662e33bc462e389f0070c81d25e9f3bc039ee32633d977

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000133

MD5 d8899b1c0aa7c8e5836708fa76dfb119
SHA1 3ac6fbb49e7350221da7ee4d658efa239f2985eb
SHA256 106b6d9e8fab32613ec95b387848efc1a8b411ae4609237004009bd330e1a67f
SHA512 9f97e9187e145377992ecce519189fac8a3d13ee1c8fcef31b7aa1b2e5d1aacf0275fa031fddd40ab1bdfc855d549053f4dc43b65e6baf985924cad146d2bd2d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_0

MD5 05150c9c82f8224e49975896599016c4
SHA1 f802c9df6c0b758c7ed9571f6c467fac367d7597
SHA256 16624e20bbdcbf86c4ebe870db546d34ad7b401f8de938a6a235b0f25d222432
SHA512 079b9e28ba7aa9a68a99399ba78b9c0bdf6a36652c9e4018485b573c932d0d26b6c983dae615d8a0e5bde466f49633ccacadb1d3f4f76d04e100363b80e13187

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d8e5c0da710021dc801c80b2ddaf8e84
SHA1 91d95327fdb3630554992301a37da44b93986d6b
SHA256 01c08fb5b9311692ab5b39f92a61bba508660a2e62c3767ab49666006a34377e
SHA512 a39e5058cb988dadcb45dfab0d451425056f755d97804e7d397bff3cb9e65ca63fe6426e315ddc906d07e7c70f49cf842653690168d6ff994eff14403d08edfc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1beb04e18508451b13d9fd5b8927c1b0
SHA1 1c53df20c4239576a45e1a09398b4153a2e77465
SHA256 7ce1325bf693aee0e0680f0b24458bcacfcfc65a1a6a6b6bbbe17e6288ec56f2
SHA512 e49e92d1400517c711519486ea994be5a880cb8bbccb09d5e804c62dc48a6ce06de71d3eef830af8abe76b93f1918bd685af2fea051e31bc53e3f74d07fc4a0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 e60263ef3d9d364dcf751c8b8b356e14
SHA1 098242c7e52718ebeb2fe76bf2505ba4fc4aea93
SHA256 b53422af8f537818800b997c74b470a95dafa273e98b70d8a96a43db53688c93
SHA512 3662c578d7939e507a625543fdca70cfc49d9ba48f35ee041b1b3ab4a3e9cb9edcdb8b99f01344c130a2982babeb64b6a765edd45420a5a10ed63b770e01c60d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 76beaa1737e0e4a5c3bb90182ba61b5c
SHA1 daaea201c6bfbe8b5fdc2c8fbd2fba51f34aa452
SHA256 8922f6ba962f43cae9f2d70fdbdfe879fb63efe99783bda29bd05e00353bd737
SHA512 25cf1f26b6960d02762ecaab6ad913e3da74f61a33fa07a1a22fcc59648bda10ed70a83392ea22fd75473e289d8b6b4ddaf3aca0c5c9fb2b1e5138c7662e6f06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e619916f11a0a01c_0

MD5 15166fb64aa0255b1a959c2e3ed21593
SHA1 3298a4b3f9bcae1c7613d21b0896fc7f888bdb02
SHA256 6b1ad61fab4ddd6dd3e3ccb125b023272a62b0cfc652fa037002cf27a115f457
SHA512 1278dfbfd9124d4d4dda3a19e954fe32dcfb0f1128fed93f9e70a5d6884679f49ac3dae6ce5bcc430f92b8c62f61142d6e9c06129e63b76c7814f1f6561860c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b322811857fae3de_0

MD5 fec501fc0d31e09149fecbd5585925af
SHA1 232c041efb6da3492d36819feab38ac60208df10
SHA256 51057acbac1869590d155c38d7b7d67a92e8f35fa685848ed95332037b6897b0
SHA512 426fd40f8bdccf8f555f76f899e2f3e2adcb0bcd9d96030ef099a14490be7f7fec1b3d1ddf96f61e86a38008fe4fff59f7582995155e2130e3fa6ae642cc33db

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6ed3ff0d2515978c_0

MD5 2fe6cc40cdd9ea2b694ea2f007bf8f28
SHA1 11f3ad84d2cbcb4b576bbe8f3db4f7f0ba9552de
SHA256 c45575580f8c776115fbf48e0cb26fc34fc2ad9c29ce0d8b6aa08e26d2f558a2
SHA512 6743e1f23e500fd0c06fe9cb86387a2d90d1cfe3f03a0f80443741bdc27bc0b2730705082d1a3feaefaef88c41fdc14480a56db3e20b61ab64709f1f7c1bf63e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b732df9606699d64_0

MD5 fef40673c233b8776c8d0c0f631d7314
SHA1 00e147765a578a97e50adbbae78b7fd0962dfcf6
SHA256 8e7e50664fc7ce016508e1274ad1a3b3a446f192642356d503e17917ce575621
SHA512 1ef9c3edbb30831d09403b030cb3d0147c94392b9ef459ef1bf6d8e3d43e4f71a2481113ce800f30a4a04eaf7483e7bb0626f51c8c0ce8d2bc17ef5685b2af11

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 a186ac9198b0882207edf4b007653c1b
SHA1 8b88a401cc374a9f8f4fb13e51e7318e971200a2
SHA256 f676a4745cd3b64bfa9149a03bfc5aa99838657b3a446ea976c883bc1f94064a
SHA512 353f4e327186ed0d72b537f9c549d478dc29e0b2d63e778db3e5615972ae99ed06ae01c0f4af7649253d1fa8bc55420149299d593555fe8bf2afca3db33f9203

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt

MD5 2788fab7054a96e07958120ae7a06ff9
SHA1 b0beacdec2b8f9b1d4f84782f0e32a36d0d8fa17
SHA256 1cf5e7cc222fdbac76cd5932fb7663d78b01ab346a78c3fe1cf814bc3eb3ff61
SHA512 79654d416850b4982f5ec0f9776cc6b21289d626ac557a013ebd131494ac96171d68b87c4bf17be680758cb9fa1f17d23deb7369d1ba44ca95ad40a55d318490

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f560b4871b98269b7120fef20b7a9fd2
SHA1 7b2d9a1f48281eb387b91a15d9391e47c84d8166
SHA256 37720e2f7eca9fd523c87c9fd289259fca2c0bc5975284b73e413a6cfb58b40a
SHA512 79673e732310ee6c757e8cbaff20eac7ceb77d53ac860dfb702c4c3b57dcb4cc19eb83be95c2cd9c42cc8f9337b5374c6ea07c9be27bb6ab24e21bdfa6aa2f1b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9b547b375b40d78f9359b1adb7f4778a
SHA1 06167c02b26de7a66d7abc5e780720b85049c7fe
SHA256 10c5a569a73378c767d1da7d9875012e33ae057d62756a93b9b1e72ef0455bbc
SHA512 beae1e2caab569227428bf4adaa3dc413c631dc4ac2972585f8572f40aa7bffcffe1a4a0efe1339adb936510d6cab0cf5ad3b1a750089e5f5bdb97d2e4b43371

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 85362993754e06ed82b00f965d000de8
SHA1 8806d87e97b4dc13e70e736e2fa34476233306f3
SHA256 9ab7fa4cf8ab16ccef3038d886470ab91ec93198dcb6e4e93ded8b7abdc31c85
SHA512 4d084e0cee28b3aa95643e064642164db9bdf03040d831fb64a2a9250c7cc1c904953fc6ec232b28a95e7a605bdd159508284449b6413ff884825f6acd7a96b9

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 77895e9844b84bd808ae726236d23ef5
SHA1 15e11053ed8cad6bf0b09f9b55f32e170eeae8e6
SHA256 57667caca21c1802ac9d510309fc40ddcaee7e8b412cb0058a353f30232a33fe
SHA512 433551ac338cba3dbf9fba55d4088c7c609adb835489f495b3ec21fadfa2f7734488323f499d6f32c4f22333ed9a64e607d8dd27855fb73444abd8f982de5b03

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00015b

MD5 9a01b69183a9604ab3a439e388b30501
SHA1 8ed1d59003d0dbe6360481017b44665153665fbe
SHA256 20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2
SHA512 0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000171

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c0af23ad1ad545150f5c54d9195932fa
SHA1 84ecb81f0bf2f3e7732968b8aa4a4f3ce5fe9b7b
SHA256 fe19835a504c59c54cdf61add6c0692219f71ba8b26c7cb6f94cead591abd546
SHA512 4982faddb45a57e61ed9aa2fa4433e162730da4524885d07fe2e91e16fc9531a6cf2580c965ef28a9f96a1a9b9a6f0831fc9e44c3e92a86a55e22bba455bae4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fe606d2c5181aa61f137e8b464549e15
SHA1 7582cd82aac723fcb35caf12c9b7270d986d41b9
SHA256 5912a740e0045af06f6ea8f63751f61cfb5ac5a4ffede3632fe2c615227bd38c
SHA512 0080010de8ebc04c6d1e8e6c16d4c4f6a2ec7843fe67b9e94585893924283b9d521ca1cef2e86e35ce3f4f89d1b77afdabda1e52576dad81e1d964d03efb8676

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f00898e3fcd35d16ace796ff42278de7
SHA1 1dd528bc5b39eeb499ae506a4aa2f9cf18c23408
SHA256 12e915900b1d8a6bd967219a4d30ad6a956974195b01a8bc7d7842b3fc87d180
SHA512 824466918532bc382c8f01b7f4e5bf87661fb70ea8c14e4f725a2905a7468130a705a301e924d8ccdab9befa6d52a07e10045cd7a66ccb0c90402fa47500d1f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\efc7dc4a6936ecd7_0

MD5 1a7615bd2eb6bbfc13da2d10e502ff92
SHA1 50a6cbe857ec14cd2d161d6271f5c5a6068b0b83
SHA256 a172e9c97f8f37974a87a8c552f909f52208f51107265e9da2538f38a355f2fc
SHA512 efb136d04c5b72d17dc6e90d0bb85be3db36d02549d9fe603b056705512e77b410b49a1136c0b381d655a3bf12ff4d06d43d15bccffb7822a2c6d4ca5b926a4c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7f9fa0ff92935f9c_0

MD5 e26e2b9fe4d1046d8e6d44b6300419a2
SHA1 cfc051b1e0b5059388859bf4e7230ab851b3478a
SHA256 ceebd0708cb5507467288adf0818f8545de395154172cd377be8ca0f176a64af
SHA512 8024bd42c50f55f1fbdebd59627e04d0db6187594bf2783821bb3703b0a2e8cc035347d79bc8f0f953afe74c7b88bfd4defbc5bd1b4137747c4d74cddd06262b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d95bd162c2bea1ed_0

MD5 08ece46bef36aa7f154c78f3a4e72960
SHA1 be22d72db9ae90db108be5d3a0a12dcee03140b6
SHA256 3bc3641d9677a6d1c717ae3b8008aea72413df053df64ff6c25c0ae5d7becba7
SHA512 8e57aedc44fbbcf5dc17dd520453d18aba492a71c0352afad6955a051d5510335b0e56899af4d54b50cbb76420455de6993a9d0ed8f03c28b70f520c6dd3f981

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e4ce69086f21fa82_0

MD5 6924f19f5258d262d2df29262ee07fbb
SHA1 0ed47997ef1606344b182c7187fc920fb77e7cbb
SHA256 88630f262c984c2a404820b7f19bc66be203592fba9d36d509b28b190ab32df7
SHA512 acfd2bff6d9e9c865a0e166bdfbe747474a3f3407d88f9302fee54c6ceef507bb62bd1597e625528cbe6923eaa02b0049d364ef57f664253c0ec36ea1836558c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\04412c6eb1855338_0

MD5 fea0546f579402e0dffd28e538533a06
SHA1 2846e00607f188daf060f4206dd2ae0ca6c426e4
SHA256 5b25c2d0fa0138400f17a5e1caee5ac23d0cbb32d99a9b7e4919bc5b762d8dc0
SHA512 a9c5c46f7c05b51135f29dd7dc0e97209d6839ff951bc574c87a78c0298e89eed3292d880bf17fdcad7a0bb9d78bad737bec37e2f673cd09ee5b14aedad0f7fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6fc4e481eafc2c77_0

MD5 3ef01542d2fafabcfe4e4799d5988606
SHA1 bbdb0976c0d5fde74d8ade47953839c459010842
SHA256 75c752a4b2e34002a8c899edeca75480ff2d676e52cb04b197c5a3dca3b9a2cd
SHA512 ff1b7e44d2bcaeb4412201c46465a59a19f6a72f329ffbb4b4e6dfb57acb61729ab344f199fe6286b4baee56a4b50f8d3f2aa29dad29e6fc309ff64dedebf7b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\248973b64a193231_0

MD5 a2b1aa893e75f74015665e0ae3031b6a
SHA1 8570a619014266768164e3a85db8fb9d6f882e07
SHA256 56cd207d384b509e9290e3087427085b2e0a64fddda5c7426c2b4a8b5ec13f5a
SHA512 36020956057fadab0857c4f1430a87b0e5731ef9e324e4b2778e4078e9536009ae91fd63b7d417e9f32152febb929f545afb03cb6336bd0e341ece2d00f69282

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cf7db381ccc33528_0

MD5 815c6b0862f3812406861c4d97380fec
SHA1 a5a1791285f99f305f36aa20d92a2ab46cb11e76
SHA256 e35962c4baaa8eda2715be9e2f83281cc7cc1168de6d53af4f856338da9b1271
SHA512 67aecc81e801e4720978cd782b2b1e067186687560e23d319c1b5671f505e94b6a592c35e8d78cc2786b13812816571a5b1fe4cddb4b579d3309b0c0f9cb9d67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa27d1d7dc21e84a_0

MD5 cda21ec17cdd2a2a6848c64bf9703215
SHA1 9f18b640516ecee4cd59e21a48ed1ffe6af9b750
SHA256 e23d7d5a05f55a70b4c4ea19b7412053bd1235157c390b50b09cdaecb1a67081
SHA512 b7ff5318435ea0a52987c764e652b1d15914e5065c41b47b952954bf08eb07f6671df999fd269b96b1f72a729de60858726ea3d431f2a2145571488892fae1fc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt.tmp

MD5 45f267eda37384dc6a28f2417f6fb955
SHA1 6bc49a3e8c097cf9c2f9771102de6117a4a81327
SHA256 ac447b437f2ad587fdad135ee146417f6242d52dd6a3980fe2d19df49da62bb9
SHA512 d94535f183d886b9258324a71a75ae5887993423335fb5fd5d7fc9659b6aa8c68abb9e9ce9f465bbac32ba37e3b8ef88b7df620d8e33dd5ff025932d99ac4736

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\000003.log

MD5 2279ba2cf639e2d4577935a4ba7a2d91
SHA1 1712233fae5da14fc205594ba1f2a1f3550a1a4a
SHA256 6a93c6250ba8a892ee1e8cea2db988167d7f25c777b5148cdfc4a09e56470915
SHA512 aee4604c96b2f9abb05482c381f75bd54c1a0b5838a1092f978c29ca6b4183cc69b81371a467d292eeb13db6cc0846466509f618b5b142ea165908c2db118711

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\LOG

MD5 f07c67386d9f2de7888e0abd71a24101
SHA1 42b67f434c994057f1851eddb58fc8932f4bd21a
SHA256 72b3a80a64ab34b4ed263c823cc125829d21bbb0fd50694ca531234434ec61b3
SHA512 fb6987f910290f1f97ccd959b8d8662f4e6917ef711868587eef2985afdb9b1bb7b83aa6b0337e6649a7aff940749a98e4e30e0e45454c4d5175ebe8d4a44227

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 3e8693f15dab0b106db38950e124f0ff
SHA1 595fddd6ac77f7731f097016e8483d48f15239c0
SHA256 0f9eb57d570c81dc6211535f6d615c2b56f3817e57c80c74a2e1c61dd0619a17
SHA512 f4226ea667d1ea9ac1d5de29606d9e4ddc60ab26f2ae2184428c73076a0cbdc2ede9834300d59d753e06324b39f8fcaecd8a852ec259b7e499bf3bfe606fb7d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 81e7ff16126bc456dc316f58065ed333
SHA1 4103b6548b8895da595e8fd6fd7b367dafae3381
SHA256 da204c988b5e8918aa3223255d24c9f410921409f29797f7338894e95e58e0dc
SHA512 f551368fa1a57bc56c78855c391d3cf3f9e76eb1e370a594d5f84d0b3866f5808025b5393df5fdb5ef6a2c031a8eaab0cd45b2e0341ad32316040dc578df44fc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00018e

MD5 f30fbf578f9209858a333ca0c5c89bef
SHA1 af624cd23bd556dc04b50a170e1876dbab3088aa
SHA256 72ab1d1eb5424194c1ea00ad625752c9c14501cdeccbfa3fbc18863e04cfd05c
SHA512 341892250bd91a7a7118b51f8a37b2ceab2b74d3f0f5aba946b0c8ad4cd83e274941329e19416ee9e9b641c85b72212759499ffd2f4ea3de729ce87969528ca9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\f1cdccba37924bda_1

MD5 211ed2f843be1cd8152848920bb9043a
SHA1 b4903f5615a172ecde46bb7a26399ac8ddaf196d
SHA256 6e34de205a71d19b0bc0cda03b36a9516f363e18f5f1cff1b20749d9fcda39a6
SHA512 5eecc9bf1815811d959909ce65ffcd52077a666f6b88a944284b47f866cffee1c153666618d5fcc9e7e4256c8e969b169ac9058f846a1a6e9246e298154f274c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 eb60473c90c8f9e946e9566ff16f4fd4
SHA1 9eec1c05cbba71c1e54c3531a665d22eda8075a2
SHA256 729b311d4c456393f7200ee5cabbaeef86749decec3838d62fc7d6cb07ebc538
SHA512 6afbdf562e63d4ea9a17ecdd6324538dfb9cc834a83e36720e34193d120787e0565ec03565585fce977715cd9cdd4a7f73da01cccd5e630076b1ebc764f03fe2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 715a5fe85bb075ff3e22d0e25c7811d7
SHA1 7681999dcc3ffecc7cadc36e1e77f0a86c8278e1
SHA256 4c303c06f260a24b99ae21f99abfd22651df296050b1a7fba9fb050b3d34fa27
SHA512 e6b5d63ac0b1752d76a207d518e8261f86de96633dc639b84cd37fa695ad0041127b0dea923640426c1c17f08c41aa1106c2105609fea60a1fa4bffccffda817

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 850836e85ead71d48799b01fec3f525f
SHA1 bec0e1f1b01f692833be858ac5f9452b721f4fd6
SHA256 69a1f7007cc8e984c742de54856c70e8a2e2a22a2333c7d209ea07f518da767d
SHA512 1a14167a244431ed31fa8b92969558b834a0c4714ef9f34d0622c5710d73a70afede7dc5234f562a6a2b9422573ec2496913a781018a3e34580b6c4f9f2ed019

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 7ea2a3aeb00f777014d7b2c031cd1d11
SHA1 26aa082441232c5b04fdad310a3fe42c9ed6ea33
SHA256 19151beecb67fa74113bfc6d3d5b571f7fcf331fee476ba22cacec244772cbcb
SHA512 fdca71181f487c2b4574f827b02819700cbba777b28368a3333a6ada81303d047b1059debdad6bb2a2d0692cefa73cc2f09cf8c636880f911855fd479c15d54e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 37a0c28b77984dd380271fa79b296694
SHA1 c3acce51dd3ced0c4c310e9843826d62d2b3bbfd
SHA256 130e81d0fc93eb1f4172cc701876d247cc698f06165cab40707713914957c276
SHA512 c4dfbb378b255bb18f86c5602674ac9e645f41f4c8c63f55c498384309275cb60d410e51770729b99dd68a85700419f40e75ea0130ead4389f5ccd6711d943bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cc5955ebf168a017b160e5c6e727c72e
SHA1 0eac3eddded489849b5bbdba2dcd9f3981b677e3
SHA256 428e63be6ed2f9cdbf7759d6d03de53ac89eee0ccffd9a5a1cf5a3164632757d
SHA512 7dfe47631229e0b6cd39955fdc84a682869b9b9ce7b980e46845680c28783cdef4592079eb848a6660ae3e37bec303e76c4d96a26c464728f5882122596fc5b2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 055143e89c59e93e29ac4eedb92e7bc0
SHA1 9ca8d919314548e29f844c1d8662d37b335295f8
SHA256 671fb65b87fa8f67ea28f879597eb9acce5ec8bf6ba0c25ac970517bc91c0d44
SHA512 b1cc085d4d04aa278b565de20857cee102631f185a4f55c695fc92ba113a2018dda8ec2a2f26cd999ce6bfcad3e48256bd494be7ceb00cc67dad1bf887bf6514

Analysis: behavioral9

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

446s

Max time network

450s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-filesystem-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-filesystem-l1-1-0.dll,#1

Network

Country Destination Domain Proto
US 52.111.227.11:443 tcp

Files

N/A

Analysis: behavioral12

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

453s

Max time network

457s

Command Line

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-math-l1-1-0.dll,#1

Signatures

N/A

Processes

C:\Windows\system32\rundll32.exe

rundll32.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\api-ms-win-crt-math-l1-1-0.dll,#1

Network

Files

N/A

Analysis: behavioral18

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

448s

Max time network

452s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\basic-languages\lua\lua.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\basic-languages\lua\lua.js

Network

Files

N/A

Analysis: behavioral23

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

454s

Max time network

455s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.it.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.it.js

Network

Files

N/A

Analysis: behavioral24

Detonation Overview

Submitted

2025-03-13 23:43

Reported

2025-03-13 23:59

Platform

win11-20250313-en

Max time kernel

432s

Max time network

433s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.ja.js

Signatures

Command and Scripting Interpreter: JavaScript

execution

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\Xeno-v1.1.55\bin\Monaco\vs\editor\editor.main.nls.ja.js

Network

Files

N/A